$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: +TCqrRSG3SqtG7wRFcB8Gtoz1kMl7DBizdKOYdp/8Dc= Subject key identifier: 42:A0:0B:CF:3E:3D:59:D5:FD:67:6D:60:5F:9B:55:14:FC:FF:62:A2 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 02FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 02F6 Signing time: Fri 13 Jun 2025 00:49:21 +0000 Manifest this update: Fri 13 Jun 2025 00:49:20 +0000 Manifest next update: Fri 20 Jun 2025 00:49:20 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: +ROA87wF5y7MAX6DX7NnurkegBhfhK2H+12Eu/bwsbI=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: HwkSTw7raizrXpljDXnHXfZQCr+VPlFOvS2ci48bY0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 763 (0x2fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Jun 13 00:49:20 2025 GMT Not After : Jun 20 00:49:20 2025 GMT Subject: CN=684b7590-32b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f1:3a:3f:b4:67:a5:be:18:6e:40:e2:e7:00: 01:e6:eb:f2:1a:b0:bf:17:0f:ec:00:8d:de:6b:15: 9d:cf:7f:32:98:ca:51:32:09:d5:f6:2a:79:6a:ce: 67:79:53:12:97:72:69:3a:71:cd:a3:a7:de:81:bb: eb:cd:51:82:db:7a:0f:57:53:94:84:cb:73:d9:e6: fc:0e:fe:48:91:b1:08:c0:e5:a1:8f:d7:29:db:44: 04:e3:39:c1:19:66:09:db:85:6f:4d:ee:20:88:2c: d5:0f:9d:c0:dd:19:ec:39:06:97:9c:76:df:44:cf: 54:a5:93:76:67:25:dc:70:1f:7a:3c:fb:ac:e5:d4: 62:0c:bc:c2:38:1e:28:cf:3c:6e:23:60:f9:94:dd: 51:d1:f7:55:4c:a9:da:e0:9c:a8:82:ff:c8:6a:8b: 59:ee:fa:4d:f0:a2:d6:cf:b5:6a:4c:c4:5f:0e:cb: 1e:2f:61:7c:ee:f7:f4:b3:8b:95:e1:1c:44:d6:41: c4:c6:30:a5:e8:46:40:33:80:b3:ac:a8:6e:30:fc: 40:64:0c:68:06:14:79:1f:bb:1b:8b:81:9c:c1:e6: e2:43:be:19:a8:04:c0:fb:3f:c7:ff:ff:8f:18:3d: cd:ab:d4:7b:0d:92:f3:01:28:46:33:b4:04:8d:59: d0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A0:0B:CF:3E:3D:59:D5:FD:67:6D:60:5F:9B:55:14:FC:FF:62:A2 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ce:48:10:9f:04:33:80:28:6a:f2:90:27:c5:d7:f0:77:24: ed:f6:b1:f1:c4:c2:36:de:b8:72:60:57:57:fa:ce:cc:cc:a9: fd:44:1b:3a:c0:15:0b:3b:27:1e:ce:8f:c3:7d:7c:aa:93:dd: 8e:46:17:26:6e:bd:df:4e:3d:52:0a:33:6b:c1:44:c8:16:2c: 24:d1:19:97:5f:7b:e3:ac:9c:d0:16:fd:ec:14:63:9c:32:ce: 9f:05:59:f6:d7:2c:66:a0:43:4d:e0:50:30:4d:b9:5f:3e:69: 03:ed:d5:d4:95:33:86:2a:9e:94:33:c1:44:6b:8b:2b:0b:99: 3c:dd:b9:c8:bd:f8:82:7c:d2:ca:63:d5:1e:af:13:e8:46:2c: 05:c1:8a:e5:3e:1a:44:ca:db:02:c3:ff:dd:1f:4b:99:47:7a: ce:32:78:33:84:0a:7b:ae:6d:b5:6e:ef:44:93:d2:14:22:5c: 85:5d:23:ff:f3:df:f6:50:64:17:86:72:b7:7c:89:5e:fc:b8: 82:3e:04:8b:a0:17:69:6b:6d:43:b0:91:25:4f:c8:24:41:3a: 0e:95:b2:3a:98:bf:61:4b:34:61:9a:3c:16:15:f9:65:d0:9d: 32:bd:27:92:23:9e:1f:8e:e9:85:e7:26:38:d0:69:7c:bc:18: 91:81:18:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUwNjEzMDA0OTIwWhcNMjUwNjIwMDA0OTIwWjAYMRYwFAYD VQQDEw02ODRiNzU5MC0zMmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfE6P7Rnpb4YbkDi5wAB5uvyGrC/Fw/sAI3eaxWdz38ymMpRMgnV9ip5as5n eVMSl3JpOnHNo6fegbvrzVGC23oPV1OUhMtz2eb8Dv5IkbEIwOWhj9cp20QE4znB GWYJ24VvTe4giCzVD53A3RnsOQaXnHbfRM9UpZN2ZyXccB96PPus5dRiDLzCOB4o zzxuI2D5lN1R0fdVTKna4Jyogv/IaotZ7vpN8KLWz7VqTMRfDsseL2F87vf0s4uV 4RxE1kHExjCl6EZAM4CzrKhuMPxAZAxoBhR5H7sbi4GcwebiQ74ZqATA+z/H//+P GD3Nq9R7DZLzAShGM7QEjVnQaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKgC88+ PVnV/WdtYF+bVRT8/2KiMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdzkgQnwQzgChq8pAnxdfwdyTt9rHxxMI23rhyYFdX+s7MzKn9RBs6 wBULOycezo/DfXyqk92ORhcmbr3fTj1SCjNrwUTIFiwk0RmXX3vjrJzQFv3sFGOc Ms6fBVn21yxmoENN4FAwTblfPmkD7dXUlTOGKp6UM8FEa4srC5k83bnIvfiCfNLK Y9UerxPoRiwFwYrlPhpEytsCw//dH0uZR3rOMngzhAp7rm21bu9Ek9IUIlyFXSP/ 89/2UGQXhnK3fIle/LiCPgSLoBdpa21DsJElT8gkQToOlbI6mL9hSzRhmjwWFfll 0J0yvSeSI54fjumF5yY40Gl8vBiRgRhL -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:02 2025 by rpki-client