$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft File: NAlJ7LhXg2NX8QJTxpQnIggZex0.mft (raw, json) Hash identifier: wXCpIotcE/wNgyCtFyQTMtZyqpAnhATtrKCXZSLpLEU= Subject key identifier: 50:5D:F4:9B:57:AB:03:49:E8:28:18:5E:95:06:A9:12:8F:81:E2:89 Authority key identifier: 34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D Certificate issuer: /CN=A916BC76/serialNumber=340949ECB857836357F10253C694272208197B1D Certificate serial: 053B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft Manifest number: 0536 Signing time: Wed 18 Jun 2025 23:20:17 +0000 Manifest this update: Wed 18 Jun 2025 23:20:17 +0000 Manifest next update: Wed 25 Jun 2025 23:20:17 +0000 Files and hashes: 1: NAlJ7LhXg2NX8QJTxpQnIggZex0.crl (hash: 3uVy1B2n/zUBJX1nNgPFiEo/WB1CEn9qB6CFktAmzcY=) 2: F44B1F40FC1711EBA835010DC4F9AE02.roa (hash: Y4KIW6waXy9by1Ft4XI4IDDdWRGAFQ3T1gtKYgu91qw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC76, serialNumber=340949ECB857836357F10253C694272208197B1D Validity Not Before: Jun 18 23:20:17 2025 GMT Not After : Jun 25 23:20:17 2025 GMT Subject: CN=685349b1-f966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:c0:ba:55:05:ac:cc:c1:1d:60:2b:5c:55:9d: 84:fe:16:af:f9:73:a3:99:ad:4a:9d:84:85:76:51: 4a:94:34:e6:25:3b:d2:4f:4f:af:b2:95:e5:4a:b5: 9f:d9:8f:68:b7:61:24:49:05:4c:68:33:f3:0a:6b: f2:77:c7:66:1b:d0:7d:62:1b:24:c4:26:29:f0:b6: 4e:32:e4:8b:5c:01:33:fe:f7:09:b1:2a:02:e5:39: b2:67:03:81:92:b3:34:3c:60:e8:c0:ff:84:72:71: 21:a6:b7:d3:39:de:8c:31:bd:8c:fe:98:c7:29:21: 0f:e7:2a:8d:7a:f4:64:48:cb:63:40:ca:8b:7d:9a: 03:aa:15:96:11:bd:ec:62:ee:b0:bf:a5:85:69:e8: e5:bc:08:cb:c6:06:64:11:91:5a:d2:6d:db:66:0a: 18:2a:a8:c0:a2:3c:15:23:f2:f5:a6:7b:a6:8e:6a: d8:2b:f3:de:3f:91:b0:8b:d4:03:96:eb:bc:32:dd: b7:e1:3f:8d:ee:63:4f:12:e5:27:e8:51:55:9f:cf: 61:c4:ac:2a:6c:f0:40:9c:44:42:e4:4f:b7:1c:4a: 1f:bb:c1:ea:9e:09:8c:e2:6b:ad:75:5f:39:05:a7: 40:a8:2f:b7:a3:5a:86:d2:4d:0e:1c:78:62:94:af: cc:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5D:F4:9B:57:AB:03:49:E8:28:18:5E:95:06:A9:12:8F:81:E2:89 X509v3 Authority Key Identifier: keyid:34:09:49:EC:B8:57:83:63:57:F1:02:53:C6:94:27:22:08:19:7B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAlJ7LhXg2NX8QJTxpQnIggZex0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC76/6136A172FC1511EB9E50BC0AC4F9AE02/NAlJ7LhXg2NX8QJTxpQnIggZex0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:8c:f3:26:88:7e:16:95:fe:d4:6c:71:68:b5:5a:57:72:55: 73:6b:ee:ea:d5:ef:c4:7a:89:83:0c:82:b6:b9:79:a8:c8:f6: c9:85:1d:7e:b0:b9:7c:55:d3:8e:87:00:c1:59:5d:87:f4:c8: 5f:1f:8e:b2:ce:58:6c:4d:d7:71:24:d7:dd:3e:3f:a8:5a:54: 50:8a:21:0b:af:19:dc:d8:90:9f:2c:08:da:4f:e5:c3:77:1e: bc:fa:f0:83:33:7a:75:4b:c2:44:8f:16:cd:5f:0b:60:44:46: 61:7b:70:44:42:81:56:cb:b0:8d:40:e6:a5:a7:ad:eb:c2:cb: b8:ff:48:e7:9e:fc:cb:9a:8d:b0:d6:1a:12:c0:dc:7a:7e:a1: 9c:5c:e7:72:b0:7d:6a:6c:bc:0c:6f:bb:e8:63:28:5c:6b:93: 06:7a:3d:5e:01:95:da:53:17:6f:ad:9d:28:eb:78:0c:53:3b: 37:8e:10:7f:4f:2c:b4:de:73:93:b0:46:d5:85:ed:3b:a3:b5: ef:f4:75:ba:a9:9f:e2:ec:1d:c1:fe:27:2a:a0:f1:6a:7b:74: ed:4b:19:79:93:b0:4a:ef:ec:8d:27:82:b2:3e:01:42:fe:a2: 30:2e:ef:8a:ef:1a:07:3e:8c:92:f0:06:00:3a:13:27:9f:70: 5d:f3:1c:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDNzYxMTAvBgNVBAUTKDM0MDk0OUVDQjg1NzgzNjM1N0YxMDI1M0M2OTQyNzIy MDgxOTdCMUQwHhcNMjUwNjE4MjMyMDE3WhcNMjUwNjI1MjMyMDE3WjAYMRYwFAYD VQQDEw02ODUzNDliMS1mOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/MC6VQWszMEdYCtcVZ2E/hav+XOjma1KnYSFdlFKlDTmJTvST0+vspXlSrWf 2Y9ot2EkSQVMaDPzCmvyd8dmG9B9YhskxCYp8LZOMuSLXAEz/vcJsSoC5TmyZwOB krM0PGDowP+EcnEhprfTOd6MMb2M/pjHKSEP5yqNevRkSMtjQMqLfZoDqhWWEb3s Yu6wv6WFaejlvAjLxgZkEZFa0m3bZgoYKqjAojwVI/L1pnumjmrYK/PeP5Gwi9QD luu8Mt234T+N7mNPEuUn6FFVn89hxKwqbPBAnERC5E+3HEofu8HqngmM4mutdV85 BadAqC+3o1qG0k0OHHhilK/MFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBd9JtX qwNJ6CgYXpUGqRKPgeKJMB8GA1UdIwQYMBaAFDQJSey4V4NjV/ECU8aUJyIIGXsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM3Ni82MTM2QTE3MkZD MTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcyTlg4UUpUeHBRbklnZ1pl eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BbEo3TGhYZzJOWDhRSlR4cFFuSWdnWmV4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkM3Ni82MTM2QTE3MkZDMTUxMUVCOUU1MEJDMEFDNEY5QUUwMi9OQWxKN0xoWGcy Tlg4UUpUeHBRbklnZ1pleDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNjPMmiH4Wlf7UbHFotVpXclVza+7q1e/EeomDDIK2uXmoyPbJhR1+ sLl8VdOOhwDBWV2H9MhfH46yzlhsTddxJNfdPj+oWlRQiiELrxnc2JCfLAjaT+XD dx68+vCDM3p1S8JEjxbNXwtgREZhe3BEQoFWy7CNQOalp63rwsu4/0jnnvzLmo2w 1hoSwNx6fqGcXOdysH1qbLwMb7voYyhca5MGej1eAZXaUxdvrZ0o63gMUzs3jhB/ Tyy03nOTsEbVhe07o7Xv9HW6qZ/i7B3B/icqoPFqe3TtSxl5k7BK7+yNJ4KyPgFC /qIwLu+K7xoHPoyS8AYAOhMnn3Bd8xxY -----END CERTIFICATE-----Generated at Thu Jun 19 04:31:07 2025 by rpki-client