$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft File: NNz0cp9FgmKIjvB6K9RnX24xE4A.mft (raw, json) Hash identifier: Bnt8nyAdY04KWTINq1A21IC4SmpQf7bUmYfpPL7fsws= Subject key identifier: FF:39:32:95:3D:7F:AE:E5:8F:B2:EB:50:34:B8:99:69:BB:F9:DC:B0 Authority key identifier: 34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 Certificate issuer: /CN=A9157B7F/serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Certificate serial: 069C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft Manifest number: 0695 Signing time: Sat 14 Jun 2025 21:57:52 +0000 Manifest this update: Sat 14 Jun 2025 21:57:51 +0000 Manifest next update: Sat 21 Jun 2025 21:57:51 +0000 Files and hashes: 1: NNz0cp9FgmKIjvB6K9RnX24xE4A.crl (hash: 3vPfxpWysEOwpox9bhxZqtXtlJ00/n5imJNVEJfT5Gg=) 2: AE27A8A671B311EBB90BB364C4F9AE02.roa (hash: zKqUOk2enQVo+KwTKKBvY1Ib1LdBjKOEZObmTpDLQzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B7F, serialNumber=34DCF4729F458262888EF07A2BD4675F6E311380 Validity Not Before: Jun 14 21:57:51 2025 GMT Not After : Jun 21 21:57:51 2025 GMT Subject: CN=684df05f-79d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:b4:02:8a:6b:89:d3:e1:05:cb:c9:05:c2: 1f:49:0c:c8:d6:cb:f1:cd:01:c8:33:6d:e3:87:f4: a7:6c:01:89:ab:9a:ed:d6:48:80:90:62:d8:1e:6c: 59:72:c8:fc:f2:8d:4f:ea:bf:27:27:7e:2a:9c:3e: 4c:aa:63:e8:36:a6:3c:3b:81:93:05:5b:01:4e:fd: 7b:99:82:c6:7a:18:df:cf:db:08:e7:fb:2e:a8:34: 9a:3e:1a:81:a3:7f:bf:10:6e:55:8a:d3:b3:f3:5e: cc:2a:ea:77:ad:31:c7:56:5b:fd:13:70:0c:e4:3d: 26:8b:4c:39:6c:a6:79:68:32:98:68:c5:a5:cb:0b: e8:1c:22:02:8b:82:09:fd:b0:e8:2f:e0:31:73:50: 1c:7c:b9:18:31:49:fa:42:e8:df:c2:f3:bf:83:b9: 21:8b:18:3a:52:f9:74:e4:40:ff:8c:02:07:4d:3f: 97:5a:d3:30:56:be:15:1c:82:c4:fb:28:04:bd:80: 0e:2d:a2:a5:02:41:95:80:02:5d:63:7f:51:0d:ab: b5:2c:f3:04:f9:58:85:b5:40:5e:fe:38:0e:5b:5a: 98:cc:eb:13:2f:85:5d:37:3a:b3:2d:f9:2c:ed:94: 20:44:86:cc:e9:ff:be:85:a5:3f:8c:50:2c:bc:b0: c4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:39:32:95:3D:7F:AE:E5:8F:B2:EB:50:34:B8:99:69:BB:F9:DC:B0 X509v3 Authority Key Identifier: keyid:34:DC:F4:72:9F:45:82:62:88:8E:F0:7A:2B:D4:67:5F:6E:31:13:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNz0cp9FgmKIjvB6K9RnX24xE4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B7F/37B82C5071B211EBB44A8463C4F9AE02/NNz0cp9FgmKIjvB6K9RnX24xE4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:ba:1f:00:06:c8:7f:e8:30:25:b2:47:cd:2e:bc:a1:a3:29: c6:15:54:f8:8d:18:7e:cb:b7:52:10:a9:53:08:48:46:6b:49: 36:35:aa:b4:51:07:a3:d8:db:75:30:21:be:f5:b7:27:4f:d5: 6d:04:a9:66:22:11:d8:10:65:61:6a:d9:40:ca:2e:56:f5:6c: 6d:76:8a:b8:9e:0b:d8:77:2e:a4:ef:a4:e5:01:ad:4b:a1:9e: aa:b6:2d:16:f5:a6:4e:f2:e2:a7:95:69:49:fb:e1:bd:f5:ea: 80:93:fe:62:f7:6a:0c:77:2b:90:1e:33:c1:11:e4:ee:3a:6f: 1d:0d:5d:ec:ae:0d:f8:36:94:4a:39:b7:3b:8c:3b:6e:55:37: 3a:6c:de:f6:c1:e9:64:b0:82:f2:22:e0:cd:af:6c:21:f3:18: 32:d0:54:65:92:4a:d1:56:d9:37:63:53:91:e9:dc:2c:a3:00: 8e:a2:dc:45:57:80:d9:73:2e:52:7d:39:be:e3:38:82:cf:01: 81:a4:d8:20:c3:1e:fc:e8:6b:00:92:6e:32:2f:9c:c7:2d:5d: 00:b9:23:4c:89:ef:5a:19:60:bf:aa:4f:87:eb:de:88:9e:23: 9d:b9:a2:c0:a2:1a:0e:ff:3e:84:82:18:83:d0:49:21:72:ab: 82:d1:1e:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCN0YxMTAvBgNVBAUTKDM0RENGNDcyOUY0NTgyNjI4ODhFRjA3QTJCRDQ2NzVG NkUzMTEzODAwHhcNMjUwNjE0MjE1NzUxWhcNMjUwNjIxMjE1NzUxWjAYMRYwFAYD VQQDEw02ODRkZjA1Zi03OWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAume0AopridPhBcvJBcIfSQzI1svxzQHIM23jh/SnbAGJq5rt1kiAkGLYHmxZ csj88o1P6r8nJ34qnD5MqmPoNqY8O4GTBVsBTv17mYLGehjfz9sI5/suqDSaPhqB o3+/EG5VitOz817MKup3rTHHVlv9E3AM5D0mi0w5bKZ5aDKYaMWlywvoHCICi4IJ /bDoL+Axc1AcfLkYMUn6QujfwvO/g7khixg6Uvl05ED/jAIHTT+XWtMwVr4VHILE +ygEvYAOLaKlAkGVgAJdY39RDau1LPME+ViFtUBe/jgOW1qYzOsTL4VdNzqzLfks 7ZQgRIbM6f++haU/jFAsvLDE4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP85MpU9 f67lj7LrUDS4mWm7+dywMB8GA1UdIwQYMBaAFDTc9HKfRYJiiI7weivUZ19uMROA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I3Ri8zN0I4MkM1MDcx QjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5RmdtS0lqdkI2SzlSblgyNHhF NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OejBjcDlGZ21LSWp2QjZLOVJuWDI0eEU0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I3Ri8zN0I4MkM1MDcxQjIxMUVCQjQ0QTg0NjNDNEY5QUUwMi9OTnowY3A5Rmdt S0lqdkI2SzlSblgyNHhFNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACuh8ABsh/6DAlskfNLryhoynGFVT4jRh+y7dSEKlTCEhGa0k2Naq0 UQej2Nt1MCG+9bcnT9VtBKlmIhHYEGVhatlAyi5W9Wxtdoq4ngvYdy6k76TlAa1L oZ6qti0W9aZO8uKnlWlJ++G99eqAk/5i92oMdyuQHjPBEeTuOm8dDV3srg34NpRK Obc7jDtuVTc6bN72welksILyIuDNr2wh8xgy0FRlkkrRVtk3Y1OR6dwsowCOotxF V4DZcy5SfTm+4ziCzwGBpNggwx786GsAkm4yL5zHLV0AuSNMie9aGWC/qk+H696I niOduaLAohoO/z6EghiD0EkhcquC0R7H -----END CERTIFICATE-----Generated at Sun Jun 15 08:12:23 2025 by rpki-client