$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: UDOX9O6A6eqPOtwI1sq4+vQ3Q1dnPYvc5usyjV7pWFw= Subject key identifier: 79:1E:17:1D:0E:37:86:22:60:6E:89:2B:27:3A:80:32:C7:3F:08:15 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 0122 Signing time: Fri 13 Jun 2025 03:41:47 +0000 Manifest this update: Fri 13 Jun 2025 03:41:47 +0000 Manifest next update: Fri 20 Jun 2025 03:41:47 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: P5VoLNgJj9LJumKwFudtI94XBkN+afbHzBOW3wDqFpY=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Jun 13 03:41:47 2025 GMT Not After : Jun 20 03:41:47 2025 GMT Subject: CN=684b9dfb-c90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:45:25:1d:53:d1:0e:d0:c9:45:19:e7:11: 57:8b:6f:cf:39:51:3b:29:c7:54:e7:b8:df:65:10: 74:16:8c:66:2f:ec:21:ab:ba:7e:63:77:27:c6:ea: ea:49:7d:4b:ac:48:85:83:f2:e7:4b:a3:08:e7:76: fe:1f:01:54:b0:40:b3:ff:23:65:1c:88:53:e1:d7: 76:bf:d1:98:6c:ed:88:bc:35:1f:de:bc:01:4e:c9: da:bf:77:cc:fc:b0:4a:c3:82:87:58:ec:35:f4:36: 27:f2:ee:59:41:b9:2e:c8:8f:83:53:e5:39:24:9e: 59:01:de:97:35:1e:cf:19:c2:ac:61:a6:89:57:05: bc:37:49:a0:d5:1a:35:fb:23:d5:42:46:0f:27:df: eb:0b:a1:86:9f:12:58:2c:93:16:71:7e:7a:87:0d: c4:b2:45:09:60:14:7b:8e:4d:47:7a:6b:88:42:d7: 2b:e6:14:99:68:48:cd:1b:5c:0e:93:26:88:16:43: 31:ce:f3:15:df:17:8e:22:0f:2d:e9:64:08:d9:fb: e9:26:b6:3f:4c:9e:e4:e2:ac:37:b5:37:88:8a:19: e1:d3:1d:a9:c2:2e:6f:6d:06:63:5c:7a:b2:50:34: 77:72:f6:73:01:ff:d9:c0:fe:d4:2c:b6:2b:9d:8c: 65:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:1E:17:1D:0E:37:86:22:60:6E:89:2B:27:3A:80:32:C7:3F:08:15 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:01:9c:de:14:9f:92:ea:e6:59:f3:74:f1:3c:1a:0c:63:b2: 3c:ab:05:86:ca:6d:e8:97:3a:e2:e2:f7:96:36:00:99:98:18: b2:b0:ef:25:ea:5f:42:78:1d:19:78:6a:45:e1:e3:60:bf:43: f2:7f:34:9d:9f:ee:55:1d:27:ef:60:08:8a:d8:bd:06:c9:0c: 10:09:78:7e:4c:f9:85:fa:37:08:da:b0:85:87:d3:ff:31:8e: 67:30:20:de:55:66:0a:57:82:59:e0:a2:b3:2e:57:3e:5f:c1: 46:3f:1b:6d:09:75:7f:80:a3:1d:8c:cd:00:b4:43:57:1c:2e: ff:4d:6c:c7:71:35:4d:9e:af:e3:f0:6e:ef:8a:ab:e4:97:93: f0:2f:02:17:af:07:c1:a9:ae:6c:80:1c:22:30:18:38:0f:b0: 56:ef:3d:89:f9:79:b2:6e:81:34:d1:bf:22:6b:4f:41:18:34: a8:b2:a3:91:4a:64:39:5b:ad:45:66:31:51:93:51:55:c9:aa: 81:10:7c:53:e1:8a:e8:af:32:26:bf:4e:6a:aa:b2:c1:38:f0: 36:7a:76:a3:42:26:c5:89:cb:ef:b3:67:b2:92:27:58:80:4f: e0:6f:cb:14:1f:2d:71:b7:94:c2:05:4c:2d:75:80:3b:92:10: c2:17:f1:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUwNjEzMDM0MTQ3WhcNMjUwNjIwMDM0MTQ3WjAYMRYwFAYD VQQDEw02ODRiOWRmYi1jOTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCBFJR1T0Q7QyUUZ5xFXi2/POVE7KcdU57jfZRB0FoxmL+whq7p+Y3cnxurq SX1LrEiFg/LnS6MI53b+HwFUsECz/yNlHIhT4dd2v9GYbO2IvDUf3rwBTsnav3fM /LBKw4KHWOw19DYn8u5ZQbkuyI+DU+U5JJ5ZAd6XNR7PGcKsYaaJVwW8N0mg1Ro1 +yPVQkYPJ9/rC6GGnxJYLJMWcX56hw3EskUJYBR7jk1HemuIQtcr5hSZaEjNG1wO kyaIFkMxzvMV3xeOIg8t6WQI2fvpJrY/TJ7k4qw3tTeIihnh0x2pwi5vbQZjXHqy UDR3cvZzAf/ZwP7ULLYrnYxl/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkeFx0O N4YiYG6JKyc6gDLHPwgVMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWAZzeFJ+S6uZZ83TxPBoMY7I8qwWGym3olzri4veWNgCZmBiysO8l 6l9CeB0ZeGpF4eNgv0PyfzSdn+5VHSfvYAiK2L0GyQwQCXh+TPmF+jcI2rCFh9P/ MY5nMCDeVWYKV4JZ4KKzLlc+X8FGPxttCXV/gKMdjM0AtENXHC7/TWzHcTVNnq/j 8G7viqvkl5PwLwIXrwfBqa5sgBwiMBg4D7BW7z2J+XmyboE00b8ia09BGDSosqOR SmQ5W61FZjFRk1FVyaqBEHxT4YrorzImv05qqrLBOPA2enajQibFicvvs2eykidY gE/gb8sUHy1xt5TCBUwtdYA7khDCF/G5 -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:42 2025 by rpki-client