$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft File: nczQgPBy3iTvhCxqopJJnvE2m_Q.mft (raw, json) Hash identifier: epMblR+JePfz0DjJE29krPaa0CxJwzbVGT8Cj8jaApU= Subject key identifier: AC:85:86:6F:A1:26:8C:BC:2C:D5:97:46:2D:25:D7:FA:5E:D4:BC:4B Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft Manifest number: 35 Signing time: Fri 25 Apr 2025 06:35:53 +0000 Manifest this update: Fri 25 Apr 2025 06:35:53 +0000 Manifest next update: Fri 02 May 2025 06:35:53 +0000 Files and hashes: 1: nczQgPBy3iTvhCxqopJJnvE2m_Q.crl (hash: QvhiU8iAeWcnirng9zcEW33OST9GzqghFk+GvVrNfK8=) 2: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (hash: 4wQj2D8FHVqXjukwrv/CmROQ+WtAW+LZQBCb8jHb8l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504, serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Validity Not Before: Apr 25 06:35:53 2025 GMT Not After : May 2 06:35:53 2025 GMT Subject: CN=680b2d49-e955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8d:1d:ec:ee:4f:80:1c:04:57:46:fd:70:cb: 33:ff:fe:ff:8b:8b:eb:9e:8b:1d:bd:17:e0:2f:ea: 94:21:27:64:23:60:d9:c1:9b:19:fb:ec:d1:50:3c: 2a:91:a0:17:bc:98:59:57:12:9f:51:ce:c6:b9:73: 69:6c:2b:c6:7c:38:49:62:07:12:73:5a:e4:45:8b: 0a:25:6e:08:cc:66:17:81:a7:4f:79:5e:4b:af:1a: 33:88:7e:cf:6a:d2:87:67:48:56:80:a4:67:08:c2: e7:44:13:c0:51:cb:81:39:cb:be:95:38:ec:a4:a2: a6:3b:56:71:e6:1f:93:da:85:2a:e4:d5:97:f4:68: e9:74:9f:16:2d:5c:34:71:11:9e:ad:d4:9b:58:bb: cc:de:a2:ed:84:f9:57:b9:d6:dd:40:8a:fd:c8:ce: c3:a2:de:77:8f:ee:9c:61:71:f6:35:c5:15:2f:e2: b4:65:76:c7:07:8e:54:20:ce:6f:91:06:ae:14:77: 1f:fd:bd:c5:85:07:75:43:02:3e:0e:73:42:36:1f: 97:ea:f7:64:1b:ce:65:2d:0f:de:5f:76:29:e7:1d: 42:6a:d6:12:fd:25:ff:20:22:e2:0b:87:9c:16:4b: 37:39:92:0e:cb:73:3f:ce:57:71:bd:b5:f5:d9:16: 85:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:85:86:6F:A1:26:8C:BC:2C:D5:97:46:2D:25:D7:FA:5E:D4:BC:4B X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:14:77:f6:e3:d0:44:62:81:ea:2a:9c:d6:94:10:69:7c:83: e5:27:b7:f3:e0:f3:a4:a1:50:ea:fd:70:25:eb:1d:26:9e:f1: 1d:2e:d6:43:58:fa:0b:2c:99:21:bf:bf:9d:f6:4b:77:1f:cc: 57:b7:02:eb:de:cc:3d:51:36:74:ad:f1:45:2e:6f:6d:08:91: e0:95:ac:2d:bf:73:01:04:0d:06:43:ef:c2:a1:e0:bb:f9:96: 40:ee:97:ad:4b:01:1d:42:41:db:dd:96:fe:28:16:1c:1d:85: 31:83:06:8a:16:b5:13:c8:94:c8:dd:e1:18:ee:ed:47:18:3d: 54:de:28:e3:9e:de:6f:8d:e2:e2:b5:f5:ba:b7:bb:ac:e0:09: f2:2d:26:47:c9:98:0b:49:54:37:1f:2e:d7:6a:2e:e7:97:db: 29:59:a3:ba:00:80:38:eb:2c:d6:0c:f0:f1:fe:be:eb:de:2f: 63:92:97:c7:53:a2:c4:6c:e3:b7:54:f0:01:29:87:19:cd:50: 12:d2:38:22:34:cc:0f:a0:68:f1:8c:9c:5b:9d:d1:96:32:b7: 24:8b:b6:4e:11:bd:36:9e:84:f5:26:16:d3:86:ed:c5:ea:79: b0:e2:23:77:24:5c:e2:45:4e:1b:0a:e4:6a:bb:f1:5e:a3:d3: f9:ce:24:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUwNDExMC8GA1UEBRMoOURDQ0QwODBGMDcyREUyNEVGODQyQzZBQTI5MjQ5OUVG MTM2OUJGNDAeFw0yNTA0MjUwNjM1NTNaFw0yNTA1MDIwNjM1NTNaMBgxFjAUBgNV BAMTDTY4MGIyZDQ5LWU5NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgjR3s7k+AHARXRv1wyzP//v+Li+ueix29F+Av6pQhJ2QjYNnBmxn77NFQPCqR oBe8mFlXEp9Rzsa5c2lsK8Z8OEliBxJzWuRFiwolbgjMZheBp095XkuvGjOIfs9q 0odnSFaApGcIwudEE8BRy4E5y76VOOykoqY7VnHmH5PahSrk1Zf0aOl0nxYtXDRx EZ6t1JtYu8zeou2E+Ve51t1Aiv3IzsOi3neP7pxhcfY1xRUv4rRldscHjlQgzm+R Bq4Udx/9vcWFB3VDAj4Oc0I2H5fq92QbzmUtD95fdinnHUJq1hL9Jf8gIuILh5wW Szc5kg7Lcz/OV3G9tfXZFoX/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrIWGb6Em jLws1ZdGLSXX+l7UvEswHwYDVR0jBBgwFoAUnczQgPBy3iTvhCxqopJJnvE2m/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTA0LzMyMUJDNDhDRDNB QjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1f US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmN6UWdQQnkzaVR2aEN4cW9wSkpudkUybV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB NTA0LzMyMUJDNDhDRDNBQjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lU dmhDeHFvcEpKbnZFMm1fUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFkUd/bj0ERigeoqnNaUEGl8g+Unt/Pg86ShUOr9cCXrHSae8R0u1kNY +gssmSG/v532S3cfzFe3AuvezD1RNnSt8UUub20IkeCVrC2/cwEEDQZD78Kh4Lv5 lkDul61LAR1CQdvdlv4oFhwdhTGDBooWtRPIlMjd4Rju7UcYPVTeKOOe3m+N4uK1 9bq3u6zgCfItJkfJmAtJVDcfLtdqLueX2ylZo7oAgDjrLNYM8PH+vuveL2OSl8dT osRs47dU8AEphxnNUBLSOCI0zA+gaPGMnFud0ZYytySLtk4RvTaehPUmFtOG7cXq ebDiI3ckXOJFThsK5Gq78V6j0/nOJAk= -----END CERTIFICATE-----Generated at Sat Apr 26 04:38:34 2025 by rpki-client