$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft File: 0NbEemjLQdEG6wQtcma5y7_Bpzs.mft (raw, json) Hash identifier: EdQkwB09ajT3CJoTdb/orYrXa0Cp1514FP0UWgGIrLc= Subject key identifier: 64:73:68:9A:65:81:19:36:8A:4F:E4:88:BA:6B:36:C4:8D:75:6D:E1 Authority key identifier: D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B Certificate issuer: /CN=A91EBF76/serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft Manifest number: 0669 Signing time: Wed 02 Jul 2025 22:43:29 +0000 Manifest this update: Wed 02 Jul 2025 22:43:28 +0000 Manifest next update: Wed 09 Jul 2025 22:43:28 +0000 Files and hashes: 1: 0NbEemjLQdEG6wQtcma5y7_Bpzs.crl (hash: RKgU2dBF/2eh+J9TmLVwmd05/RBOxzzdt82gfZxjfy8=) 2: 5FBDA400853011EBA1AF1D76C4F9AE02.roa (hash: av1fp+B0Rvyyl/M+tQ87N6LBAVDY2pJUK/6gF5bMDYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF76, serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Validity Not Before: Jul 2 22:43:28 2025 GMT Not After : Jul 9 22:43:28 2025 GMT Subject: CN=6865b611-e58a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:c0:67:24:d5:a4:9c:21:46:5a:d3:be:53: 05:07:c4:ae:96:4d:60:9c:41:61:6e:71:e1:97:6b: b1:45:1d:89:2a:04:d6:52:bd:37:d8:1f:84:41:0e: cb:d7:48:45:ea:5c:c4:74:5c:ae:66:ff:47:ba:8f: 82:85:0c:d6:d0:4d:3c:ba:2a:7d:23:11:2f:2b:86: d8:1a:01:27:6f:70:b0:aa:e5:7c:6c:0b:43:94:d7: 35:8e:fa:06:5f:be:7d:4a:60:b4:8e:93:da:90:0e: 82:b5:74:bd:3a:15:89:de:97:b6:97:7d:93:a0:4b: 1f:cc:eb:0a:1d:63:1a:c5:bf:90:c7:c8:ad:59:00: 6d:ab:b3:34:e0:1a:19:6b:82:1e:70:57:d4:ed:c6: 12:80:c0:c3:ca:a4:5a:54:1f:da:6c:cd:6c:14:5d: 09:f0:8d:f5:d1:e9:dd:f3:d3:77:7d:01:06:33:7a: 3e:7a:1f:38:51:e0:c6:66:32:c1:62:fa:a3:53:b5: 27:a7:43:c8:88:43:49:58:20:49:7a:13:ea:21:51: 9f:c7:9a:64:61:2b:b5:b4:4e:0b:aa:f4:b3:72:c0: 96:50:b4:51:2d:02:be:5d:22:bd:55:af:89:b7:18: 4f:a1:06:25:87:cd:56:ec:3c:c5:e0:b8:bc:4b:16: 71:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:73:68:9A:65:81:19:36:8A:4F:E4:88:BA:6B:36:C4:8D:75:6D:E1 X509v3 Authority Key Identifier: keyid:D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:e4:a6:5c:e6:be:a9:00:1e:22:9d:ef:75:18:c2:d3:cc:6a: f4:3b:4a:86:07:1d:92:3c:fd:60:d0:82:72:b8:4a:40:17:ea: 23:04:fe:cb:93:39:30:db:13:22:d6:ef:51:6f:1c:50:be:81: f1:62:13:50:a4:07:56:c6:29:4a:d7:0a:7f:04:b8:55:ea:9d: 91:bf:65:e2:1d:90:ad:d0:54:ea:17:32:7b:ce:70:fb:7a:8a: 8d:ca:37:2e:b6:f4:1b:65:2b:21:a9:a0:4b:29:ae:49:d7:79: 98:18:54:83:5f:75:40:cc:b1:5b:ce:d6:e9:88:70:4b:2e:81: 35:04:ae:0e:0e:8a:6d:ff:53:75:e0:ab:9e:94:b3:2d:82:19: d2:6c:ec:51:05:4a:5f:f2:70:d1:52:74:2b:3c:3b:34:83:ec: 4d:e8:d7:92:6e:d1:95:d9:ff:bd:27:b1:52:de:11:25:2d:52: 7f:67:3a:79:20:c5:8f:77:0c:10:f0:bb:89:e1:05:6d:71:a3: 05:88:d7:74:de:0b:bf:90:78:72:3b:6e:81:e2:c9:6e:dd:aa: 5d:22:35:35:5f:28:d5:8a:53:a5:72:52:e1:51:bb:3e:fe:68: 84:eb:46:02:77:57:2a:d3:25:df:61:36:a3:f3:3f:8c:56:b1: 37:63:d2:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGNzYxMTAvBgNVBAUTKEQwRDZDNDdBNjhDQjQxRDEwNkVCMDQyRDcyNjZCOUNC QkZDMUE3M0IwHhcNMjUwNzAyMjI0MzI4WhcNMjUwNzA5MjI0MzI4WjAYMRYwFAYD VQQDEw02ODY1YjYxMS1lNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouPAZyTVpJwhRlrTvlMFB8Sulk1gnEFhbnHhl2uxRR2JKgTWUr032B+EQQ7L 10hF6lzEdFyuZv9Huo+ChQzW0E08uip9IxEvK4bYGgEnb3CwquV8bAtDlNc1jvoG X759SmC0jpPakA6CtXS9OhWJ3pe2l32ToEsfzOsKHWMaxb+Qx8itWQBtq7M04BoZ a4IecFfU7cYSgMDDyqRaVB/abM1sFF0J8I310end89N3fQEGM3o+eh84UeDGZjLB YvqjU7Unp0PIiENJWCBJehPqIVGfx5pkYSu1tE4LqvSzcsCWULRRLQK+XSK9Va+J txhPoQYlh81W7DzF4Li8SxZxwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRzaJpl gRk2ik/kiLprNsSNdW3hMB8GA1UdIwQYMBaAFNDWxHpoy0HRBusELXJmucu/wac7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkY3Ni9BNkRFMDk3Qzg1 MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFkRUc2d1F0Y21hNXk3X0Jw enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOYkVlbWpMUWRFRzZ3UXRjbWE1eTdfQnB6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkY3Ni9BNkRFMDk3Qzg1MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFk RUc2d1F0Y21hNXk3X0JwenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt5KZc5r6pAB4ine91GMLTzGr0O0qGBx2SPP1g0IJyuEpAF+ojBP7L kzkw2xMi1u9RbxxQvoHxYhNQpAdWxilK1wp/BLhV6p2Rv2XiHZCt0FTqFzJ7znD7 eoqNyjcutvQbZSshqaBLKa5J13mYGFSDX3VAzLFbztbpiHBLLoE1BK4ODopt/1N1 4KuelLMtghnSbOxRBUpf8nDRUnQrPDs0g+xN6NeSbtGV2f+9J7FS3hElLVJ/Zzp5 IMWPdwwQ8LuJ4QVtcaMFiNd03gu/kHhyO26B4slu3apdIjU1XyjVilOlclLhUbs+ /miE60YCd1cq0yXfYTaj8z+MVrE3Y9L0 -----END CERTIFICATE-----Generated at Thu Jul 3 08:05:59 2025 by rpki-client