$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: gsLc/jKGfXVfXatOYBjWLA24LJMsuQrKX8Rcm7Thd2U= Subject key identifier: F3:62:B8:AC:59:D9:3F:ED:13:DA:18:42:05:DC:BC:15:AF:73:61:18 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 02DC Signing time: Fri 25 Apr 2025 01:07:40 +0000 Manifest this update: Fri 25 Apr 2025 01:07:39 +0000 Manifest next update: Fri 02 May 2025 01:07:39 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: n8OPQ6N31CvTs58prHmXZl3AefN8ZK4YMRLYe8Mj5Js=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: 8iGFuZI4O9j0Gdt93MzFvxSKeiFq7gMt0350fxzYb8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: Apr 25 01:07:39 2025 GMT Not After : May 2 01:07:39 2025 GMT Subject: CN=680ae05b-fca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:09:ce:4f:62:c9:9e:dc:5a:d7:d9:e3:3a:bf: a5:db:63:a1:58:57:78:ae:59:0d:c7:78:08:eb:82: 9b:eb:68:e6:f4:cb:9e:e0:5c:48:c9:9b:63:ec:8c: f3:4f:fb:15:bb:be:52:dc:91:72:7b:40:53:da:2a: a5:2a:07:a8:47:f8:4a:b1:5b:5b:8c:15:e6:4d:0f: 2c:5d:37:f4:68:e4:51:4c:9f:35:e9:94:fa:1e:ba: 06:4c:35:37:cb:bf:0d:b9:9c:49:99:02:39:48:3a: a0:e3:6c:44:f6:88:9a:18:f9:b7:a3:fd:d9:84:3f: 9c:f8:df:b6:46:fc:f9:9c:59:8d:1f:1f:72:28:2c: 6d:dd:7c:2c:f2:0d:d6:cb:a9:ed:ea:64:a4:04:ce: 58:8d:5f:ff:85:ba:9d:33:be:6a:31:7e:8c:35:70: f7:7d:53:60:5b:92:b0:2a:17:d9:51:6d:fd:dd:ca: dc:9e:26:7a:18:f6:56:21:21:a7:55:9a:0d:8f:31: a3:12:40:24:3d:37:4f:86:a5:e2:21:02:6f:de:cd: 3a:23:c1:a7:d9:89:74:58:9d:48:68:9b:b2:d0:2b: e6:fb:92:59:89:4f:b7:ac:f2:ef:2a:e8:0d:c6:c5: e5:f6:8d:b5:4c:70:8e:4e:fb:c9:3f:b2:6c:35:bc: 89:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:62:B8:AC:59:D9:3F:ED:13:DA:18:42:05:DC:BC:15:AF:73:61:18 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:8f:8c:a7:ba:d7:b1:ff:62:e4:52:25:35:09:f9:fc:16:91: 72:9b:df:88:e7:3b:58:e7:dc:33:79:b1:c6:d3:48:1c:de:21: 45:79:03:bf:52:00:05:35:b2:ae:4e:4d:2b:56:ad:94:d7:80: 0b:59:95:6b:69:a1:0b:48:e7:f7:96:13:ba:1d:9b:e4:e7:6c: a3:5f:76:59:a2:c3:cd:34:06:db:b4:7e:56:0a:10:fb:88:25: 19:e0:64:b2:80:3a:28:c2:60:88:e2:2d:22:38:38:a2:ca:c8: e3:07:bd:9f:c6:44:83:55:07:c1:ef:d0:79:f4:a4:64:84:3b: 97:5a:56:31:6d:71:ac:02:ef:96:eb:8f:4e:dc:76:cd:84:b3: 38:a0:1d:87:14:32:29:5d:e1:f3:dd:a3:07:30:8d:8f:a4:d9: b9:24:3f:83:3e:25:47:f1:bb:ed:24:12:10:fe:ce:9e:22:18: cf:52:b5:72:40:79:eb:f7:1a:82:f4:ca:81:6f:c7:db:c1:9b: 89:8f:16:64:c1:0f:7f:cb:0e:33:26:d3:9c:b7:0c:c9:5f:5a: ba:2a:10:8b:7b:52:a9:f6:b4:69:de:cf:4d:6b:78:d5:a5:17: c9:95:be:12:22:40:61:da:9c:57:b9:76:7f:bb:e3:5b:53:ee: 2b:7d:70:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUwNDI1MDEwNzM5WhcNMjUwNTAyMDEwNzM5WjAYMRYwFAYD VQQDEw02ODBhZTA1Yi1mY2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAnOT2LJntxa19njOr+l22OhWFd4rlkNx3gI64Kb62jm9Mue4FxIyZtj7Izz T/sVu75S3JFye0BT2iqlKgeoR/hKsVtbjBXmTQ8sXTf0aORRTJ816ZT6HroGTDU3 y78NuZxJmQI5SDqg42xE9oiaGPm3o/3ZhD+c+N+2Rvz5nFmNHx9yKCxt3Xws8g3W y6nt6mSkBM5YjV//hbqdM75qMX6MNXD3fVNgW5KwKhfZUW393crcniZ6GPZWISGn VZoNjzGjEkAkPTdPhqXiIQJv3s06I8Gn2Yl0WJ1IaJuy0Cvm+5JZiU+3rPLvKugN xsXl9o21THCOTvvJP7JsNbyJGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNiuKxZ 2T/tE9oYQgXcvBWvc2EYMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6j4ynutex/2LkUiU1Cfn8FpFym9+I5ztY59wzebHG00gc3iFFeQO/ UgAFNbKuTk0rVq2U14ALWZVraaELSOf3lhO6HZvk52yjX3ZZosPNNAbbtH5WChD7 iCUZ4GSygDoowmCI4i0iODiiysjjB72fxkSDVQfB79B59KRkhDuXWlYxbXGsAu+W 649O3HbNhLM4oB2HFDIpXeHz3aMHMI2PpNm5JD+DPiVH8bvtJBIQ/s6eIhjPUrVy QHnr9xqC9MqBb8fbwZuJjxZkwQ9/yw4zJtOctwzJX1q6KhCLe1Kp9rRp3s9Na3jV pRfJlb4SIkBh2pxXuXZ/u+NbU+4rfXAX -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:03 2025 by rpki-client