$ rpki-client -vvf rpki.apnic.net/member_repository/A91833A5/CB549D2C76C911ED8EDF6E45C4F9AE02/NRzu3Df4BUcvG2G6xkP-VO4BiWs.mft File: NRzu3Df4BUcvG2G6xkP-VO4BiWs.mft (raw, json) Hash identifier: t9nUV2vjAAMvGVY7tWljEP36l7X42iO/KZFS6cibdo8= Subject key identifier: 4A:70:B7:C2:B1:61:CA:E9:98:E3:FA:24:17:BD:85:66:6A:B1:1C:FD Authority key identifier: 35:1C:EE:DC:37:F8:05:47:2F:1B:61:BA:C6:43:FE:54:EE:01:89:6B Certificate issuer: /CN=A91833A5/serialNumber=351CEEDC37F805472F1B61BAC643FE54EE01896B Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NRzu3Df4BUcvG2G6xkP-VO4BiWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91833A5/CB549D2C76C911ED8EDF6E45C4F9AE02/NRzu3Df4BUcvG2G6xkP-VO4BiWs.mft Manifest number: 01BD Signing time: Fri 25 Apr 2025 02:13:19 +0000 Manifest this update: Fri 25 Apr 2025 02:13:18 +0000 Manifest next update: Fri 02 May 2025 02:13:18 +0000 Files and hashes: 1: NRzu3Df4BUcvG2G6xkP-VO4BiWs.crl (hash: 8mlRG28Jut6IOqmjRTizgNZGAW8sGrc8ctQiQGw/kJM=) 2: 9FD3C9A876CD11ED8D13115FC4F9AE02.roa (hash: JQ73d6vfSvqidv93F8yaMEYwVmH6Qg0KkHIcHOt8o0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91833A5/CB549D2C76C911ED8EDF6E45C4F9AE02/NRzu3Df4BUcvG2G6xkP-VO4BiWs.crl rsync://rpki.apnic.net/member_repository/A91833A5/CB549D2C76C911ED8EDF6E45C4F9AE02/NRzu3Df4BUcvG2G6xkP-VO4BiWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NRzu3Df4BUcvG2G6xkP-VO4BiWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91833A5, serialNumber=351CEEDC37F805472F1B61BAC643FE54EE01896B Validity Not Before: Apr 25 02:13:18 2025 GMT Not After : May 2 02:13:18 2025 GMT Subject: CN=680aefbe-8397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8c:68:4f:53:3f:1e:8a:4e:1b:c6:51:5d:68: 95:0c:cf:0c:04:9e:5a:06:28:ec:a9:d8:a8:01:eb: 0b:9b:3b:1b:17:9b:ac:c6:d6:52:7e:ca:2c:68:ff: fa:c3:ab:f8:f3:8e:5c:b5:99:7f:9c:53:02:fe:ea: 37:05:2b:1c:55:75:1e:cb:63:6a:1e:e8:53:5e:c6: 27:8f:d1:99:f0:58:7a:7b:26:58:e3:c2:23:e8:09: 28:f4:bb:e1:ba:3c:11:07:e0:39:ea:f2:d7:94:56: ad:a2:6c:0b:59:f4:67:3e:2d:f0:a9:3f:66:e4:d8: f7:e3:13:2d:cf:27:96:ce:c5:ff:35:50:af:8c:3a: 2f:cf:ef:a1:eb:1a:33:f3:c5:8e:a6:f8:a5:09:2b: cf:63:2d:7d:b5:4d:ae:a2:fa:fa:ad:00:c9:86:41: 19:bd:ae:4f:14:26:e0:78:05:8f:d6:fb:e1:1b:40: 15:26:05:fa:83:bc:b8:13:a1:52:14:40:fd:71:74: d9:d9:24:f8:b5:e5:2a:67:47:3b:da:ab:e2:50:ee: 85:c3:e3:4f:3f:b9:4e:ca:e8:46:58:b0:c9:ed:3e: 30:7b:5a:fd:94:8d:3e:af:38:d8:b0:b4:64:a7:6f: 96:2e:a3:40:95:fe:fe:3e:21:1a:8e:33:01:41:0f: 41:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:70:B7:C2:B1:61:CA:E9:98:E3:FA:24:17:BD:85:66:6A:B1:1C:FD X509v3 Authority Key Identifier: keyid:35:1C:EE:DC:37:F8:05:47:2F:1B:61:BA:C6:43:FE:54:EE:01:89:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91833A5/CB549D2C76C911ED8EDF6E45C4F9AE02/NRzu3Df4BUcvG2G6xkP-VO4BiWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NRzu3Df4BUcvG2G6xkP-VO4BiWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91833A5/CB549D2C76C911ED8EDF6E45C4F9AE02/NRzu3Df4BUcvG2G6xkP-VO4BiWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:3f:27:74:81:17:ff:95:15:6c:a9:c0:7b:ef:3c:d3:30:75: 41:19:27:e9:c2:03:8c:60:a6:6e:14:ea:5a:8c:67:a6:58:77: 3a:88:61:81:6e:e8:2a:d3:c4:58:36:d0:52:01:fd:62:37:f3: a1:eb:9d:3e:23:c8:50:6c:2e:c6:6e:9f:02:1b:b0:86:e6:74: e6:13:40:a5:0e:75:55:57:50:5b:9e:23:6f:59:da:d0:bf:4d: 34:80:47:99:d4:9b:ce:7a:48:9f:77:05:31:84:e8:34:2c:f9: 3d:c3:27:54:b6:c4:b4:0a:e1:f0:3d:ee:bf:98:89:43:ff:0c: e8:76:bf:fd:a5:89:28:5a:a1:d7:0e:f6:a1:46:8b:c8:08:1f: 97:a8:df:26:40:e2:4e:e7:9e:58:b5:95:31:76:97:70:be:fe: 06:5b:c4:a8:a4:7b:6c:63:51:5b:f1:13:7b:43:61:bb:2b:56: e1:ba:f9:ca:e5:42:f9:ec:11:6d:25:b3:63:92:84:b6:31:dc: e5:28:3f:0a:73:ec:b4:c8:67:6c:a7:a1:78:95:ea:54:10:ca: 0e:20:27:d3:db:45:23:7b:c3:8d:49:9b:17:be:e1:b7:c2:93: d2:b9:7d:8b:32:ff:0c:d8:da:e3:5d:18:25:47:5f:27:10:93: 0c:e0:18:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMzQTUxMTAvBgNVBAUTKDM1MUNFRURDMzdGODA1NDcyRjFCNjFCQUM2NDNGRTU0 RUUwMTg5NkIwHhcNMjUwNDI1MDIxMzE4WhcNMjUwNTAyMDIxMzE4WjAYMRYwFAYD VQQDEw02ODBhZWZiZS04Mzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4xoT1M/HopOG8ZRXWiVDM8MBJ5aBijsqdioAesLmzsbF5usxtZSfsosaP/6 w6v4845ctZl/nFMC/uo3BSscVXUey2NqHuhTXsYnj9GZ8Fh6eyZY48Ij6Ako9Lvh ujwRB+A56vLXlFatomwLWfRnPi3wqT9m5Nj34xMtzyeWzsX/NVCvjDovz++h6xoz 88WOpvilCSvPYy19tU2uovr6rQDJhkEZva5PFCbgeAWP1vvhG0AVJgX6g7y4E6FS FED9cXTZ2ST4teUqZ0c72qviUO6Fw+NPP7lOyuhGWLDJ7T4we1r9lI0+rzjYsLRk p2+WLqNAlf7+PiEajjMBQQ9BVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpwt8Kx YcrpmOP6JBe9hWZqsRz9MB8GA1UdIwQYMBaAFDUc7tw3+AVHLxthusZD/lTuAYlr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzNBNS9DQjU0OUQyQzc2 QzkxMUVEOEVERjZFNDVDNEY5QUUwMi9OUnp1M0RmNEJVY3ZHMkc2eGtQLVZPNEJp V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05SenUzRGY0QlVjdkcyRzZ4a1AtVk80QmlXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzNBNS9DQjU0OUQyQzc2QzkxMUVEOEVERjZFNDVDNEY5QUUwMi9OUnp1M0RmNEJV Y3ZHMkc2eGtQLVZPNEJpV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARPyd0gRf/lRVsqcB77zzTMHVBGSfpwgOMYKZuFOpajGemWHc6iGGB bugq08RYNtBSAf1iN/Oh650+I8hQbC7Gbp8CG7CG5nTmE0ClDnVVV1BbniNvWdrQ v000gEeZ1JvOekifdwUxhOg0LPk9wydUtsS0CuHwPe6/mIlD/wzodr/9pYkoWqHX DvahRovICB+XqN8mQOJO555YtZUxdpdwvv4GW8SopHtsY1Fb8RN7Q2G7K1bhuvnK 5UL57BFtJbNjkoS2MdzlKD8Kc+y0yGdsp6F4lepUEMoOICfT20Uje8ONSZsXvuG3 wpPSuX2LMv8M2NrjXRglR18nEJMM4Bj8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:55 2025 by rpki-client