$ rpki-client -vvf rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft File: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft (raw, json) Hash identifier: ZDGEEeSiF22Y3PtvQcVGNZ7ZY5A4ak+0W3glSTaEX1s= Subject key identifier: 2B:4F:BC:AD:BD:D8:C8:02:D7:05:A1:44:25:B8:C2:49:9E:9F:C2:FC Authority key identifier: 36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD Certificate issuer: /CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Certificate serial: 0248 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft Manifest number: 023B Signing time: Fri 25 Apr 2025 01:41:20 +0000 Manifest this update: Fri 25 Apr 2025 01:41:19 +0000 Manifest next update: Fri 02 May 2025 01:41:19 +0000 Files and hashes: 1: NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl (hash: U6514WB52cvxOB6mmDiKUGaFaBSucODCidlNnx4oQog=) 2: 134B439A91B611ED8BA25C80C4F9AE02.roa (hash: YssH476E2tgxPdw+/0l4VE/a3GZaUyUxDjk4z13BJXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 584 (0x248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F333, serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Validity Not Before: Apr 25 01:41:19 2025 GMT Not After : May 2 01:41:19 2025 GMT Subject: CN=680ae83f-254e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:93:6e:df:82:f7:18:fa:7e:6a:f9:a0:29: 0b:57:ae:56:e3:63:a8:18:b1:5f:8d:c1:b3:d5:fd: e9:e2:8f:a7:f8:e1:42:37:38:78:ef:0a:d4:91:e0: 05:0f:6a:5e:d9:17:db:f2:4c:45:42:35:79:a2:bc: b9:8e:94:c9:0f:47:79:8a:8b:cb:23:c4:1f:2b:46: 38:d6:b7:7f:34:10:12:2d:c1:c5:40:f9:6e:ed:54: ff:75:04:8b:7d:47:87:e8:36:eb:21:62:3e:6c:22: 8a:b9:4e:30:93:b7:db:ee:4d:9c:93:ed:9f:94:c4: 56:53:1f:54:29:a1:7e:cd:35:8b:d4:54:b7:7a:6b: cb:54:34:43:30:e7:55:03:7c:52:06:c3:d7:82:55: 9d:31:59:e5:2f:3e:ee:dc:65:74:98:b2:6f:aa:59: e1:f5:bb:24:f0:de:93:2c:b6:80:38:26:9a:cb:ef: b4:b4:81:3f:92:15:b0:41:14:56:69:fc:d3:cf:87: f3:26:b0:40:6f:2c:08:56:e4:03:73:a0:07:38:cf: 2c:e3:18:29:8f:15:c3:c1:fa:a3:f2:7d:97:b5:b1: 1d:bf:26:27:fd:9f:39:b2:74:ba:ca:c0:03:35:8c: 38:57:ed:18:bc:1b:73:dd:88:11:e9:8d:37:1b:91: a3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4F:BC:AD:BD:D8:C8:02:D7:05:A1:44:25:B8:C2:49:9E:9F:C2:FC X509v3 Authority Key Identifier: keyid:36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:73:99:9f:a4:9f:7f:15:04:dd:f0:de:fa:37:43:c2:92:cc: 45:2f:f5:d8:7d:d3:0e:ba:b5:cf:12:9a:ff:14:1a:26:71:df: af:95:48:d7:45:e6:41:ee:65:ea:d0:c6:85:37:3a:7b:ba:f0: d6:da:23:c8:d0:c2:e2:0b:a4:68:a2:dc:76:c9:7c:e6:df:48: fa:5d:51:f5:99:69:04:b8:19:59:e4:3f:92:ce:ba:2f:50:73: d4:da:2b:a2:f2:5d:6e:f5:f9:c1:33:25:3f:bc:36:32:24:e4: 72:14:b3:e2:44:3d:74:70:84:13:58:27:72:28:f0:9e:0d:a2: ee:e3:fd:46:ab:4f:90:a8:a4:12:58:1e:b1:fc:7d:74:9f:67: fa:7a:53:c9:f0:2e:48:fb:90:57:ae:57:b7:4b:9c:f1:e2:2d: b2:f1:3c:df:59:33:9c:3d:bc:37:87:e6:cf:e1:33:91:82:69: 4a:17:be:9a:fd:6d:62:4a:cd:c0:32:76:04:d4:a8:49:05:37: 90:78:ae:ad:c4:5e:d1:e6:85:41:8f:fe:0f:da:7b:85:17:cc: 87:f2:80:30:31:12:7f:d2:75:17:84:1e:e3:28:79:b4:c0:39: 7f:66:62:60:61:82:98:bd:3a:1e:5e:f8:7e:48:51:e8:98:60: 7a:16:bb:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YzMzMxMTAvBgNVBAUTKDM2NDA4QzExQzU0NzJCODIyNDhBRkZFQkVFREJCMjBF M0UwN0E2Q0QwHhcNMjUwNDI1MDE0MTE5WhcNMjUwNTAyMDE0MTE5WjAYMRYwFAYD VQQDEw02ODBhZTgzZi0yNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvSTbt+C9xj6fmr5oCkLV65W42OoGLFfjcGz1f3p4o+n+OFCNzh47wrUkeAF D2pe2Rfb8kxFQjV5ory5jpTJD0d5iovLI8QfK0Y41rd/NBASLcHFQPlu7VT/dQSL fUeH6DbrIWI+bCKKuU4wk7fb7k2ck+2flMRWUx9UKaF+zTWL1FS3emvLVDRDMOdV A3xSBsPXglWdMVnlLz7u3GV0mLJvqlnh9bsk8N6TLLaAOCaay++0tIE/khWwQRRW afzTz4fzJrBAbywIVuQDc6AHOM8s4xgpjxXDwfqj8n2XtbEdvyYn/Z85snS6ysAD NYw4V+0YvBtz3YgR6Y03G5GjVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtPvK29 2MgC1wWhRCW4wkmen8L8MB8GA1UdIwQYMBaAFDZAjBHFRyuCJIr/6+7bsg4+B6bN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjMzMy9ERUNCNjVBNDIz OTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0SWtpdl9yN3R1eURqNEhw czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rQ01FY1ZISzRJa2l2X3I3dHV5RGo0SHBzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjMzMy9ERUNCNjVBNDIzOTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0 SWtpdl9yN3R1eURqNEhwczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLc5mfpJ9/FQTd8N76N0PCksxFL/XYfdMOurXPEpr/FBomcd+vlUjX ReZB7mXq0MaFNzp7uvDW2iPI0MLiC6Rootx2yXzm30j6XVH1mWkEuBlZ5D+Szrov UHPU2iui8l1u9fnBMyU/vDYyJORyFLPiRD10cIQTWCdyKPCeDaLu4/1Gq0+QqKQS WB6x/H10n2f6elPJ8C5I+5BXrle3S5zx4i2y8TzfWTOcPbw3h+bP4TORgmlKF76a /W1iSs3AMnYE1KhJBTeQeK6txF7R5oVBj/4P2nuFF8yH8oAwMRJ/0nUXhB7jKHm0 wDl/ZmJgYYKYvToeXvh+SFHomGB6FruY -----END CERTIFICATE-----Generated at Sat Apr 26 05:13:44 2025 by rpki-client