$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: PfF22+4fHFyDEpxGlYZxUuQCfMV3UtwG5cffgMo7DtI= Subject key identifier: 7E:2E:FE:91:28:F5:3C:75:A2:D0:B1:A0:A1:8F:F7:C5:A6:BF:F2:AA Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: B2 Signing time: Fri 25 Apr 2025 05:02:37 +0000 Manifest this update: Fri 25 Apr 2025 05:02:36 +0000 Manifest next update: Fri 02 May 2025 05:02:36 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: gTayCBHnTHW8EXYbQOquqmoMAXsI02D98AAD6BRe2Y0=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: 04UnpmnSMr4KxT7I14Z6Z4RlxSd1PflOoSJyZd1LDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Apr 25 05:02:36 2025 GMT Not After : May 2 05:02:36 2025 GMT Subject: CN=680b176d-1e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e4:81:5f:5b:3d:4c:c2:29:f8:cd:08:bb:2b: 67:2f:ca:20:ba:7d:2a:7a:e0:8a:74:cc:a7:fe:55: cf:65:85:ef:35:5d:20:0c:f2:ae:0f:65:af:ab:e4: 7c:7e:53:2a:c7:53:07:1e:ff:1e:73:5a:bd:57:9a: df:32:56:17:25:28:52:61:6d:6d:9d:3c:c0:70:91: fa:7a:73:33:3b:48:ff:c0:ea:43:12:06:a3:95:a3: 31:17:5f:53:ec:9e:43:a8:b9:4b:62:33:67:7c:5b: 7f:20:b2:43:6f:3f:1e:1a:3f:01:6f:19:52:fa:85: 0d:41:f9:bb:a7:d1:c4:b4:98:7f:8d:38:c0:06:de: f6:d2:84:60:21:02:8d:33:5a:7f:40:0e:1f:cd:bd: 71:0a:d6:10:63:5b:7e:17:e3:84:d8:c6:a5:1e:0e: 7c:df:fa:30:ee:4d:6d:95:19:5c:fc:67:c3:53:4f: df:a1:5b:90:c4:2b:b1:e6:9a:51:52:f4:d3:ed:82: 6f:66:5f:f8:df:5a:2e:78:6b:58:2f:f3:75:3c:bb: 06:47:6d:a2:e7:64:ff:ab:6c:68:b0:3a:66:24:83: e8:30:b7:f5:1b:36:ff:66:1a:b4:ee:0a:5d:df:8d: a6:ea:83:47:3d:a3:68:2c:97:28:7a:28:20:4c:d6: c5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2E:FE:91:28:F5:3C:75:A2:D0:B1:A0:A1:8F:F7:C5:A6:BF:F2:AA X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:d1:19:46:e7:e0:e1:50:f0:5e:d5:ef:1c:95:fa:43:17:d2: 0e:a7:de:e4:70:b8:95:d0:0f:ab:e2:e4:16:40:a5:7c:15:d0: 62:37:b9:96:4d:bc:a8:2c:e2:05:1b:ee:50:34:46:3b:c9:52: a1:a5:7f:9a:2d:fa:be:59:1f:b6:5e:cf:b1:45:ec:8a:3e:6e: 7b:c7:19:26:07:48:ea:de:1d:ef:69:4a:03:76:62:2d:8e:33: cd:b0:ed:bb:c0:59:86:b2:3d:2d:64:11:90:0d:0a:80:c6:e0: 64:53:47:c0:ce:62:2f:1e:e9:36:71:fc:53:43:05:a7:d0:e6: 7c:eb:0a:a0:7f:96:dd:9e:27:95:f2:f6:97:4f:b1:a0:8e:ad: 91:2a:03:27:5e:99:75:5e:41:d1:42:28:d9:4e:c6:54:ed:6a: 70:8b:a4:0e:97:f2:b5:9a:26:21:5f:c0:15:25:76:21:37:19: bb:78:b4:2d:57:02:f9:87:e2:bb:27:9f:28:c7:f1:e1:12:c6: 3e:c9:ae:d0:72:47:2e:81:b3:bb:a6:91:c1:c4:fa:57:df:7a: 5a:94:79:ee:a8:9b:4f:04:f7:78:8b:58:bd:3d:d9:fd:91:fd: dd:88:05:d3:ad:9c:e4:4d:81:67:87:50:e2:28:d3:59:c5:20: 34:f0:02:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwNDI1MDUwMjM2WhcNMjUwNTAyMDUwMjM2WjAYMRYwFAYD VQQDEw02ODBiMTc2ZC0xZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweSBX1s9TMIp+M0IuytnL8ogun0qeuCKdMyn/lXPZYXvNV0gDPKuD2Wvq+R8 flMqx1MHHv8ec1q9V5rfMlYXJShSYW1tnTzAcJH6enMzO0j/wOpDEgajlaMxF19T 7J5DqLlLYjNnfFt/ILJDbz8eGj8BbxlS+oUNQfm7p9HEtJh/jTjABt720oRgIQKN M1p/QA4fzb1xCtYQY1t+F+OE2MalHg583/ow7k1tlRlc/GfDU0/foVuQxCux5ppR UvTT7YJvZl/431oueGtYL/N1PLsGR22i52T/q2xosDpmJIPoMLf1Gzb/Zhq07gpd 342m6oNHPaNoLJcoeiggTNbFdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4u/pEo 9Tx1otCxoKGP98Wmv/KqMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBY0RlG5+DhUPBe1e8clfpDF9IOp97kcLiV0A+r4uQWQKV8FdBiN7mW TbyoLOIFG+5QNEY7yVKhpX+aLfq+WR+2Xs+xReyKPm57xxkmB0jq3h3vaUoDdmIt jjPNsO27wFmGsj0tZBGQDQqAxuBkU0fAzmIvHuk2cfxTQwWn0OZ86wqgf5bdnieV 8vaXT7Ggjq2RKgMnXpl1XkHRQijZTsZU7Wpwi6QOl/K1miYhX8AVJXYhNxm7eLQt VwL5h+K7J58ox/HhEsY+ya7QckcugbO7ppHBxPpX33palHnuqJtPBPd4i1i9Pdn9 kf3diAXTrZzkTYFnh1DiKNNZxSA08AJP -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:45 2025 by rpki-client