$ rpki-client -vvf rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft File: ntLhokBcme5158OQPfckDKqr-yU.mft (raw, json) Hash identifier: m3a88UHNlM2hnfs+GM+fR2M0fzedccvg8cQsyQj95wM= Subject key identifier: AF:AE:89:FD:CD:8D:F4:3A:CC:FD:03:E6:EE:31:C5:43:A5:27:16:8B Authority key identifier: 9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25 Certificate issuer: /CN=A91B98F0/serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25 Certificate serial: 0A62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft Manifest number: 0A49 Signing time: Thu 24 Apr 2025 19:37:58 +0000 Manifest this update: Thu 24 Apr 2025 19:37:57 +0000 Manifest next update: Thu 01 May 2025 19:37:57 +0000 Files and hashes: 1: ntLhokBcme5158OQPfckDKqr-yU.crl (hash: ChavMcYgbRFAWEM1/gI+8psx0PkM5kZZG3ywWcxxES0=) 2: A7C5E9A008C711F0A36DEF53C4F9AE02.roa (hash: 5bw02QPZALBVcPXao2om/7h5TeG43Lt0My2JIbwOjOs=) 3: A5980E1A08C711F0A36DEF53C4F9AE02.roa (hash: LEXFRzUj++AYS1bZVpScJtjHFnh8GD6doBgoF1ckC8A=) 4: A699CC5408C711F0A36DEF53C4F9AE02.roa (hash: 4Gb0oGZj79v5ouAdIBzDqoRNpL7kau5pEssgVRcrgRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2658 (0xa62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B98F0, serialNumber=9ED2E1A2405C99EE75E7C3903DF7240CAAABFB25 Validity Not Before: Apr 24 19:37:57 2025 GMT Not After : May 1 19:37:57 2025 GMT Subject: CN=680a9316-5317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4f:2d:e5:40:23:11:dd:ad:10:c3:a5:83:67: 58:14:2b:ed:61:db:f7:71:42:e7:2f:af:ff:6f:d1: be:70:2c:f6:46:6a:4f:31:b2:39:e0:c5:57:87:6d: f2:d1:f6:68:7d:68:11:5d:81:2b:38:7b:a4:fd:ff: 12:8c:9e:91:e5:ca:e2:c3:96:41:d0:39:3b:65:d4: b5:cf:39:a1:42:b9:94:ca:77:3b:9f:c3:0e:18:26: ba:3e:cf:25:28:73:98:17:8b:26:69:e6:f2:0c:ec: 13:99:8d:b5:cd:23:04:1a:8a:85:03:04:f3:77:72: d2:3f:36:0e:5b:3b:17:67:7d:15:7c:42:2e:fc:a6: 6c:0a:a0:f7:61:f5:66:cf:56:1c:d3:5b:60:3e:ee: bf:68:3d:13:33:21:d4:4a:85:bc:3c:58:b3:49:94: 94:61:c0:9e:19:95:e9:13:fa:dc:5e:04:ea:40:7b: 66:82:a7:f9:be:75:1f:de:14:14:48:76:ea:7c:d0: c1:30:c7:b2:e4:19:56:63:f2:1f:06:15:d6:dc:72: 30:b9:1e:c6:35:0a:ea:2c:b8:73:e7:59:bf:0e:3a: 40:a8:96:7c:8d:2a:a7:35:be:7c:b3:c3:8a:43:12: b9:61:00:78:c0:9d:af:a8:73:87:1b:4d:ea:1a:3e: 8b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:AE:89:FD:CD:8D:F4:3A:CC:FD:03:E6:EE:31:C5:43:A5:27:16:8B X509v3 Authority Key Identifier: keyid:9E:D2:E1:A2:40:5C:99:EE:75:E7:C3:90:3D:F7:24:0C:AA:AB:FB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntLhokBcme5158OQPfckDKqr-yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B98F0/8A1AE1F4672C11EA8393DF25C4F9AE02/ntLhokBcme5158OQPfckDKqr-yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:40:85:1b:e5:8b:f5:17:00:90:6b:1f:bb:a9:e2:33:48:55: f5:4e:d6:4c:94:76:ae:51:36:47:12:c7:9c:64:39:f5:d6:49: 5a:4b:81:f2:7b:9c:de:6a:58:b2:de:f2:aa:74:91:e2:a1:1c: 6b:b3:51:be:75:d0:d4:e3:1e:38:ce:4e:70:4a:22:8d:e6:7a: 7b:21:8a:43:13:5a:57:8c:d3:33:48:ca:05:dc:33:99:f6:0a: a6:08:20:39:c2:c5:8b:c2:8c:19:67:a7:0f:8b:23:78:c7:33: 75:b0:56:d4:03:86:8d:65:33:8e:d9:d4:94:69:51:8c:46:b8: 4c:3a:2c:e0:9b:ad:01:70:b2:bb:98:99:80:5e:72:23:f3:66: b4:ac:f0:38:6a:8f:5f:b8:85:dc:45:f6:7e:2b:15:2d:1e:b5: d2:03:89:c2:70:4d:de:d9:b1:0c:19:97:1a:47:e2:99:7a:43: 5d:c2:06:b1:69:10:55:c2:88:e9:7a:b3:ec:d7:27:10:53:9f: 06:0c:b7:6f:b6:24:08:28:30:c5:9f:36:3c:fd:6f:4d:3a:e5: 33:e6:2a:00:73:a9:bc:ac:7a:21:1a:df:da:f4:1f:f5:db:3a: 60:9d:4b:9a:cd:3b:ac:d3:60:f1:0e:d5:b1:3f:6c:48:3c:4a: bb:48:14:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk4RjAxMTAvBgNVBAUTKDlFRDJFMUEyNDA1Qzk5RUU3NUU3QzM5MDNERjcyNDBD QUFBQkZCMjUwHhcNMjUwNDI0MTkzNzU3WhcNMjUwNTAxMTkzNzU3WjAYMRYwFAYD VQQDEw02ODBhOTMxNi01MzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu08t5UAjEd2tEMOlg2dYFCvtYdv3cULnL6//b9G+cCz2RmpPMbI54MVXh23y 0fZofWgRXYErOHuk/f8SjJ6R5criw5ZB0Dk7ZdS1zzmhQrmUync7n8MOGCa6Ps8l KHOYF4smaebyDOwTmY21zSMEGoqFAwTzd3LSPzYOWzsXZ30VfEIu/KZsCqD3YfVm z1Yc01tgPu6/aD0TMyHUSoW8PFizSZSUYcCeGZXpE/rcXgTqQHtmgqf5vnUf3hQU SHbqfNDBMMey5BlWY/IfBhXW3HIwuR7GNQrqLLhz51m/DjpAqJZ8jSqnNb58s8OK QxK5YQB4wJ2vqHOHG03qGj6LYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+uif3N jfQ6zP0D5u4xxUOlJxaLMB8GA1UdIwQYMBaAFJ7S4aJAXJnudefDkD33JAyqq/sl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOThGMC84QTFBRTFGNDY3 MkMxMUVBODM5M0RGMjVDNEY5QUUwMi9udExob2tCY21lNTE1OE9RUGZja0RLcXIt eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250TGhva0JjbWU1MTU4T1FQZmNrREtxci15VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OThGMC84QTFBRTFGNDY3MkMxMUVBODM5M0RGMjVDNEY5QUUwMi9udExob2tCY21l NTE1OE9RUGZja0RLcXIteVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmQIUb5Yv1FwCQax+7qeIzSFX1TtZMlHauUTZHEsecZDn11klaS4Hy e5zealiy3vKqdJHioRxrs1G+ddDU4x44zk5wSiKN5np7IYpDE1pXjNMzSMoF3DOZ 9gqmCCA5wsWLwowZZ6cPiyN4xzN1sFbUA4aNZTOO2dSUaVGMRrhMOizgm60BcLK7 mJmAXnIj82a0rPA4ao9fuIXcRfZ+KxUtHrXSA4nCcE3e2bEMGZcaR+KZekNdwgax aRBVwojperPs1ycQU58GDLdvtiQIKDDFnzY8/W9NOuUz5ioAc6m8rHohGt/a9B/1 2zpgnUuazTus02DxDtWxP2xIPEq7SBSX -----END CERTIFICATE-----Generated at Sat Apr 26 04:29:45 2025 by rpki-client