$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: l5WQ4uQvI9H5bVqXqMR6lnvdAN2VnMKxLLDnyU2K1h4= Subject key identifier: 7D:35:C5:66:55:7A:2B:54:DB:7C:D1:68:76:BA:B4:E4:A9:B6:B9:13 Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 0641 Signing time: Thu 12 Jun 2025 22:17:08 +0000 Manifest this update: Thu 12 Jun 2025 22:17:07 +0000 Manifest next update: Thu 19 Jun 2025 22:17:07 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: M72jZKnJwnz3SAtZp4iYbO9ugtp5iO57FsELJViWWk4=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Jun 12 22:17:07 2025 GMT Not After : Jun 19 22:17:07 2025 GMT Subject: CN=684b51e3-6d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:18:a0:dc:b0:d5:c2:24:b4:eb:d9:51:38: 11:65:36:d2:a8:bd:5b:c8:96:e1:13:ea:29:b5:74: b7:d0:9a:0d:87:9b:59:21:88:06:d2:e7:45:14:8c: 1c:7b:52:87:5f:a6:18:70:09:d5:e4:ed:f4:f8:3b: e4:8e:16:f7:ea:ea:f3:c5:ff:9f:72:f1:4c:82:99: 12:bf:b7:66:a2:ac:0f:ce:53:01:6c:ff:23:9e:e6: ac:bb:e6:9f:c5:1d:0f:10:25:97:3f:a5:32:56:45: 1f:5b:26:83:9a:d7:c0:70:45:45:b3:cf:d4:84:cc: ad:35:2d:d2:d6:58:af:df:40:e0:fc:0e:ff:42:fa: f6:42:91:3d:5a:b2:a6:6f:2c:f0:57:40:e0:6b:ea: 56:04:ac:3e:33:69:80:b5:35:60:08:c1:60:00:76: 8c:79:b3:9c:40:c3:d8:24:f6:fd:99:6a:09:bc:70: e0:7f:df:f1:36:3e:10:cc:59:1a:63:3f:9d:ba:cd: c7:90:5a:40:7f:46:8c:56:b9:ff:59:f1:78:f5:22: ee:e9:58:38:ad:86:ae:07:01:87:ee:9d:28:4e:5d: d4:d7:39:5e:91:44:db:b0:e9:49:c1:1c:2a:6b:94: c3:e8:61:9d:f8:de:0f:68:39:b6:39:5e:c8:9c:67: b0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:35:C5:66:55:7A:2B:54:DB:7C:D1:68:76:BA:B4:E4:A9:B6:B9:13 X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:cd:cd:66:98:13:14:e3:34:fa:06:f9:35:98:da:da:ed:91: 15:81:68:f2:d9:3a:24:09:c8:2c:55:84:3d:b5:5f:06:70:68: 5d:9e:08:4f:46:17:47:9d:df:1a:a1:85:55:d2:17:b6:98:b9: a6:21:25:67:7e:24:34:c7:d4:2a:1d:31:6b:cd:bc:62:d9:90: e4:51:0a:9d:1d:b5:76:7d:6a:3c:df:b4:5a:7c:dd:a9:05:1a: bf:53:55:9e:39:23:61:2c:0b:c5:46:f0:c8:78:e7:4a:dd:1c: 3d:84:d1:39:78:2f:b7:48:0e:b9:41:41:7f:87:df:93:f0:16: 87:e6:1e:c3:c6:42:23:4b:1c:e8:6b:dd:de:da:d5:ad:e1:80: 97:96:e8:53:ea:fc:9c:05:22:f3:c6:f4:31:14:11:3e:7f:41: bc:0f:bf:88:bd:2a:bf:2b:7d:c8:4a:29:38:3a:3d:e7:26:75: ca:81:b7:50:3f:f0:d5:f9:a7:54:b2:80:f6:43:1f:ca:5b:57: 3a:b5:7f:9c:bf:04:d3:50:53:10:45:21:d5:09:a2:c7:ea:f1: f3:ea:af:1e:ca:3e:2c:19:42:52:38:24:24:c2:08:d3:bf:b6: 0f:c4:1c:60:cc:a0:41:30:df:eb:48:eb:58:da:86:39:b8:6e: 0a:7c:6c:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUwNjEyMjIxNzA3WhcNMjUwNjE5MjIxNzA3WjAYMRYwFAYD VQQDEw02ODRiNTFlMy02ZDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHMYoNyw1cIktOvZUTgRZTbSqL1byJbhE+optXS30JoNh5tZIYgG0udFFIwc e1KHX6YYcAnV5O30+Dvkjhb36urzxf+fcvFMgpkSv7dmoqwPzlMBbP8jnuasu+af xR0PECWXP6UyVkUfWyaDmtfAcEVFs8/UhMytNS3S1liv30Dg/A7/Qvr2QpE9WrKm byzwV0Dga+pWBKw+M2mAtTVgCMFgAHaMebOcQMPYJPb9mWoJvHDgf9/xNj4QzFka Yz+dus3HkFpAf0aMVrn/WfF49SLu6Vg4rYauBwGH7p0oTl3U1zlekUTbsOlJwRwq a5TD6GGd+N4PaDm2OV7InGewUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH01xWZV eitU23zRaHa6tOSptrkTMB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRzc1mmBMU4zT6Bvk1mNra7ZEVgWjy2TokCcgsVYQ9tV8GcGhdnghP RhdHnd8aoYVV0he2mLmmISVnfiQ0x9QqHTFrzbxi2ZDkUQqdHbV2fWo837RafN2p BRq/U1WeOSNhLAvFRvDIeOdK3Rw9hNE5eC+3SA65QUF/h9+T8BaH5h7DxkIjSxzo a93e2tWt4YCXluhT6vycBSLzxvQxFBE+f0G8D7+IvSq/K33ISik4Oj3nJnXKgbdQ P/DV+adUsoD2Qx/KW1c6tX+cvwTTUFMQRSHVCaLH6vHz6q8eyj4sGUJSOCQkwgjT v7YPxBxgzKBBMN/rSOtY2oY5uG4KfGyL -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:59 2025 by rpki-client