$ rpki-client -vvf rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft File: NxkwlLzz42Ui-tvxlU7l_51gHg4.mft (raw, json) Hash identifier: S7kIkUZVnXMXH6LAg4kMVpTK5r7NW2pVkR2TZOo0bxQ= Subject key identifier: 6D:6D:92:06:D2:63:72:D7:EA:DD:86:D7:5E:BD:A4:E7:11:41:7E:F9 Authority key identifier: 37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E Certificate issuer: /CN=A9134285/serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft Manifest number: 0629 Signing time: Thu 24 Apr 2025 22:31:03 +0000 Manifest this update: Thu 24 Apr 2025 22:31:03 +0000 Manifest next update: Thu 01 May 2025 22:31:03 +0000 Files and hashes: 1: NxkwlLzz42Ui-tvxlU7l_51gHg4.crl (hash: WGRsJQa+FlPZgURmkqrK815/+EWAplpxH0s9QLwADXo=) 2: 3A00D342928511EB8B3AAC22C4F9AE02.roa (hash: aj64AT3Eg74eRiHek2DyIpF1DXkedRqzt0byGVydNm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:31:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134285, serialNumber=37193094BCF3E36522FADBF1954EE5FF9D601E0E Validity Not Before: Apr 24 22:31:03 2025 GMT Not After : May 1 22:31:03 2025 GMT Subject: CN=680abba7-d71d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e3:1e:b6:b0:5f:3b:00:fd:24:65:ef:ff:42: 64:0e:ff:94:bc:32:7f:c6:bb:20:2d:c8:38:fe:79: b5:52:d1:50:6f:2e:69:8d:ed:1a:84:ed:56:9a:f6: 42:e8:0d:3a:a6:57:4b:59:2a:65:51:9a:43:4d:b1: e4:09:38:9d:21:c9:21:4e:77:8a:9b:28:40:c0:64: 50:57:63:8e:4a:45:4c:71:85:b9:92:28:67:56:e5: 25:f7:28:9d:2b:e0:d9:d7:08:3c:fd:2f:37:22:9f: 79:4a:24:96:04:a8:16:6b:24:ce:1b:ce:2a:b7:90: 26:91:d2:05:6e:ba:19:2e:5d:7e:e2:58:25:31:7d: 07:c2:a4:40:c7:40:c9:f6:f5:3c:42:12:7f:f2:67: ed:a9:ce:f3:cc:b7:71:f4:7b:ae:ac:fd:da:35:9c: 23:f5:6b:ea:5b:08:7c:99:6e:4f:25:a7:03:74:93: 38:33:36:c2:ce:33:b4:46:0c:89:72:04:fe:a4:5c: 88:d0:a4:41:de:70:6c:9d:fa:06:62:ee:21:5f:c6: fb:c0:29:fb:29:e8:51:49:cc:71:8a:f3:91:a4:24: 00:e6:23:31:8c:54:5f:b6:4e:45:c7:a0:93:d0:47: f6:dd:3c:67:d0:a9:58:a7:66:c7:22:39:5f:ef:7a: 25:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6D:92:06:D2:63:72:D7:EA:DD:86:D7:5E:BD:A4:E7:11:41:7E:F9 X509v3 Authority Key Identifier: keyid:37:19:30:94:BC:F3:E3:65:22:FA:DB:F1:95:4E:E5:FF:9D:60:1E:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxkwlLzz42Ui-tvxlU7l_51gHg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134285/6F15B572928311EB80970420C4F9AE02/NxkwlLzz42Ui-tvxlU7l_51gHg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:68:3f:e5:f8:0c:59:e2:ea:ef:03:bd:3c:ab:a5:f3:49:27: cd:e4:d9:78:f7:0a:f0:72:0f:b3:40:68:56:2f:44:1e:fd:95: d6:12:8f:93:a2:90:11:cc:b1:60:41:55:d8:48:a3:83:8e:ba: 84:8b:31:59:00:32:fc:61:a3:ec:2e:d1:a6:46:26:ee:94:63: e7:92:b4:1f:d3:74:52:0d:44:6b:88:4c:5f:1a:e6:5e:84:9b: f8:bb:03:89:b3:b2:0f:f2:96:50:49:ea:bf:e8:65:48:6e:77: cf:7b:81:7b:07:e4:b6:b1:53:f5:6f:7a:f8:4c:58:e7:fb:1e: 16:61:8b:8c:04:c9:89:d3:95:cc:8f:f6:19:68:6d:a9:0d:cd: ea:83:6f:69:a8:5c:3a:ce:1a:30:e9:e0:59:97:89:59:e7:ea: 62:43:b4:2b:72:8c:cf:85:ca:d8:ec:c0:8e:9f:a5:df:32:6d: a6:55:55:1b:12:bc:c8:06:95:fb:f2:d1:43:b1:8c:c2:fd:21: c3:58:ae:06:bb:10:61:e9:24:ff:dc:8b:22:b0:d0:8f:c6:f8: 5c:04:47:c4:3f:3f:0a:03:bc:83:cf:82:32:2a:3f:3f:8b:41: a5:a7:e3:7d:07:d8:13:9f:6d:9b:44:15:e4:54:76:26:f5:b8: 4d:03:20:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyODUxMTAvBgNVBAUTKDM3MTkzMDk0QkNGM0UzNjUyMkZBREJGMTk1NEVFNUZG OUQ2MDFFMEUwHhcNMjUwNDI0MjIzMTAzWhcNMjUwNTAxMjIzMTAzWjAYMRYwFAYD VQQDEw02ODBhYmJhNy1kNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+MetrBfOwD9JGXv/0JkDv+UvDJ/xrsgLcg4/nm1UtFQby5pje0ahO1WmvZC 6A06pldLWSplUZpDTbHkCTidIckhTneKmyhAwGRQV2OOSkVMcYW5kihnVuUl9yid K+DZ1wg8/S83Ip95SiSWBKgWayTOG84qt5AmkdIFbroZLl1+4lglMX0HwqRAx0DJ 9vU8QhJ/8mftqc7zzLdx9HuurP3aNZwj9WvqWwh8mW5PJacDdJM4MzbCzjO0RgyJ cgT+pFyI0KRB3nBsnfoGYu4hX8b7wCn7KehRScxxivORpCQA5iMxjFRftk5Fx6CT 0Ef23Txn0KlYp2bHIjlf73olEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1tkgbS Y3LX6t2G1169pOcRQX75MB8GA1UdIwQYMBaAFDcZMJS88+NlIvrb8ZVO5f+dYB4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDI4NS82RjE1QjU3Mjky ODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQyVWktdHZ4bFU3bF81MWdI ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054a3dsTHp6NDJVaS10dnhsVTdsXzUxZ0hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDI4NS82RjE1QjU3MjkyODMxMUVCODA5NzA0MjBDNEY5QUUwMi9OeGt3bEx6ejQy VWktdHZ4bFU3bF81MWdIZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUaD/l+AxZ4urvA708q6XzSSfN5Nl49wrwcg+zQGhWL0Qe/ZXWEo+T opARzLFgQVXYSKODjrqEizFZADL8YaPsLtGmRibulGPnkrQf03RSDURriExfGuZe hJv4uwOJs7IP8pZQSeq/6GVIbnfPe4F7B+S2sVP1b3r4TFjn+x4WYYuMBMmJ05XM j/YZaG2pDc3qg29pqFw6zhow6eBZl4lZ5+piQ7QrcozPhcrY7MCOn6XfMm2mVVUb ErzIBpX78tFDsYzC/SHDWK4GuxBh6ST/3IsisNCPxvhcBEfEPz8KA7yDz4IyKj8/ i0Glp+N9B9gTn22bRBXkVHYm9bhNAyBX -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:40 2025 by rpki-client