$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft File: Nvf123A1uQ_bKShY4vz45rmRgXg.mft (raw, json) Hash identifier: 5xafnvfthZFgCu+Nh9jIYaCsbbFljidMb4PkqUFFKV0= Subject key identifier: FA:DD:59:BA:DC:D2:56:69:11:45:E7:1C:AF:92:A6:C1:1B:2D:F2:2E Authority key identifier: 36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 Certificate issuer: /CN=A91CC636/serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft Manifest number: 0152 Signing time: Fri 13 Jun 2025 03:06:21 +0000 Manifest this update: Fri 13 Jun 2025 03:06:20 +0000 Manifest next update: Fri 20 Jun 2025 03:06:20 +0000 Files and hashes: 1: Nvf123A1uQ_bKShY4vz45rmRgXg.crl (hash: fEXk8hrxMt93pUYvyylFF4W/k9mZuehdWXUuu5NwDew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC636, serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Validity Not Before: Jun 13 03:06:20 2025 GMT Not After : Jun 20 03:06:20 2025 GMT Subject: CN=684b95ac-281c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:71:4d:9d:08:3d:8f:b0:e3:57:62:32:dd:d7: 78:bf:0d:db:3c:ec:e4:70:f8:50:6c:42:86:21:ae: 69:08:a6:ab:2e:ce:06:84:fb:5a:a4:ff:31:21:7d: d5:8e:33:2b:8b:9c:b2:58:02:15:a9:85:dd:db:de: 6e:a3:1d:7e:eb:67:81:c6:c0:37:c2:f0:bd:c9:08: b5:ea:61:35:54:51:54:8c:50:3d:26:c8:59:59:ef: 1d:56:67:08:c6:8b:2c:c0:c2:e3:64:bb:37:9a:6b: ea:05:c0:9c:46:b2:93:9a:06:62:57:d9:8e:b0:c3: 7c:e8:da:de:7f:c1:f3:02:9b:b5:e2:16:57:07:78: e9:81:db:95:e4:19:5d:99:a9:e9:eb:7c:f6:0c:10: 05:e9:7a:c5:19:46:bc:cc:9f:95:f7:75:a3:88:46: 1c:04:f0:d6:c8:83:e7:20:44:e5:25:d4:58:a8:6e: 83:62:e6:8e:3b:0f:c9:b3:fd:76:c1:d6:48:e1:9c: 8b:01:bb:06:39:6e:77:b8:fb:12:c5:b2:be:67:de: 31:5f:2a:ba:48:8e:7a:73:70:7e:c1:51:1f:2a:90: b6:5c:4b:5c:2e:02:f2:d0:db:1a:cb:ed:e7:a9:68: 20:6a:73:f3:b2:11:de:67:c7:54:61:5f:89:42:29: 18:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:DD:59:BA:DC:D2:56:69:11:45:E7:1C:AF:92:A6:C1:1B:2D:F2:2E X509v3 Authority Key Identifier: keyid:36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:dc:4f:48:b4:fb:74:be:12:df:5d:02:32:16:9c:3b:c4:a6: 1b:c4:78:c7:ea:b0:2a:2b:6b:76:4c:74:3b:2c:e2:60:52:ea: 97:ad:ee:cc:ff:e1:39:de:cb:25:0a:4a:c9:96:cb:13:59:1e: 30:7e:43:2d:6b:80:0a:4d:61:a5:04:10:86:82:94:63:9a:72: a5:3d:79:20:df:ae:0a:a4:d1:2f:5a:72:62:d4:03:38:32:38: 4e:29:39:a5:10:cc:26:57:cb:d2:64:fa:04:01:67:5a:bd:29: 48:79:ee:67:9c:65:af:ec:71:ab:1f:9e:c9:0e:10:ba:8b:a8: 09:d8:22:ee:f8:99:c7:d3:f7:1a:ad:89:54:33:49:97:ff:cd: de:fd:70:6e:b8:a4:ff:7c:e0:99:e8:ca:b0:de:ae:b2:16:d0: 3b:fa:ff:ec:fe:79:76:7c:7f:22:24:e3:79:ec:2c:b2:45:1e: 8b:7b:69:ce:65:04:62:71:fe:0f:06:bd:ab:d9:78:67:45:2c: 26:92:63:0d:db:df:61:98:b1:21:6a:48:bd:7d:db:b3:4d:d5: 90:5f:48:35:00:a6:f7:44:e4:6a:59:e3:e2:8d:8b:ab:b6:bb: 25:4b:26:b7:e8:20:ff:44:1d:ac:f8:bd:1d:ed:fa:08:bc:91: 0a:76:bd:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M2MzYxMTAvBgNVBAUTKDM2RjdGNURCNzAzNUI5MEZEQjI5Mjg1OEUyRkNGOEU2 Qjk5MTgxNzgwHhcNMjUwNjEzMDMwNjIwWhcNMjUwNjIwMDMwNjIwWjAYMRYwFAYD VQQDEw02ODRiOTVhYy0yODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13FNnQg9j7DjV2Iy3dd4vw3bPOzkcPhQbEKGIa5pCKarLs4GhPtapP8xIX3V jjMri5yyWAIVqYXd295uox1+62eBxsA3wvC9yQi16mE1VFFUjFA9JshZWe8dVmcI xosswMLjZLs3mmvqBcCcRrKTmgZiV9mOsMN86Nref8HzApu14hZXB3jpgduV5Bld manp63z2DBAF6XrFGUa8zJ+V93WjiEYcBPDWyIPnIETlJdRYqG6DYuaOOw/Js/12 wdZI4ZyLAbsGOW53uPsSxbK+Z94xXyq6SI56c3B+wVEfKpC2XEtcLgLy0Nsay+3n qWgganPzshHeZ8dUYV+JQikYiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrdWbrc 0lZpEUXnHK+SpsEbLfIuMB8GA1UdIwQYMBaAFDb39dtwNbkP2ykoWOL8+Oa5kYF4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzYzNi81NEQyN0UyMDQy MzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVRX2JLU2hZNHZ6NDVybVJn WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL052ZjEyM0ExdVFfYktTaFk0dno0NXJtUmdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzYzNi81NEQyN0UyMDQyMzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVR X2JLU2hZNHZ6NDVybVJnWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO3E9ItPt0vhLfXQIyFpw7xKYbxHjH6rAqK2t2THQ7LOJgUuqXre7M /+E53sslCkrJlssTWR4wfkMta4AKTWGlBBCGgpRjmnKlPXkg364KpNEvWnJi1AM4 MjhOKTmlEMwmV8vSZPoEAWdavSlIee5nnGWv7HGrH57JDhC6i6gJ2CLu+JnH0/ca rYlUM0mX/83e/XBuuKT/fOCZ6Mqw3q6yFtA7+v/s/nl2fH8iJON57CyyRR6Le2nO ZQRicf4PBr2r2XhnRSwmkmMN299hmLEhaki9fduzTdWQX0g1AKb3RORqWePijYur trslSya36CD/RB2s+L0d7foIvJEKdr2F -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:10 2025 by rpki-client