$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: CJ+S6d1GD1zvvQgFJVmfkfd0PibsnR8iaX3EH5Fxdvs= Subject key identifier: C6:E3:68:18:02:80:D2:D1:42:9C:CE:22:B5:33:54:DF:11:E4:CD:1E Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 94 Signing time: Thu 01 May 2025 05:24:01 +0000 Manifest this update: Thu 01 May 2025 05:24:01 +0000 Manifest next update: Thu 08 May 2025 05:24:01 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: EOvQ57cYkq5kmI+eDNHuvYlVdifqO+Eq2Aumithrc8E=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 05:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: May 1 05:24:01 2025 GMT Not After : May 8 05:24:01 2025 GMT Subject: CN=68130571-d9fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:02:cf:fa:50:b0:45:a5:eb:f6:bc:90:9b:8d: df:7b:47:ba:d5:b2:21:fc:ab:c3:f6:a8:71:9d:58: cc:3a:61:20:f0:f8:f1:fb:46:95:78:3d:c3:45:16: 64:25:a0:92:62:85:a9:70:3b:17:8c:7f:2c:bd:7b: 0e:da:61:97:82:cb:f4:9c:51:99:9f:62:33:4e:24: a6:14:a3:50:34:09:cb:15:81:b5:d4:8a:c9:1e:3d: 11:b6:d6:d3:57:9a:dc:a0:65:87:e8:0b:3b:89:8d: a7:49:6d:0a:66:e8:51:0f:52:f6:e3:a9:ad:00:66: 93:db:fb:f2:19:bc:2a:8e:65:0a:fa:d6:f9:27:2d: e8:b3:c6:7b:b0:ac:9d:39:43:c9:61:0c:03:ee:2d: 9d:3b:2d:23:5b:5f:a7:4a:f1:b0:a2:84:86:06:95: 7d:50:14:41:2a:9b:0b:0f:29:c4:cb:11:7f:c1:90: cd:1c:45:20:16:ac:60:52:11:db:0b:2b:5e:18:99: be:a0:07:ce:1f:de:ec:31:2a:94:69:5e:ad:7a:7c: f5:6f:a1:79:ae:c3:1f:14:25:39:9e:71:a3:75:76: 4f:9a:73:84:d5:5d:32:c3:c1:aa:3b:b9:a3:37:05: 5e:b4:11:d7:52:0b:11:50:ef:c4:52:ef:6d:17:07: ec:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E3:68:18:02:80:D2:D1:42:9C:CE:22:B5:33:54:DF:11:E4:CD:1E X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:68:70:52:80:9f:98:5e:8b:de:ff:14:44:64:d8:aa:ca:ef: cc:52:94:f6:3a:6e:ef:e0:22:d6:96:99:6b:e9:e1:9a:73:2c: b1:25:11:0d:c8:41:c8:b2:5a:65:a0:93:1c:80:1b:3a:e7:6c: 20:e2:00:0c:ad:b9:6c:e6:2e:4a:12:8c:ce:cd:e5:07:db:b5: d4:97:25:c7:52:fd:92:7e:6f:6f:f7:39:6a:8a:e2:6d:14:95: 5f:79:15:f7:c6:7a:23:e7:cf:62:13:33:75:70:70:bb:a1:72: e0:53:9b:59:f7:99:40:8c:9d:31:f2:b3:fd:fe:94:1d:77:36: 95:a2:9d:e6:cf:b0:2b:15:5e:d8:0e:45:60:4e:4e:9a:ac:a7: 60:f6:b1:bf:3c:cf:62:7a:f1:d6:2e:b5:ed:a6:b5:fa:1b:2d: ca:4a:55:c0:9f:6c:8f:51:e9:51:1a:02:47:1e:28:b9:ea:3b: 5a:61:e1:01:92:44:30:c8:d8:0e:49:da:44:29:8c:f6:62:8b: f5:58:4e:1c:41:82:b2:74:eb:89:87:5c:55:1e:3e:58:93:93: 81:36:91:2d:c7:a7:fd:2f:a5:3f:12:72:19:3a:90:71:17:e3: a0:1c:d6:23:f2:94:3d:2d:77:f1:4f:05:fe:c7:86:d4:f4:d5: 42:26:ef:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUwNTAxMDUyNDAxWhcNMjUwNTA4MDUyNDAxWjAYMRYwFAYD VQQDEw02ODEzMDU3MS1kOWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwLP+lCwRaXr9ryQm43fe0e61bIh/KvD9qhxnVjMOmEg8Pjx+0aVeD3DRRZk JaCSYoWpcDsXjH8svXsO2mGXgsv0nFGZn2IzTiSmFKNQNAnLFYG11IrJHj0RttbT V5rcoGWH6As7iY2nSW0KZuhRD1L246mtAGaT2/vyGbwqjmUK+tb5Jy3os8Z7sKyd OUPJYQwD7i2dOy0jW1+nSvGwooSGBpV9UBRBKpsLDynEyxF/wZDNHEUgFqxgUhHb CyteGJm+oAfOH97sMSqUaV6tenz1b6F5rsMfFCU5nnGjdXZPmnOE1V0yw8GqO7mj NwVetBHXUgsRUO/EUu9tFwfsNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbjaBgC gNLRQpzOIrUzVN8R5M0eMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjaHBSgJ+YXove/xREZNiqyu/MUpT2Om7v4CLWlplr6eGacyyxJREN yEHIslploJMcgBs652wg4gAMrbls5i5KEozOzeUH27XUlyXHUv2Sfm9v9zlqiuJt FJVfeRX3xnoj589iEzN1cHC7oXLgU5tZ95lAjJ0x8rP9/pQddzaVop3mz7ArFV7Y DkVgTk6arKdg9rG/PM9ievHWLrXtprX6Gy3KSlXAn2yPUelRGgJHHii56jtaYeEB kkQwyNgOSdpEKYz2Yov1WE4cQYKydOuJh1xVHj5Yk5OBNpEtx6f9L6U/EnIZOpBx F+OgHNYj8pQ9LXfxTwX+x4bU9NVCJu/c -----END CERTIFICATE-----Generated at Fri May 2 09:17:37 2025 by rpki-client