$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft File: NsqppHOp6nOCn3NWgJvBYQOtA64.mft (raw, json) Hash identifier: +GzUiR5YTB0p9SGsrqKvhiuXjW8bxtc02K9LNzwfCk8= Subject key identifier: 38:E1:0A:DB:87:EA:A5:7D:2F:B3:26:CE:89:88:98:CF:87:84:54:A5 Authority key identifier: 36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE Certificate issuer: /CN=A9152329/serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft Manifest number: 70 Signing time: Thu 19 Jun 2025 06:14:54 +0000 Manifest this update: Thu 19 Jun 2025 06:14:53 +0000 Manifest next update: Thu 26 Jun 2025 06:14:53 +0000 Files and hashes: 1: NsqppHOp6nOCn3NWgJvBYQOtA64.crl (hash: Y0RKoUWdEvFyZSVnjvZMFi/qcQaFDx5wrPOcuM8lmEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Validity Not Before: Jun 19 06:14:53 2025 GMT Not After : Jun 26 06:14:53 2025 GMT Subject: CN=6853aade-33fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:89:47:7b:2a:d9:9a:9f:5a:60:3d:c4:59:5f: a8:0f:ce:27:f9:e5:08:87:7b:d0:02:cd:fd:a8:0d: 2b:4f:a5:d7:0c:b0:95:bd:d7:f7:be:d8:da:97:15: dc:7c:2d:30:f3:f3:82:a1:eb:67:c1:1a:43:ae:03: 60:4e:2f:cd:b1:fb:f5:d4:cc:8c:98:9e:66:28:b5: 56:78:4b:96:54:12:44:e1:73:72:cc:1b:72:41:62: 58:2e:62:0d:73:c6:df:2b:0e:ca:0b:fb:9c:98:25: 0e:2a:ad:bf:35:6e:27:01:e8:e5:6d:b5:92:7a:04: 39:36:d1:04:7a:70:22:09:a2:c4:57:9f:af:82:ba: 60:47:da:4b:7d:12:f1:68:f7:8e:be:45:01:1e:5c: 18:f7:f7:8f:2f:9f:0d:d6:93:71:ec:cd:65:25:73: 01:7a:97:9d:6b:b0:ab:e8:30:ea:74:41:79:ce:6a: fc:0c:16:89:a7:4d:a0:02:87:15:5d:0c:c8:16:0d: 24:04:26:f8:a5:28:fa:3e:3d:35:59:dd:cc:73:c8: a4:56:52:9c:4e:71:f2:cf:d1:7e:74:e1:5a:36:5d: 01:bb:b6:1a:ae:ed:80:83:c1:f7:c1:5f:4c:c8:c4: 1f:72:9e:9f:c1:c3:45:b4:91:c0:1a:b1:33:ed:a9: bc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E1:0A:DB:87:EA:A5:7D:2F:B3:26:CE:89:88:98:CF:87:84:54:A5 X509v3 Authority Key Identifier: keyid:36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:45:13:0a:ac:aa:f7:62:be:59:56:fb:df:52:ae:78:0f:57: d2:61:4b:14:ea:95:94:3f:84:23:f2:d1:0d:77:89:4a:2e:29: b3:e5:6d:1b:9e:3a:1d:23:c3:38:14:b8:57:4b:20:c1:91:c5: 5d:fc:d8:2e:41:ae:6b:45:35:26:df:5d:08:ae:c3:6d:ea:92: b6:a2:52:f6:90:4e:8b:13:4a:cc:55:1d:b1:ad:30:65:79:b2: 9c:ed:ef:ba:0c:aa:9e:8f:8f:e2:e9:24:49:18:9c:ba:8e:c8: c8:fe:6d:29:fc:5d:bb:90:20:72:d8:df:3d:80:f5:34:bf:20: 19:c8:4c:d5:3a:ba:5a:dd:6a:b3:f9:d0:63:8d:44:74:04:45: cd:8d:ed:51:37:39:b6:81:d9:7e:6a:b4:75:a5:f6:2d:46:ef: d9:10:74:95:0f:78:b9:1f:ba:f6:19:f3:4e:12:f7:c3:8d:3e: b1:04:df:49:7d:1f:be:f4:ba:ac:ec:47:90:71:84:b6:15:3d: af:9f:b7:cd:46:3c:e6:5e:fe:9a:ec:57:6d:80:43:38:86:78: 5e:6a:5c:e6:24:0a:36:82:8c:45:f3:3d:d7:09:ee:1a:e2:f7: 23:72:53:1f:06:27:39:2a:5a:13:02:37:45:ad:1e:4a:8e:73: 5d:68:d1:42 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjMyOTExMC8GA1UEBRMoMzZDQUE5QTQ3M0E5RUE3MzgyOUY3MzU2ODA5QkMxNjEw M0FEMDNBRTAeFw0yNTA2MTkwNjE0NTNaFw0yNTA2MjYwNjE0NTNaMBgxFjAUBgNV BAMTDTY4NTNhYWRlLTMzZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDliUd7Ktman1pgPcRZX6gPzif55QiHe9ACzf2oDStPpdcMsJW91/e+2NqXFdx8 LTDz84Kh62fBGkOuA2BOL82x+/XUzIyYnmYotVZ4S5ZUEkThc3LMG3JBYlguYg1z xt8rDsoL+5yYJQ4qrb81bicB6OVttZJ6BDk20QR6cCIJosRXn6+CumBH2kt9EvFo 946+RQEeXBj3948vnw3Wk3HszWUlcwF6l51rsKvoMOp0QXnOavwMFomnTaAChxVd DMgWDSQEJvilKPo+PTVZ3cxzyKRWUpxOcfLP0X504Vo2XQG7thqu7YCDwffBX0zI xB9ynp/Bw0W0kcAasTPtqbz9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOOEK24fq pX0vsybOiYiYz4eEVKUwHwYDVR0jBBgwFoAUNsqppHOp6nOCn3NWgJvBYQOtA64w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMzI5L0QwODZENTVFQTI2 ODExRUY5RDkxNDExOEM0RjlBRTAyL05zcXBwSE9wNm5PQ24zTldnSnZCWVFPdEE2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTnNxcHBIT3A2bk9DbjNOV2dKdkJZUU90QTY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy MzI5L0QwODZENTVFQTI2ODExRUY5RDkxNDExOEM0RjlBRTAyL05zcXBwSE9wNm5P Q24zTldnSnZCWVFPdEE2NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEBFEwqsqvdivllW+99SrngPV9JhSxTqlZQ/hCPy0Q13iUouKbPlbRue Oh0jwzgUuFdLIMGRxV382C5BrmtFNSbfXQiuw23qkraiUvaQTosTSsxVHbGtMGV5 spzt77oMqp6Pj+LpJEkYnLqOyMj+bSn8XbuQIHLY3z2A9TS/IBnITNU6ulrdarP5 0GONRHQERc2N7VE3ObaB2X5qtHWl9i1G79kQdJUPeLkfuvYZ804S98ONPrEE30l9 H770uqzsR5BxhLYVPa+ft81GPOZe/prsV22AQziGeF5qXOYkCjaCjEXzPdcJ7hri 9yNyUx8GJzkqWhMCN0WtHkqOc11o0UI= -----END CERTIFICATE-----Generated at Fri Jun 20 21:28:22 2025 by rpki-client