$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft File: NXR5DY34KztVHjtwJXG69VqemWE.mft (raw, json) Hash identifier: QPxSdEbj88ENs8zij/p6easH46Nkf4IwfPEcoIUUWio= Subject key identifier: 26:9A:E6:06:C3:12:B5:16:30:54:86:A4:0F:C5:47:4F:28:29:DE:8E Authority key identifier: 35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 Certificate issuer: /CN=A91CD40B/serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft Manifest number: 95 Signing time: Sun 15 Jun 2025 05:43:58 +0000 Manifest this update: Sun 15 Jun 2025 05:43:58 +0000 Manifest next update: Sun 22 Jun 2025 05:43:58 +0000 Files and hashes: 1: NXR5DY34KztVHjtwJXG69VqemWE.crl (hash: q8oiH47CkpqXtmV62cgjTE12O+xCi5QZmml+aEm1Djk=) 2: DA8D1C7EA72311EFBCEB047EC4F9AE02.roa (hash: 4Ilw9gY/NOcFcq0qbuj1smp6o0+TRpgSf2CHUKcnvWE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=3574790D8DF82B3B551E3B702571BAF55A9E9961 Validity Not Before: Jun 15 05:43:58 2025 GMT Not After : Jun 22 05:43:58 2025 GMT Subject: CN=684e5d9e-593e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:61:32:d0:e4:2b:cc:ca:31:91:a3:84:a9:8e: b7:c5:ed:80:ad:1b:b5:a5:70:5b:d3:e2:1e:22:ff: c7:62:21:4c:c2:24:90:7b:5c:fa:0a:13:b5:2c:fa: 77:bc:0a:c4:1f:16:f0:3c:81:9b:71:9c:7b:a9:59: 20:c4:11:68:a7:95:53:fc:1a:d5:ef:36:7b:5c:36: 50:18:63:07:32:2b:53:9a:1d:b7:0d:1b:f2:c2:40: e2:e2:99:4e:84:cd:16:7d:a8:5a:8d:c6:1b:5e:84: fd:6b:9e:fd:06:68:91:39:a6:2c:ef:2b:55:a9:86: 1f:eb:5f:70:5a:4d:71:1c:81:45:da:73:d9:48:9d: e6:12:cd:e9:1c:35:9d:fb:1d:6f:36:03:28:ed:f4: 57:a9:01:ae:6d:58:d5:ba:d0:d4:36:60:e2:3f:cb: 62:5b:00:0f:32:3f:6c:32:00:5b:01:70:86:be:94: 88:ca:f0:b7:09:d5:80:f3:f3:3f:ab:9c:6d:7d:3b: 38:4b:e7:b0:f3:c0:3d:1c:57:83:c5:b4:3a:a0:ea: e0:09:bc:87:92:26:8d:b8:aa:f8:53:16:5d:65:39: 0e:80:46:d9:27:1d:24:b8:74:87:4d:8b:06:23:d4: a1:e4:e2:8f:c8:72:0c:03:3b:4e:d2:f0:71:6b:36: 31:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:9A:E6:06:C3:12:B5:16:30:54:86:A4:0F:C5:47:4F:28:29:DE:8E X509v3 Authority Key Identifier: keyid:35:74:79:0D:8D:F8:2B:3B:55:1E:3B:70:25:71:BA:F5:5A:9E:99:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NXR5DY34KztVHjtwJXG69VqemWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/6B5D2A7C855B11EFB0576D40C4F9AE02/NXR5DY34KztVHjtwJXG69VqemWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c7:cc:d3:5c:0c:f8:92:da:89:26:ed:a3:5a:e0:d9:67:a3: 3c:9a:e1:9a:ca:59:0c:8b:87:8b:31:48:84:da:6b:91:00:e8: fb:01:8e:31:6d:6d:26:80:79:0a:d1:83:e9:19:21:87:cc:be: 4d:9c:3e:84:a8:54:73:60:ec:4b:ae:fd:6c:1a:7d:f5:b8:f1: 9c:dc:df:98:a7:07:1a:22:12:6c:74:06:d7:b2:75:32:08:36: 4b:94:85:0e:fc:98:51:4e:50:01:52:91:27:cb:4a:46:7c:e1: bd:21:49:93:2e:cf:27:6b:d1:32:24:cd:fe:dd:4a:6e:e7:f1: b6:5d:ba:c0:89:6f:4e:e8:88:47:df:5e:c8:b6:7e:6f:28:88: 45:a7:5c:68:fc:a9:81:18:61:8f:89:ec:48:d3:79:71:16:d7: 19:09:72:62:86:36:2e:b8:90:7c:61:29:f5:8e:8b:97:d3:a8: d3:b9:1a:e0:5b:0b:66:18:16:3e:1d:7b:d3:45:fe:9c:ef:84: f8:23:7d:66:5c:f1:93:71:99:65:ad:85:ce:4c:13:2d:97:46: 78:cb:08:d7:ce:3f:9d:95:d4:94:f9:f1:0c:f4:48:60:5e:56: 6e:db:35:5f:c6:3e:aa:dc:c8:2a:4b:cb:62:34:91:49:46:37: 61:5f:d4:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDM1NzQ3OTBEOERGODJCM0I1NTFFM0I3MDI1NzFCQUY1 NUE5RTk5NjEwHhcNMjUwNjE1MDU0MzU4WhcNMjUwNjIyMDU0MzU4WjAYMRYwFAYD VQQDEw02ODRlNWQ5ZS01OTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mEy0OQrzMoxkaOEqY63xe2ArRu1pXBb0+IeIv/HYiFMwiSQe1z6ChO1LPp3 vArEHxbwPIGbcZx7qVkgxBFop5VT/BrV7zZ7XDZQGGMHMitTmh23DRvywkDi4plO hM0WfahajcYbXoT9a579BmiROaYs7ytVqYYf619wWk1xHIFF2nPZSJ3mEs3pHDWd +x1vNgMo7fRXqQGubVjVutDUNmDiP8tiWwAPMj9sMgBbAXCGvpSIyvC3CdWA8/M/ q5xtfTs4S+ew88A9HFeDxbQ6oOrgCbyHkiaNuKr4UxZdZTkOgEbZJx0kuHSHTYsG I9Sh5OKPyHIMAztO0vBxazYxEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaa5gbD ErUWMFSGpA/FR08oKd6OMB8GA1UdIwQYMBaAFDV0eQ2N+Cs7VR47cCVxuvVanplh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi82QjVEMkE3Qzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6dFZIanR3SlhHNjlWcWVt V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05YUjVEWTM0S3p0VkhqdHdKWEc2OVZxZW1XRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi82QjVEMkE3Qzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9OWFI1RFkzNEt6 dFZIanR3SlhHNjlWcWVtV0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbx8zTXAz4ktqJJu2jWuDZZ6M8muGaylkMi4eLMUiE2muRAOj7AY4x bW0mgHkK0YPpGSGHzL5NnD6EqFRzYOxLrv1sGn31uPGc3N+YpwcaIhJsdAbXsnUy CDZLlIUO/JhRTlABUpEny0pGfOG9IUmTLs8na9EyJM3+3Upu5/G2XbrAiW9O6IhH 317Itn5vKIhFp1xo/KmBGGGPiexI03lxFtcZCXJihjYuuJB8YSn1jouX06jTuRrg WwtmGBY+HXvTRf6c74T4I31mXPGTcZllrYXOTBMtl0Z4ywjXzj+dldSU+fEM9Ehg XlZu2zVfxj6q3MgqS8tiNJFJRjdhX9SC -----END CERTIFICATE-----Generated at Mon Jun 16 02:42:57 2025 by rpki-client