$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft File: nmoKpDnP40ewT3RoQKbkNMUJsac.mft (raw, json) Hash identifier: KWo976gwde3Did4tHoqUmnDDgaOGdt/R9oadnf2vwo4= Subject key identifier: 9D:D0:44:8F:CA:B4:03:D3:99:9C:D5:D8:B0:00:02:09:DC:02:0E:FC Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft Manifest number: 0125 Signing time: Fri 25 Apr 2025 03:46:40 +0000 Manifest this update: Fri 25 Apr 2025 03:46:40 +0000 Manifest next update: Fri 02 May 2025 03:46:40 +0000 Files and hashes: 1: nmoKpDnP40ewT3RoQKbkNMUJsac.crl (hash: phGYtczqy2diI5xUC1zLWNlxtErbHM/GWN7gojiGoY8=) 2: 11A843B467D811EEA0543B5CC4F9AE02.roa (hash: JGrxdfcTXN7WXmiB33mKDnWSPFdrh+A/TvrelqjBL5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56, serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Apr 25 03:46:40 2025 GMT Not After : May 2 03:46:40 2025 GMT Subject: CN=680b05a0-c11c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:04:d2:cf:26:87:20:9e:4b:fd:ba:50:66: 87:77:ab:09:1b:cc:78:46:af:51:90:ad:66:e3:e7: 86:0f:50:18:57:24:f2:b1:91:fd:89:aa:bf:9b:15: 1f:7c:7a:8a:8a:11:8b:e6:13:cf:0c:14:83:d3:17: 46:dc:fb:02:7d:1b:56:99:3c:64:f3:8f:21:d4:eb: 62:c1:79:63:d1:55:15:00:4f:af:b4:b9:fe:68:49: 7e:04:61:12:84:90:cd:08:53:7d:f6:13:c9:9b:a3: e3:1e:d3:8e:8c:81:84:9c:d7:47:4d:1f:ea:94:9f: f4:2b:8c:9c:f8:4c:38:d3:1e:f7:b8:ee:81:49:0d: 87:00:4b:ed:49:f3:83:41:e3:ee:49:55:84:5e:de: 26:c4:26:85:91:bd:31:9e:0e:c9:f3:45:f7:f0:b2: 7e:25:54:26:59:e3:6e:e5:67:cf:71:22:d2:d1:2c: 2b:e0:86:61:7a:8b:22:5e:e5:ff:da:1e:c1:65:03: d5:2d:fa:03:63:0d:fd:34:5f:2a:1a:3f:5f:c1:14: 00:48:f6:da:93:cc:48:45:81:66:c6:50:fd:ee:c8: 48:f5:07:b2:08:bd:8d:ad:c2:25:0b:0c:49:21:fc: 15:0c:dc:d9:b4:e1:d7:77:46:2a:f2:3e:98:15:74: 15:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D0:44:8F:CA:B4:03:D3:99:9C:D5:D8:B0:00:02:09:DC:02:0E:FC X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:6b:f1:5d:32:1e:e9:b2:ab:47:0f:0c:38:6e:0e:24:65:f7: 26:bb:74:1b:ec:0e:4b:dc:82:ee:6c:70:ad:7f:2e:43:17:1e: bb:75:78:85:0c:10:0e:be:07:95:74:3d:3d:47:8c:ed:43:5f: dc:16:76:cd:a6:0d:61:49:31:b9:51:68:8c:5b:d3:9f:d8:95: 73:12:fc:84:1c:44:1b:9c:58:01:63:cb:bf:37:43:5c:97:ce: fa:10:e9:97:3c:22:a3:40:3e:d1:1d:8d:a6:8a:1d:7d:30:a3: eb:ab:e7:03:bb:6b:b1:95:6e:18:c2:d6:00:2b:d5:9d:f1:38: b7:14:fd:0d:09:ba:6a:5c:75:7b:d5:ed:be:c1:38:10:37:8f: b1:15:d0:8a:3a:f4:55:83:24:da:39:6a:00:50:04:b6:fd:9d: e0:1b:de:0f:7e:e0:e0:d6:81:15:af:7e:c7:19:c5:b1:e5:4d: a5:ed:fc:53:c1:bb:4e:6e:ec:ba:79:94:98:d6:b6:60:56:23: 1d:7e:00:fb:c2:f1:71:e6:4d:3f:d2:7d:58:8a:98:b7:65:ca: 22:57:9d:d8:61:a2:a1:65:45:7d:a7:40:4b:99:81:7f:2e:11: 17:1d:0d:6b:b7:22:a6:ba:2d:21:76:23:6b:4f:3b:ef:aa:20: 25:bf:54:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTYxMTAvBgNVBAUTKDlFNkEwQUE0MzlDRkUzNDdCMDRGNzQ2ODQwQTZFNDM0 QzUwOUIxQTcwHhcNMjUwNDI1MDM0NjQwWhcNMjUwNTAyMDM0NjQwWjAYMRYwFAYD VQQDEw02ODBiMDVhMC1jMTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqcE0s8mhyCeS/26UGaHd6sJG8x4Rq9RkK1m4+eGD1AYVyTysZH9iaq/mxUf fHqKihGL5hPPDBSD0xdG3PsCfRtWmTxk848h1OtiwXlj0VUVAE+vtLn+aEl+BGES hJDNCFN99hPJm6PjHtOOjIGEnNdHTR/qlJ/0K4yc+Ew40x73uO6BSQ2HAEvtSfOD QePuSVWEXt4mxCaFkb0xng7J80X38LJ+JVQmWeNu5WfPcSLS0Swr4IZheosiXuX/ 2h7BZQPVLfoDYw39NF8qGj9fwRQASPbak8xIRYFmxlD97shI9QeyCL2NrcIlCwxJ IfwVDNzZtOHXd0Yq8j6YFXQV4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3QRI/K tAPTmZzV2LAAAgncAg78MB8GA1UdIwQYMBaAFJ5qCqQ5z+NHsE90aECm5DTFCbGn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1Ni9DREJDRjYzQTY2 OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQwZXdUM1JvUUtia05NVUpz YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1Ni9DREJDRjYzQTY2OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQw ZXdUM1JvUUtia05NVUpzYWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5a/FdMh7psqtHDww4bg4kZfcmu3Qb7A5L3ILubHCtfy5DFx67dXiF DBAOvgeVdD09R4ztQ1/cFnbNpg1hSTG5UWiMW9Of2JVzEvyEHEQbnFgBY8u/N0Nc l876EOmXPCKjQD7RHY2mih19MKPrq+cDu2uxlW4YwtYAK9Wd8Ti3FP0NCbpqXHV7 1e2+wTgQN4+xFdCKOvRVgyTaOWoAUAS2/Z3gG94PfuDg1oEVr37HGcWx5U2l7fxT wbtObuy6eZSY1rZgViMdfgD7wvFx5k0/0n1Yipi3ZcoiV53YYaKhZUV9p0BLmYF/ LhEXHQ1rtyKmui0hdiNrTzvvqiAlv1TM -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:48 2025 by rpki-client