$ rpki-client -vvf rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft File: Nocz_cVgxeuJ5FJA331AOcsvYQg.mft (raw, json) Hash identifier: LO4KvKxXK/eYwzRm5ih6AISTHXjW/eXj8xV6YoN2cLs= Subject key identifier: 58:02:6A:DD:94:A6:11:91:72:CB:0B:A4:84:E4:DD:14:B6:5B:3C:39 Authority key identifier: 36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 Certificate issuer: /CN=A91C97F5/serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft Manifest number: 0240 Signing time: Sun 15 Jun 2025 01:33:28 +0000 Manifest this update: Sun 15 Jun 2025 01:33:28 +0000 Manifest next update: Sun 22 Jun 2025 01:33:28 +0000 Files and hashes: 1: Nocz_cVgxeuJ5FJA331AOcsvYQg.crl (hash: R3l8rlVmPd+K4YmzbpPvTvMuifSYZnunUDSWSYRPEVM=) 2: 020D49E0283211ED9E29FA70C4F9AE02.roa (hash: LQxrSI0KNNYbihu8S9SLx+zDE07D+HfcizadCn96Tg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:33:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C97F5, serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Validity Not Before: Jun 15 01:33:28 2025 GMT Not After : Jun 22 01:33:28 2025 GMT Subject: CN=684e22e8-6408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:63:95:cf:f0:63:b2:0e:61:61:5d:09:81: f6:37:6a:67:b2:fb:4b:fe:6e:b6:59:3a:83:17:05: f7:74:bb:d8:5a:57:b3:22:fa:ee:c6:eb:ab:41:b7: d8:2b:96:47:9b:5c:23:0e:a2:3b:3c:1d:45:39:1a: cc:3f:06:f8:65:5b:be:3e:dc:c8:b4:08:2e:19:c7: 52:9a:c6:3b:9c:99:af:90:71:a0:ed:cb:2b:09:ea: bc:2a:b7:ef:af:de:3c:43:4b:0f:95:db:32:26:75: 37:10:b8:3d:3c:7d:56:90:1f:d0:72:76:a2:56:f6: e4:a2:37:41:62:f0:ab:d5:b7:99:d2:67:78:6c:39: 00:fd:06:24:3f:1b:1a:0c:cb:e8:ee:bf:e6:f4:98: 32:b3:9f:fe:1a:9b:f6:f3:5e:ed:f4:e0:35:fa:91: 58:6d:db:ed:ed:c6:7f:02:06:f5:90:3f:0c:e4:49: 27:2e:a7:40:8f:d9:c1:72:98:8a:e3:ca:0a:31:ca: a8:9e:92:d9:01:7e:ca:3a:bc:30:e1:9e:27:a7:ff: e1:73:4d:88:3c:5d:aa:a6:35:c3:51:03:17:f4:7e: 91:4f:99:2b:26:ab:7d:2f:72:75:45:c6:70:ed:54: 16:bc:ec:90:9e:9f:1b:de:e3:90:18:76:08:9e:4a: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:02:6A:DD:94:A6:11:91:72:CB:0B:A4:84:E4:DD:14:B6:5B:3C:39 X509v3 Authority Key Identifier: keyid:36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:e8:5b:06:8b:fb:9c:ff:2b:2b:5f:fc:49:ed:c7:4b:61:f1: 12:1c:2a:f9:4e:84:a3:8a:26:cb:21:08:ea:42:25:6e:69:4e: ec:fc:1a:be:2e:b8:bb:24:eb:4a:30:42:a5:9b:8a:de:67:f8: 97:ab:d3:4e:e1:26:14:2a:06:30:f0:80:08:c8:c0:d7:63:db: bf:3a:dd:77:9b:f7:58:e3:29:fe:da:f3:49:de:22:87:6c:38: bc:3b:e9:b1:43:64:55:50:ec:8a:e8:78:24:55:d0:02:ec:f4: c5:1f:af:79:81:45:ea:d0:e9:7c:b6:69:ce:e5:62:50:c5:97: ef:c2:31:b6:09:99:7a:0b:cb:11:35:7e:8f:2d:16:2a:86:32: 40:d8:01:fb:84:6d:a0:a1:d7:c9:4d:d9:ca:82:d1:ac:06:92: ed:f0:08:02:4a:95:a7:74:15:3f:8c:e4:85:77:46:a2:73:31: e9:ee:84:aa:29:db:33:ad:49:94:b2:ec:62:35:d5:8a:bc:06: f5:89:5b:f2:4b:2f:ba:76:83:c8:bd:04:dd:f2:0d:cc:79:85: 15:c9:99:de:78:7b:a7:c6:e5:f7:7d:8b:23:c7:68:ea:2a:db: ed:f4:6c:50:bf:d3:ba:a5:61:92:2c:f3:d9:cb:61:db:ad:ab: eb:b7:95:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk3RjUxMTAvBgNVBAUTKDM2ODczM0ZEQzU2MEM1RUI4OUU0NTI0MERGN0Q0MDM5 Q0IyRjYxMDgwHhcNMjUwNjE1MDEzMzI4WhcNMjUwNjIyMDEzMzI4WjAYMRYwFAYD VQQDEw02ODRlMjJlOC02NDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXtjlc/wY7IOYWFdCYH2N2pnsvtL/m62WTqDFwX3dLvYWlezIvruxuurQbfY K5ZHm1wjDqI7PB1FORrMPwb4ZVu+PtzItAguGcdSmsY7nJmvkHGg7csrCeq8Krfv r948Q0sPldsyJnU3ELg9PH1WkB/QcnaiVvbkojdBYvCr1beZ0md4bDkA/QYkPxsa DMvo7r/m9Jgys5/+Gpv2817t9OA1+pFYbdvt7cZ/Agb1kD8M5EknLqdAj9nBcpiK 48oKMcqonpLZAX7KOrww4Z4np//hc02IPF2qpjXDUQMX9H6RT5krJqt9L3J1RcZw 7VQWvOyQnp8b3uOQGHYInkr5JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgCat2U phGRcssLpITk3RS2Wzw5MB8GA1UdIwQYMBaAFDaHM/3FYMXrieRSQN99QDnLL2EI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTdGNS85MTcwQzQyQTI3 NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hldUo1RkpBMzMxQU9jc3ZZ UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05vY3pfY1ZneGV1SjVGSkEzMzFBT2NzdllRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTdGNS85MTcwQzQyQTI3NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hl dUo1RkpBMzMxQU9jc3ZZUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv6FsGi/uc/ysrX/xJ7cdLYfESHCr5ToSjiibLIQjqQiVuaU7s/Bq+ Lri7JOtKMEKlm4reZ/iXq9NO4SYUKgYw8IAIyMDXY9u/Ot13m/dY4yn+2vNJ3iKH bDi8O+mxQ2RVUOyK6HgkVdAC7PTFH695gUXq0Ol8tmnO5WJQxZfvwjG2CZl6C8sR NX6PLRYqhjJA2AH7hG2godfJTdnKgtGsBpLt8AgCSpWndBU/jOSFd0aiczHp7oSq KdszrUmUsuxiNdWKvAb1iVvySy+6doPIvQTd8g3MeYUVyZneeHunxuX3fYsjx2jq Ktvt9GxQv9O6pWGSLPPZy2Hbravrt5UK -----END CERTIFICATE-----Generated at Mon Jun 16 09:50:29 2025 by rpki-client