$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft File: nTRubbOcPTMMGv-UBg4VBV_07Rw.mft (raw, json) Hash identifier: fsWTQkVIlThD6RmHBr+JRhR/+qvxpOqm7SV6rmUUrvc= Subject key identifier: FB:54:7F:AA:F2:0E:17:4F:C6:0F:E1:A8:DA:9B:29:FB:A8:6C:41:9C Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Certificate serial: 3496 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft Manifest number: 3488 Signing time: Thu 24 Apr 2025 15:10:54 +0000 Manifest this update: Thu 24 Apr 2025 15:10:53 +0000 Manifest next update: Thu 01 May 2025 15:10:53 +0000 Files and hashes: 1: nTRubbOcPTMMGv-UBg4VBV_07Rw.crl (hash: o7CRSFhiYrjbrqBwRoE9b80TtALttExMxFD0Nr1CSHs=) 2: 2251B910AC7411EBBE196180C4F9AE02.roa (hash: 0oRyzqVuAdePO5EPsN2BuW/GIZU57nKR40ge4zIrFQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2168, serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Validity Not Before: Apr 24 15:10:53 2025 GMT Not After : May 1 15:10:53 2025 GMT Subject: CN=680a547e-aa5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ce:3f:54:1d:19:47:53:27:e4:b1:1e:b8:b6: a6:7f:ab:45:46:57:bf:c0:1a:90:38:db:2c:ce:d8: 80:ad:35:cb:b9:48:9c:4d:0a:24:27:c9:b7:c7:d0: 5b:37:f9:e3:35:f1:33:e3:2d:bd:48:ec:a5:ad:56: 9e:a6:97:08:44:53:2d:63:b8:00:82:9d:9a:5a:7d: 87:b0:83:2d:b4:be:64:a0:5c:5e:ec:0b:f6:da:e7: 69:8d:31:bd:c0:ea:68:2e:12:e5:ad:f7:5d:6c:5c: 80:dc:72:f6:1f:84:82:0c:db:2d:14:25:c9:fa:8e: 4e:35:df:ef:8e:eb:cb:c9:3f:75:de:9d:9e:ec:1a: 4e:75:13:8c:2f:c0:b2:bf:2e:38:8d:16:64:7f:93: e2:74:2b:49:1a:a2:17:03:c0:56:c6:22:34:75:52: 0e:2a:21:b2:48:23:8f:cc:15:76:0c:52:3f:5a:b3: 31:05:4a:65:e7:27:ea:1e:7a:60:d2:60:0b:1c:9a: b4:e9:90:82:8b:3c:d3:5b:55:b0:af:e7:08:9c:dc: b7:c7:5f:24:04:8a:83:68:96:d9:38:00:1d:d4:0f: 12:ff:c0:f8:51:fd:3a:dd:86:46:f2:71:02:9a:91: dd:d3:43:cc:86:4d:12:fd:89:d0:41:33:29:66:b6: f3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:54:7F:AA:F2:0E:17:4F:C6:0F:E1:A8:DA:9B:29:FB:A8:6C:41:9C X509v3 Authority Key Identifier: keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:51:db:01:d0:78:15:dc:39:88:b9:d8:d3:bf:b9:5e:e3:63: a8:34:2c:3d:71:f7:7a:59:0f:4a:bb:37:08:ed:a0:3c:b8:47: 36:07:d8:ba:a9:92:58:6d:56:50:9a:11:72:16:b5:ef:4b:f0: 8a:5c:25:4d:a3:35:c6:a4:c9:ee:94:92:26:ad:c3:98:2b:61: 5d:74:d3:47:d2:e4:24:e9:9b:6e:ac:31:8b:a4:6a:70:9c:a2: 10:38:33:76:48:51:c6:f0:6b:e5:52:4d:b5:b1:65:f8:ba:4e: be:48:87:ed:82:b7:41:30:c2:f6:4d:92:e1:ea:fe:97:38:6f: 48:98:da:42:7d:62:70:e2:84:5b:37:81:53:28:41:d7:ef:59: b3:07:d0:d7:ab:b7:f3:16:41:98:90:47:0a:a2:b6:1d:51:9e: 8f:1c:e0:a4:da:d8:67:a8:67:9f:11:a2:f6:49:e0:37:07:af: 36:61:d1:5a:11:0f:68:15:04:25:3a:3b:58:82:37:80:74:1b: b1:1c:db:d4:31:5c:b8:12:b5:a1:f2:4b:e9:b4:3c:bb:2b:58: 9c:c7:0c:0b:51:ed:6e:75:8d:12:cd:4e:f0:8b:e9:74:1a:92: 7a:d6:d9:93:66:81:3f:e2:55:d5:91:78:c9:22:b9:3b:c6:5a: ca:9a:15:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1 NUZGNEVEMUMwHhcNMjUwNDI0MTUxMDUzWhcNMjUwNTAxMTUxMDUzWjAYMRYwFAYD VQQDEw02ODBhNTQ3ZS1hYTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuM4/VB0ZR1Mn5LEeuLamf6tFRle/wBqQONssztiArTXLuUicTQokJ8m3x9Bb N/njNfEz4y29SOylrVaeppcIRFMtY7gAgp2aWn2HsIMttL5koFxe7Av22udpjTG9 wOpoLhLlrfddbFyA3HL2H4SCDNstFCXJ+o5ONd/vjuvLyT913p2e7BpOdROML8Cy vy44jRZkf5PidCtJGqIXA8BWxiI0dVIOKiGySCOPzBV2DFI/WrMxBUpl5yfqHnpg 0mALHJq06ZCCizzTW1Wwr+cInNy3x18kBIqDaJbZOAAd1A8S/8D4Uf063YZG8nEC mpHd00PMhk0S/YnQQTMpZrbz3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtUf6ry DhdPxg/hqNqbKfuobEGcMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjE2OC8yNEM2MkMwNjFEOTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BU TU1Hdi1VQmc0VkJWXzA3UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHUdsB0HgV3DmIudjTv7le42OoNCw9cfd6WQ9KuzcI7aA8uEc2B9i6 qZJYbVZQmhFyFrXvS/CKXCVNozXGpMnulJImrcOYK2FddNNH0uQk6ZturDGLpGpw nKIQODN2SFHG8GvlUk21sWX4uk6+SIftgrdBMML2TZLh6v6XOG9ImNpCfWJw4oRb N4FTKEHX71mzB9DXq7fzFkGYkEcKorYdUZ6PHOCk2thnqGefEaL2SeA3B682YdFa EQ9oFQQlOjtYgjeAdBuxHNvUMVy4ErWh8kvptDy7K1icxwwLUe1udY0SzU7wi+l0 GpJ61tmTZoE/4lXVkXjJIrk7xlrKmhXg -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:45 2025 by rpki-client