$ rpki-client -vvf rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft File: nUVn--JSxmFkKqM-eASKhxf6fLM.mft (raw, json) Hash identifier: opijZTsEehqPgHWVvKvFHVmnEs2kuMqE4iQQPtDX74M= Subject key identifier: 08:D0:FF:27:05:47:37:63:F8:1E:50:D3:36:A0:BF:D8:79:7E:76:ED Authority key identifier: 9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 Certificate issuer: /CN=A9173FAC/serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft Manifest number: 10 Signing time: Thu 01 May 2025 07:06:51 +0000 Manifest this update: Thu 01 May 2025 07:06:50 +0000 Manifest next update: Thu 08 May 2025 07:06:50 +0000 Files and hashes: 1: nUVn--JSxmFkKqM-eASKhxf6fLM.crl (hash: aDJlPm4yt6l89tjCDBUiq7qbdVNilE21Q+Kt0haHqZ8=) 2: AF75682A101911F09363D44DC4F9AE02.roa (hash: /DitzvGpGkwCd2xAbI8HPUNETw+T64yJeC7XoZd/K/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 07:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173FAC, serialNumber=9D4567FBE252C661642AA33E78048A8717FA7CB3 Validity Not Before: May 1 07:06:50 2025 GMT Not After : May 8 07:06:50 2025 GMT Subject: CN=68131d8b-5acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d2:48:4a:5d:aa:44:c4:50:26:2b:44:a7:b9: 81:64:fc:0d:72:98:62:8b:97:61:d0:92:89:d9:c6: 38:00:09:54:c2:f6:b2:8a:06:96:2b:e2:62:1b:74: 3a:e1:c8:88:5d:c6:e3:b1:1c:05:98:2e:69:46:c1: 20:16:fd:f9:ee:c5:85:dd:c6:27:84:03:80:6a:4a: f2:b9:dc:79:fc:64:1f:11:f3:7d:6b:ce:e3:41:e5: 43:23:e9:48:31:4d:e6:7e:db:40:ee:2c:08:a1:43: 62:87:91:3a:f3:a3:5c:07:c6:9c:55:5f:68:38:9c: 9c:d0:8b:e0:a4:ad:ed:63:12:36:cd:58:31:bc:69: 93:02:9a:25:1c:55:7b:af:51:47:c7:dc:b3:f3:29: c2:39:9a:8f:93:bf:4d:93:32:51:4e:d7:d3:b9:58: 17:b3:0c:37:a6:8f:79:7f:94:d9:e3:c0:28:80:b9: 91:08:d7:48:a0:31:4a:81:f3:70:e0:34:cb:0d:86: f4:43:0b:92:b5:76:c9:79:a3:89:a1:36:9b:17:a7: 14:af:94:9a:56:13:01:17:84:db:e8:17:99:3d:47: 46:f2:8b:e4:63:b9:2d:d0:a7:a5:7e:af:d6:4f:87: 4b:ee:7d:af:76:72:d9:d0:bf:21:f4:06:44:de:30: f9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D0:FF:27:05:47:37:63:F8:1E:50:D3:36:A0:BF:D8:79:7E:76:ED X509v3 Authority Key Identifier: keyid:9D:45:67:FB:E2:52:C6:61:64:2A:A3:3E:78:04:8A:87:17:FA:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nUVn--JSxmFkKqM-eASKhxf6fLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173FAC/AFF563E6101811F080BCC348C4F9AE02/nUVn--JSxmFkKqM-eASKhxf6fLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:35:0e:8a:19:db:37:0c:86:35:cc:99:c3:66:4d:f0:10:17: 2b:74:84:68:c1:a9:93:7a:4c:b0:48:d1:a1:36:2e:fe:ca:91: 49:c2:b2:1b:ad:ef:2b:0f:4d:9c:7f:16:e9:ed:00:0b:75:4c: c6:f1:cb:a5:32:55:af:c8:e1:3f:05:39:69:3f:30:ce:4f:36: 6f:f1:8a:8b:51:41:70:30:53:d8:54:76:40:8e:17:14:82:a8: fa:67:da:86:ae:9b:61:70:36:eb:8c:69:ff:be:38:10:32:51: bb:4a:21:96:fa:5b:d5:77:38:05:f1:0e:27:df:69:8c:09:ee: 80:1a:a1:4f:2b:aa:72:4c:37:ee:ea:c7:20:94:de:c4:f2:9b: df:17:df:0b:50:09:95:3d:8a:09:28:29:a2:e8:23:69:e2:44: 23:d7:34:17:38:c3:41:cf:76:a4:53:93:37:8d:3e:fb:00:b9: 78:28:89:c6:1c:52:42:c0:e2:89:ad:73:ea:0b:85:df:e2:3c: 38:26:92:b6:a6:51:e2:5a:75:94:f6:0b:ab:76:69:8c:4e:42: 45:4b:87:99:13:5e:e4:54:b7:04:b0:71:8e:1c:0b:6e:c6:bb: b5:75:73:22:4c:fc:c9:3a:a1:ab:75:5b:f3:6e:98:09:ca:3a: 70:68:65:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0ZBQzExMC8GA1UEBRMoOUQ0NTY3RkJFMjUyQzY2MTY0MkFBMzNFNzgwNDhBODcx N0ZBN0NCMzAeFw0yNTA1MDEwNzA2NTBaFw0yNTA1MDgwNzA2NTBaMBgxFjAUBgNV BAMTDTY4MTMxZDhiLTVhY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm0khKXapExFAmK0SnuYFk/A1ymGKLl2HQkonZxjgACVTC9rKKBpYr4mIbdDrh yIhdxuOxHAWYLmlGwSAW/fnuxYXdxieEA4BqSvK53Hn8ZB8R831rzuNB5UMj6Ugx TeZ+20DuLAihQ2KHkTrzo1wHxpxVX2g4nJzQi+Ckre1jEjbNWDG8aZMCmiUcVXuv UUfH3LPzKcI5mo+Tv02TMlFO19O5WBezDDemj3l/lNnjwCiAuZEI10igMUqB83Dg NMsNhvRDC5K1dsl5o4mhNpsXpxSvlJpWEwEXhNvoF5k9R0byi+RjuS3Qp6V+r9ZP h0vufa92ctnQvyH0BkTeMPnTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCND/JwVH N2P4HlDTNqC/2Hl+du0wHwYDVR0jBBgwFoAUnUVn++JSxmFkKqM+eASKhxf6fLMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczRkFDL0FGRjU2M0U2MTAx ODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1Ga0txTS1lQVNLaHhmNmZM TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblVWbi0tSlN4bUZrS3FNLWVBU0toeGY2ZkxNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcz RkFDL0FGRjU2M0U2MTAxODExRjA4MEJDQzM0OEM0RjlBRTAyL25VVm4tLUpTeG1G a0txTS1lQVNLaHhmNmZMTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACk1DooZ2zcMhjXMmcNmTfAQFyt0hGjBqZN6TLBI0aE2Lv7KkUnCshut 7ysPTZx/FuntAAt1TMbxy6UyVa/I4T8FOWk/MM5PNm/xiotRQXAwU9hUdkCOFxSC qPpn2oaum2FwNuuMaf++OBAyUbtKIZb6W9V3OAXxDiffaYwJ7oAaoU8rqnJMN+7q xyCU3sTym98X3wtQCZU9igkoKaLoI2niRCPXNBc4w0HPdqRTkzeNPvsAuXgoicYc UkLA4omtc+oLhd/iPDgmkramUeJadZT2C6t2aYxOQkVLh5kTXuRUtwSwcY4cC27G u7V1cyJM/Mk6oat1W/NumAnKOnBoZW0= -----END CERTIFICATE-----Generated at Thu May 1 22:41:41 2025 by rpki-client