$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: ekr5aTAoL4VbpD6qYzMnYkTNf9/FNFR9nbcz2kM0zsw= Subject key identifier: DC:E0:E3:95:6B:E0:C0:A4:6D:0F:06:67:66:4E:26:BB:1E:48:B2:F6 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D2E Signing time: Mon 30 Jun 2025 18:13:44 +0000 Manifest this update: Mon 30 Jun 2025 18:13:43 +0000 Manifest next update: Mon 07 Jul 2025 18:13:43 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: +wPOf2jWCeSP5l78cn5DGAFYbWjpC/JWsuFJS7hseo8=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: 6Rm16lqV7D8ogEdcWjZlICaxyf3FBMg+FZuEOmrvZ+E=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: Kvq9xzCrVcc/vYKOgXHbGDUWHenbRQHuJZ7CogmXIPc=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: 7Q5TQ0GutKyzM0PazgyPbgCiIYVuSp/HifdYRSL6/UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3393 (0xd41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jun 30 18:13:43 2025 GMT Not After : Jul 7 18:13:43 2025 GMT Subject: CN=6862d3d8-5232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c8:42:3d:94:d2:2d:6c:30:9e:a3:29:8f:92: 55:d5:4c:77:ad:43:ed:4a:65:ff:42:45:5c:41:da: 84:ad:6c:8a:15:29:aa:d7:6c:44:33:03:ee:c7:52: a8:3d:28:0d:91:66:fb:d9:5e:d2:82:ee:9e:ed:1b: 1b:1b:6a:38:41:9c:79:9f:da:24:46:61:e5:3f:58: 75:ae:ae:4b:91:7b:de:f5:77:2e:95:44:bd:77:be: 8e:3a:6d:f6:18:a0:64:43:63:71:b2:3c:3b:00:7e: 07:c7:ea:3b:5d:43:5e:b4:ad:8f:6c:b4:4b:84:f6: cb:af:ec:f6:63:ed:ce:cc:83:31:66:a6:d6:ce:76: 81:2a:d3:12:6e:9c:2d:30:32:9b:1a:c4:31:59:6b: 5b:18:22:3b:8c:ed:14:5f:5e:5d:1f:1c:df:24:dc: ab:78:97:0a:9a:1c:8e:2b:21:3f:2d:a0:79:d7:fc: 58:e5:b9:77:ac:60:e3:fe:80:cc:79:17:d2:84:ab: 8e:d7:ad:00:9c:24:60:3a:97:86:80:4e:5b:f4:07: ea:ac:1f:de:2f:a3:2f:f2:6a:e9:1b:68:de:79:62: 16:62:42:3e:9f:81:d5:1c:41:51:35:25:c2:93:15: 98:f9:21:b6:fa:e6:10:53:65:16:80:77:7a:64:10: 59:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E0:E3:95:6B:E0:C0:A4:6D:0F:06:67:66:4E:26:BB:1E:48:B2:F6 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:b0:6d:40:bc:9d:e3:c5:e0:f0:69:32:34:ce:1e:f6:c8:9d: 14:e1:e6:70:b7:74:38:af:c3:db:9a:ae:b5:56:9d:93:5e:8b: e1:fc:af:40:fa:e9:0d:2c:c2:98:25:85:49:58:30:bc:e0:34: 59:33:3b:2c:10:25:6e:e5:c7:de:b0:53:6e:87:e8:c4:db:5d: 86:a2:57:d4:83:94:f0:8c:f4:63:c0:b0:29:0f:db:9f:0e:b2: 9e:54:10:60:05:3e:e1:d6:c4:f2:36:ca:cd:65:2e:73:91:1a: 98:4c:4e:95:43:b9:93:90:2b:27:c9:d3:a9:b1:16:8b:ea:68: 0b:9c:ae:98:7d:d2:b8:50:1a:5b:10:56:c9:de:2a:61:57:35: c6:60:61:88:5f:77:8b:5c:21:6f:ce:34:21:91:68:cf:e9:f2: a8:96:de:aa:b9:b4:0f:ff:d7:fa:18:c4:82:2c:d0:67:1f:9b: 06:1a:a1:a5:74:cb:aa:d0:10:87:97:89:43:fb:7d:86:67:37: 1b:71:d2:4b:f1:9e:cc:fc:a7:cc:4e:5f:ba:52:fc:e4:ec:3c: e4:aa:a8:12:83:09:59:3d:4a:cf:a6:19:20:43:3d:2a:00:b9: 0d:dc:68:ba:dc:f9:0b:3d:57:75:be:20:55:19:a6:dd:31:8f: 0b:9c:a2:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNjMwMTgxMzQzWhcNMjUwNzA3MTgxMzQzWjAYMRYwFAYD VQQDEw02ODYyZDNkOC01MjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtchCPZTSLWwwnqMpj5JV1Ux3rUPtSmX/QkVcQdqErWyKFSmq12xEMwPux1Ko PSgNkWb72V7Sgu6e7RsbG2o4QZx5n9okRmHlP1h1rq5LkXve9XculUS9d76OOm32 GKBkQ2Nxsjw7AH4Hx+o7XUNetK2PbLRLhPbLr+z2Y+3OzIMxZqbWznaBKtMSbpwt MDKbGsQxWWtbGCI7jO0UX15dHxzfJNyreJcKmhyOKyE/LaB51/xY5bl3rGDj/oDM eRfShKuO160AnCRgOpeGgE5b9AfqrB/eL6Mv8mrpG2jeeWIWYkI+n4HVHEFRNSXC kxWY+SG2+uYQU2UWgHd6ZBBZ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzg45Vr 4MCkbQ8GZ2ZOJrseSLL2MB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYsG1AvJ3jxeDwaTI0zh72yJ0U4eZwt3Q4r8Pbmq61Vp2TXovh/K9A +ukNLMKYJYVJWDC84DRZMzssECVu5cfesFNuh+jE212GolfUg5TwjPRjwLApD9uf DrKeVBBgBT7h1sTyNsrNZS5zkRqYTE6VQ7mTkCsnydOpsRaL6mgLnK6YfdK4UBpb EFbJ3iphVzXGYGGIX3eLXCFvzjQhkWjP6fKolt6qubQP/9f6GMSCLNBnH5sGGqGl dMuq0BCHl4lD+32GZzcbcdJL8Z7M/KfMTl+6Uvzk7DzkqqgSgwlZPUrPphkgQz0q ALkN3Gi63PkLPVd1viBVGabdMY8LnKLG -----END CERTIFICATE-----Generated at Tue Jul 1 18:18:58 2025 by rpki-client