$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: a6Ta96jbrsqHLu9kB2g93Lco0NZ3M112MEPEjvK+yx4= Subject key identifier: FE:2C:A4:AE:8C:3D:32:B8:E3:C4:67:31:E1:65:C1:75:9D:3B:CC:57 Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 26 Signing time: Tue 17 Jun 2025 06:39:32 +0000 Manifest this update: Tue 17 Jun 2025 06:39:32 +0000 Manifest next update: Tue 24 Jun 2025 06:39:32 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: jlPplpcY5b08WXbrKSUrlgWT8DhxP/0aD85u+AqSc+o=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: /DitzvGpGkwCd2xAbI8HPUNETw+T64yJeC7XoZd/K/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:39:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: Jun 17 06:39:32 2025 GMT Not After : Jun 24 06:39:32 2025 GMT Subject: CN=68510da4-2f07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:ce:88:89:82:e7:df:b7:80:9d:54:72:b2: 9b:83:74:e6:2f:b2:1f:fc:b2:d3:00:ba:57:2b:31: 48:ed:17:82:14:99:08:e4:1c:07:8f:03:fe:9e:be: a9:51:9e:bd:6c:71:77:62:14:70:1e:54:bb:c7:79: f6:84:17:7e:7a:6d:bb:81:2e:e2:de:7a:08:33:5d: b1:ef:0e:4e:9d:d8:06:5b:aa:81:06:2d:81:47:34: dc:1d:cf:06:ec:73:60:86:72:de:fc:c1:8a:e7:c1: ad:85:f0:af:b0:91:6a:0b:3e:7d:54:7c:1a:fd:49: 0a:34:52:be:60:b7:36:c4:30:fe:8b:56:9f:c8:f1: 7c:6b:56:07:ca:6f:61:61:a5:74:cf:e0:b2:d7:3b: 58:38:ab:8d:45:22:74:4d:31:b3:1a:cd:93:6f:5f: 4b:7d:a9:29:4c:39:91:8f:98:05:f5:2c:6a:c4:3a: f0:72:78:16:af:a2:37:5f:84:7c:c0:bf:4f:00:ac: 12:2a:e4:e1:9a:85:e6:fb:4b:67:48:5e:5b:cc:31: 53:77:1e:79:c3:55:f8:79:0c:8d:b9:81:e4:a4:aa: 51:aa:36:a5:34:66:4c:36:89:ae:02:c4:bc:44:46: d8:e9:0e:7c:eb:0d:41:a3:f4:2b:8e:ab:b3:9a:9d: 8f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2C:A4:AE:8C:3D:32:B8:E3:C4:67:31:E1:65:C1:75:9D:3B:CC:57 X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d1:9d:0b:e9:d5:8d:94:84:eb:8b:81:df:a3:1f:6b:4f:60: e6:a0:32:55:ae:63:66:d3:4b:e3:52:06:97:54:62:41:56:2f: ef:bc:21:d1:22:b5:a6:89:4f:c6:0a:b1:d0:51:c8:e1:60:47: 52:bd:49:d5:67:d2:6f:dc:ff:24:5f:c2:60:4a:d1:a8:d0:0a: 21:9b:73:98:b9:d6:47:e9:bd:b7:c3:92:28:9e:56:ed:ac:e1: a7:4d:7a:8d:78:70:18:a9:b2:db:cf:d4:d2:31:08:df:b8:db: c4:6f:0d:10:16:4a:1b:48:d6:ad:a3:b4:26:64:81:8a:fb:fc: 28:05:37:8b:68:e0:34:71:f3:99:1a:59:97:eb:19:d0:66:3f: 88:1a:f8:83:fa:7c:1c:1d:dd:c1:3b:7c:80:b1:4d:fa:b1:92: 15:23:a6:23:9c:c6:0e:0b:ca:92:ae:2a:ac:0d:e0:f3:d9:67: 80:42:fc:30:da:87:bb:eb:a1:32:57:3b:17:5a:22:65:8d:a2: 27:70:09:eb:73:38:fb:c7:eb:8b:8e:16:8d:f3:cf:b6:cd:9d: aa:1a:96:a9:55:44:f9:9a:41:44:95:9f:6d:b3:5c:45:90:55: 52:17:d8:a9:d1:a6:86:8a:b1:2d:b9:36:61:7d:19:33:d7:f0: c6:a6:9c:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTA2MTcwNjM5MzJaFw0yNTA2MjQwNjM5MzJaMBgxFjAUBgNV BAMTDTY4NTEwZGE0LTJmMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOec6IiYLn37eAnVRyspuDdOYvsh/8stMAulcrMUjtF4IUmQjkHAePA/6evqlR nr1scXdiFHAeVLvHefaEF356bbuBLuLeeggzXbHvDk6d2AZbqoEGLYFHNNwdzwbs c2CGct78wYrnwa2F8K+wkWoLPn1UfBr9SQo0Ur5gtzbEMP6LVp/I8XxrVgfKb2Fh pXTP4LLXO1g4q41FInRNMbMazZNvX0t9qSlMOZGPmAX1LGrEOvByeBavojdfhHzA v08ArBIq5OGaheb7S2dIXlvMMVN3HnnDVfh5DI25geSkqlGqNqU0Zkw2ia4CxLxE RtjpDnzrDUGj9CuOq7OanY+zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/iykrow9 MrjjxGcx4WXBdZ07zFcwHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEjRnQvp1Y2UhOuLgd+jH2tPYOagMlWuY2bTS+NSBpdUYkFWL++8IdEi taaJT8YKsdBRyOFgR1K9SdVn0m/c/yRfwmBK0ajQCiGbc5i51kfpvbfDkiieVu2s 4adNeo14cBipstvP1NIxCN+428RvDRAWShtI1q2jtCZkgYr7/CgFN4to4DRx85ka WZfrGdBmP4ga+IP6fBwd3cE7fICxTfqxkhUjpiOcxg4LypKuKqwN4PPZZ4BC/DDa h7vroTJXOxdaImWNoidwCetzOPvH64uOFo3zz7bNnaoalqlVRPmaQUSVn22zXEWQ VVIX2KnRpoaKsS25NmF9GTPX8MamnN4= -----END CERTIFICATE-----Generated at Thu Jun 19 05:19:43 2025 by rpki-client