$ rpki-client -vvf rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft File: NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft (raw, json) Hash identifier: nlgZNUTOKVz6J87U8OzXmRXkUYMiaT/abgEoP0Jjf+0= Subject key identifier: C3:0D:7F:E5:55:08:B4:6A:BF:E2:FD:7D:32:84:A0:C1:4E:46:69:B9 Authority key identifier: 34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD Certificate issuer: /CN=A91626EF/serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Certificate serial: 0C72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft Manifest number: 0C60 Signing time: Thu 24 Apr 2025 18:16:42 +0000 Manifest this update: Thu 24 Apr 2025 18:16:41 +0000 Manifest next update: Thu 01 May 2025 18:16:41 +0000 Files and hashes: 1: NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl (hash: ol6yGnBSIBXb4AOPtPZm5RDcNLBbDoNDeUeK+xHDXok=) 2: 24A28E0C07B911F091752834C4F9AE02.roa (hash: OT1wU0R1qfUZlPrVStZHI9ZTJpnzI3jWvMhElEQPU9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3186 (0xc72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626EF, serialNumber=347AFEB394C5697E9792214EF8CF56A59CA8E8BD Validity Not Before: Apr 24 18:16:41 2025 GMT Not After : May 1 18:16:41 2025 GMT Subject: CN=680a800a-fce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:46:46:59:06:b0:6d:da:e4:f0:6e:0f:21:95: d5:6a:c8:99:e1:8c:d6:a2:9a:b5:fe:f9:9a:60:42: 46:6f:a6:5a:84:07:18:a4:e0:95:76:dd:6f:aa:20: 59:3c:2b:3e:e3:11:ce:e7:a9:5f:ed:9f:e8:f6:bf: a7:e8:f1:aa:95:f9:23:70:38:45:4a:ed:fc:14:98: f6:ef:00:96:a8:bf:be:87:26:8b:dc:ed:53:c1:49: 66:27:45:47:66:9c:c4:1e:cb:b3:7d:2d:d2:36:b5: f2:a0:a7:c2:ea:2f:d7:f8:30:56:3f:65:0a:bc:67: 33:3d:ea:31:c2:d4:91:30:fb:a1:19:42:ab:c8:d3: 56:26:a8:26:64:bd:b9:c5:2a:1b:b9:ef:2c:c9:27: 02:90:8d:cc:95:e9:a6:b5:57:ef:34:36:5f:90:2f: f7:45:c8:bc:95:fe:46:c6:ed:25:7f:6c:83:49:0b: e5:27:72:75:ff:d8:27:fb:77:9f:a9:0a:16:c4:b6: 18:1c:1a:a1:fa:73:da:a0:62:22:93:1f:f3:27:da: 3c:42:b0:c6:c4:95:34:ab:71:57:b0:b0:fe:79:a5: db:45:39:98:3c:d0:b0:e2:6f:53:18:80:aa:de:37: 86:dd:50:d0:32:4c:f8:e5:bd:e6:1e:fe:a9:87:d8: 27:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:0D:7F:E5:55:08:B4:6A:BF:E2:FD:7D:32:84:A0:C1:4E:46:69:B9 X509v3 Authority Key Identifier: keyid:34:7A:FE:B3:94:C5:69:7E:97:92:21:4E:F8:CF:56:A5:9C:A8:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHr-s5TFaX6XkiFO-M9WpZyo6L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626EF/9D867510FFD411E992D06518C4F9AE02/NHr-s5TFaX6XkiFO-M9WpZyo6L0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ff:db:36:b6:36:32:2d:eb:cb:30:04:5d:98:7d:b2:b3:bc: 4c:8c:56:f4:66:2b:b6:eb:d5:b4:cd:19:7b:7d:44:81:8d:6c: 80:44:13:f9:c7:60:e9:e5:7b:4e:12:d6:84:65:dc:cf:8f:e4: 13:38:a7:23:26:9f:13:6c:37:f8:17:de:58:47:bc:0d:44:72: 20:df:86:80:3c:a5:15:43:16:26:fc:84:cc:c2:7f:69:98:3d: 2b:dc:af:be:2e:ac:30:bd:8c:c5:ce:af:d2:58:e9:a8:99:1e: 8a:67:c8:4f:29:09:e4:2e:2a:d2:3e:f2:a1:98:e6:f7:d6:12: 55:b4:62:cd:00:68:33:fc:b7:12:b4:ed:fa:57:22:12:ba:96: 28:20:df:0b:92:e3:35:88:de:e5:6a:bb:6e:dd:a6:e3:a1:d0: e4:d8:de:11:a2:14:40:77:f5:a2:53:49:a8:c1:e2:d5:a9:11: 30:74:c9:16:17:5e:76:05:d3:12:65:22:38:1d:3f:a8:0b:42: 57:5f:9e:f3:74:66:18:d1:c9:db:69:1a:d7:a2:09:eb:f3:e2: 69:a6:48:d6:29:3c:b8:36:38:34:e2:9a:7b:03:1f:1d:0f:d7: 46:b5:58:53:02:7f:c5:81:b1:3b:3a:d5:c2:20:50:11:5b:b2: 51:88:6c:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RUYxMTAvBgNVBAUTKDM0N0FGRUIzOTRDNTY5N0U5NzkyMjE0RUY4Q0Y1NkE1 OUNBOEU4QkQwHhcNMjUwNDI0MTgxNjQxWhcNMjUwNTAxMTgxNjQxWjAYMRYwFAYD VQQDEw02ODBhODAwYS1mY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEZGWQawbdrk8G4PIZXVasiZ4YzWopq1/vmaYEJGb6ZahAcYpOCVdt1vqiBZ PCs+4xHO56lf7Z/o9r+n6PGqlfkjcDhFSu38FJj27wCWqL++hyaL3O1TwUlmJ0VH ZpzEHsuzfS3SNrXyoKfC6i/X+DBWP2UKvGczPeoxwtSRMPuhGUKryNNWJqgmZL25 xSobue8syScCkI3MlemmtVfvNDZfkC/3Rci8lf5Gxu0lf2yDSQvlJ3J1/9gn+3ef qQoWxLYYHBqh+nPaoGIikx/zJ9o8QrDGxJU0q3FXsLD+eaXbRTmYPNCw4m9TGICq 3jeG3VDQMkz45b3mHv6ph9gn4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMNf+VV CLRqv+L9fTKEoMFORmm5MB8GA1UdIwQYMBaAFDR6/rOUxWl+l5IhTvjPVqWcqOi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZFRi85RDg2NzUxMEZG RDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFYNlhraUZPLU05V3BaeW82 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Ici1zNVRGYVg2WGtpRk8tTTlXcFp5bzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZFRi85RDg2NzUxMEZGRDQxMUU5OTJEMDY1MThDNEY5QUUwMi9OSHItczVURmFY NlhraUZPLU05V3BaeW82TDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn/9s2tjYyLevLMARdmH2ys7xMjFb0Ziu269W0zRl7fUSBjWyARBP5 x2Dp5XtOEtaEZdzPj+QTOKcjJp8TbDf4F95YR7wNRHIg34aAPKUVQxYm/ITMwn9p mD0r3K++LqwwvYzFzq/SWOmomR6KZ8hPKQnkLirSPvKhmOb31hJVtGLNAGgz/LcS tO36VyISupYoIN8LkuM1iN7lartu3abjodDk2N4RohRAd/WiU0moweLVqREwdMkW F152BdMSZSI4HT+oC0JXX57zdGYY0cnbaRrXognr8+JppkjWKTy4Njg04pp7Ax8d D9dGtVhTAn/FgbE7OtXCIFARW7JRiGzD -----END CERTIFICATE-----Generated at Sat Apr 26 04:01:28 2025 by rpki-client