$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: kJwfG2fklKercovpM61D0Q0cIKT3jpWST/L4RXdTPMY= Subject key identifier: 01:3D:1F:6A:CE:71:20:D6:05:CC:65:5C:B4:5F:2F:1A:3B:C9:94:6C Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 07E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 07E1 Signing time: Thu 12 Jun 2025 20:43:11 +0000 Manifest this update: Thu 12 Jun 2025 20:43:10 +0000 Manifest next update: Thu 19 Jun 2025 20:43:10 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: 5pHKyfLSExDwm9A3FfCD+AlvhOGYOhpJjha6d+P/xJc=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Jun 12 20:43:10 2025 GMT Not After : Jun 19 20:43:10 2025 GMT Subject: CN=684b3bde-dd49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:56:d1:8a:1e:1a:5c:48:99:f7:f1:d2:f7:60: e4:ec:7f:6b:fe:89:5f:37:1a:03:9f:bc:ce:2b:4a: 43:f3:75:ba:e0:13:be:52:58:cc:81:6b:b5:82:4f: 04:08:be:50:2f:1b:93:5a:9c:ba:fc:ad:7d:8f:33: 6e:fe:8c:db:81:5b:49:f6:1b:6b:6f:67:a3:ef:83: 20:49:18:26:88:b0:d8:63:f5:76:7a:5d:19:3d:1e: 29:a8:d9:2f:c3:db:3f:84:1a:2f:79:42:5a:56:5e: 69:08:5b:0f:2c:25:72:f4:a1:4b:dc:b7:3d:b5:35: 52:de:78:e0:ba:e0:93:af:07:c9:e0:a8:c4:57:71: b4:71:dc:4b:49:a7:a6:09:c0:16:02:54:c6:70:1b: ac:56:40:d0:ff:84:c9:9d:4c:f4:3f:32:dc:97:09: d3:ab:37:58:e8:fc:aa:b0:ff:81:aa:01:3e:89:7f: 78:0b:0f:ff:36:63:fb:b2:d4:9e:0d:fd:13:d2:88: 17:d3:36:9b:b4:f0:8a:be:53:0a:82:75:35:d9:29: 89:32:45:84:0a:8c:cd:66:82:71:0a:34:db:2d:77: f7:1d:53:05:fe:5d:64:af:0a:3c:e2:16:ba:26:c2: 45:f1:9c:d2:d0:7c:2e:cb:15:08:2a:02:f3:7b:ff: d2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3D:1F:6A:CE:71:20:D6:05:CC:65:5C:B4:5F:2F:1A:3B:C9:94:6C X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:62:5b:12:ba:cf:8a:6b:c4:66:0b:27:9c:8e:33:b9:2d:e3: 8f:6e:8a:f3:42:c3:3b:de:34:28:13:58:11:74:fc:46:82:12: 94:eb:ea:97:b9:26:f6:7e:30:f1:26:77:a8:9e:af:a1:43:64: be:b0:26:a7:08:b2:46:11:f1:ba:71:30:15:06:63:2a:7b:0a: a5:b1:d3:fd:94:f9:cc:83:70:01:86:20:38:40:79:77:37:9d: 69:15:fd:02:d2:a1:13:30:41:78:b7:b9:21:75:0a:38:10:08: d0:97:7b:7f:7a:d2:de:89:d4:35:7a:4e:66:07:72:c4:94:1d: a7:0f:5a:74:ba:f0:00:45:c2:a4:91:4b:10:f7:7a:1b:52:9c: 0c:1e:f0:1f:c7:69:9e:4d:89:c1:4f:34:1a:f3:89:60:46:65: 98:2e:a2:d4:47:0f:64:6d:39:ef:08:34:a3:64:5d:8f:61:ab: b5:90:20:b9:12:9a:74:28:0f:70:f3:2e:c6:4d:b3:0c:7a:7b: 21:81:f6:50:d6:77:c3:b9:bb:e9:75:08:c1:a1:fa:7c:f2:fc: f9:2c:d8:06:a8:32:56:b9:a8:22:85:3b:a0:dc:d3:01:5e:a9: ab:e6:c1:f2:d5:85:3a:f0:81:14:95:fc:b4:04:96:b8:87:86: 07:a0:a7:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwNjEyMjA0MzEwWhcNMjUwNjE5MjA0MzEwWjAYMRYwFAYD VQQDEw02ODRiM2JkZS1kZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplbRih4aXEiZ9/HS92Dk7H9r/olfNxoDn7zOK0pD83W64BO+UljMgWu1gk8E CL5QLxuTWpy6/K19jzNu/ozbgVtJ9htrb2ej74MgSRgmiLDYY/V2el0ZPR4pqNkv w9s/hBoveUJaVl5pCFsPLCVy9KFL3Lc9tTVS3njguuCTrwfJ4KjEV3G0cdxLSaem CcAWAlTGcBusVkDQ/4TJnUz0PzLclwnTqzdY6PyqsP+BqgE+iX94Cw//NmP7stSe Df0T0ogX0zabtPCKvlMKgnU12SmJMkWECozNZoJxCjTbLXf3HVMF/l1krwo84ha6 JsJF8ZzS0HwuyxUIKgLze//SQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE9H2rO cSDWBcxlXLRfLxo7yZRsMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYYlsSus+Ka8RmCyecjjO5LeOPborzQsM73jQoE1gRdPxGghKU6+qX uSb2fjDxJneonq+hQ2S+sCanCLJGEfG6cTAVBmMqewqlsdP9lPnMg3ABhiA4QHl3 N51pFf0C0qETMEF4t7khdQo4EAjQl3t/etLeidQ1ek5mB3LElB2nD1p0uvAARcKk kUsQ93obUpwMHvAfx2meTYnBTzQa84lgRmWYLqLURw9kbTnvCDSjZF2PYau1kCC5 Epp0KA9w8y7GTbMMenshgfZQ1nfDubvpdQjBofp88vz5LNgGqDJWuagihTug3NMB Xqmr5sHy1YU68IEUlfy0BJa4h4YHoKf8 -----END CERTIFICATE-----Generated at Sat Jun 14 19:33:55 2025 by rpki-client