$ rpki-client -vvf rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft File: Nocz_cVgxeuJ5FJA331AOcsvYQg.mft (raw, json) Hash identifier: F8pZwsDnuyxe0+PypiB1CVMZkyVnwGiHFZgf0lsSUfQ= Subject key identifier: DB:5D:26:9A:7D:23:9A:AF:35:9E:F2:EA:F8:C6:86:51:43:27:A9:E4 Authority key identifier: 36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 Certificate issuer: /CN=A91C97F5/serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft Manifest number: 025B Signing time: Thu 07 Aug 2025 02:23:41 +0000 Manifest this update: Thu 07 Aug 2025 02:23:40 +0000 Manifest next update: Thu 14 Aug 2025 02:23:40 +0000 Files and hashes: 1: Nocz_cVgxeuJ5FJA331AOcsvYQg.crl (hash: 1R0rP5DcPuAcpe7FNsvZ6h1GC/7JQEYcWDJlZCUs0Uo=) 2: 020D49E0283211ED9E29FA70C4F9AE02.roa (hash: LQxrSI0KNNYbihu8S9SLx+zDE07D+HfcizadCn96Tg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C97F5, serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Validity Not Before: Aug 7 02:23:40 2025 GMT Not After : Aug 14 02:23:40 2025 GMT Subject: CN=68940e2d-8418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bd:3c:6b:b0:27:90:3a:53:d1:83:5b:01:ec: 5e:02:81:2a:53:89:e9:e5:85:2e:00:ea:7e:6c:aa: 27:c4:b2:2c:7a:fb:af:78:a0:01:81:ec:fc:b2:1e: f8:ad:c2:86:bd:53:e8:3f:28:05:44:1d:6a:4b:6b: fe:5e:5f:ef:bd:ce:13:52:cc:2e:bf:ed:fb:5f:ad: 49:f8:d6:b8:e6:98:bd:c1:69:28:b2:46:70:f8:60: 70:4a:fd:48:65:d1:22:93:88:8a:15:9a:47:4f:44: 99:32:00:b0:fe:26:85:0d:ab:0e:31:de:04:e6:8f: 16:7e:b4:91:f3:0d:9e:9b:b4:e6:2b:49:45:6e:49: 58:b1:df:99:54:5c:8f:86:8b:82:cf:8e:c1:25:86: 79:97:fb:26:0d:2c:af:e2:7a:95:fe:5c:b2:9a:49: d9:a0:ca:12:c2:a9:63:9c:0f:38:c5:96:f2:43:2c: 75:ff:17:88:d0:eb:58:8c:48:24:0e:15:28:8d:be: c0:9c:90:2f:7d:49:ff:7d:92:12:dc:78:c2:65:0e: 09:2c:de:29:1e:6b:19:e6:fd:d5:e6:3d:bb:cd:cd: 3c:23:ce:74:c8:ad:c5:5a:f4:e1:31:d3:31:c5:81: 96:20:99:c7:9f:55:c7:71:89:c3:9b:0c:72:43:c7: 41:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5D:26:9A:7D:23:9A:AF:35:9E:F2:EA:F8:C6:86:51:43:27:A9:E4 X509v3 Authority Key Identifier: keyid:36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:c7:ba:b6:43:57:1e:00:f9:71:67:5b:1d:c3:0f:db:68:f7: ca:21:c1:d5:4d:5a:52:d5:c9:d1:48:54:04:97:bc:6c:e1:bd: 64:35:7e:8f:e4:59:2f:58:7d:9c:3a:b5:ed:66:ee:68:4d:81: 10:ae:c5:8b:8c:a3:17:11:85:7e:ca:23:71:29:31:c6:30:e7: 03:e2:ac:ec:c0:10:f1:ab:2b:9a:79:db:97:09:4e:fa:5d:af: 47:b5:97:e6:99:83:13:75:bc:b8:8d:1b:9d:77:fb:3e:b0:d7: a1:01:c9:fa:b1:6b:59:42:59:56:bb:49:98:51:bc:0a:8f:ff: ed:59:69:e5:15:0b:ac:e2:a1:7e:9c:c1:82:9e:02:fa:93:03: 8b:40:87:8f:3e:dc:41:a3:12:8d:ce:ad:b1:45:a1:d1:46:35: 1b:54:9e:b7:b1:ef:16:e3:0b:70:66:49:57:73:5f:a9:96:b1: 38:3d:b8:9e:39:d3:61:ec:fd:a1:53:85:e3:08:61:ed:38:6a: c7:57:74:5f:37:9a:14:64:bf:d0:d6:45:6c:10:7d:dd:bf:b1: dc:df:13:f7:6d:a0:10:62:8b:9b:1d:68:86:b0:c6:3d:3e:bc: de:dc:30:a0:43:37:49:08:81:df:e7:89:b1:af:93:27:76:eb: e9:83:fc:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk3RjUxMTAvBgNVBAUTKDM2ODczM0ZEQzU2MEM1RUI4OUU0NTI0MERGN0Q0MDM5 Q0IyRjYxMDgwHhcNMjUwODA3MDIyMzQwWhcNMjUwODE0MDIyMzQwWjAYMRYwFAYD VQQDEw02ODk0MGUyZC04NDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtr08a7AnkDpT0YNbAexeAoEqU4np5YUuAOp+bKonxLIsevuveKABgez8sh74 rcKGvVPoPygFRB1qS2v+Xl/vvc4TUswuv+37X61J+Na45pi9wWkoskZw+GBwSv1I ZdEik4iKFZpHT0SZMgCw/iaFDasOMd4E5o8WfrSR8w2em7TmK0lFbklYsd+ZVFyP houCz47BJYZ5l/smDSyv4nqV/lyymknZoMoSwqljnA84xZbyQyx1/xeI0OtYjEgk DhUojb7AnJAvfUn/fZIS3HjCZQ4JLN4pHmsZ5v3V5j27zc08I850yK3FWvThMdMx xYGWIJnHn1XHcYnDmwxyQ8dBQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtdJpp9 I5qvNZ7y6vjGhlFDJ6nkMB8GA1UdIwQYMBaAFDaHM/3FYMXrieRSQN99QDnLL2EI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTdGNS85MTcwQzQyQTI3 NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hldUo1RkpBMzMxQU9jc3ZZ UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05vY3pfY1ZneGV1SjVGSkEzMzFBT2NzdllRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTdGNS85MTcwQzQyQTI3NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hl dUo1RkpBMzMxQU9jc3ZZUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAex7q2Q1ceAPlxZ1sdww/baPfKIcHVTVpS1cnRSFQEl7xs4b1kNX6P 5FkvWH2cOrXtZu5oTYEQrsWLjKMXEYV+yiNxKTHGMOcD4qzswBDxqyuaeduXCU76 Xa9HtZfmmYMTdby4jRudd/s+sNehAcn6sWtZQllWu0mYUbwKj//tWWnlFQus4qF+ nMGCngL6kwOLQIePPtxBoxKNzq2xRaHRRjUbVJ63se8W4wtwZklXc1+plrE4Pbie OdNh7P2hU4XjCGHtOGrHV3RfN5oUZL/Q1kVsEH3dv7Hc3xP3baAQYoubHWiGsMY9 Prze3DCgQzdJCIHf54mxr5Mnduvpg/zZ -----END CERTIFICATE-----Generated at Thu Aug 7 04:43:31 2025 by rpki-client