$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: T62XIqi81Kf4ZNEuzO1x5yKb6iaRGIqktqckfJmn0gg= Subject key identifier: F8:36:8F:4C:58:6C:99:D7:B4:33:BE:40:64:40:93:C4:C0:3F:A3:02 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 43 Signing time: Sun 15 Jun 2025 06:35:48 +0000 Manifest this update: Sun 15 Jun 2025 06:35:47 +0000 Manifest next update: Sun 22 Jun 2025 06:35:47 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: tlIM0W3vqDZbtwOaDZsYHsroRnQnEqRJjzI4lJcmRJQ=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: KZxky345FbSXUrOq6QK1EajrLW8GtjyV/j47aC9IQ2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: Jun 15 06:35:47 2025 GMT Not After : Jun 22 06:35:47 2025 GMT Subject: CN=684e69c3-f5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c3:94:41:52:13:5b:2c:b2:54:81:aa:bb:4a: 61:f7:b1:65:6b:6b:7d:77:bb:28:54:42:cd:c2:01: e5:ca:42:c6:05:dd:c3:85:de:c5:80:df:84:8c:ad: 3f:28:87:94:34:26:da:3d:00:ab:6a:61:0a:f2:28: 12:8e:28:b7:49:e1:1c:1c:4a:8b:17:3e:0d:13:52: f4:ce:f4:87:ea:5c:63:bc:09:e4:30:ee:3b:3d:ca: 79:97:cd:bd:44:5d:6f:7d:e7:7f:9f:db:ff:a3:75: af:c6:0d:ee:08:18:e3:54:3b:26:46:2a:02:e3:44: 19:18:64:56:3d:4c:99:92:41:eb:41:c8:a7:98:ba: 56:e0:90:35:93:d8:89:6a:9a:ec:2d:59:37:4c:fe: 48:9e:15:bf:ad:48:ba:2c:fa:9d:27:c3:2c:a2:a7: d7:f6:32:ad:88:d1:16:e7:de:b6:f1:01:26:26:b8: ba:bd:55:54:e7:f9:02:19:31:02:79:14:27:50:f7: b6:a3:c1:44:c0:a7:da:94:5a:1a:e9:db:cd:8b:57: 43:ed:4a:23:b9:c8:13:cd:67:17:42:ea:03:91:b6: a5:4e:c7:a0:70:83:26:6d:32:ff:20:21:5d:92:76: 91:1a:55:89:55:eb:55:ac:73:25:83:c5:44:76:62: 50:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:36:8F:4C:58:6C:99:D7:B4:33:BE:40:64:40:93:C4:C0:3F:A3:02 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:d4:83:49:5a:58:50:6f:51:fb:2a:0b:c7:9d:ac:ab:7f:f2: 0a:63:a3:03:26:6d:2e:90:9e:67:d2:b1:d0:4f:a1:05:53:07: ee:f0:83:ad:80:e5:ab:b4:21:e9:95:2f:88:0d:2a:08:6a:5a: cf:b9:11:d0:12:a8:b3:c8:81:ed:16:46:59:5f:21:92:f8:b7: 1a:79:2b:81:21:43:89:8e:28:e1:7d:97:a8:bf:f4:44:c5:ec: 3c:91:65:b9:9a:be:a7:67:89:0a:7d:fb:96:aa:07:8a:2b:bf: 58:c2:be:e4:0e:11:be:20:2d:2b:37:41:5f:b5:ab:90:7e:0f: bc:60:a2:3f:37:0f:22:47:7c:d3:3f:0a:e4:64:59:9e:47:eb: e2:b4:b2:72:97:b9:ef:93:a0:a0:21:d2:d5:6e:2b:1a:93:30: 5c:38:b4:9e:9d:b2:48:07:8e:33:fc:ee:32:4c:24:65:89:b3: 4b:46:01:76:d6:01:35:5c:37:41:7a:99:b8:80:92:e1:bc:f6: 4d:13:ff:42:ca:f8:1b:c6:a6:d7:41:3e:a6:a4:de:d9:b4:34: b3:be:1f:6a:e8:a1:39:1b:9c:35:e6:6d:e8:6f:a5:14:23:32: ea:f4:43:99:90:8c:cc:42:d7:f3:62:17:ad:33:37:58:59:44: 34:ee:88:b3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA2MTUwNjM1NDdaFw0yNTA2MjIwNjM1NDdaMBgxFjAUBgNV BAMTDTY4NGU2OWMzLWY1ZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDww5RBUhNbLLJUgaq7SmH3sWVra313uyhUQs3CAeXKQsYF3cOF3sWA34SMrT8o h5Q0Jto9AKtqYQryKBKOKLdJ4RwcSosXPg0TUvTO9IfqXGO8CeQw7js9ynmXzb1E XW9953+f2/+jda/GDe4IGONUOyZGKgLjRBkYZFY9TJmSQetByKeYulbgkDWT2Ilq muwtWTdM/kieFb+tSLos+p0nwyyip9f2Mq2I0Rbn3rbxASYmuLq9VVTn+QIZMQJ5 FCdQ97ajwUTAp9qUWhrp282LV0PtSiO5yBPNZxdC6gORtqVOx6BwgyZtMv8gIV2S dpEaVYlV61WscyWDxUR2YlC/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+DaPTFhs mde0M75AZECTxMA/owIwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK/Ug0laWFBvUfsqC8edrKt/8gpjowMmbS6QnmfSsdBPoQVTB+7wg62A 5au0IemVL4gNKghqWs+5EdASqLPIge0WRllfIZL4txp5K4EhQ4mOKOF9l6i/9ETF 7DyRZbmavqdniQp9+5aqB4orv1jCvuQOEb4gLSs3QV+1q5B+D7xgoj83DyJHfNM/ CuRkWZ5H6+K0snKXue+ToKAh0tVuKxqTMFw4tJ6dskgHjjP87jJMJGWJs0tGAXbW ATVcN0F6mbiAkuG89k0T/0LK+BvGptdBPqak3tm0NLO+H2rooTkbnDXmbehvpRQj Mur0Q5mQjMxC1/NiF60zN1hZRDTuiLM= -----END CERTIFICATE-----Generated at Sun Jun 15 09:49:07 2025 by rpki-client