$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: 3Ow3L6G1Epk2VNLzOTbA4JitHa+BV0S/EEtbo8eS7qE= Subject key identifier: 56:D2:08:4A:80:79:2B:D1:D3:61:EB:E4:46:E8:14:42:EA:49:7C:5E Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: EC Signing time: Thu 03 Jul 2025 05:48:47 +0000 Manifest this update: Thu 03 Jul 2025 05:48:46 +0000 Manifest next update: Thu 10 Jul 2025 05:48:46 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: UyGDlbZtqghlCAl4Za3wht2Skox4WgRJVnKmI2GCWE4=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: J5BMXPUW8m7K2bOF3471IMNvup3jPF22uZ9URvu627E=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: kZrd3mAtaTduvChHj54cupYMhDS7pTsrXNeCRQqiQrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: Jul 3 05:48:46 2025 GMT Not After : Jul 10 05:48:46 2025 GMT Subject: CN=686619bf-9ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f7:df:dd:30:87:25:15:ca:a8:ee:cd:35:e5: 04:40:ce:8b:3f:61:07:44:37:0a:5c:1b:7e:54:6a: 66:64:3c:7e:1f:cb:06:a6:94:1e:67:36:dd:f0:40: 5c:fc:fe:ab:ed:d7:90:5f:6d:c2:57:9e:ee:c3:bf: 86:92:fc:fe:a0:d1:64:3c:e4:71:16:cb:ff:b9:5d: b7:0b:25:5a:28:b7:d9:f5:fc:0c:d1:c1:d3:4d:98: 3b:e7:a6:8e:87:d2:5a:ff:b7:a4:2b:04:0d:19:0f: e3:c7:5a:e9:f6:89:1d:b5:cb:cb:13:a0:1e:94:03: e2:65:f6:ad:74:c0:88:80:97:3e:56:a3:8b:00:5f: 9c:89:a2:3f:e4:b0:34:de:9b:c1:8a:47:d4:a7:9a: e7:6b:74:90:bb:95:d2:a0:ce:a6:c1:40:76:ee:44: a4:ee:10:cc:23:eb:9e:fa:12:b3:69:46:4b:32:b1: 48:5b:02:a2:4e:b9:d8:e9:f4:57:66:cd:3a:6c:77: 49:bd:cd:f1:52:f9:19:45:9e:64:9a:ce:9a:48:cb: 76:9b:a5:e1:63:c1:02:56:61:08:50:86:28:58:0a: 4b:b9:f8:3e:64:e4:42:80:fa:f7:71:34:56:fe:f3: 71:56:be:a2:e2:63:44:98:d4:80:3c:73:b5:84:7b: aa:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:D2:08:4A:80:79:2B:D1:D3:61:EB:E4:46:E8:14:42:EA:49:7C:5E X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:a9:33:0a:5b:e0:a8:c3:13:07:8d:81:2b:72:8f:36:f7:77: f1:62:29:8e:d7:9c:c2:6d:20:d7:82:49:7e:0a:e2:0a:e6:43: 2c:a1:85:6b:ac:85:09:7c:30:48:72:fb:6f:f5:59:b7:c7:fc: 53:e5:b8:e6:07:18:74:18:b0:5f:78:f9:10:da:6a:0e:e6:7c: 76:9a:b2:b8:d9:6c:f0:1d:fa:d4:d4:6e:47:93:04:4b:66:ae: fb:31:d1:3b:86:83:d8:8f:99:4d:f1:a0:9d:5c:ca:69:83:09: 62:55:1a:7b:93:79:c3:48:48:83:f3:06:e6:76:2f:6a:c8:a1: 25:20:86:ee:6b:06:95:3b:85:ff:f1:af:cf:ef:4a:be:84:2c: e9:37:3d:62:3c:b8:ab:21:19:89:b2:cf:df:9b:21:d4:62:7d: cc:4c:f9:a3:4f:0a:75:d0:21:ab:08:46:41:5d:87:8c:50:45: 28:6e:86:ea:4d:7b:a1:6a:b0:b0:2a:bc:e3:63:09:ac:9a:8a: cb:02:87:2b:fd:94:8a:e2:82:95:49:c2:21:48:52:67:3c:1e: c4:71:ff:17:ea:6a:8c:d3:48:6b:a3:e6:81:73:7d:7a:b8:57: 7f:a2:fe:bc:9c:c4:ba:af:0e:b8:df:26:96:1a:b2:71:cb:ff: 79:6d:f1:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUwNzAzMDU0ODQ2WhcNMjUwNzEwMDU0ODQ2WjAYMRYwFAYD VQQDEw02ODY2MTliZi05ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfff3TCHJRXKqO7NNeUEQM6LP2EHRDcKXBt+VGpmZDx+H8sGppQeZzbd8EBc /P6r7deQX23CV57uw7+Gkvz+oNFkPORxFsv/uV23CyVaKLfZ9fwM0cHTTZg756aO h9Ja/7ekKwQNGQ/jx1rp9okdtcvLE6AelAPiZfatdMCIgJc+VqOLAF+ciaI/5LA0 3pvBikfUp5rna3SQu5XSoM6mwUB27kSk7hDMI+ue+hKzaUZLMrFIWwKiTrnY6fRX Zs06bHdJvc3xUvkZRZ5kms6aSMt2m6XhY8ECVmEIUIYoWApLufg+ZORCgPr3cTRW /vNxVr6i4mNEmNSAPHO1hHuqYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbSCEqA eSvR02Hr5EboFELqSXxeMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+qTMKW+CowxMHjYErco8293fxYimO15zCbSDXgkl+CuIK5kMsoYVr rIUJfDBIcvtv9Vm3x/xT5bjmBxh0GLBfePkQ2moO5nx2mrK42WzwHfrU1G5HkwRL Zq77MdE7hoPYj5lN8aCdXMppgwliVRp7k3nDSEiD8wbmdi9qyKElIIbuawaVO4X/ 8a/P70q+hCzpNz1iPLirIRmJss/fmyHUYn3MTPmjTwp10CGrCEZBXYeMUEUobobq TXuharCwKrzjYwmsmorLAocr/ZSK4oKVScIhSFJnPB7Ecf8X6mqM00hro+aBc316 uFd/ov68nMS6rw643yaWGrJxy/95bfEw -----END CERTIFICATE-----Generated at Thu Jul 3 13:17:46 2025 by rpki-client