$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft File: NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft (raw, json) Hash identifier: IDK4t32GQYiTpNdDjS4hjnbRDP5VB0U7IaK2YhftihY= Subject key identifier: D8:EB:D6:38:27:EE:A5:E4:93:9A:BE:61:D2:92:3A:29:1F:59:E9:5A Authority key identifier: 34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 Certificate issuer: /CN=A91FA562/serialNumber=340F813433719A760E3BFE21933687261179C327 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft Manifest number: 017C Signing time: Thu 19 Jun 2025 03:10:05 +0000 Manifest this update: Thu 19 Jun 2025 03:10:05 +0000 Manifest next update: Thu 26 Jun 2025 03:10:05 +0000 Files and hashes: 1: NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl (hash: 67QILKbzqPZSxm1ksvj16PxLY3lOzyI6i8qNT8yZZSo=) 2: 7588035C913E11EFB46E9A72C4F9AE02.roa (hash: mBxiRWgEarnzYFat9Qg22lu2bbXA9CIcAcjVQbJnnic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA562, serialNumber=340F813433719A760E3BFE21933687261179C327 Validity Not Before: Jun 19 03:10:05 2025 GMT Not After : Jun 26 03:10:05 2025 GMT Subject: CN=68537f8d-4874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:99:fc:71:f3:af:0a:ea:f9:6c:a8:d1:19: 2e:84:93:0a:5b:c4:7f:33:ae:15:56:ec:d5:17:2d: 11:ca:d9:1b:16:0d:c8:22:73:e4:19:3b:e1:d8:bd: 6f:fa:df:5f:15:e3:c4:63:7d:ff:b9:ac:9b:31:d0: b8:d5:89:ba:12:83:5a:23:f3:fb:24:54:00:db:c8: 7f:e6:f7:3d:55:14:34:1b:8f:16:38:b9:8d:2a:19: f7:f8:d8:89:03:fa:22:ea:49:49:4d:87:65:13:06: df:47:7e:1a:8e:e9:3b:6c:16:f4:14:e8:ea:4f:cb: 47:82:eb:6b:41:31:87:58:8e:5a:18:b7:e5:83:71: ef:d5:9c:1c:42:56:9b:b0:df:2b:45:cb:6f:67:3d: a8:28:06:68:7d:0b:a5:42:ef:ca:ef:a4:0d:97:85: e4:87:f3:35:82:b3:48:70:c3:7d:b7:11:3d:f7:01: ce:b4:5e:ef:40:cf:d4:21:14:9a:73:fb:81:a0:67: 50:d4:f3:85:19:0a:24:ad:ac:8b:28:41:c4:24:12: 38:43:01:73:f8:50:39:d2:f1:85:c1:9a:8e:0a:89: 2a:07:50:f5:c7:0d:7d:00:27:31:4a:d2:5e:d9:9a: 99:b5:f2:77:b9:5c:79:3a:f5:21:45:11:a5:eb:49: ca:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:EB:D6:38:27:EE:A5:E4:93:9A:BE:61:D2:92:3A:29:1F:59:E9:5A X509v3 Authority Key Identifier: keyid:34:0F:81:34:33:71:9A:76:0E:3B:FE:21:93:36:87:26:11:79:C3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NA-BNDNxmnYOO_4hkzaHJhF5wyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA562/2657F73E0BC911EE8F79BB5DC4F9AE02/NA-BNDNxmnYOO_4hkzaHJhF5wyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:9e:0f:5f:b9:4f:14:2e:bf:bd:63:6b:ff:07:ca:86:76:b6: 08:aa:20:fc:38:0b:ab:01:fa:c9:75:96:2c:f4:6c:0b:76:36: c1:ef:91:7b:2a:dc:ca:66:af:80:ec:9f:65:1e:b1:54:db:98: 9d:66:c3:b1:4d:83:aa:e5:f7:e4:a7:c2:4a:0a:18:4b:13:6f: 67:6e:27:a8:f2:c8:23:9a:f6:9a:15:61:51:9d:63:51:50:d1: 42:e1:b4:50:13:3c:da:a4:1e:d0:fc:41:c9:01:47:59:12:c4: c0:ee:a4:67:10:02:48:3e:6f:86:8f:f6:82:f2:48:c2:ac:4a: c4:9c:af:5a:d9:5a:49:68:d4:21:a8:19:4f:27:82:1b:ab:4f: 9c:11:cf:56:e1:73:e0:81:6c:cb:f2:7e:8d:23:97:26:22:e5: 52:27:69:9a:ce:eb:23:f2:13:ea:57:71:3e:5d:0c:1b:27:b3: 1f:4c:03:f5:78:ba:a8:01:86:91:62:e5:79:da:38:c2:9d:78: 86:db:ba:1d:2f:8f:37:f6:27:78:44:66:9a:b1:1a:19:ed:d7: f6:4f:94:8c:a7:01:9c:c3:df:7b:15:cd:54:7a:16:ee:15:ef: ba:4c:85:b0:78:c5:e3:a6:7e:75:68:9e:1b:55:20:39:2e:93: d0:6b:9e:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1NjIxMTAvBgNVBAUTKDM0MEY4MTM0MzM3MTlBNzYwRTNCRkUyMTkzMzY4NzI2 MTE3OUMzMjcwHhcNMjUwNjE5MDMxMDA1WhcNMjUwNjI2MDMxMDA1WjAYMRYwFAYD VQQDEw02ODUzN2Y4ZC00ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1eZ/HHzrwrq+Wyo0RkuhJMKW8R/M64VVuzVFy0RytkbFg3IInPkGTvh2L1v +t9fFePEY33/uaybMdC41Ym6EoNaI/P7JFQA28h/5vc9VRQ0G48WOLmNKhn3+NiJ A/oi6klJTYdlEwbfR34ajuk7bBb0FOjqT8tHgutrQTGHWI5aGLflg3Hv1ZwcQlab sN8rRctvZz2oKAZofQulQu/K76QNl4Xkh/M1grNIcMN9txE99wHOtF7vQM/UIRSa c/uBoGdQ1POFGQokrayLKEHEJBI4QwFz+FA50vGFwZqOCokqB1D1xw19ACcxStJe 2ZqZtfJ3uVx5OvUhRRGl60nKTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjr1jgn 7qXkk5q+YdKSOikfWelaMB8GA1UdIwQYMBaAFDQPgTQzcZp2Djv+IZM2hyYRecMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTU2Mi8yNjU3RjczRTBC QzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1uWU9PXzRoa3phSEpoRjV3 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BLUJORE54bW5ZT09fNGhremFISmhGNXd5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTU2Mi8yNjU3RjczRTBCQzkxMUVFOEY3OUJCNURDNEY5QUUwMi9OQS1CTkROeG1u WU9PXzRoa3phSEpoRjV3eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7ng9fuU8ULr+9Y2v/B8qGdrYIqiD8OAurAfrJdZYs9GwLdjbB75F7 KtzKZq+A7J9lHrFU25idZsOxTYOq5ffkp8JKChhLE29nbieo8sgjmvaaFWFRnWNR UNFC4bRQEzzapB7Q/EHJAUdZEsTA7qRnEAJIPm+Gj/aC8kjCrErEnK9a2VpJaNQh qBlPJ4Ibq0+cEc9W4XPggWzL8n6NI5cmIuVSJ2mazusj8hPqV3E+XQwbJ7MfTAP1 eLqoAYaRYuV52jjCnXiG27odL4839id4RGaasRoZ7df2T5SMpwGcw997Fc1Uehbu Fe+6TIWweMXjpn51aJ4bVSA5LpPQa56a -----END CERTIFICATE-----Generated at Sat Jun 21 01:50:31 2025 by rpki-client