$ rpki-client -vvf rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft File: nzVmCVwLDAIx0LuWkl4DidHCbFc.mft (raw, json) Hash identifier: aIDgTb8v4zPcmhi/+6qUkvuXwBH+s7FNJswADQL3p/o= Subject key identifier: 80:31:73:43:78:25:D9:43:AD:D4:BB:43:18:BE:66:E0:D9:50:7A:B1 Authority key identifier: 9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 Certificate issuer: /CN=A911403B/serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Certificate serial: 041F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft Manifest number: 041A Signing time: Fri 25 Apr 2025 00:11:17 +0000 Manifest this update: Fri 25 Apr 2025 00:11:17 +0000 Manifest next update: Fri 02 May 2025 00:11:17 +0000 Files and hashes: 1: nzVmCVwLDAIx0LuWkl4DidHCbFc.crl (hash: 1pE0fdaFANJp3TZaUCK02ApgYGrZjnqc+CqmHExk8U0=) 2: 2D8428C662F511ECA1FC5A6CC4F9AE02.roa (hash: eK751E7R4LxxFW4h/LYCAzYwLSV3p/y1kJ/HUZuDz6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:11:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911403B, serialNumber=9F3566095C0B0C0231D0BB96925E0389D1C26C57 Validity Not Before: Apr 25 00:11:17 2025 GMT Not After : May 2 00:11:17 2025 GMT Subject: CN=680ad325-03d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d4:77:b6:12:68:32:83:ca:1c:de:ff:32:01: 16:d0:6b:d0:14:b5:a1:2c:ea:75:42:25:89:e7:7a: 05:36:a6:a2:dd:32:79:9d:a4:88:cf:7e:15:d5:72: b8:28:48:7b:4e:af:f0:52:af:1e:fb:46:60:6a:aa: 41:84:8c:23:0c:7e:68:6c:84:ed:99:ec:0e:cb:4c: 65:64:ab:18:41:6a:4a:73:c4:0e:24:b1:82:72:e4: 56:b0:67:7e:71:89:4b:fc:6d:c5:ca:d1:27:55:37: 76:97:bd:bc:8e:7f:58:de:59:06:fc:f2:30:fd:50: 92:a3:a7:54:0e:2d:4e:6c:b9:14:8d:1f:bd:e6:83: a5:23:5d:dc:fc:3a:25:db:25:41:11:29:d7:f5:30: 94:e8:b9:0d:44:4b:4c:a4:03:4f:a8:3e:41:a9:6c: 6e:11:de:27:8e:56:9f:bc:7f:dc:47:5f:d8:6a:1a: 1a:6a:e6:d0:87:a6:ca:98:e9:1e:1e:85:d9:6b:3e: 42:25:77:e6:07:d6:7a:41:84:c3:78:3f:a8:42:45: 9e:5c:96:aa:da:b8:56:a8:bb:d0:37:13:64:95:14: 77:34:62:19:ac:6e:cd:cc:e0:d3:1b:da:b7:a9:af: a6:f6:07:9b:41:d6:fb:f6:d5:83:02:05:fd:3c:06: e0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:31:73:43:78:25:D9:43:AD:D4:BB:43:18:BE:66:E0:D9:50:7A:B1 X509v3 Authority Key Identifier: keyid:9F:35:66:09:5C:0B:0C:02:31:D0:BB:96:92:5E:03:89:D1:C2:6C:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nzVmCVwLDAIx0LuWkl4DidHCbFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911403B/4AA74B7462DA11ECB371C767C4F9AE02/nzVmCVwLDAIx0LuWkl4DidHCbFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:63:f5:6b:c4:d7:d6:bf:19:a1:7e:b5:bd:71:8c:3c:1b:96: 18:80:0e:6d:01:eb:eb:b2:aa:e6:66:f3:38:f0:6f:37:20:16: 78:5e:12:34:fb:bb:d4:64:56:83:93:33:c0:5e:ed:f3:4b:e1: 30:8f:2b:fb:94:5d:4a:ee:85:79:ff:e5:fe:f7:99:dd:b2:12: d8:0b:01:48:5e:06:34:0e:0b:38:c1:4f:c5:92:43:e8:81:77: 1f:ae:f6:60:79:20:bd:71:97:5a:bb:6b:6b:f6:28:ad:e0:8c: 15:03:84:30:47:22:28:c2:ff:63:3c:72:1a:9b:77:b6:f6:63: 10:16:71:73:74:ca:f3:fc:08:1c:7d:53:ee:8c:08:93:03:6c: 88:7a:d2:b1:e7:5c:b5:14:42:9e:38:f6:12:6b:e1:49:2b:9a: 13:1e:a7:12:b7:c8:be:57:b6:d7:61:61:20:1f:71:36:01:3e: 95:29:d8:d4:33:99:81:27:2b:f2:bc:85:d6:f0:1f:3c:b5:54: 04:66:4b:c4:05:01:37:0e:12:74:e9:64:82:8a:a5:49:f5:a3: 74:e3:45:53:8b:3d:2f:a0:91:2f:7b:94:73:9e:3a:b1:70:b5: 22:30:a6:f5:df:89:38:37:f5:47:63:87:fe:16:8f:51:8a:5b: 2f:d6:5d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQwM0IxMTAvBgNVBAUTKDlGMzU2NjA5NUMwQjBDMDIzMUQwQkI5NjkyNUUwMzg5 RDFDMjZDNTcwHhcNMjUwNDI1MDAxMTE3WhcNMjUwNTAyMDAxMTE3WjAYMRYwFAYD VQQDEw02ODBhZDMyNS0wM2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydR3thJoMoPKHN7/MgEW0GvQFLWhLOp1QiWJ53oFNqai3TJ5naSIz34V1XK4 KEh7Tq/wUq8e+0ZgaqpBhIwjDH5obITtmewOy0xlZKsYQWpKc8QOJLGCcuRWsGd+ cYlL/G3FytEnVTd2l728jn9Y3lkG/PIw/VCSo6dUDi1ObLkUjR+95oOlI13c/Dol 2yVBESnX9TCU6LkNREtMpANPqD5BqWxuEd4njlafvH/cR1/YahoaaubQh6bKmOke HoXZaz5CJXfmB9Z6QYTDeD+oQkWeXJaq2rhWqLvQNxNklRR3NGIZrG7NzODTG9q3 qa+m9gebQdb79tWDAgX9PAbgRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAxc0N4 JdlDrdS7Qxi+ZuDZUHqxMB8GA1UdIwQYMBaAFJ81ZglcCwwCMdC7lpJeA4nRwmxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDAzQi80QUE3NEI3NDYy REExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERBSXgwTHVXa2w0RGlkSENi RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL256Vm1DVndMREFJeDBMdVdrbDREaWRIQ2JGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDAzQi80QUE3NEI3NDYyREExMUVDQjM3MUM3NjdDNEY5QUUwMi9uelZtQ1Z3TERB SXgwTHVXa2w0RGlkSENiRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZY/VrxNfWvxmhfrW9cYw8G5YYgA5tAevrsqrmZvM48G83IBZ4XhI0 +7vUZFaDkzPAXu3zS+Ewjyv7lF1K7oV5/+X+95ndshLYCwFIXgY0Dgs4wU/FkkPo gXcfrvZgeSC9cZdau2tr9iit4IwVA4QwRyIowv9jPHIam3e29mMQFnFzdMrz/Agc fVPujAiTA2yIetKx51y1FEKeOPYSa+FJK5oTHqcSt8i+V7bXYWEgH3E2AT6VKdjU M5mBJyvyvIXW8B88tVQEZkvEBQE3DhJ06WSCiqVJ9aN040VTiz0voJEve5Rznjqx cLUiMKb134k4N/VHY4f+Fo9Rilsv1l2c -----END CERTIFICATE-----Generated at Sat Apr 26 14:53:59 2025 by rpki-client