$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft File: nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft (raw, json) Hash identifier: cmpqmfv5spLCmEQfEZP7klZ8ILAsfWjz9hy+KbaAnj8= Subject key identifier: 35:33:7F:30:10:3F:C3:BB:DC:FC:90:36:72:C0:45:1F:45:BF:A9:35 Authority key identifier: 9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD Certificate issuer: /CN=A9185D34/serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Certificate serial: 0816 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft Manifest number: 0809 Signing time: Thu 12 Jun 2025 20:39:44 +0000 Manifest this update: Thu 12 Jun 2025 20:39:44 +0000 Manifest next update: Thu 19 Jun 2025 20:39:44 +0000 Files and hashes: 1: nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl (hash: XSdSDzpbAg9wSxLJmXlmAUKD3eafwsmAGLpkBruH6Yw=) 2: C1171FCAB1B111ECBA7F614FC4F9AE02.roa (hash: 5pc4Fgf96yhJHg1dXqyOkvTiTCFOmyYqtcguriQDwlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2070 (0x816) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D34, serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Validity Not Before: Jun 12 20:39:44 2025 GMT Not After : Jun 19 20:39:44 2025 GMT Subject: CN=684b3b10-aa8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7f:0e:94:3e:3e:5d:4c:4f:f6:36:88:be:e9: db:16:95:0c:bc:23:0a:6d:b2:3b:a7:0c:82:86:92: 2d:60:81:cd:1a:a3:94:09:d4:2a:f3:6f:11:93:bb: 2d:44:0a:5f:8d:dc:5c:34:ef:35:dd:ce:6d:8a:3d: 09:c2:9e:ba:62:33:18:07:8b:a0:59:d2:44:33:25: 69:ad:fc:eb:0f:a0:ea:cb:7a:61:86:7f:be:d5:e3: 07:a2:a1:01:9b:b2:5a:aa:6c:d7:80:f3:05:50:24: 88:1d:97:e7:4d:c4:6d:55:b5:dc:61:53:aa:f1:51: db:91:f3:33:2c:c5:1d:4c:3c:8e:fe:a6:29:be:55: 9a:2c:b1:19:e6:1e:79:0c:27:5c:98:ce:0b:b3:75: be:d3:0b:b0:68:b5:5b:04:88:01:4d:ac:dd:bb:5e: a7:84:25:1f:c1:8e:28:ca:43:63:92:59:7a:a8:21: bc:ad:8f:d0:cc:a5:f1:39:e2:57:90:70:bc:81:88: 7c:8a:6b:61:6d:d8:b3:52:66:ba:63:a2:a5:64:47: 41:97:c9:ed:04:1e:aa:e0:26:a1:75:ec:0a:13:fb: 47:51:ea:2e:05:37:41:28:8b:47:0b:88:86:e2:90: 52:13:0b:67:31:aa:9d:50:c4:60:f4:58:54:67:a8: f7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:33:7F:30:10:3F:C3:BB:DC:FC:90:36:72:C0:45:1F:45:BF:A9:35 X509v3 Authority Key Identifier: keyid:9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:79:fc:89:61:79:25:09:2e:18:9f:ba:0c:3e:48:b7:ec:0b: 4e:cd:b1:f2:9f:c4:33:fc:e5:a3:37:d4:63:0e:21:f1:ea:e1: 9b:b7:de:4a:b0:b4:4d:e3:d8:8f:eb:e0:77:87:b4:aa:49:38: f0:3b:8d:6b:54:3e:21:ee:93:e1:79:5e:5d:2d:ea:cb:56:f2: ba:1f:76:79:fd:a7:07:10:0a:65:08:11:75:35:5e:62:5d:92: ec:22:2a:20:50:06:55:48:75:0f:a2:20:4c:be:53:d2:38:c8: d7:8f:27:93:9e:b2:4e:2f:69:5f:35:ee:e1:ca:a7:79:52:43: 28:ec:6c:b4:4e:73:35:b8:f1:b1:81:0e:03:d0:ec:0a:90:9e: 75:0a:61:1b:41:3b:a3:4a:63:62:8e:15:21:83:69:15:f2:52: bc:92:49:b1:b9:ed:aa:f6:57:ff:73:57:55:f2:49:e4:01:cf: 21:43:1e:aa:ab:c8:ca:ff:43:76:a1:61:fc:14:b7:5f:67:01: 71:ab:52:52:1d:c4:c4:f5:77:05:97:43:64:bd:50:53:4b:ca: f4:0f:ba:6a:a4:be:d7:de:60:20:ff:20:20:69:ab:cd:36:6c: 72:a6:03:6e:09:b3:20:99:48:b7:b8:43:d6:94:2f:96:f1:00: bb:cf:f9:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVEMzQxMTAvBgNVBAUTKDlFQzEyMTZEMjU2NDE2NDAzQ0I1QzUzRTczNDU1MzBG ODMyNzJDREQwHhcNMjUwNjEyMjAzOTQ0WhcNMjUwNjE5MjAzOTQ0WjAYMRYwFAYD VQQDEw02ODRiM2IxMC1hYThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz38OlD4+XUxP9jaIvunbFpUMvCMKbbI7pwyChpItYIHNGqOUCdQq828Rk7st RApfjdxcNO813c5tij0Jwp66YjMYB4ugWdJEMyVprfzrD6Dqy3phhn++1eMHoqEB m7JaqmzXgPMFUCSIHZfnTcRtVbXcYVOq8VHbkfMzLMUdTDyO/qYpvlWaLLEZ5h55 DCdcmM4Ls3W+0wuwaLVbBIgBTazdu16nhCUfwY4oykNjkll6qCG8rY/QzKXxOeJX kHC8gYh8imthbdizUma6Y6KlZEdBl8ntBB6q4CahdewKE/tHUeouBTdBKItHC4iG 4pBSEwtnMaqdUMRg9FhUZ6j31wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUzfzAQ P8O73PyQNnLARR9Fv6k1MB8GA1UdIwQYMBaAFJ7BIW0lZBZAPLXFPnNFUw+DJyzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQzNC9EQkE4Nzg1OEU2 QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0ZrQTh0Y1UtYzBWVEQ0TW5M TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zRWhiU1ZrRmtBOHRjVS1jMFZURDRNbkxOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQzNC9EQkE4Nzg1OEU2QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0Zr QTh0Y1UtYzBWVEQ0TW5MTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3efyJYXklCS4Yn7oMPki37AtOzbHyn8Qz/OWjN9RjDiHx6uGbt95K sLRN49iP6+B3h7SqSTjwO41rVD4h7pPheV5dLerLVvK6H3Z5/acHEAplCBF1NV5i XZLsIiogUAZVSHUPoiBMvlPSOMjXjyeTnrJOL2lfNe7hyqd5UkMo7Gy0TnM1uPGx gQ4D0OwKkJ51CmEbQTujSmNijhUhg2kV8lK8kkmxue2q9lf/c1dV8knkAc8hQx6q q8jK/0N2oWH8FLdfZwFxq1JSHcTE9XcFl0NkvVBTS8r0D7pqpL7X3mAg/yAgaavN NmxypgNuCbMgmUi3uEPWlC+W8QC7z/kx -----END CERTIFICATE-----Generated at Sat Jun 14 17:57:59 2025 by rpki-client