$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: C6d0VXZg6nx5refhAwSjGQWBG2wDqh6WOABNYnk62IQ= Subject key identifier: EB:70:30:A2:36:38:D6:D9:46:81:9D:12:17:17:5C:7B:D7:19:D1:E4 Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 01B9 Signing time: Fri 25 Apr 2025 02:36:26 +0000 Manifest this update: Fri 25 Apr 2025 02:36:26 +0000 Manifest next update: Fri 02 May 2025 02:36:26 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: 7crkn9b7SiZQY40B4O6C5yigQl4soB+hEP1MdU8KUH8=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: +L1qHY5R3sGaecxS0ZsJwCFSa4qv+kQF5VrxKLTYgCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Apr 25 02:36:26 2025 GMT Not After : May 2 02:36:26 2025 GMT Subject: CN=680af52a-0a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:62:66:46:dd:53:c8:da:d0:af:b0:7d:7a:af: ba:d7:c6:8f:b7:20:52:98:4c:db:5c:b0:1a:35:20: f6:05:75:1e:a7:3a:38:4a:c4:bb:4a:47:53:70:43: 39:52:1c:e2:85:14:ed:f8:6c:e4:19:a4:90:85:85: 43:2b:0f:92:ec:d4:1a:90:5b:7f:56:2c:b9:1b:5c: 90:c1:8b:5f:40:03:40:63:e8:7d:3c:d1:ee:88:a3: 8b:45:4a:91:d4:44:df:43:2e:ab:9d:ae:af:6b:98: 56:cf:01:2c:37:65:f4:fb:61:e8:25:9f:62:ad:2c: 18:73:ce:1d:da:35:de:45:87:66:e8:38:3e:33:53: aa:be:70:fc:0e:23:0a:a5:f7:89:9f:6d:3f:89:d1: 87:8e:30:bb:ab:a4:78:57:80:15:f8:b8:d1:56:60: aa:0e:92:30:7a:e9:d5:d4:6d:d7:3c:00:7c:af:6a: 88:fb:10:f5:ee:da:74:9d:ab:32:a3:f5:d7:2a:de: 67:e8:59:f9:3a:70:6d:1d:d6:5d:43:e6:e4:1e:f9: 73:fa:80:41:f6:5b:ad:83:fc:7c:15:ce:4e:d6:86: 31:e5:18:23:ae:5c:9f:0f:16:ee:a2:c0:03:c6:9d: 73:b6:cd:30:d2:b0:b0:be:66:da:21:7f:0e:c3:2a: ee:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:70:30:A2:36:38:D6:D9:46:81:9D:12:17:17:5C:7B:D7:19:D1:E4 X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:97:be:9b:5c:72:19:10:57:31:cf:e5:08:4d:b9:0a:91:67: be:3b:0d:9a:68:7d:34:f3:c9:4c:0c:32:d2:be:bf:51:44:44: dc:32:e1:07:ff:6c:7f:a4:4d:9b:0f:98:b4:b5:48:b8:89:56: b9:5b:0a:36:16:2d:3b:ec:30:4d:91:b0:85:c9:fc:a5:5d:5e: 14:22:17:49:e8:68:13:8a:00:92:3d:61:7e:d3:51:a7:44:1f: 2b:c2:53:a7:73:64:10:ea:ff:bf:60:62:ba:9b:3e:c6:03:35: b4:ad:6f:ed:bb:80:ac:e8:fd:3d:06:e6:54:25:6f:d2:39:d3: 0d:8e:cb:2f:57:c7:71:ed:b4:a4:a9:e6:7c:9b:69:81:22:1e: e1:e5:5e:43:1d:86:e9:7b:43:94:53:33:cf:f5:7f:fa:f9:fa: 3e:0a:42:be:54:d6:f6:1e:75:e9:30:ec:eb:5b:07:6f:83:da: f3:60:ee:a6:eb:17:ef:fb:b5:92:be:20:b1:d7:f3:6c:3b:a7: d2:cb:3c:54:e9:9e:ba:68:0d:32:38:1f:75:fe:57:d2:58:30: b1:b6:99:71:c4:36:32:e6:42:4e:ea:75:e1:1e:2d:d6:6b:bb: cd:b6:19:9c:c0:9e:f9:da:e3:03:4e:83:34:74:2b:0b:e7:f9: 1c:dd:b6:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjUwNDI1MDIzNjI2WhcNMjUwNTAyMDIzNjI2WjAYMRYwFAYD VQQDEw02ODBhZjUyYS0wYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGJmRt1TyNrQr7B9eq+618aPtyBSmEzbXLAaNSD2BXUepzo4SsS7SkdTcEM5 UhzihRTt+GzkGaSQhYVDKw+S7NQakFt/Viy5G1yQwYtfQANAY+h9PNHuiKOLRUqR 1ETfQy6rna6va5hWzwEsN2X0+2HoJZ9irSwYc84d2jXeRYdm6Dg+M1OqvnD8DiMK pfeJn20/idGHjjC7q6R4V4AV+LjRVmCqDpIweunV1G3XPAB8r2qI+xD17tp0nasy o/XXKt5n6Fn5OnBtHdZdQ+bkHvlz+oBB9lutg/x8Fc5O1oYx5RgjrlyfDxbuosAD xp1zts0w0rCwvmbaIX8OwyruuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtwMKI2 ONbZRoGdEhcXXHvXGdHkMB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCql76bXHIZEFcxz+UITbkKkWe+Ow2aaH0088lMDDLSvr9RRETcMuEH /2x/pE2bD5i0tUi4iVa5Wwo2Fi077DBNkbCFyfylXV4UIhdJ6GgTigCSPWF+01Gn RB8rwlOnc2QQ6v+/YGK6mz7GAzW0rW/tu4Cs6P09BuZUJW/SOdMNjssvV8dx7bSk qeZ8m2mBIh7h5V5DHYbpe0OUUzPP9X/6+fo+CkK+VNb2HnXpMOzrWwdvg9rzYO6m 6xfv+7WSviCx1/NsO6fSyzxU6Z66aA0yOB91/lfSWDCxtplxxDYy5kJO6nXhHi3W a7vNthmcwJ752uMDToM0dCsL5/kc3bat -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:06 2025 by rpki-client