$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft File: nmoKpDnP40ewT3RoQKbkNMUJsac.mft (raw, json) Hash identifier: ZlV7VxxHXCY+zj+w0HfdHuJxd3qN1+7eu+O0hRm9P0w= Subject key identifier: D4:27:E2:3E:CE:D2:5A:D3:5D:24:27:06:DD:BC:52:86:94:F8:CD:AD Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft Manifest number: 013D Signing time: Fri 13 Jun 2025 03:21:59 +0000 Manifest this update: Fri 13 Jun 2025 03:21:59 +0000 Manifest next update: Fri 20 Jun 2025 03:21:59 +0000 Files and hashes: 1: nmoKpDnP40ewT3RoQKbkNMUJsac.crl (hash: m1S3dbWWWJH6gXPXzzce+/JkZduvSUKzLupJ7MPfK90=) 2: 11A843B467D811EEA0543B5CC4F9AE02.roa (hash: JGrxdfcTXN7WXmiB33mKDnWSPFdrh+A/TvrelqjBL5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56, serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Jun 13 03:21:59 2025 GMT Not After : Jun 20 03:21:59 2025 GMT Subject: CN=684b9957-c94a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d2:07:b3:80:8c:20:7f:f8:3e:05:02:86:e2: 0f:8e:8d:21:95:e4:e6:f7:ac:77:18:b3:17:6d:1f: 3f:32:12:63:69:b4:57:62:f6:a6:89:49:c2:c7:06: 8c:fe:60:e1:3c:d8:79:05:cb:94:0f:dd:ae:69:68: 99:5a:02:80:aa:2d:46:80:ac:25:b8:48:34:42:10: e5:be:e1:b9:54:6f:c0:8c:21:a0:7a:02:00:4c:54: 5b:68:5c:a2:4b:ca:dc:4a:e7:5d:2a:4d:97:1d:e5: d4:8b:2e:95:78:78:cf:74:5d:5f:9b:d8:e6:34:08: 24:55:75:ae:3f:e4:b4:33:72:1d:a0:8a:99:6f:1b: ca:6c:6f:5f:d9:2d:5a:3c:85:47:59:3f:a2:f3:1b: 9d:93:91:5d:bd:98:e9:7e:96:76:ba:d5:df:b4:bc: 32:70:1a:8d:19:f4:08:19:26:c7:f6:42:41:05:d6: ea:2d:e5:27:3f:27:b8:ab:cd:b6:82:72:39:f8:98: 64:ca:50:c3:81:95:a3:bb:ae:19:5a:c6:6b:9b:35: 6b:21:c0:d1:36:cd:3b:81:03:45:b2:d8:40:42:c4: 12:02:56:ff:f1:f6:ca:49:fb:5a:93:08:3b:db:aa: 07:04:3f:4b:bd:89:53:71:28:98:fb:7b:fb:5d:66: 5d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:27:E2:3E:CE:D2:5A:D3:5D:24:27:06:DD:BC:52:86:94:F8:CD:AD X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:10:3d:bc:ed:53:4e:61:b7:9d:3e:f9:1d:e8:0a:09:04:f1: 26:44:2e:6f:45:5c:e4:ba:ff:29:db:16:c9:59:5b:b7:2f:ad: 4c:f2:9f:49:4c:49:0a:18:8a:c5:d6:cf:5b:30:7c:07:e6:8d: 30:3d:bb:0d:98:e8:87:08:25:62:38:58:c9:b7:24:b8:25:79: 19:40:99:ef:43:99:68:79:9a:97:00:3b:21:67:0c:72:8b:07: 20:6c:5b:ee:dc:ba:25:5a:6e:4d:e3:ab:99:b0:d7:d4:f0:84: 17:a8:8c:34:3c:81:9a:97:6c:b7:5a:9b:94:58:54:ae:65:6b: 4d:80:98:d7:ea:56:80:c1:4d:6b:44:ca:4a:f0:89:97:25:cc: 07:fa:bb:28:43:82:72:95:5d:6c:87:4f:0d:43:58:70:b7:65: b2:a2:b4:dd:9c:d4:0f:ad:fb:6f:e0:60:a1:a3:24:0a:6e:83: 89:35:16:32:31:18:ef:88:e4:c8:c9:4f:96:00:67:78:2a:c2: 7e:16:0d:7f:8d:92:d7:74:2b:b8:03:9d:cf:8e:bc:93:b6:68: e1:18:f5:bc:b7:80:71:de:93:b0:4e:f9:18:a2:36:e0:a9:52: fc:89:c0:da:d9:eb:f0:b4:05:d3:e8:b5:6c:c8:66:c1:3e:27: 3a:8b:f0:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTYxMTAvBgNVBAUTKDlFNkEwQUE0MzlDRkUzNDdCMDRGNzQ2ODQwQTZFNDM0 QzUwOUIxQTcwHhcNMjUwNjEzMDMyMTU5WhcNMjUwNjIwMDMyMTU5WjAYMRYwFAYD VQQDEw02ODRiOTk1Ny1jOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tIHs4CMIH/4PgUChuIPjo0hleTm96x3GLMXbR8/MhJjabRXYvamiUnCxwaM /mDhPNh5BcuUD92uaWiZWgKAqi1GgKwluEg0QhDlvuG5VG/AjCGgegIATFRbaFyi S8rcSuddKk2XHeXUiy6VeHjPdF1fm9jmNAgkVXWuP+S0M3IdoIqZbxvKbG9f2S1a PIVHWT+i8xudk5FdvZjpfpZ2utXftLwycBqNGfQIGSbH9kJBBdbqLeUnPye4q822 gnI5+JhkylDDgZWju64ZWsZrmzVrIcDRNs07gQNFsthAQsQSAlb/8fbKSftakwg7 26oHBD9LvYlTcSiY+3v7XWZdJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQn4j7O 0lrTXSQnBt28UoaU+M2tMB8GA1UdIwQYMBaAFJ5qCqQ5z+NHsE90aECm5DTFCbGn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1Ni9DREJDRjYzQTY2 OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQwZXdUM1JvUUtia05NVUpz YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1Ni9DREJDRjYzQTY2OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQw ZXdUM1JvUUtia05NVUpzYWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKED287VNOYbedPvkd6AoJBPEmRC5vRVzkuv8p2xbJWVu3L61M8p9J TEkKGIrF1s9bMHwH5o0wPbsNmOiHCCViOFjJtyS4JXkZQJnvQ5loeZqXADshZwxy iwcgbFvu3LolWm5N46uZsNfU8IQXqIw0PIGal2y3WpuUWFSuZWtNgJjX6laAwU1r RMpK8ImXJcwH+rsoQ4JylV1sh08NQ1hwt2WyorTdnNQPrftv4GChoyQKboOJNRYy MRjviOTIyU+WAGd4KsJ+Fg1/jZLXdCu4A53PjryTtmjhGPW8t4Bx3pOwTvkYojbg qVL8icDa2evwtAXT6LVsyGbBPic6i/Dl -----END CERTIFICATE-----Generated at Sat Jun 14 19:15:56 2025 by rpki-client