$ rpki-client -vvf rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft File: nT4CCLhd8EngI7NH2psYP8Vrqx4.mft (raw, json) Hash identifier: 50pFfRPmhAZ51ETeakNAUCYsRhjQ8a/8xzIRPiRwS1g= Subject key identifier: 64:1B:B2:28:A5:40:56:39:EF:AB:42:D0:4C:5B:9E:4B:F4:E1:99:55 Authority key identifier: 9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E Certificate issuer: /CN=A919D6D8/serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Certificate serial: 0AA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft Manifest number: 12F5 Signing time: Thu 24 Apr 2025 19:24:21 +0000 Manifest this update: Thu 24 Apr 2025 19:24:21 +0000 Manifest next update: Thu 01 May 2025 19:24:21 +0000 Files and hashes: 1: nT4CCLhd8EngI7NH2psYP8Vrqx4.crl (hash: o8kAl733C8+3eOJ7MmXEO2V4Hhu1CRl8F/5VX8XJi0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2720 (0xaa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D6D8, serialNumber=9D3E0208B85DF049E023B347DA9B183FC56BAB1E Validity Not Before: Apr 24 19:24:21 2025 GMT Not After : May 1 19:24:21 2025 GMT Subject: CN=680a8fe5-8c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:72:bc:71:37:6f:15:12:06:bf:3c:ed:ec:af: 3a:27:1c:a3:44:ea:8a:14:c3:24:b1:d5:f3:70:ca: 90:67:09:e9:b5:0e:07:d3:0c:94:f6:b7:41:2f:c1: 3e:74:7a:13:75:b9:c1:f2:8b:ab:03:df:b6:4e:57: 68:ce:62:08:ed:35:1b:38:99:ce:34:ec:b7:0a:80: 0b:d0:b7:7c:e5:9b:0d:05:d5:df:97:c1:91:8f:86: 16:91:02:d3:35:93:11:9f:40:2e:3a:58:37:2a:ad: e0:ca:a0:77:f3:65:cb:25:eb:ab:a6:4d:79:f9:69: ed:ff:d1:ee:58:b5:57:5c:c6:bc:2d:e5:4c:c8:70: 90:4b:0f:82:f6:e8:f4:ba:c5:87:f0:20:8f:86:2f: 43:e1:97:37:06:bc:ed:70:05:76:88:8b:b1:ba:33: f6:5c:6d:e8:65:ac:de:e6:fb:38:04:f6:fe:d4:28: 26:21:53:55:a8:b9:20:fa:6a:62:5c:d0:ef:a1:ad: 1b:ef:48:5f:f1:dc:b9:5b:b2:46:3e:df:0d:d2:6f: 33:cb:92:41:a7:a1:03:48:a0:a5:2c:3d:d4:9d:48: 5b:aa:68:ef:6c:29:d5:27:7d:d0:19:58:99:b2:b1: be:fa:62:b8:62:8d:7f:ff:85:0e:c9:d2:4c:82:7f: eb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1B:B2:28:A5:40:56:39:EF:AB:42:D0:4C:5B:9E:4B:F4:E1:99:55 X509v3 Authority Key Identifier: keyid:9D:3E:02:08:B8:5D:F0:49:E0:23:B3:47:DA:9B:18:3F:C5:6B:AB:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nT4CCLhd8EngI7NH2psYP8Vrqx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D6D8/A03796DE51C011EAB265E880C4F9AE02/nT4CCLhd8EngI7NH2psYP8Vrqx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:4e:eb:39:d4:1f:7f:dc:3f:14:8c:71:6f:ed:19:67:24:59: ab:c2:f8:c0:67:05:8c:bf:30:2f:0a:8a:3d:5f:f7:ce:7b:4f: 24:96:c0:e7:82:04:57:49:26:c6:dd:35:6e:9a:89:27:ee:f8: 3c:3a:7d:c1:b6:6f:91:ce:9f:62:3c:f5:1b:41:10:c8:c4:d9: 09:53:1c:d7:c4:85:2a:dc:e2:b6:db:1e:86:cc:73:9d:28:dd: 3c:30:72:a4:28:10:17:c0:8d:2e:7d:ce:92:fd:bb:da:4b:8f: a1:cd:64:24:40:30:81:54:75:36:fd:33:07:42:6e:89:90:df: 11:4a:39:cf:d7:39:04:f5:37:a9:15:b6:fb:fb:ee:41:74:52: 56:60:95:d3:6a:8c:f1:f0:52:ca:85:d7:9f:81:f0:77:53:4b: 0a:29:55:a6:b8:6b:b9:2c:1b:51:d1:c8:28:ef:69:a0:fc:f7: 0d:32:8b:47:3c:bd:69:41:8c:64:b8:40:32:ee:19:b6:25:48: ba:1e:70:5a:92:26:9f:69:e0:2d:be:50:29:5d:5a:83:cd:a4: 60:5f:c3:8f:18:51:57:e4:06:e2:e1:93:54:91:9a:46:be:56: d6:22:23:51:49:5c:89:6c:8c:14:97:21:7e:e4:05:4a:d6:a5: e5:0d:11:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2RDgxMTAvBgNVBAUTKDlEM0UwMjA4Qjg1REYwNDlFMDIzQjM0N0RBOUIxODNG QzU2QkFCMUUwHhcNMjUwNDI0MTkyNDIxWhcNMjUwNTAxMTkyNDIxWjAYMRYwFAYD VQQDEw02ODBhOGZlNS04YzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HK8cTdvFRIGvzzt7K86JxyjROqKFMMksdXzcMqQZwnptQ4H0wyU9rdBL8E+ dHoTdbnB8ourA9+2TldozmII7TUbOJnONOy3CoAL0Ld85ZsNBdXfl8GRj4YWkQLT NZMRn0AuOlg3Kq3gyqB382XLJeurpk15+Wnt/9HuWLVXXMa8LeVMyHCQSw+C9uj0 usWH8CCPhi9D4Zc3BrztcAV2iIuxujP2XG3oZaze5vs4BPb+1CgmIVNVqLkg+mpi XNDvoa0b70hf8dy5W7JGPt8N0m8zy5JBp6EDSKClLD3UnUhbqmjvbCnVJ33QGViZ srG++mK4Yo1//4UOydJMgn/r2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQbsiil QFY576tC0Exbnkv04ZlVMB8GA1UdIwQYMBaAFJ0+Agi4XfBJ4COzR9qbGD/Fa6se MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDZEOC9BMDM3OTZERTUx QzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhFbmdJN05IMnBzWVA4VnJx eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UNENDTGhkOEVuZ0k3TkgycHNZUDhWcnF4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDZEOC9BMDM3OTZERTUxQzAxMUVBQjI2NUU4ODBDNEY5QUUwMi9uVDRDQ0xoZDhF bmdJN05IMnBzWVA4VnJxeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoTus51B9/3D8UjHFv7RlnJFmrwvjAZwWMvzAvCoo9X/fOe08klsDn ggRXSSbG3TVumokn7vg8On3Btm+Rzp9iPPUbQRDIxNkJUxzXxIUq3OK22x6GzHOd KN08MHKkKBAXwI0ufc6S/bvaS4+hzWQkQDCBVHU2/TMHQm6JkN8RSjnP1zkE9Tep Fbb7++5BdFJWYJXTaozx8FLKhdefgfB3U0sKKVWmuGu5LBtR0cgo72mg/PcNMotH PL1pQYxkuEAy7hm2JUi6HnBakiafaeAtvlApXVqDzaRgX8OPGFFX5Abi4ZNUkZpG vlbWIiNRSVyJbIwUlyF+5AVK1qXlDREg -----END CERTIFICATE-----Generated at Sat Apr 26 08:17:39 2025 by rpki-client