$ rpki-client -vvf rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft File: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft (raw, json) Hash identifier: /r3jx56gpjOQIuY3GUP2i9Wxr/F58qVwn4zIiKFKx9E= Subject key identifier: A3:B7:A5:A0:20:52:9B:DE:D5:B5:EA:81:62:BA:1A:BC:4D:68:1E:A8 Authority key identifier: 36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD Certificate issuer: /CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft Manifest number: 0253 Signing time: Fri 13 Jun 2025 01:20:43 +0000 Manifest this update: Fri 13 Jun 2025 01:20:43 +0000 Manifest next update: Fri 20 Jun 2025 01:20:43 +0000 Files and hashes: 1: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl (hash: 876k6mi0UFrFqkgHP2cwNf0eI2larJF/8/b9Hs6uLT8=) 2: 134B439A91B611ED8BA25C80C4F9AE02.roa (hash: YssH476E2tgxPdw+/0l4VE/a3GZaUyUxDjk4z13BJXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F333, serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Validity Not Before: Jun 13 01:20:43 2025 GMT Not After : Jun 20 01:20:43 2025 GMT Subject: CN=684b7ceb-2922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0e:d0:65:d5:1b:c1:76:09:e8:29:08:e1:e7: 1e:5c:36:e4:ab:f9:71:79:4c:48:2d:80:5d:48:ac: dd:5b:c4:4f:a8:75:e0:a3:cb:02:b1:3c:36:7b:54: b8:48:56:99:2f:63:32:26:04:c6:56:ec:1a:e7:73: 94:6f:0f:32:99:c5:90:ed:24:e0:73:76:9a:2f:7a: 4d:fd:44:35:63:c8:3d:53:0c:47:f5:bf:83:8b:00: 3d:5a:4a:77:1f:c5:57:1b:b1:c3:60:a2:4e:fe:31: b5:e7:46:8a:5c:52:f3:c5:0c:98:14:79:eb:e7:8b: 8a:ff:73:8b:0a:30:fd:c9:ea:6d:c9:dd:21:23:e9: 36:25:aa:87:1b:4e:1b:2b:84:b4:96:06:22:fe:6d: 66:e5:85:f1:0d:da:8b:16:ff:7b:91:ba:9e:f6:33: d7:06:fd:20:ce:1d:bb:ed:9a:55:3c:b4:d1:64:05: 11:3d:42:45:02:d2:5f:80:38:2d:7b:16:e2:4f:9d: ef:3b:33:25:5a:a4:c2:61:53:d9:98:3e:60:5b:37: 58:cb:e4:95:8e:7a:da:7a:20:2f:08:a2:8c:94:c3: e1:3f:0f:97:55:0f:36:d3:ee:39:57:c7:a2:3f:8b: e2:cb:5a:33:bd:02:e7:7a:99:a0:69:d5:a7:0b:88: 25:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B7:A5:A0:20:52:9B:DE:D5:B5:EA:81:62:BA:1A:BC:4D:68:1E:A8 X509v3 Authority Key Identifier: keyid:36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:09:a6:28:5d:8e:2a:5d:5f:5e:00:9b:5a:7a:7d:07:c6:36: 68:4f:db:bc:b1:2f:eb:35:b0:db:f5:66:10:de:4d:2b:64:7e: 18:49:5c:7d:ea:da:4b:d6:29:4e:8f:80:c4:7f:82:8e:db:9f: d6:23:11:42:97:45:c3:78:c0:49:39:67:af:99:81:cb:58:2e: 24:5c:d2:88:d4:2f:24:0e:3e:fc:8b:74:37:af:6e:a8:10:3e: fa:aa:19:97:9b:55:41:fa:b5:29:73:cb:f1:42:04:c0:19:02: 67:d7:9c:c9:5e:48:90:ed:a8:f3:f1:44:f1:9c:4d:be:a0:69: ea:97:4a:1d:2a:64:02:4c:5e:58:12:3f:25:e9:d7:65:7f:95: 2b:a5:45:d6:42:35:35:0e:0c:2f:e0:93:6d:20:60:66:e3:5e: f4:ca:f4:1f:f6:1f:b3:ee:2f:8b:5e:63:a2:10:bb:5f:fa:ac: e0:bf:92:3b:6b:fc:77:90:7f:2c:89:69:7c:00:53:d0:3f:cb: 34:10:17:d8:77:70:f5:78:e4:fa:ce:a4:7b:3b:8f:6a:88:0f: dc:31:ca:13:88:98:ff:b5:91:fc:a5:61:cf:58:8d:a0:15:2a: 36:a5:6a:ad:ea:e1:6a:d6:79:bb:61:09:61:bc:48:d6:3a:14: 5b:f7:b4:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YzMzMxMTAvBgNVBAUTKDM2NDA4QzExQzU0NzJCODIyNDhBRkZFQkVFREJCMjBF M0UwN0E2Q0QwHhcNMjUwNjEzMDEyMDQzWhcNMjUwNjIwMDEyMDQzWjAYMRYwFAYD VQQDEw02ODRiN2NlYi0yOTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsg7QZdUbwXYJ6CkI4eceXDbkq/lxeUxILYBdSKzdW8RPqHXgo8sCsTw2e1S4 SFaZL2MyJgTGVuwa53OUbw8ymcWQ7STgc3aaL3pN/UQ1Y8g9UwxH9b+DiwA9Wkp3 H8VXG7HDYKJO/jG150aKXFLzxQyYFHnr54uK/3OLCjD9yeptyd0hI+k2JaqHG04b K4S0lgYi/m1m5YXxDdqLFv97kbqe9jPXBv0gzh277ZpVPLTRZAURPUJFAtJfgDgt exbiT53vOzMlWqTCYVPZmD5gWzdYy+SVjnraeiAvCKKMlMPhPw+XVQ820+45V8ei P4viy1ozvQLnepmgadWnC4gl0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKO3paAg Upve1bXqgWK6GrxNaB6oMB8GA1UdIwQYMBaAFDZAjBHFRyuCJIr/6+7bsg4+B6bN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjMzMy9ERUNCNjVBNDIz OTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0SWtpdl9yN3R1eURqNEhw czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rQ01FY1ZISzRJa2l2X3I3dHV5RGo0SHBzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjMzMy9ERUNCNjVBNDIzOTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0 SWtpdl9yN3R1eURqNEhwczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+CaYoXY4qXV9eAJtaen0HxjZoT9u8sS/rNbDb9WYQ3k0rZH4YSVx9 6tpL1ilOj4DEf4KO25/WIxFCl0XDeMBJOWevmYHLWC4kXNKI1C8kDj78i3Q3r26o ED76qhmXm1VB+rUpc8vxQgTAGQJn15zJXkiQ7ajz8UTxnE2+oGnql0odKmQCTF5Y Ej8l6ddlf5UrpUXWQjU1Dgwv4JNtIGBm4170yvQf9h+z7i+LXmOiELtf+qzgv5I7 a/x3kH8siWl8AFPQP8s0EBfYd3D1eOT6zqR7O49qiA/cMcoTiJj/tZH8pWHPWI2g FSo2pWqt6uFq1nm7YQlhvEjWOhRb97QL -----END CERTIFICATE-----Generated at Sat Jun 14 17:56:51 2025 by rpki-client