$ rpki-client -vvf rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft File: nzVmCVwLDAIx0LuWkl4DidHCbFc.mft (raw, json) Hash identifier: ywBxQpAcrNDQLYYZdD7dhxX9QW0wiW7MzzoEoWa3z5E= Subject key identifier: 8B:6F:8F:4A:76:70:DD:33:AC:2A:F7:B9:D7:01:41:92:79:71:CC:D9 Authority key identifier: 9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 Certificate issuer: /CN=A911403B/serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft Manifest number: 0432 Signing time: Thu 12 Jun 2025 23:54:41 +0000 Manifest this update: Thu 12 Jun 2025 23:54:40 +0000 Manifest next update: Thu 19 Jun 2025 23:54:40 +0000 Files and hashes: 1: nzVmCVwLDAIx0LuWkl4DidHCbFc.crl (hash: i1mzJ+vE0I6TeNHp6jO+RvCzmEIvd9stH5PON+2n3to=) 2: 2D8428C662F511ECA1FC5A6CC4F9AE02.roa (hash: eK751E7R4LxxFW4h/LYCAzYwLSV3p/y1kJ/HUZuDz6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911403B, serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Validity Not Before: Jun 12 23:54:40 2025 GMT Not After : Jun 19 23:54:40 2025 GMT Subject: CN=684b68c0-821b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:e0:b0:bd:60:10:cc:4b:89:aa:e8:7e:d2: 90:bb:25:ba:85:9a:20:cb:25:ea:bc:0c:19:dd:23: e9:01:2e:b6:d8:a8:7b:cc:34:3c:06:2c:7d:46:61: f0:89:94:99:92:5f:e2:59:4d:40:4d:44:14:f8:d8: 91:89:1b:4b:29:bb:b2:31:eb:5c:10:bb:70:60:69: 4c:3b:e8:5d:e5:ed:d5:60:47:92:b9:c6:23:2f:2d: 7b:6a:60:85:fc:c9:a4:5d:24:20:18:f8:58:d7:e4: 7c:d0:01:6d:7c:be:62:d1:bc:fc:dd:81:75:83:f6: 6c:1c:7e:14:ca:8f:dc:35:91:16:4d:64:1b:a6:67: 55:15:c6:2a:0f:0d:48:86:f0:f2:35:aa:7f:32:ec: bf:57:1b:aa:f1:d4:63:4b:33:14:b2:59:80:ba:b9: 24:ad:19:d9:3e:c4:fb:67:51:84:91:ac:af:6d:3a: eb:b9:ac:55:3f:27:99:2c:d5:24:8a:2c:1e:73:0b: d9:a2:0b:ab:2a:07:94:7b:6b:d8:16:9c:96:cc:12: bd:9a:b8:63:13:bb:3f:67:8d:68:de:33:32:2c:c4: 7e:90:78:10:eb:89:1e:68:5f:70:29:88:16:df:19: f0:30:3a:74:83:f1:07:71:7b:c5:03:7f:e3:98:03: f6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6F:8F:4A:76:70:DD:33:AC:2A:F7:B9:D7:01:41:92:79:71:CC:D9 X509v3 Authority Key Identifier: keyid:9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:4e:8b:ac:2d:e5:2b:d4:ab:3d:5e:01:b8:34:b3:76:9d:ce: 63:52:22:75:d5:30:4f:0f:13:26:a2:7b:07:24:41:19:2c:ca: da:0d:e7:85:dd:63:c5:63:0d:81:b7:08:bf:8c:30:7e:fa:89: a4:41:6a:b5:22:a4:7a:be:c1:38:d0:34:c1:bf:67:f9:ab:5c: 85:62:d0:c3:6a:41:ae:55:b1:96:2f:0b:74:4a:ab:f7:f4:99: 7a:6c:c5:d4:06:5d:8d:67:68:f2:4e:33:1d:8f:ef:7e:c6:ec: 58:1c:95:83:44:40:36:68:3e:f4:d5:d3:bb:75:43:af:7d:4c: 56:ed:86:b6:cd:fb:dd:21:be:8b:b6:80:e8:60:a9:db:48:1a: 67:a2:45:a8:0f:34:e1:b2:3f:3b:15:3e:91:9a:48:4f:47:37: 74:9d:e0:54:bd:69:b4:13:d6:4b:f5:4b:a2:2c:e9:5d:bf:f4: 82:da:4c:06:6b:19:22:b4:f2:21:ec:78:17:9d:8d:98:42:3f: 8c:c6:ef:55:c1:f3:41:15:05:91:06:5b:06:37:75:7e:80:d1: 67:54:75:76:6a:86:bc:97:67:dd:43:05:98:15:2d:91:25:6d: 56:ff:34:7b:6c:f6:4f:02:26:db:7d:c3:7d:b4:d2:4a:59:d6: db:66:9a:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQwM0IxMTAvBgNVBAUTKDlGMzU2NjA5NUMwQjBDMDIzMUQwQkI5NjkyNUUwMzg5 RDFDMjZDNTcwHhcNMjUwNjEyMjM1NDQwWhcNMjUwNjE5MjM1NDQwWjAYMRYwFAYD VQQDEw02ODRiNjhjMC04MjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2vgsL1gEMxLiaroftKQuyW6hZogyyXqvAwZ3SPpAS622Kh7zDQ8Bix9RmHw iZSZkl/iWU1ATUQU+NiRiRtLKbuyMetcELtwYGlMO+hd5e3VYEeSucYjLy17amCF /MmkXSQgGPhY1+R80AFtfL5i0bz83YF1g/ZsHH4Uyo/cNZEWTWQbpmdVFcYqDw1I hvDyNap/Muy/Vxuq8dRjSzMUslmAurkkrRnZPsT7Z1GEkayvbTrruaxVPyeZLNUk iiwecwvZogurKgeUe2vYFpyWzBK9mrhjE7s/Z41o3jMyLMR+kHgQ64keaF9wKYgW 3xnwMDp0g/EHcXvFA3/jmAP2twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItvj0p2 cN0zrCr3udcBQZJ5cczZMB8GA1UdIwQYMBaAFJ81ZglcCwwCMdC7lpJeA4nRwmxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDAzQi80QUE3NEI3NDYy REExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERBSXgwTHVXa2w0RGlkSENi RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL256Vm1DVndMREFJeDBMdVdrbDREaWRIQ2JGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDAzQi80QUE3NEI3NDYyREExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERB SXgwTHVXa2w0RGlkSENiRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYTousLeUr1Ks9XgG4NLN2nc5jUiJ11TBPDxMmonsHJEEZLMraDeeF 3WPFYw2Btwi/jDB++omkQWq1IqR6vsE40DTBv2f5q1yFYtDDakGuVbGWLwt0Sqv3 9Jl6bMXUBl2NZ2jyTjMdj+9+xuxYHJWDREA2aD701dO7dUOvfUxW7Ya2zfvdIb6L toDoYKnbSBpnokWoDzThsj87FT6RmkhPRzd0neBUvWm0E9ZL9UuiLOldv/SC2kwG axkitPIh7HgXnY2YQj+Mxu9VwfNBFQWRBlsGN3V+gNFnVHV2aoa8l2fdQwWYFS2R JW1W/zR7bPZPAibbfcN9tNJKWdbbZpqc -----END CERTIFICATE-----Generated at Sat Jun 14 18:46:17 2025 by rpki-client