$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: cFcmt7+aLXOjU5TnGLWwG0ZtN5MPw9sxDoVd/8+lmyQ= Subject key identifier: B1:03:4B:8D:92:AA:52:15:10:7F:79:D1:76:A4:74:38:9B:78:12:7E Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0C8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0C79 Signing time: Thu 12 Jun 2025 18:08:30 +0000 Manifest this update: Thu 12 Jun 2025 18:08:30 +0000 Manifest next update: Thu 19 Jun 2025 18:08:30 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: fj2WyDOIzWQS6gEjhBpkiGVxl5Xh7o/sSO53Duo/QoI=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3211 (0xc8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Jun 12 18:08:30 2025 GMT Not After : Jun 19 18:08:30 2025 GMT Subject: CN=684b179e-1723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f7:cc:4c:f5:98:7c:e3:68:da:94:73:68:14: 9a:79:10:00:4c:76:14:b7:bf:68:21:a0:bf:b5:87: d0:32:79:0a:c4:8f:95:5a:3a:5f:08:17:c8:54:d6: 3e:b9:dc:05:ac:aa:c1:cf:bc:fe:1e:4d:cb:fd:59: 74:a4:8c:a9:13:64:96:56:fe:dd:85:84:e3:f7:89: 60:d1:11:f9:27:7f:0c:3d:c3:64:7d:63:93:96:91: 67:04:7e:ff:83:99:a9:09:fb:c0:fb:41:42:c0:bf: 44:31:f7:56:7a:2d:d8:bc:b0:34:da:c9:dd:09:4e: c7:82:a7:67:a3:2b:3e:ab:fa:e9:3a:71:a1:73:a4: e2:8b:c8:c8:57:84:9b:c5:ba:e4:36:12:5c:63:bb: 91:9e:fc:b8:48:ee:f0:54:7f:33:0d:1f:e7:e3:a4: 9e:93:98:03:49:4b:93:16:83:7b:71:b9:4d:ac:f5: 40:f4:78:93:20:36:1b:a7:58:9d:e4:84:54:35:a9: 33:85:90:c7:fe:a2:ab:65:15:6d:93:91:9d:ad:2d: f6:27:6e:1e:13:3e:5d:1c:a6:f9:b4:76:8c:ad:f0: 72:aa:d9:e9:96:dc:20:fe:73:68:ce:7e:5c:e7:1f: d6:6a:0f:bf:8d:4c:92:d4:c3:d3:6f:e1:d2:22:4b: 58:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:03:4B:8D:92:AA:52:15:10:7F:79:D1:76:A4:74:38:9B:78:12:7E X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:ef:96:58:97:d7:4e:a6:17:f3:1a:f4:ce:ac:2b:14:ae:10: 5c:1c:79:7f:64:76:8e:ce:d0:b5:17:f0:61:59:bd:8d:4c:f4: 38:b2:70:d7:7b:23:ff:a9:a1:43:2a:a0:2a:e2:12:be:25:9d: 2e:60:b0:01:bf:e9:22:02:3f:cb:30:b1:05:be:7c:0c:79:3a: f9:ee:92:16:35:45:63:3a:49:17:f7:b1:f6:89:c2:e0:ce:91: e1:04:ed:81:77:fd:a9:e4:16:36:93:4c:25:7d:60:45:d2:94: ab:2b:32:db:2b:d2:1b:15:d3:2c:06:be:e7:6a:d1:91:c8:4d: 29:d8:fc:c1:91:27:27:65:42:e1:4d:4e:fb:38:fc:7a:00:3d: 16:42:67:33:cc:6c:4f:4b:7d:dc:1c:d2:9b:36:c9:ac:f7:08: 06:0f:7b:89:00:14:5c:20:a4:c1:97:80:5b:3a:5b:25:47:a0: 9d:96:43:a6:74:70:5d:4f:50:30:1a:39:bb:0c:be:17:fa:4c: 9c:0e:ea:4b:ed:19:99:c2:4f:c9:a9:39:88:0b:65:56:16:64: dc:04:03:b6:aa:20:3c:52:6f:3b:5f:a7:69:07:e0:87:ab:48: 82:23:b7:d0:b6:3c:dd:d7:d6:07:5e:c0:c4:17:2c:a8:b9:a4: 3f:d5:0e:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwNjEyMTgwODMwWhcNMjUwNjE5MTgwODMwWjAYMRYwFAYD VQQDEw02ODRiMTc5ZS0xNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vfMTPWYfONo2pRzaBSaeRAATHYUt79oIaC/tYfQMnkKxI+VWjpfCBfIVNY+ udwFrKrBz7z+Hk3L/Vl0pIypE2SWVv7dhYTj94lg0RH5J38MPcNkfWOTlpFnBH7/ g5mpCfvA+0FCwL9EMfdWei3YvLA02sndCU7Hgqdnoys+q/rpOnGhc6Tii8jIV4Sb xbrkNhJcY7uRnvy4SO7wVH8zDR/n46Sek5gDSUuTFoN7cblNrPVA9HiTIDYbp1id 5IRUNakzhZDH/qKrZRVtk5GdrS32J24eEz5dHKb5tHaMrfByqtnpltwg/nNozn5c 5x/Wag+/jUyS1MPTb+HSIktYLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLEDS42S qlIVEH950XakdDibeBJ+MB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq75ZYl9dOphfzGvTOrCsUrhBcHHl/ZHaOztC1F/BhWb2NTPQ4snDX eyP/qaFDKqAq4hK+JZ0uYLABv+kiAj/LMLEFvnwMeTr57pIWNUVjOkkX97H2icLg zpHhBO2Bd/2p5BY2k0wlfWBF0pSrKzLbK9IbFdMsBr7natGRyE0p2PzBkScnZULh TU77OPx6AD0WQmczzGxPS33cHNKbNsms9wgGD3uJABRcIKTBl4BbOlslR6CdlkOm dHBdT1AwGjm7DL4X+kycDupL7RmZwk/JqTmIC2VWFmTcBAO2qiA8Um87X6dpB+CH q0iCI7fQtjzd19YHXsDEFyyouaQ/1Q6I -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:19 2025 by rpki-client