$ rpki-client -vvf rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft File: NS1M7Db4784NhRINl9keIqNY9Ys.mft (raw, json) Hash identifier: criE4YHco3Nogr4C5pR1tbOgt6qenX8/HZmVai8cmOU= Subject key identifier: 37:C3:D0:5B:E6:DC:F9:63:1B:3A:11:58:C3:C8:B4:74:18:13:01:06 Authority key identifier: 35:2D:4C:EC:36:F8:EF:CE:0D:85:12:0D:97:D9:1E:22:A3:58:F5:8B Certificate issuer: /CN=A9151AC7/serialNumber=352D4CEC36F8EFCE0D85120D97D91E22A358F58B Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft Manifest number: 3A Signing time: Sun 15 Jun 2025 06:37:42 +0000 Manifest this update: Sun 15 Jun 2025 06:37:41 +0000 Manifest next update: Sun 22 Jun 2025 06:37:41 +0000 Files and hashes: 1: NS1M7Db4784NhRINl9keIqNY9Ys.crl (hash: HRQT69EkwAZsKUUirlKKuPPEJB3YPEa51S3x2Idr8nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.crl rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151AC7, serialNumber=352D4CEC36F8EFCE0D85120D97D91E22A358F58B Validity Not Before: Jun 15 06:37:41 2025 GMT Not After : Jun 22 06:37:41 2025 GMT Subject: CN=684e6a36-942e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:29:10:5a:92:2f:2c:83:1d:bb:24:ed:96: e2:07:7c:bf:c6:c8:25:8c:25:28:b3:b4:02:dd:f8: 27:a5:b2:a5:c6:c7:4f:15:07:33:8f:2b:2d:3a:9a: 42:26:aa:e1:7a:60:95:25:05:ff:91:34:f7:38:b9: 92:7d:f8:90:23:f7:c7:f0:37:62:28:be:53:f4:88: 03:54:96:da:41:ad:f6:91:c5:0f:8a:4c:ef:c6:80: 3a:c1:96:ed:af:f1:2f:df:44:32:8f:6c:33:64:c6: 7a:56:3a:6d:c7:09:17:58:33:0f:3d:57:57:88:71: 13:9b:7c:08:52:8c:20:14:8f:d0:a3:40:00:8a:b7: 2c:4b:eb:0b:06:54:7d:40:35:33:c5:fd:5e:15:10: a1:3c:54:9a:c3:37:c9:4c:6a:55:11:16:6d:e4:e4: 2b:bd:69:0f:cf:80:0e:14:bb:f9:aa:c0:bf:48:f0: 56:c4:ad:07:1c:46:fc:fd:7d:71:ff:bd:e3:ac:26: 13:48:ab:2b:18:c3:19:4a:3a:0e:51:c6:01:fc:37: 38:af:8c:88:67:e4:2e:79:46:b7:99:94:46:64:63: 6b:4c:09:27:2c:59:f5:ac:b5:60:6b:cc:d0:8e:51: 4e:12:11:63:07:24:54:7d:0f:8f:54:b1:7d:81:b3: 38:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C3:D0:5B:E6:DC:F9:63:1B:3A:11:58:C3:C8:B4:74:18:13:01:06 X509v3 Authority Key Identifier: keyid:35:2D:4C:EC:36:F8:EF:CE:0D:85:12:0D:97:D9:1E:22:A3:58:F5:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NS1M7Db4784NhRINl9keIqNY9Ys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151AC7/41A46B50F39711EF9101D210C4F9AE02/NS1M7Db4784NhRINl9keIqNY9Ys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:8a:47:e5:63:88:5d:50:93:39:7b:c6:b6:11:70:df:4c:3c: 30:ad:02:b7:c8:ec:59:55:b8:29:16:97:54:4e:c4:f2:9c:f7: 17:98:75:f6:23:2f:49:04:b4:a2:58:01:7a:d4:c3:e4:2c:1d: c5:4a:40:68:8f:1a:6f:b4:48:b0:be:e4:4f:23:ab:e1:d2:9e: fc:28:cf:8d:80:ad:93:26:d9:77:72:fc:a8:b8:d7:92:db:1a: ac:02:d3:af:25:6d:f7:cb:46:29:06:d2:0d:8c:ec:2e:3c:ef: a5:cd:86:b5:38:8d:85:79:26:41:1f:50:2a:41:21:3e:8d:09: c6:9f:08:e3:f5:7f:4f:f3:3f:47:ed:c9:24:d5:27:a5:35:35: 83:d4:11:65:14:2d:ac:31:4f:32:77:24:b9:46:2c:e4:82:1c: dc:e0:a4:17:3f:52:94:e3:33:98:b2:4d:8b:e9:20:67:0e:a4: d3:11:a3:00:76:ee:14:71:d8:cc:84:b9:1c:99:5d:ac:1e:14: 13:54:b9:ce:4a:e9:55:ce:13:b3:8d:85:c8:87:9c:0b:eb:3f: f7:06:ad:e4:ce:1b:79:c3:b4:e2:25:dc:d3:3f:78:a9:07:59: 08:a8:2d:55:b1:d6:5a:33:69:61:6b:76:14:bf:5f:bb:98:ca: b9:e1:c7:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MUFDNzExMC8GA1UEBRMoMzUyRDRDRUMzNkY4RUZDRTBEODUxMjBEOTdEOTFFMjJB MzU4RjU4QjAeFw0yNTA2MTUwNjM3NDFaFw0yNTA2MjIwNjM3NDFaMBgxFjAUBgNV BAMTDTY4NGU2YTM2LTk0MmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6LykQWpIvLIMduyTtluIHfL/GyCWMJSiztALd+CelsqXGx08VBzOPKy06mkIm quF6YJUlBf+RNPc4uZJ9+JAj98fwN2IovlP0iANUltpBrfaRxQ+KTO/GgDrBlu2v 8S/fRDKPbDNkxnpWOm3HCRdYMw89V1eIcRObfAhSjCAUj9CjQACKtyxL6wsGVH1A NTPF/V4VEKE8VJrDN8lMalURFm3k5Cu9aQ/PgA4Uu/mqwL9I8FbErQccRvz9fXH/ veOsJhNIqysYwxlKOg5RxgH8NzivjIhn5C55RreZlEZkY2tMCScsWfWstWBrzNCO UU4SEWMHJFR9D49UsX2BszhPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN8PQW+bc +WMbOhFYw8i0dBgTAQYwHwYDVR0jBBgwFoAUNS1M7Db4784NhRINl9keIqNY9Ysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxQUM3LzQxQTQ2QjUwRjM5 NzExRUY5MTAxRDIxMEM0RjlBRTAyL05TMU03RGI0Nzg0TmhSSU5sOWtlSXFOWTlZ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlMxTTdEYjQ3ODROaFJJTmw5a2VJcU5ZOVlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx QUM3LzQxQTQ2QjUwRjM5NzExRUY5MTAxRDIxMEM0RjlBRTAyL05TMU03RGI0Nzg0 TmhSSU5sOWtlSXFOWTlZcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABeKR+VjiF1Qkzl7xrYRcN9MPDCtArfI7FlVuCkWl1ROxPKc9xeYdfYj L0kEtKJYAXrUw+QsHcVKQGiPGm+0SLC+5E8jq+HSnvwoz42ArZMm2Xdy/Ki415Lb GqwC068lbffLRikG0g2M7C4876XNhrU4jYV5JkEfUCpBIT6NCcafCOP1f0/zP0ft ySTVJ6U1NYPUEWUULawxTzJ3JLlGLOSCHNzgpBc/UpTjM5iyTYvpIGcOpNMRowB2 7hRx2MyEuRyZXaweFBNUuc5K6VXOE7ONhciHnAvrP/cGreTOG3nDtOIl3NM/eKkH WQioLVWx1lozaWFrdhS/X7uYyrnhx2g= -----END CERTIFICATE-----Generated at Sun Jun 15 09:58:52 2025 by rpki-client