$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft File: NfIQw_y-8NYqPeiPXz-iThGTdEw.mft (raw, json) Hash identifier: vuLaV4oEwb+haX/q45bAQaAXVA6S7tW0CDOtR/v99q0= Subject key identifier: D2:6B:D6:9E:C8:BA:6A:A8:37:F7:4B:46:56:43:F5:F2:2D:0B:C7:E6 Authority key identifier: 35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C Certificate issuer: /CN=A91A1860/serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft Manifest number: 019C Signing time: Fri 25 Apr 2025 02:31:42 +0000 Manifest this update: Fri 25 Apr 2025 02:31:42 +0000 Manifest next update: Fri 02 May 2025 02:31:42 +0000 Files and hashes: 1: NfIQw_y-8NYqPeiPXz-iThGTdEw.crl (hash: VenPD0d+l0vA7ycPRN+ubvEGBOHGnpLh6EHx3DYoCaM=) 2: 832503DCAD0311ED8DFD5339C4F9AE02.roa (hash: WkJCgrbBmelQA5c6twQaEqrtwUH2ZoyRfcoaWRVuiIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1860, serialNumber=35F210C3FCBEF0D62A3DE88F5F3FA24E1193744C Validity Not Before: Apr 25 02:31:42 2025 GMT Not After : May 2 02:31:42 2025 GMT Subject: CN=680af40e-4363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:a8:6c:e2:75:44:e0:9f:96:ef:f5:c4:49: 81:ac:ff:c1:0d:48:3c:3a:a2:32:d8:f6:82:5d:4d: 09:24:f2:c9:c9:a5:d2:b8:ba:b4:64:18:eb:73:b6: a9:d7:69:d6:06:19:1d:db:5f:89:2e:45:4a:55:e7: 9c:fd:e1:a6:50:5e:09:be:8c:bd:b6:5e:a2:1a:7b: 7f:a3:2c:a0:85:06:4b:c9:e5:ce:3b:e8:49:74:c5: 03:28:8f:ac:53:a9:a0:5c:59:dd:19:63:96:88:47: 47:4d:ce:85:6c:b8:c3:12:fd:e3:07:2a:5b:7d:74: 8c:a7:2d:9e:8f:a3:53:5b:c4:16:2c:00:8e:92:28: 58:9d:6c:c3:5c:94:5f:51:9a:e2:30:23:1f:e7:3b: 4f:14:5f:15:64:9d:52:b7:49:82:b3:84:e6:ca:d4: b3:8a:ce:8c:68:9a:ce:90:d5:38:67:7d:c1:53:0d: 45:09:01:89:f0:7f:3c:2d:8d:d7:73:86:4a:f6:d7: d0:6b:1e:88:1d:46:38:c0:e7:e7:a1:e9:47:7a:55: 18:70:9b:1e:9e:3e:b6:25:f4:44:99:70:76:d5:70: 6f:f0:df:18:3b:19:86:67:24:00:6a:c2:11:67:23: 8c:26:d0:e4:59:32:1a:94:5b:9b:71:6e:aa:03:2f: d5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:6B:D6:9E:C8:BA:6A:A8:37:F7:4B:46:56:43:F5:F2:2D:0B:C7:E6 X509v3 Authority Key Identifier: keyid:35:F2:10:C3:FC:BE:F0:D6:2A:3D:E8:8F:5F:3F:A2:4E:11:93:74:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfIQw_y-8NYqPeiPXz-iThGTdEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1860/4222E664ACFF11ED81035733C4F9AE02/NfIQw_y-8NYqPeiPXz-iThGTdEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:e4:9b:41:eb:e5:fe:09:ef:ff:b1:d3:28:7e:28:d3:29:1c: 3e:e4:fe:11:2d:d4:b1:fd:16:e5:72:3d:8d:0c:68:cf:00:92: c2:61:64:f1:ca:c2:ef:cb:fa:f0:fa:4f:bb:ee:af:d3:c4:99: e4:11:f6:92:bb:f9:fb:0e:ec:f7:71:50:bf:1a:74:f0:e0:f6: 30:bf:ac:7a:e2:d6:ed:22:71:a9:d8:60:ec:02:66:8d:fa:b2: c9:1a:e7:ec:7f:b0:07:e5:2c:44:f2:67:5b:a3:52:c5:11:34: ed:ac:c4:61:d2:9a:fb:91:4a:b7:f2:a1:3c:8c:28:f6:b7:a7: 29:e2:80:60:31:3a:55:24:89:4d:bf:87:15:ca:e1:26:0d:83: 6b:8c:22:8b:ae:1b:d9:a3:cf:05:80:21:a9:a8:9f:77:e9:e8: 59:ea:38:04:5a:56:b6:2e:e1:70:a7:7f:3d:db:d1:79:14:83: 15:64:64:cf:64:fc:8e:58:22:4a:21:95:91:84:40:3b:61:cd: 38:78:c3:0a:38:46:e9:5d:c3:9d:46:e4:f8:1e:2d:c7:7f:f5: f9:00:e4:b3:c3:97:a5:80:7c:ad:16:c6:c3:4d:4f:dd:7a:89: 5b:47:a0:c0:29:fa:74:7a:98:3a:27:57:71:e2:d6:47:7b:9c: d2:ac:5f:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NjAxMTAvBgNVBAUTKDM1RjIxMEMzRkNCRUYwRDYyQTNERTg4RjVGM0ZBMjRF MTE5Mzc0NEMwHhcNMjUwNDI1MDIzMTQyWhcNMjUwNTAyMDIzMTQyWjAYMRYwFAYD VQQDEw02ODBhZjQwZS00MzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWGobOJ1ROCflu/1xEmBrP/BDUg8OqIy2PaCXU0JJPLJyaXSuLq0ZBjrc7ap 12nWBhkd21+JLkVKVeec/eGmUF4Jvoy9tl6iGnt/oyyghQZLyeXOO+hJdMUDKI+s U6mgXFndGWOWiEdHTc6FbLjDEv3jBypbfXSMpy2ej6NTW8QWLACOkihYnWzDXJRf UZriMCMf5ztPFF8VZJ1St0mCs4TmytSzis6MaJrOkNU4Z33BUw1FCQGJ8H88LY3X c4ZK9tfQax6IHUY4wOfnoelHelUYcJsenj62JfREmXB21XBv8N8YOxmGZyQAasIR ZyOMJtDkWTIalFubcW6qAy/VSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJr1p7I umqoN/dLRlZD9fItC8fmMB8GA1UdIwQYMBaAFDXyEMP8vvDWKj3oj18/ok4Rk3RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg2MC80MjIyRTY2NEFD RkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThOWXFQZWlQWHotaVRoR1Rk RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mSVF3X3ktOE5ZcVBlaVBYei1pVGhHVGRFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg2MC80MjIyRTY2NEFDRkYxMUVEODEwMzU3MzNDNEY5QUUwMi9OZklRd195LThO WXFQZWlQWHotaVRoR1RkRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDY5JtB6+X+Ce//sdMofijTKRw+5P4RLdSx/Rblcj2NDGjPAJLCYWTx ysLvy/rw+k+77q/TxJnkEfaSu/n7Duz3cVC/GnTw4PYwv6x64tbtInGp2GDsAmaN +rLJGufsf7AH5SxE8mdbo1LFETTtrMRh0pr7kUq38qE8jCj2t6cp4oBgMTpVJIlN v4cVyuEmDYNrjCKLrhvZo88FgCGpqJ936ehZ6jgEWla2LuFwp38929F5FIMVZGTP ZPyOWCJKIZWRhEA7Yc04eMMKOEbpXcOdRuT4Hi3Hf/X5AOSzw5elgHytFsbDTU/d eolbR6DAKfp0epg6J1dx4tZHe5zSrF9a -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:57 2025 by rpki-client