$ rpki-client -vvf rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft File: Nocz_cVgxeuJ5FJA331AOcsvYQg.mft (raw, json) Hash identifier: Lld42HsZV4n7xw7fniqfp+G72jrUCASymB0XlpT4S4g= Subject key identifier: 09:43:3A:88:47:3B:82:33:72:CD:D0:9E:99:C6:3E:5A:85:F3:37:F1 Authority key identifier: 36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 Certificate issuer: /CN=A91C97F5/serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft Manifest number: 0227 Signing time: Fri 25 Apr 2025 01:42:44 +0000 Manifest this update: Fri 25 Apr 2025 01:42:44 +0000 Manifest next update: Fri 02 May 2025 01:42:44 +0000 Files and hashes: 1: Nocz_cVgxeuJ5FJA331AOcsvYQg.crl (hash: 3px9jaTuMgmcZ1lXzMIn0pWA85qsmdVqR1htGbsiu9I=) 2: 020D49E0283211ED9E29FA70C4F9AE02.roa (hash: LQxrSI0KNNYbihu8S9SLx+zDE07D+HfcizadCn96Tg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C97F5, serialNumber=368733FDC560C5EB89E45240DF7D4039CB2F6108 Validity Not Before: Apr 25 01:42:44 2025 GMT Not After : May 2 01:42:44 2025 GMT Subject: CN=680ae894-04ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:c2:61:4f:a5:0b:3c:83:8a:58:c8:fb:d2:de: b8:e9:cc:31:b2:88:70:1f:59:bc:a4:df:f3:0c:11: 4d:75:a6:c0:8a:7f:51:ba:97:9d:c2:e8:15:66:c6: 5f:5c:61:74:0e:4f:c5:4b:45:6a:7a:68:92:41:1c: a4:44:a3:09:5c:a1:2b:33:a0:4e:ed:25:f0:1f:77: a8:2c:a1:a6:d7:c1:3f:9e:8b:17:b4:93:5a:03:03: 55:25:38:94:74:91:91:dc:96:81:c0:c0:b6:3e:32: b4:a7:d6:90:a4:cb:4e:e9:61:48:e0:74:25:94:d5: 06:31:b3:63:46:5f:08:8c:ae:3c:b6:92:a5:5a:2e: a3:60:b6:03:5e:30:ac:08:59:1a:bd:8a:a2:73:6d: 23:72:0f:95:d1:43:19:98:ba:d8:3d:01:a6:78:0a: e8:fb:b3:d7:93:ec:84:12:72:8e:14:4e:eb:52:5e: 6d:2f:b8:55:cb:ca:6c:78:4e:d5:12:7e:3d:24:9f: 97:48:ea:f7:1e:0b:47:0a:2b:1a:d7:f9:a2:67:6e: 36:8d:9e:1c:ca:c3:4d:65:7d:f0:df:1d:07:eb:3d: a4:8f:91:20:64:8e:da:b3:b3:d7:6c:51:73:bd:8f: 9a:50:17:01:10:9c:3a:87:0a:67:38:c5:fb:81:cc: 7f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:43:3A:88:47:3B:82:33:72:CD:D0:9E:99:C6:3E:5A:85:F3:37:F1 X509v3 Authority Key Identifier: keyid:36:87:33:FD:C5:60:C5:EB:89:E4:52:40:DF:7D:40:39:CB:2F:61:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nocz_cVgxeuJ5FJA331AOcsvYQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C97F5/9170C42A274411ED8C139B51C4F9AE02/Nocz_cVgxeuJ5FJA331AOcsvYQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:00:05:e7:43:df:d8:8f:0d:6c:e9:7a:4d:ad:bd:a9:59:b5: 61:56:7f:9f:e5:90:34:18:27:79:12:df:d1:52:9d:f6:02:cd: 7b:cc:b0:6e:a7:c9:1a:0b:90:8e:13:f5:ed:1b:65:42:df:c4: c9:ff:19:a8:15:eb:9a:e5:31:8e:ca:57:41:25:5a:69:04:e9: a7:c1:e9:7f:b3:06:ab:f9:5f:5e:6a:84:3d:29:36:25:66:2d: 07:a5:03:2f:a0:d8:3d:31:0a:1e:f6:76:4a:8b:dd:df:70:44: e8:12:b2:70:2a:4e:d8:59:9f:01:ac:58:fa:8e:b6:97:5b:77: 1c:3e:b4:52:44:e3:03:5b:c4:97:ec:e4:74:7f:b3:53:41:17: fb:5f:73:5c:5b:78:17:43:04:2e:6a:b9:e8:1f:ba:90:07:5b: 7e:2b:60:b0:19:21:ef:73:dd:b1:87:b5:67:5a:a9:56:96:0e: da:0b:9b:93:a2:42:6a:05:29:af:9a:64:b5:c8:41:f5:7a:ee: 5f:00:13:9f:88:7a:15:91:d7:f1:09:dc:06:45:bc:1e:02:18: 5c:cf:d9:45:71:0c:b5:90:26:71:22:0b:5f:a8:ea:99:42:2d: dc:e2:b4:67:81:b2:61:81:33:08:bf:87:e8:c1:e5:77:50:9d: 0e:e8:69:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk3RjUxMTAvBgNVBAUTKDM2ODczM0ZEQzU2MEM1RUI4OUU0NTI0MERGN0Q0MDM5 Q0IyRjYxMDgwHhcNMjUwNDI1MDE0MjQ0WhcNMjUwNTAyMDE0MjQ0WjAYMRYwFAYD VQQDEw02ODBhZTg5NC0wNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8sJhT6ULPIOKWMj70t646cwxsohwH1m8pN/zDBFNdabAin9RupedwugVZsZf XGF0Dk/FS0VqemiSQRykRKMJXKErM6BO7SXwH3eoLKGm18E/nosXtJNaAwNVJTiU dJGR3JaBwMC2PjK0p9aQpMtO6WFI4HQllNUGMbNjRl8IjK48tpKlWi6jYLYDXjCs CFkavYqic20jcg+V0UMZmLrYPQGmeAro+7PXk+yEEnKOFE7rUl5tL7hVy8pseE7V En49JJ+XSOr3HgtHCisa1/miZ242jZ4cysNNZX3w3x0H6z2kj5EgZI7as7PXbFFz vY+aUBcBEJw6hwpnOMX7gcx/jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlDOohH O4Izcs3QnpnGPlqF8zfxMB8GA1UdIwQYMBaAFDaHM/3FYMXrieRSQN99QDnLL2EI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTdGNS85MTcwQzQyQTI3 NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hldUo1RkpBMzMxQU9jc3ZZ UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05vY3pfY1ZneGV1SjVGSkEzMzFBT2NzdllRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTdGNS85MTcwQzQyQTI3NDQxMUVEOEMxMzlCNTFDNEY5QUUwMi9Ob2N6X2NWZ3hl dUo1RkpBMzMxQU9jc3ZZUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVAAXnQ9/Yjw1s6XpNrb2pWbVhVn+f5ZA0GCd5Et/RUp32As17zLBu p8kaC5COE/XtG2VC38TJ/xmoFeua5TGOyldBJVppBOmnwel/swar+V9eaoQ9KTYl Zi0HpQMvoNg9MQoe9nZKi93fcEToErJwKk7YWZ8BrFj6jraXW3ccPrRSROMDW8SX 7OR0f7NTQRf7X3NcW3gXQwQuarnoH7qQB1t+K2CwGSHvc92xh7VnWqlWlg7aC5uT okJqBSmvmmS1yEH1eu5fABOfiHoVkdfxCdwGRbweAhhcz9lFcQy1kCZxIgtfqOqZ Qi3c4rRngbJhgTMIv4foweV3UJ0O6GlK -----END CERTIFICATE-----Generated at Sat Apr 26 16:34:58 2025 by rpki-client