$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: M6TBM/R2Rs4PMtxUnvjEo5+xUopBEAOuSLsOldG/RNs= Subject key identifier: FA:81:C3:11:AC:9F:AC:4A:2B:21:BA:0A:05:31:EC:AD:D8:F0:C1:2C Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 0846 Signing time: Thu 24 Apr 2025 20:40:25 +0000 Manifest this update: Thu 24 Apr 2025 20:40:24 +0000 Manifest next update: Thu 01 May 2025 20:40:24 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: NDgz3Hyhao0Zl47+nyo+2KTtT1452ZYnk8MkvXTZH3Y=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:40:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Apr 24 20:40:24 2025 GMT Not After : May 1 20:40:24 2025 GMT Subject: CN=680aa1b9-4788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:0d:e8:7c:dc:9d:60:bd:93:f8:58:e0:df: 90:a5:0a:88:4c:02:a1:e6:02:f2:eb:1d:66:58:82: d8:2a:b3:f6:01:3a:17:55:b6:25:76:b7:ec:1f:51: 6a:e0:51:81:bc:ee:72:6e:26:b2:83:df:a1:92:f4: 05:a9:3d:6c:3e:16:a0:1d:f6:f8:36:ab:6d:84:d1: 52:51:85:35:89:38:04:4f:67:d2:f4:c5:1b:81:8e: c2:34:5c:0c:76:31:33:58:50:95:29:f0:2f:67:dd: ae:8a:8d:50:a3:7e:b3:69:11:83:2e:5d:f3:1e:05: d9:e0:d9:25:c7:13:a8:ec:9b:46:88:c7:6b:38:c9: 33:d0:94:27:44:4e:1a:47:aa:0d:ff:89:ef:1f:81: af:db:1d:51:96:76:89:47:70:e6:9c:cc:94:c0:73: b3:98:7c:27:fd:57:77:11:28:0e:51:b6:a1:0a:c0: 42:6d:14:bb:f7:48:63:70:70:48:f2:61:75:ef:4e: 22:7f:0f:52:f7:9e:d7:71:23:27:73:01:6e:94:30: 5f:8c:03:23:94:0a:a0:66:26:a8:96:0d:dd:c3:21: da:98:8c:89:de:f6:24:47:ee:ea:fc:88:b5:31:90: 96:2f:2e:3d:df:0e:7d:88:94:66:23:d1:60:be:2e: 84:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:81:C3:11:AC:9F:AC:4A:2B:21:BA:0A:05:31:EC:AD:D8:F0:C1:2C X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:96:e1:20:46:3e:47:0c:3b:a9:ae:f6:23:59:bf:14:c3:2f: 31:e2:b7:a1:6b:7f:d6:c4:59:64:ea:d3:b4:b1:87:17:34:05: dc:b5:b4:f7:f1:84:a6:97:99:1d:d4:82:34:90:18:21:dc:52: 35:99:32:ce:53:d4:8a:08:9b:6a:a1:d3:ce:34:9d:6f:9c:69: 5b:1c:25:10:4d:18:37:e7:73:9a:05:b1:e8:fe:82:e5:94:85: 36:8b:c0:ca:d5:44:f9:a3:50:ec:68:f0:f2:a9:1b:27:8e:23: e9:c6:27:b4:e3:57:12:15:dd:71:bf:ad:92:cc:c0:1d:77:a5: 99:c0:73:d8:19:54:57:40:f3:f8:cb:8c:20:0a:34:e9:cc:f2: bc:5d:b6:6f:5a:eb:fe:e9:8d:f8:a1:94:14:8c:3a:e2:cf:d4: 5a:3e:b7:27:29:55:b7:86:d2:c3:3d:04:51:3d:59:fd:5c:02: 4d:a8:c5:9e:25:e1:ea:e6:74:41:54:ab:c1:df:de:91:74:00: 59:91:45:66:bb:70:48:ba:5b:36:e3:ab:13:07:49:6b:d3:d6: a0:e6:07:fe:4f:5c:44:c0:ee:5e:5e:ed:7f:10:c4:89:e4:34: da:c2:cf:75:48:b8:c4:97:05:a1:cc:60:27:9a:7f:69:76:78: 73:8d:a1:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUwNDI0MjA0MDI0WhcNMjUwNTAxMjA0MDI0WjAYMRYwFAYD VQQDEw02ODBhYTFiOS00Nzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0gN6HzcnWC9k/hY4N+QpQqITAKh5gLy6x1mWILYKrP2AToXVbYldrfsH1Fq 4FGBvO5ybiayg9+hkvQFqT1sPhagHfb4NqtthNFSUYU1iTgET2fS9MUbgY7CNFwM djEzWFCVKfAvZ92uio1Qo36zaRGDLl3zHgXZ4NklxxOo7JtGiMdrOMkz0JQnRE4a R6oN/4nvH4Gv2x1RlnaJR3DmnMyUwHOzmHwn/Vd3ESgOUbahCsBCbRS790hjcHBI 8mF1704ifw9S957XcSMncwFulDBfjAMjlAqgZiaolg3dwyHamIyJ3vYkR+7q/Ii1 MZCWLy493w59iJRmI9Fgvi6EvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqBwxGs n6xKKyG6CgUx7K3Y8MEsMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVluEgRj5HDDuprvYjWb8Uwy8x4reha3/WxFlk6tO0sYcXNAXctbT3 8YSml5kd1II0kBgh3FI1mTLOU9SKCJtqodPONJ1vnGlbHCUQTRg353OaBbHo/oLl lIU2i8DK1UT5o1DsaPDyqRsnjiPpxie041cSFd1xv62SzMAdd6WZwHPYGVRXQPP4 y4wgCjTpzPK8XbZvWuv+6Y34oZQUjDriz9RaPrcnKVW3htLDPQRRPVn9XAJNqMWe JeHq5nRBVKvB396RdABZkUVmu3BIuls246sTB0lr09ag5gf+T1xEwO5eXu1/EMSJ 5DTaws91SLjElwWhzGAnmn9pdnhzjaGo -----END CERTIFICATE-----Generated at Sat Apr 26 19:37:12 2025 by rpki-client