$ rpki-client -vvf rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft File: NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft (raw, json) Hash identifier: Xn9AmT1cBu8aWSlxPQbx9rFNaG6PxNi8j9T0sxUgyGs= Subject key identifier: C1:20:02:91:03:AB:B8:A9:6D:21:26:1B:75:EC:51:89:13:08:B3:D0 Authority key identifier: 34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 Certificate issuer: /CN=A9148DB2/serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Certificate serial: 02C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft Manifest number: 02BB Signing time: Tue 17 Jun 2025 01:02:11 +0000 Manifest this update: Tue 17 Jun 2025 01:02:10 +0000 Manifest next update: Tue 24 Jun 2025 01:02:10 +0000 Files and hashes: 1: NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl (hash: W/ogMXP0Ke4a3MXXJsUXlXh9IlF6+oZRbRrnIk3NTn8=) 2: F343C4ECF93911ECBD1E663DC4F9AE02.roa (hash: k5i1VxrRa6a+sKSG0LLgxBEmMPYmBZK6pl0sMM04Q2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148DB2, serialNumber=34ABEF846474BBDA0C556465DD7E9EC0FA674BB5 Validity Not Before: Jun 17 01:02:10 2025 GMT Not After : Jun 24 01:02:10 2025 GMT Subject: CN=6850be93-fb76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b5:14:ac:7a:28:c8:a3:0a:f9:ad:62:22:e5: b3:2a:35:ac:e7:9f:40:4e:a7:69:ec:cf:da:ea:8b: 5c:e8:70:47:d8:20:56:d0:fb:36:ef:67:7a:5c:bb: 59:3c:bb:09:a8:c1:7d:ed:f6:6d:6c:89:b9:bc:3c: 1e:8c:14:57:1a:7b:94:34:c3:3e:b0:f8:99:be:66: 83:09:78:58:e5:ae:c2:c7:52:a7:4a:96:b4:07:4b: 1a:38:f0:1f:2e:67:ec:48:5c:a5:cf:b3:fc:4a:4c: 93:d5:6c:ba:a9:83:82:eb:cd:6c:f2:24:68:d7:ba: cc:07:44:c1:5f:45:9a:33:53:88:5b:fc:65:fb:a4: 58:6a:a6:4f:31:ff:eb:74:d8:8c:26:0f:3e:16:4f: 88:77:6d:4f:79:f9:49:07:a3:0c:52:8d:4a:b8:7e: ab:17:d6:42:8e:18:a9:83:1b:80:19:fd:8f:da:f5: be:6e:65:59:84:92:5b:67:b9:c2:5a:d9:8f:57:87: ba:80:db:fb:cf:db:cf:94:aa:69:b8:36:0e:38:d7: fd:47:54:d3:7d:bc:8b:6c:87:26:ef:d9:cb:4f:83: 64:84:69:2d:7a:bd:93:b5:f4:e6:2b:4a:27:48:12: 60:c5:71:32:d0:fe:4c:63:4f:cb:95:25:2a:ed:1a: 64:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:20:02:91:03:AB:B8:A9:6D:21:26:1B:75:EC:51:89:13:08:B3:D0 X509v3 Authority Key Identifier: keyid:34:AB:EF:84:64:74:BB:DA:0C:55:64:65:DD:7E:9E:C0:FA:67:4B:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NKvvhGR0u9oMVWRl3X6ewPpnS7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148DB2/047DC388F93611EC921B810EC4F9AE02/NKvvhGR0u9oMVWRl3X6ewPpnS7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:39:dc:41:8c:eb:a0:5b:65:13:f2:c5:2e:25:9f:c8:07:2a: 62:44:6d:70:7f:6e:d4:a0:84:84:ec:1c:95:f8:31:41:74:c5: f4:1a:44:01:d0:b6:ce:e1:e2:7b:7c:ce:b5:60:42:a9:c1:fc: d9:87:88:8e:1d:f5:61:72:09:81:db:fc:48:2e:93:39:d3:ad: 30:70:92:f4:91:98:6d:6e:f9:a7:6f:9f:0d:e2:af:f4:a0:3e: b8:49:e3:c6:8c:8d:5c:8a:8d:68:7d:72:45:9a:53:0a:9c:ac: 8a:67:c2:e7:1d:4d:73:d6:19:18:15:dc:81:47:d8:13:fc:25: 09:57:7a:66:91:28:89:69:46:a8:72:3a:c6:d8:4c:0d:68:93: 68:27:85:76:cd:31:19:88:bf:bf:37:d6:38:d1:67:7a:ad:73: 8d:94:a0:96:43:8c:1b:ab:96:1b:94:df:a0:12:cd:7b:32:65: 37:63:74:18:4d:0b:3c:d7:69:11:95:30:72:52:a0:19:d9:02: e5:a1:c0:c3:bf:6c:d2:a4:00:63:74:8f:60:01:20:5d:2d:9b: 5d:3a:6d:a0:c5:e7:7b:26:cd:cc:2b:06:52:60:9c:8d:04:81: 48:9c:c1:13:ae:88:4f:5c:a8:c4:ec:a5:9f:83:f9:19:d0:e9: 9e:17:98:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhEQjIxMTAvBgNVBAUTKDM0QUJFRjg0NjQ3NEJCREEwQzU1NjQ2NUREN0U5RUMw RkE2NzRCQjUwHhcNMjUwNjE3MDEwMjEwWhcNMjUwNjI0MDEwMjEwWjAYMRYwFAYD VQQDEw02ODUwYmU5My1mYjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbUUrHooyKMK+a1iIuWzKjWs559ATqdp7M/a6otc6HBH2CBW0Ps272d6XLtZ PLsJqMF97fZtbIm5vDwejBRXGnuUNMM+sPiZvmaDCXhY5a7Cx1KnSpa0B0saOPAf LmfsSFylz7P8SkyT1Wy6qYOC681s8iRo17rMB0TBX0WaM1OIW/xl+6RYaqZPMf/r dNiMJg8+Fk+Id21PeflJB6MMUo1KuH6rF9ZCjhipgxuAGf2P2vW+bmVZhJJbZ7nC WtmPV4e6gNv7z9vPlKppuDYOONf9R1TTfbyLbIcm79nLT4NkhGkter2TtfTmK0on SBJgxXEy0P5MY0/LlSUq7RpkcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEgApED q7ipbSEmG3XsUYkTCLPQMB8GA1UdIwQYMBaAFDSr74RkdLvaDFVkZd1+nsD6Z0u1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OERCMi8wNDdEQzM4OEY5 MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5b01WV1JsM1g2ZXdQcG5T N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05LdnZoR1IwdTlvTVZXUmwzWDZld1BwblM3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OERCMi8wNDdEQzM4OEY5MzYxMUVDOTIxQjgxMEVDNEY5QUUwMi9OS3Z2aEdSMHU5 b01WV1JsM1g2ZXdQcG5TN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3OdxBjOugW2UT8sUuJZ/IBypiRG1wf27UoISE7ByV+DFBdMX0GkQB 0LbO4eJ7fM61YEKpwfzZh4iOHfVhcgmB2/xILpM5060wcJL0kZhtbvmnb58N4q/0 oD64SePGjI1cio1ofXJFmlMKnKyKZ8LnHU1z1hkYFdyBR9gT/CUJV3pmkSiJaUao cjrG2EwNaJNoJ4V2zTEZiL+/N9Y40Wd6rXONlKCWQ4wbq5YblN+gEs17MmU3Y3QY TQs812kRlTByUqAZ2QLlocDDv2zSpABjdI9gASBdLZtdOm2gxed7Js3MKwZSYJyN BIFInMETrohPXKjE7KWfg/kZ0OmeF5go -----END CERTIFICATE-----Generated at Tue Jun 17 23:44:26 2025 by rpki-client