$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: eAEx+OtBY3F88NT+E9aas7TMJSPGoUIxKE2BKYZEUNg= Subject key identifier: A8:9B:B1:0A:FD:02:35:B2:07:0F:6C:65:ED:71:D0:E3:05:28:10:12 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0F47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F40 Signing time: Mon 16 Jun 2025 17:35:57 +0000 Manifest this update: Mon 16 Jun 2025 17:35:57 +0000 Manifest next update: Mon 23 Jun 2025 17:35:57 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: iEVJNZkiyu5Sny5M89ItZpNHM2iQoNzF0yhpc3ylkyU=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 17:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3911 (0xf47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: Jun 16 17:35:57 2025 GMT Not After : Jun 23 17:35:57 2025 GMT Subject: CN=685055fd-4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e8:8f:c1:83:a8:08:da:63:88:09:6f:f8:58: 2b:b7:89:a0:f5:ce:9e:ea:46:85:73:f4:fe:3b:c6: a3:ef:c6:fe:84:23:bf:e0:f1:c2:34:a8:7d:aa:f9: 45:11:a1:15:e2:5f:19:ab:95:19:62:3a:ea:92:7a: 3c:71:f6:05:c5:e2:9a:f0:1e:f4:49:79:0c:e5:d9: fe:c5:02:99:78:15:ed:a0:f3:5b:f7:34:15:ec:bc: cb:40:83:ba:75:1f:79:42:ee:ee:0b:da:1a:ab:a4: 22:7e:c7:66:73:64:14:f2:f1:91:e1:51:46:41:32: 72:cb:b7:35:b4:8f:f8:35:01:b1:94:6b:1e:74:5b: fb:45:a5:cf:d2:21:58:44:fa:75:91:ca:91:5e:1b: 04:b1:b3:9b:8d:a3:eb:07:10:1f:41:e7:da:c3:f8: 31:e1:9c:2a:98:ec:29:48:d0:f6:11:45:4b:b8:c0: 17:67:f0:af:81:9c:98:b0:fe:3b:a1:a8:e6:73:7a: bb:90:d6:f1:03:14:0d:04:be:81:06:a9:be:8b:b4: 6d:fe:07:c2:bf:28:5d:00:4c:13:ae:f9:38:54:f7: 38:6c:aa:7b:ca:ad:9e:40:0f:b8:91:c5:04:82:d7: ab:28:32:07:e2:4c:b0:a9:02:8e:c3:23:39:f4:ea: e5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9B:B1:0A:FD:02:35:B2:07:0F:6C:65:ED:71:D0:E3:05:28:10:12 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:dd:ad:5c:6d:9e:54:75:14:ce:55:2d:95:0d:6d:2f:9b:6f: c3:0d:0b:d6:e8:f6:02:cc:54:92:00:1f:48:6e:e5:88:5b:a8: 8e:a7:0b:19:54:b0:95:a1:62:6f:9a:82:6c:38:3c:fb:3f:fe: 27:8e:28:98:ea:60:53:8a:15:ec:d5:7d:0e:22:bb:92:10:0e: 8a:b9:72:73:a5:d4:43:15:b8:89:f5:29:78:04:e3:36:23:4b: 78:77:42:91:80:7d:95:41:a6:a4:59:b9:dc:4b:e0:15:31:d2: 83:0f:9f:c5:1d:3c:a2:1f:fa:dd:23:33:ac:a2:54:c6:58:2b: e8:6a:82:22:05:14:13:e0:c8:bf:e0:3d:47:bc:72:1f:81:00: fd:ed:61:71:5f:2d:d1:aa:0e:86:fb:9c:95:c6:8e:c4:fe:2a: 9c:88:0a:78:7c:82:50:72:f3:04:6b:87:f1:62:b4:b7:7c:4d: 15:58:c3:f5:ea:11:8a:22:d7:60:9f:fd:d2:25:61:95:9e:42: 47:7a:7b:43:52:19:3d:b8:61:0a:7c:95:9c:cd:93:42:7b:9c: 36:40:a6:89:26:1e:a0:f6:c7:89:eb:e4:01:ae:36:b4:db:05: 81:03:4e:d6:d3:75:dd:6f:82:0e:c0:1b:bc:a8:f8:29:1c:9c: 78:1b:66:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUwNjE2MTczNTU3WhcNMjUwNjIzMTczNTU3WjAYMRYwFAYD VQQDEw02ODUwNTVmZC00NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5eiPwYOoCNpjiAlv+Fgrt4mg9c6e6kaFc/T+O8aj78b+hCO/4PHCNKh9qvlF EaEV4l8Zq5UZYjrqkno8cfYFxeKa8B70SXkM5dn+xQKZeBXtoPNb9zQV7LzLQIO6 dR95Qu7uC9oaq6Qifsdmc2QU8vGR4VFGQTJyy7c1tI/4NQGxlGsedFv7RaXP0iFY RPp1kcqRXhsEsbObjaPrBxAfQefaw/gx4ZwqmOwpSND2EUVLuMAXZ/CvgZyYsP47 oajmc3q7kNbxAxQNBL6BBqm+i7Rt/gfCvyhdAEwTrvk4VPc4bKp7yq2eQA+4kcUE gterKDIH4kywqQKOwyM59OrlxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKibsQr9 AjWyBw9sZe1x0OMFKBASMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS3a1cbZ5UdRTOVS2VDW0vm2/DDQvW6PYCzFSSAB9IbuWIW6iOpwsZ VLCVoWJvmoJsODz7P/4njiiY6mBTihXs1X0OIruSEA6KuXJzpdRDFbiJ9Sl4BOM2 I0t4d0KRgH2VQaakWbncS+AVMdKDD5/FHTyiH/rdIzOsolTGWCvoaoIiBRQT4Mi/ 4D1HvHIfgQD97WFxXy3Rqg6G+5yVxo7E/iqciAp4fIJQcvMEa4fxYrS3fE0VWMP1 6hGKItdgn/3SJWGVnkJHentDUhk9uGEKfJWczZNCe5w2QKaJJh6g9seJ6+QBrja0 2wWBA07W03Xdb4IOwBu8qPgpHJx4G2aY -----END CERTIFICATE-----Generated at Wed Jun 18 02:59:58 2025 by rpki-client