$ rpki-client -vvf rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft File: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft (raw, json) Hash identifier: v2+WWii9u2lIxKIjFeH0OAfzJfUk8wSNxoi4paC73WM= Subject key identifier: A8:20:65:68:E6:8A:E1:9C:C9:57:C9:CC:41:C7:D4:E2:76:71:C0:B2 Authority key identifier: 34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE Certificate issuer: /CN=A9150EAB/serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Certificate serial: 0B00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft Manifest number: 11D5 Signing time: Thu 12 Jun 2025 19:07:33 +0000 Manifest this update: Thu 12 Jun 2025 19:07:32 +0000 Manifest next update: Thu 19 Jun 2025 19:07:32 +0000 Files and hashes: 1: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl (hash: QK3b0FAlJFoaYli8ljh2gzq/f0f55KiOXWjyaIDLlMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150EAB, serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Validity Not Before: Jun 12 19:07:32 2025 GMT Not After : Jun 19 19:07:32 2025 GMT Subject: CN=684b2574-d3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:19:1d:5a:a8:b7:a7:d4:61:cb:f4:40:6b:41: 9e:b9:de:fb:52:86:ce:e8:52:c8:f1:8e:7a:70:fe: 19:1a:4a:88:97:f9:1d:e3:94:e2:92:ce:ba:4c:9c: 6e:10:b6:45:77:56:76:67:87:3f:56:d1:9c:2f:eb: 45:07:46:fd:1b:34:52:f6:65:09:23:6b:3b:33:3e: ec:9b:0d:59:b2:f4:0a:da:f8:2a:13:22:cc:06:c5: 34:9d:3f:02:bd:d5:2e:1d:ce:d7:d7:70:e7:10:e1: be:93:b4:b0:28:da:8c:60:5d:a9:75:73:8e:77:f9: 95:fc:f6:f7:3c:88:cd:30:30:27:b7:f7:85:3c:29: 4c:a5:c0:30:3e:5b:e8:b2:c4:67:75:32:5f:5d:09: cf:2c:f9:84:63:4a:c4:e6:b1:b7:5b:f7:57:ec:74: b2:67:f7:1d:21:03:e8:e8:38:ed:fc:10:42:ca:3d: 9a:b8:23:5f:0a:0c:95:68:7a:d1:9d:a7:00:f0:4c: 46:e0:5f:63:00:8d:a7:eb:02:19:b5:cd:4e:43:63: d6:3c:15:7f:9f:0c:d1:0b:d9:ba:b3:60:32:d4:9c: 6c:07:d9:2d:59:83:bd:14:c9:44:e0:ca:5c:63:84: 4f:58:d3:23:97:79:88:62:0b:3b:1a:92:45:e8:dc: 9c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:20:65:68:E6:8A:E1:9C:C9:57:C9:CC:41:C7:D4:E2:76:71:C0:B2 X509v3 Authority Key Identifier: keyid:34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:99:e8:3c:66:de:14:96:79:ea:be:e8:5a:cb:30:39:f0:3e: 36:6b:d8:4e:13:24:2a:4a:fd:03:b3:76:ae:49:11:d4:a7:81: 6b:25:47:81:b5:05:00:69:e8:94:16:03:95:18:50:1c:43:88: d0:ea:b6:a0:aa:f5:60:90:63:79:43:9f:40:8a:bb:32:9c:d2: ef:52:27:20:26:aa:11:6e:0c:43:26:4e:c5:b0:30:c8:92:d7: c2:f6:63:66:a6:65:4b:3e:0c:b7:aa:23:56:9b:dd:d7:5c:ab: 27:ef:74:17:36:5b:a1:24:f9:01:00:29:67:c1:f9:25:00:ea: 70:b7:23:88:40:ab:dd:78:c3:d5:0f:67:f6:d1:fe:8a:4c:15: d3:ed:0b:71:ba:f7:46:1a:df:40:b1:bc:8e:69:d6:bf:0f:e8: d7:8f:c1:99:ca:f8:a0:01:e9:6a:49:88:e9:f4:d1:9e:54:e7: b5:0d:2e:f3:8f:e9:75:e2:8e:92:20:00:e3:5c:b3:c0:67:0d: 4d:47:43:b3:00:af:1f:ab:98:bd:09:6b:0f:a2:35:9b:27:0b: 78:c0:95:5a:b9:e9:c5:1b:5b:f6:d8:7e:a3:63:e0:c6:86:32: a2:a7:ff:58:59:29:8f:0b:fe:ba:e0:bc:eb:7f:5c:04:29:34: be:71:7a:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFQUIxMTAvBgNVBAUTKDM0MUQwOTAyMUNCRjlGRDNCQjRDQjg4RTNEMEVEMUM3 NjRERUQwRkUwHhcNMjUwNjEyMTkwNzMyWhcNMjUwNjE5MTkwNzMyWjAYMRYwFAYD VQQDEw02ODRiMjU3NC1kM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBkdWqi3p9Rhy/RAa0Geud77UobO6FLI8Y56cP4ZGkqIl/kd45Tiks66TJxu ELZFd1Z2Z4c/VtGcL+tFB0b9GzRS9mUJI2s7Mz7smw1ZsvQK2vgqEyLMBsU0nT8C vdUuHc7X13DnEOG+k7SwKNqMYF2pdXOOd/mV/Pb3PIjNMDAnt/eFPClMpcAwPlvo ssRndTJfXQnPLPmEY0rE5rG3W/dX7HSyZ/cdIQPo6Djt/BBCyj2auCNfCgyVaHrR nacA8ExG4F9jAI2n6wIZtc1OQ2PWPBV/nwzRC9m6s2Ay1JxsB9ktWYO9FMlE4Mpc Y4RPWNMjl3mIYgs7GpJF6Nyc6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKggZWjm iuGcyVfJzEHH1OJ2ccCyMB8GA1UdIwQYMBaAFDQdCQIcv5/Tu0y4jj0O0cdk3tD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEVBQi8xQjJFNzA1MDQ0 NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245TzdUTGlPUFE3UngyVGUw UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CMEpBaHlfbjlPN1RMaU9QUTdSeDJUZTBQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEVBQi8xQjJFNzA1MDQ0NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245 TzdUTGlPUFE3UngyVGUwUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrmeg8Zt4UlnnqvuhayzA58D42a9hOEyQqSv0Ds3auSRHUp4FrJUeB tQUAaeiUFgOVGFAcQ4jQ6ragqvVgkGN5Q59AirsynNLvUicgJqoRbgxDJk7FsDDI ktfC9mNmpmVLPgy3qiNWm93XXKsn73QXNluhJPkBAClnwfklAOpwtyOIQKvdeMPV D2f20f6KTBXT7QtxuvdGGt9AsbyOada/D+jXj8GZyvigAelqSYjp9NGeVOe1DS7z j+l14o6SIADjXLPAZw1NR0OzAK8fq5i9CWsPojWbJwt4wJVauenFG1v22H6jY+DG hjKip/9YWSmPC/664Lzrf1wEKTS+cXr5 -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:17 2025 by rpki-client