$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft File: nOkX3Drgxboud8t3WjrZnGhcQGs.mft (raw, json) Hash identifier: r3tYUIpgrZoVh+Fk+NGWP8e+IlUO1YurWCBsFa+EyWY= Subject key identifier: 57:63:E8:79:6E:B2:8F:D5:E9:BE:C7:AD:9F:92:2E:5C:B6:02:AF:7F Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft Manifest number: 25 Signing time: Fri 13 Jun 2025 06:43:13 +0000 Manifest this update: Fri 13 Jun 2025 06:43:13 +0000 Manifest next update: Fri 20 Jun 2025 06:43:13 +0000 Files and hashes: 1: nOkX3Drgxboud8t3WjrZnGhcQGs.crl (hash: bm8dpv05bEsNVjBeOvCWTbpupbSXBVjvEjTy5JaLULw=) 2: 49DEAEDC12A711F099020A73C4F9AE02.roa (hash: ZDuunhoBLIFxkgffUJp6fhz6W2Ysr7yM0HyGKDGLaSU=) 3: 4A3C802012A711F099020A73C4F9AE02.roa (hash: EvMFCkIZLxU/4T9yDv4rTrnplB41rjMOAziWwMgP5hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:43:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Jun 13 06:43:13 2025 GMT Not After : Jun 20 06:43:13 2025 GMT Subject: CN=684bc881-c2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e8:74:57:49:e3:74:eb:eb:cf:1d:e3:06:fe: c5:70:ca:f1:1f:19:bd:cc:3a:4b:22:5b:07:d9:ce: 8c:4f:62:bf:a9:fa:9e:3b:c3:ea:8b:9f:8b:a8:39: c5:f8:a8:32:67:3e:32:f6:95:6a:4f:da:e8:45:75: 38:a1:b0:3f:ce:07:a2:45:f2:c7:71:54:b3:2d:ff: bb:c2:00:b3:6d:c6:31:ba:fb:af:6e:7c:bf:87:e4: 67:08:3e:09:98:34:46:7c:2f:5a:e3:8c:96:c2:22: 57:cc:3c:fd:18:f6:5a:5b:06:5e:21:bf:51:14:76: 89:7f:09:75:15:85:0e:84:8f:c6:7f:fc:9a:4a:6c: 1a:3c:f4:44:cf:7e:bc:9d:01:2b:fd:18:ee:f8:b0: 07:8c:4b:7f:d4:d3:ff:59:3a:36:5b:2a:51:65:94: 0e:61:db:72:88:60:42:db:75:29:7b:0e:ca:19:7e: 7b:fc:b4:69:ab:7a:83:f3:f6:d2:49:97:19:7e:8f: 22:c3:9a:e1:3c:5c:9b:fc:9e:b1:90:d1:e5:a3:0c: cd:26:25:9f:ee:c0:bc:11:4a:a5:a1:05:73:7d:3a: 8e:f6:97:c6:8f:18:c8:bc:80:b7:db:ae:05:78:ec: 50:6c:5f:e8:fe:f1:a9:8f:bc:ab:79:16:d7:55:f3: 0d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:63:E8:79:6E:B2:8F:D5:E9:BE:C7:AD:9F:92:2E:5C:B6:02:AF:7F X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:98:d5:43:bf:39:ce:34:ab:f7:24:4a:78:9b:03:f8:f4:70: 4e:73:6d:b3:c9:f8:c7:66:5e:15:24:0b:88:17:2a:03:7b:3d: 9e:6a:a3:d0:8b:f8:87:e9:75:37:8e:37:0e:29:78:fd:be:ad: 39:62:ab:dd:7f:d6:66:93:29:0c:87:88:d1:ec:41:19:9c:6d: af:12:d2:3c:48:9f:6c:72:90:c6:00:71:a8:de:cb:d0:c2:46: e2:5a:72:31:11:90:a3:b4:99:3e:0a:38:c6:5d:26:79:78:a6: e4:90:2b:69:79:52:77:67:db:3d:19:8c:30:ec:9d:f5:41:4a: 2e:92:aa:d5:68:a1:99:be:70:2e:f8:31:6d:74:f5:79:55:65: f9:5d:f6:ea:a7:23:f3:3f:da:d0:af:20:dc:2f:95:57:98:89: 51:23:23:cd:9c:95:d8:56:a5:3d:bf:28:cf:21:87:c1:08:43: 27:02:16:36:00:36:22:d8:c2:79:a9:20:a1:34:1f:af:fb:fd: 09:06:ce:6e:9b:10:74:b8:48:03:aa:04:1e:23:55:01:8d:18: c4:43:7a:7d:c7:6b:b8:3b:c8:b6:13:7e:b0:35:f2:cc:b0:39: a7:01:e4:4c:31:fe:c3:52:e8:7f:e6:69:50:21:c5:b3:e5:f0: 2f:02:47:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUYzRTExMC8GA1UEBRMoOUNFOTE3REMzQUUwQzVCQTJFNzdDQjc3NUEzQUQ5OUM2 ODVDNDA2QjAeFw0yNTA2MTMwNjQzMTNaFw0yNTA2MjAwNjQzMTNaMBgxFjAUBgNV BAMTDTY4NGJjODgxLWMyZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL6HRXSeN06+vPHeMG/sVwyvEfGb3MOksiWwfZzoxPYr+p+p47w+qLn4uoOcX4 qDJnPjL2lWpP2uhFdTihsD/OB6JF8sdxVLMt/7vCALNtxjG6+69ufL+H5GcIPgmY NEZ8L1rjjJbCIlfMPP0Y9lpbBl4hv1EUdol/CXUVhQ6Ej8Z//JpKbBo89ETPfryd ASv9GO74sAeMS3/U0/9ZOjZbKlFllA5h23KIYELbdSl7DsoZfnv8tGmreoPz9tJJ lxl+jyLDmuE8XJv8nrGQ0eWjDM0mJZ/uwLwRSqWhBXN9Oo72l8aPGMi8gLfbrgV4 7FBsX+j+8amPvKt5FtdV8w07AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV2PoeW6y j9Xpvsetn5IuXLYCr38wHwYDVR0jBBgwFoAUnOkX3Drgxboud8t3WjrZnGhcQGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjNFLzMzOUVERTY4MTBF NDExRjBCNzVCODE2NkM0RjlBRTAyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbk9rWDNEcmd4Ym91ZDh0M1dqclpuR2hjUUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx RjNFLzMzOUVERTY4MTBFNDExRjBCNzVCODE2NkM0RjlBRTAyL25Pa1gzRHJneGJv dWQ4dDNXanJabkdoY1FHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAESY1UO/Oc40q/ckSnibA/j0cE5zbbPJ+MdmXhUkC4gXKgN7PZ5qo9CL +IfpdTeONw4peP2+rTliq91/1maTKQyHiNHsQRmcba8S0jxIn2xykMYAcajey9DC RuJacjERkKO0mT4KOMZdJnl4puSQK2l5Undn2z0ZjDDsnfVBSi6SqtVooZm+cC74 MW109XlVZfld9uqnI/M/2tCvINwvlVeYiVEjI82cldhWpT2/KM8hh8EIQycCFjYA NiLYwnmpIKE0H6/7/QkGzm6bEHS4SAOqBB4jVQGNGMRDen3Ha7g7yLYTfrA18syw OacB5Ewx/sNS6H/maVAhxbPl8C8CR/0= -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:42 2025 by rpki-client