$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: +0EYVL+3OLQErxYA2kaDucYTfhGsnBOTx6m5Ni5Fk54= Subject key identifier: 09:F5:A9:C5:F5:E5:34:44:55:BE:C8:62:A8:E3:AE:3F:3E:DB:99:18 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 010A Signing time: Fri 25 Apr 2025 04:05:26 +0000 Manifest this update: Fri 25 Apr 2025 04:05:25 +0000 Manifest next update: Fri 02 May 2025 04:05:25 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: XGg2sM4aktC+7ii9OPbYGrK4Z+CnTCeKkEpn8BA1rs8=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Apr 25 04:05:25 2025 GMT Not After : May 2 04:05:25 2025 GMT Subject: CN=680b0a06-584a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:61:35:08:86:87:44:6e:bc:1d:c5:1d:e7:44: c3:de:11:6a:1b:9c:20:a4:5a:b5:a4:7b:21:0d:6d: 3a:4e:da:bd:e5:6d:28:53:6f:0e:e4:30:ed:39:ea: d1:8a:fc:12:a8:7e:3e:1d:e8:cd:5f:f7:88:c2:23: 74:03:b4:18:a9:e3:2e:ff:99:2f:e3:9f:b2:03:9c: 50:bf:26:96:2c:b8:4c:24:f3:4f:32:86:d3:29:1d: a0:2d:54:26:dd:5b:20:d5:1b:a1:5c:c3:69:f9:11: f7:3e:05:28:ca:de:7b:ca:c2:87:f1:36:3d:a1:83: f6:85:df:e2:3a:8c:5d:db:2d:1a:5a:cb:0a:7f:59: a6:e1:44:3b:58:b3:c2:4a:61:23:88:b2:d8:97:b9: 5c:e4:1a:49:94:81:66:49:48:97:92:7c:10:c3:52: af:0f:9c:13:84:21:8b:9b:4e:bb:c5:92:c5:1a:48: 77:ee:fe:b3:3f:b8:a5:2a:e8:ac:57:f7:0f:09:cb: c3:fc:cc:5e:d1:74:85:90:dc:03:e0:5c:ee:17:08: 63:1b:63:3e:18:e7:0e:3a:2e:a0:aa:56:f7:97:fa: 32:be:42:05:58:96:4f:47:c4:63:c5:ae:f5:05:64: cf:21:df:35:f1:0d:27:4a:16:c1:45:d1:6b:72:79: 65:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F5:A9:C5:F5:E5:34:44:55:BE:C8:62:A8:E3:AE:3F:3E:DB:99:18 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:24:9d:60:0e:f4:f8:57:01:5a:ab:51:ac:ef:9d:5c:1f:00: 48:b4:e4:13:82:70:25:87:2a:3b:d7:12:cc:45:27:90:c8:e8: 59:b1:90:d0:9f:ad:66:f6:45:4b:d3:dd:8d:45:22:23:47:ee: e5:4c:15:c2:e6:73:cf:96:46:23:40:9a:09:e7:15:fb:94:2d: e7:c7:69:42:94:26:00:85:1b:48:69:53:63:e1:67:ca:de:6f: 82:2c:49:e4:89:f0:0d:6c:c1:22:a1:4c:b8:45:85:e3:69:e7: 0a:2d:76:4a:06:d8:15:ae:0e:d3:93:3a:c1:9f:cd:83:7b:77: bb:97:61:d1:a9:e9:67:df:2a:9c:72:c0:40:eb:85:fe:7e:c7: c8:5b:f5:ed:cd:da:f8:08:be:ca:1a:b4:d1:f9:14:8f:9e:ed: 2a:89:47:41:79:74:3f:72:75:9e:7b:b4:de:cc:76:27:0f:1e: 81:3b:c5:17:1d:07:a9:50:fd:52:12:7c:53:19:81:80:84:cf: 7f:42:ab:58:8e:b9:fb:0e:9e:86:17:48:f6:d8:58:e2:12:c7: 4e:d8:99:ef:53:d8:b4:a7:ba:88:0d:34:ff:e8:e5:42:ad:de: b0:67:33:05:7c:8f:f6:20:3c:9f:36:36:34:48:3d:bd:63:9a: 14:ec:af:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUwNDI1MDQwNTI1WhcNMjUwNTAyMDQwNTI1WjAYMRYwFAYD VQQDEw02ODBiMGEwNi01ODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmE1CIaHRG68HcUd50TD3hFqG5wgpFq1pHshDW06Ttq95W0oU28O5DDtOerR ivwSqH4+HejNX/eIwiN0A7QYqeMu/5kv45+yA5xQvyaWLLhMJPNPMobTKR2gLVQm 3Vsg1RuhXMNp+RH3PgUoyt57ysKH8TY9oYP2hd/iOoxd2y0aWssKf1mm4UQ7WLPC SmEjiLLYl7lc5BpJlIFmSUiXknwQw1KvD5wThCGLm067xZLFGkh37v6zP7ilKuis V/cPCcvD/Mxe0XSFkNwD4FzuFwhjG2M+GOcOOi6gqlb3l/oyvkIFWJZPR8Rjxa71 BWTPId818Q0nShbBRdFrcnllgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAn1qcX1 5TREVb7IYqjjrj8+25kYMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3JJ1gDvT4VwFaq1Gs751cHwBItOQTgnAlhyo71xLMRSeQyOhZsZDQ n61m9kVL092NRSIjR+7lTBXC5nPPlkYjQJoJ5xX7lC3nx2lClCYAhRtIaVNj4WfK 3m+CLEnkifANbMEioUy4RYXjaecKLXZKBtgVrg7TkzrBn82De3e7l2HRqeln3yqc csBA64X+fsfIW/Xtzdr4CL7KGrTR+RSPnu0qiUdBeXQ/cnWee7TezHYnDx6BO8UX HQepUP1SEnxTGYGAhM9/QqtYjrn7Dp6GF0j22FjiEsdO2JnvU9i0p7qIDTT/6OVC rd6wZzMFfI/2IDyfNjY0SD29Y5oU7K8I -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:40 2025 by rpki-client