$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ng7u9_yIBOBDfomd7TGYizxgLQI.mft File: ng7u9_yIBOBDfomd7TGYizxgLQI.mft (raw, json) Hash identifier: KAtOJAXLG8Y8NyiuQovVuO2+Q0GbPFj9zNSmKpVLbsM= Subject key identifier: DC:04:D1:33:02:5F:51:91:79:91:86:15:FA:E2:CE:4D:38:17:88:46 Authority key identifier: 9E:0E:EE:F7:FC:88:04:E0:43:7E:89:9D:ED:31:98:8B:3C:60:2D:02 Certificate issuer: /CN=A914FA25/serialNumber=9E0EEEF7FC8804E0437E899DED31988B3C602D02 Certificate serial: 0BF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ng7u9_yIBOBDfomd7TGYizxgLQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ng7u9_yIBOBDfomd7TGYizxgLQI.mft Manifest number: 0DEA Signing time: Mon 16 Jun 2025 18:47:25 +0000 Manifest this update: Mon 16 Jun 2025 18:47:25 +0000 Manifest next update: Mon 23 Jun 2025 18:47:25 +0000 Files and hashes: 1: ng7u9_yIBOBDfomd7TGYizxgLQI.crl (hash: hCEEtbwtG8VfMl0kD+RvKgUJFHGo7j4d549c8WJfw0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ng7u9_yIBOBDfomd7TGYizxgLQI.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ng7u9_yIBOBDfomd7TGYizxgLQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ng7u9_yIBOBDfomd7TGYizxgLQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25, serialNumber=9E0EEEF7FC8804E0437E899DED31988B3C602D02 Validity Not Before: Jun 16 18:47:25 2025 GMT Not After : Jun 23 18:47:25 2025 GMT Subject: CN=685066bd-6b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0e:b6:2f:43:d7:dc:1f:a2:7e:20:b1:d1:37: 1f:74:a0:d9:a4:e1:a7:63:e6:ec:fd:37:11:be:21: d2:d4:88:7e:68:28:57:0f:fe:95:0d:88:1d:e7:59: 13:e1:28:0c:f5:d7:27:65:06:a5:82:f9:a4:49:8d: f6:cf:64:83:0d:65:b6:08:4d:72:c2:3d:67:45:78: 7f:79:f9:9f:4a:66:7a:84:38:28:5b:e2:b3:72:45: 23:65:9c:81:ad:cc:b7:55:ab:c3:0f:ac:e9:d5:10: e3:28:02:dd:b1:a5:1a:9d:ec:02:3d:6f:6f:0b:73: ee:bc:e9:ce:78:44:13:17:4c:09:9a:aa:1b:7c:f3: 0d:b9:86:b3:2a:4b:35:58:6d:7a:12:f9:ae:e0:51: ca:ca:67:20:62:7e:d1:ae:46:d2:72:41:58:e2:a4: 73:10:4a:41:9f:92:6c:94:39:44:8c:76:4a:9e:30: 53:70:be:ba:a9:e7:56:6e:33:0b:2a:99:91:fa:49: 4e:3a:0e:21:75:74:fa:67:08:5b:8f:93:2b:3c:6f: c1:28:c7:98:d7:99:74:2e:dc:76:3e:f8:6a:65:4f: bc:25:59:c4:d1:be:a6:a9:71:df:2a:aa:50:f4:46: 94:81:09:c6:93:96:92:7a:d1:5a:2a:bf:ae:fa:09: 00:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:04:D1:33:02:5F:51:91:79:91:86:15:FA:E2:CE:4D:38:17:88:46 X509v3 Authority Key Identifier: keyid:9E:0E:EE:F7:FC:88:04:E0:43:7E:89:9D:ED:31:98:8B:3C:60:2D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ng7u9_yIBOBDfomd7TGYizxgLQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ng7u9_yIBOBDfomd7TGYizxgLQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/ng7u9_yIBOBDfomd7TGYizxgLQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:bf:5f:39:6f:e0:1c:09:4f:21:1f:79:53:30:98:8f:04:25: 61:bc:a0:e5:a2:ac:4b:b2:90:f0:6f:6c:57:23:21:d4:18:7d: e5:10:fd:2a:21:62:02:82:4e:20:91:00:62:13:38:61:95:75: da:17:87:30:93:89:ff:ab:3b:aa:10:7c:d3:11:ef:8c:b7:e4: ad:9f:3b:a6:12:b3:34:16:30:9f:00:24:ce:31:55:ab:32:fd: e5:6d:c8:40:a9:22:66:97:26:aa:a9:45:14:d3:ca:ab:97:81: 64:66:b1:25:8a:84:bf:8b:41:58:64:1b:62:72:81:75:96:35: 0b:b2:49:bc:26:9a:8a:89:b1:eb:10:ba:cd:8a:a6:0d:71:12: fe:99:57:9b:97:55:f0:85:5e:2f:a6:38:18:ca:64:9e:5a:82: 15:6a:2f:10:51:2c:0f:1f:2f:ee:dc:72:7f:8e:80:8e:c3:f8: 90:f3:1f:ea:b7:03:6a:1d:75:11:13:f5:e4:c0:0e:74:d7:82: aa:7a:03:dc:1d:c6:68:d7:44:24:00:ff:d2:9b:2c:eb:2e:d4: 74:af:fe:03:33:a3:3d:44:0c:84:7e:35:14:0a:c8:6c:b2:34: 70:7c:7d:ea:5c:1b:7c:3b:76:00:a8:87:7b:24:d8:d1:d6:91: 53:8c:ae:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZBMjUxMTAvBgNVBAUTKDlFMEVFRUY3RkM4ODA0RTA0MzdFODk5REVEMzE5ODhC M0M2MDJEMDIwHhcNMjUwNjE2MTg0NzI1WhcNMjUwNjIzMTg0NzI1WjAYMRYwFAYD VQQDEw02ODUwNjZiZC02YjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQ62L0PX3B+ifiCx0TcfdKDZpOGnY+bs/TcRviHS1Ih+aChXD/6VDYgd51kT 4SgM9dcnZQalgvmkSY32z2SDDWW2CE1ywj1nRXh/efmfSmZ6hDgoW+KzckUjZZyB rcy3VavDD6zp1RDjKALdsaUanewCPW9vC3PuvOnOeEQTF0wJmqobfPMNuYazKks1 WG16Evmu4FHKymcgYn7RrkbSckFY4qRzEEpBn5JslDlEjHZKnjBTcL66qedWbjML KpmR+klOOg4hdXT6Zwhbj5MrPG/BKMeY15l0Ltx2PvhqZU+8JVnE0b6mqXHfKqpQ 9EaUgQnGk5aSetFaKr+u+gkAWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwE0TMC X1GReZGGFfrizk04F4hGMB8GA1UdIwQYMBaAFJ4O7vf8iATgQ36Jne0xmIs8YC0C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkEyNS8yQkJDQkNBQTFE QUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9uZzd1OV95SUJPQkRmb21kN1RHWWl6eGdM UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25nN3U5X3lJQk9CRGZvbWQ3VEdZaXp4Z0xRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkEyNS8yQkJDQkNBQTFEQUMxMUVBQUY0QTM3NjNDNEY5QUUwMi9uZzd1OV95SUJP QkRmb21kN1RHWWl6eGdMUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFv185b+AcCU8hH3lTMJiPBCVhvKDloqxLspDwb2xXIyHUGH3lEP0q IWICgk4gkQBiEzhhlXXaF4cwk4n/qzuqEHzTEe+Mt+StnzumErM0FjCfACTOMVWr Mv3lbchAqSJmlyaqqUUU08qrl4FkZrElioS/i0FYZBticoF1ljULskm8JpqKibHr ELrNiqYNcRL+mVebl1XwhV4vpjgYymSeWoIVai8QUSwPHy/u3HJ/joCOw/iQ8x/q twNqHXURE/XkwA5014KqegPcHcZo10QkAP/SmyzrLtR0r/4DM6M9RAyEfjUUCshs sjRwfH3qXBt8O3YAqId7JNjR1pFTjK4n -----END CERTIFICATE-----Generated at Wed Jun 18 08:32:29 2025 by rpki-client