$ rpki-client -vvf rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft File: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft (raw, json) Hash identifier: UtTHq2GXBtWbGGfoFrPlN3LqeB3DvgxDzAVtHFGsfAs= Subject key identifier: 66:1D:77:B6:3D:AE:24:70:0F:13:DC:3B:09:E7:88:2E:B2:BB:D7:0D Authority key identifier: 34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE Certificate issuer: /CN=A9150EAB/serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Certificate serial: 0AE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft Manifest number: 11A5 Signing time: Thu 24 Apr 2025 19:16:17 +0000 Manifest this update: Thu 24 Apr 2025 19:16:17 +0000 Manifest next update: Thu 01 May 2025 19:16:17 +0000 Files and hashes: 1: NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl (hash: SkSv9iiijoB9vC0AScmb8UGXkzvJRtx3y3fjB7Q1rT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150EAB, serialNumber=341D09021CBF9FD3BB4CB88E3D0ED1C764DED0FE Validity Not Before: Apr 24 19:16:17 2025 GMT Not After : May 1 19:16:17 2025 GMT Subject: CN=680a8e01-e644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:8d:af:94:a8:fc:1a:79:76:5c:c1:24:eb:18: f2:60:86:67:0f:bd:30:05:f4:ea:66:88:37:e3:41: d4:9f:a2:74:87:38:3f:fc:6d:c8:bf:8a:c0:89:8b: 20:a2:ff:0e:95:1e:62:3a:cb:5e:84:19:61:3f:83: 66:3b:bc:4f:1e:6f:10:bd:4d:32:b3:a8:30:5d:22: d2:74:3d:b7:62:ea:e3:60:c8:fb:9c:a1:6f:c1:98: d1:0d:af:32:52:20:83:6a:ec:cd:72:fc:13:89:01: 14:8b:5f:96:3c:8f:45:5b:15:b6:b2:aa:6f:59:20: 65:56:87:74:3a:4f:50:cb:b4:16:51:96:cc:c6:14: f7:b3:aa:6f:13:c1:cb:d9:81:84:47:5c:21:36:ed: ae:66:83:5c:50:69:80:46:cc:e9:79:ca:66:5f:ac: 62:70:85:6d:5f:17:33:ff:fb:11:1d:27:ad:e7:53: 80:d3:29:e1:f8:9b:e2:e0:40:d1:a2:d0:ac:ef:69: 45:48:ed:bc:cb:9c:7f:3a:7d:f0:74:79:4f:08:de: 08:9e:9e:2a:5b:3e:01:53:03:ef:77:4a:a1:a0:fd: 92:36:9b:5a:4e:6a:06:3b:86:a8:65:1e:f4:b7:2a: 2d:e1:bd:1e:74:f0:1f:0b:f2:a3:6f:ab:64:4b:b1: 74:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:1D:77:B6:3D:AE:24:70:0F:13:DC:3B:09:E7:88:2E:B2:BB:D7:0D X509v3 Authority Key Identifier: keyid:34:1D:09:02:1C:BF:9F:D3:BB:4C:B8:8E:3D:0E:D1:C7:64:DE:D0:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150EAB/1B2E7050446B11EA9DE59A57C4F9AE02/NB0JAhy_n9O7TLiOPQ7Rx2Te0P4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e9:fb:f7:27:19:ec:ad:90:4f:63:f7:7a:b7:ed:ef:40:a6: 8b:96:71:18:49:fd:66:05:c2:d8:b1:5c:d9:c2:01:72:de:4c: 1e:a3:dc:15:97:1c:ea:ce:ac:c9:6b:cf:9f:13:bc:16:57:fc: 10:69:51:11:f6:bf:e8:4c:5d:98:0c:54:c2:6a:3e:21:7a:c4: 71:0a:d6:b7:c6:1b:8a:b9:7b:47:00:e2:c3:f0:65:fa:20:8a: 39:9c:5e:ca:c1:23:47:ed:38:8e:0b:03:43:1a:d9:5f:b8:57: 93:b0:3b:ad:cf:5b:e3:ff:52:56:1a:e7:e7:ac:0d:54:96:a3: bd:d9:17:ea:c2:b9:2e:26:98:13:f7:ba:e9:36:34:e4:82:52: 2e:fe:30:da:dd:26:a7:04:79:11:13:a1:dd:bc:b5:3d:6d:7c: 10:d5:92:0d:33:12:3a:de:75:75:0a:9e:de:cb:f1:c4:f0:54: 6f:9a:fb:af:2d:ff:f2:49:b2:64:a6:08:99:9a:a6:d7:86:f6: 6a:8d:d5:70:2f:54:56:98:08:df:ca:79:b8:c6:ca:a0:f3:35: 4f:32:88:2f:87:e1:ed:f0:e5:92:47:c3:b9:84:a2:cf:14:00: 83:77:da:94:82:36:60:6c:d1:34:30:b0:58:2b:d6:a4:b9:26: bc:0b:71:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBFQUIxMTAvBgNVBAUTKDM0MUQwOTAyMUNCRjlGRDNCQjRDQjg4RTNEMEVEMUM3 NjRERUQwRkUwHhcNMjUwNDI0MTkxNjE3WhcNMjUwNTAxMTkxNjE3WjAYMRYwFAYD VQQDEw02ODBhOGUwMS1lNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmI2vlKj8Gnl2XMEk6xjyYIZnD70wBfTqZog340HUn6J0hzg//G3Iv4rAiYsg ov8OlR5iOstehBlhP4NmO7xPHm8QvU0ys6gwXSLSdD23YurjYMj7nKFvwZjRDa8y UiCDauzNcvwTiQEUi1+WPI9FWxW2sqpvWSBlVod0Ok9Qy7QWUZbMxhT3s6pvE8HL 2YGER1whNu2uZoNcUGmARszpecpmX6xicIVtXxcz//sRHSet51OA0ynh+Jvi4EDR otCs72lFSO28y5x/On3wdHlPCN4Inp4qWz4BUwPvd0qhoP2SNptaTmoGO4aoZR70 tyot4b0edPAfC/Kjb6tkS7F0xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYdd7Y9 riRwDxPcOwnniC6yu9cNMB8GA1UdIwQYMBaAFDQdCQIcv5/Tu0y4jj0O0cdk3tD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEVBQi8xQjJFNzA1MDQ0 NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245TzdUTGlPUFE3UngyVGUw UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05CMEpBaHlfbjlPN1RMaU9QUTdSeDJUZTBQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEVBQi8xQjJFNzA1MDQ0NkIxMUVBOURFNTlBNTdDNEY5QUUwMi9OQjBKQWh5X245 TzdUTGlPUFE3UngyVGUwUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy6fv3JxnsrZBPY/d6t+3vQKaLlnEYSf1mBcLYsVzZwgFy3kweo9wV lxzqzqzJa8+fE7wWV/wQaVER9r/oTF2YDFTCaj4hesRxCta3xhuKuXtHAOLD8GX6 IIo5nF7KwSNH7TiOCwNDGtlfuFeTsDutz1vj/1JWGufnrA1UlqO92RfqwrkuJpgT 97rpNjTkglIu/jDa3SanBHkRE6HdvLU9bXwQ1ZINMxI63nV1Cp7ey/HE8FRvmvuv Lf/ySbJkpgiZmqbXhvZqjdVwL1RWmAjfynm4xsqg8zVPMogvh+Ht8OWSR8O5hKLP FACDd9qUgjZgbNE0MLBYK9akuSa8C3F6 -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:43 2025 by rpki-client