$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft File: Nvf123A1uQ_bKShY4vz45rmRgXg.mft (raw, json) Hash identifier: KWCXTcTrViF1wPAiky4roDiJdgvAnEg2ZL9cj8A4N2c= Subject key identifier: 44:E9:AD:08:7F:E8:23:5A:80:EB:57:66:33:84:C0:D9:24:A9:FA:57 Authority key identifier: 36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 Certificate issuer: /CN=A91CC636/serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft Manifest number: 013A Signing time: Fri 25 Apr 2025 03:30:40 +0000 Manifest this update: Fri 25 Apr 2025 03:30:39 +0000 Manifest next update: Fri 02 May 2025 03:30:39 +0000 Files and hashes: 1: Nvf123A1uQ_bKShY4vz45rmRgXg.crl (hash: KFZh2xr1DQ7gblpVil7GqXo5Q13VJGbQQkzd5UaUdr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC636, serialNumber=36F7F5DB7035B90FDB292858E2FCF8E6B9918178 Validity Not Before: Apr 25 03:30:39 2025 GMT Not After : May 2 03:30:39 2025 GMT Subject: CN=680b01e0-605d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6c:fd:ac:e7:2a:fb:54:9f:4e:07:45:cd:19: 0b:21:31:f3:a7:23:8b:a5:30:6d:7f:e8:e4:d6:f3: ea:15:ac:61:dd:cb:64:b1:2d:ce:2d:78:5d:83:62: 59:d8:79:20:a7:e0:a1:5f:16:f6:e5:05:7f:b9:5b: f4:83:f9:ea:b1:be:9d:fe:32:16:ad:7c:0a:09:15: e9:0e:ec:5f:87:58:b5:46:6f:8f:c4:45:5c:b2:d6: 4e:b6:ad:94:e0:e6:e8:d6:ca:73:17:a9:49:e6:56: 8d:c7:94:38:00:a6:78:78:74:2c:5c:0d:d9:d4:b9: 29:dc:1e:90:bd:61:3a:02:d0:9d:0e:ac:c1:00:7c: 90:16:92:61:77:86:11:5a:ad:69:89:a6:ee:df:ee: 6b:6b:05:c3:50:1d:ac:26:61:f4:49:93:96:85:c7: 92:4f:7a:0c:31:b1:4f:34:6f:fa:e6:53:d2:4f:fc: 7c:40:d6:07:74:bf:56:73:72:60:e0:a9:bf:fe:58: 55:40:af:98:01:34:a8:5f:14:50:5e:2a:e8:09:19: 6b:58:51:b6:13:19:1a:7a:3f:a7:67:3d:19:35:31: 7f:37:dd:f5:44:f5:80:f5:1c:95:94:8c:58:d2:5d: 15:7e:2d:51:ce:17:9a:8e:1e:5f:a5:5d:b1:7e:f2: 8e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:E9:AD:08:7F:E8:23:5A:80:EB:57:66:33:84:C0:D9:24:A9:FA:57 X509v3 Authority Key Identifier: keyid:36:F7:F5:DB:70:35:B9:0F:DB:29:28:58:E2:FC:F8:E6:B9:91:81:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nvf123A1uQ_bKShY4vz45rmRgXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC636/54D27E20423511EEA840F148C4F9AE02/Nvf123A1uQ_bKShY4vz45rmRgXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:74:29:92:08:d8:55:10:44:02:ec:7f:e2:fb:12:b4:36:db: d9:17:34:0d:50:10:04:92:ca:b6:d6:63:63:30:99:a9:98:4d: 02:98:b4:39:aa:15:79:99:aa:c4:b7:c9:4f:da:d7:da:9a:48: a4:bd:39:8f:28:6d:32:92:8e:ba:11:80:0d:00:2a:29:e7:19: 7f:19:fe:74:52:99:43:45:d8:e1:d8:9e:06:c4:ff:09:5f:b1: 62:2c:d7:18:c0:10:1f:b4:1d:c6:9f:dd:9c:d0:cb:83:ec:1c: b0:fc:8b:ef:3c:a3:c4:5b:0d:99:87:e7:6c:d5:42:e5:85:22: 7f:00:e8:80:d6:70:7e:84:31:d3:b1:19:48:a9:ed:ea:86:d0: ed:81:68:34:4e:27:5a:4d:91:0d:75:b3:04:df:ca:4f:56:b7: 7a:24:e5:70:32:86:04:00:fb:f5:9c:ca:39:aa:b0:e6:22:71: e0:cc:10:f4:d9:db:55:f8:f3:f5:34:ee:fd:f0:69:90:fc:99: 6e:41:e6:e2:60:f5:cc:4e:39:82:1c:54:67:cc:68:03:be:74: 4a:b7:e4:8c:46:08:b5:96:31:2c:a5:74:0f:8b:cd:96:72:62: ce:f5:0e:a9:89:b1:7b:a4:10:42:fc:63:2f:cf:a0:40:2e:0b: a5:d6:9e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M2MzYxMTAvBgNVBAUTKDM2RjdGNURCNzAzNUI5MEZEQjI5Mjg1OEUyRkNGOEU2 Qjk5MTgxNzgwHhcNMjUwNDI1MDMzMDM5WhcNMjUwNTAyMDMzMDM5WjAYMRYwFAYD VQQDEw02ODBiMDFlMC02MDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWz9rOcq+1SfTgdFzRkLITHzpyOLpTBtf+jk1vPqFaxh3ctksS3OLXhdg2JZ 2Hkgp+ChXxb25QV/uVv0g/nqsb6d/jIWrXwKCRXpDuxfh1i1Rm+PxEVcstZOtq2U 4Obo1spzF6lJ5laNx5Q4AKZ4eHQsXA3Z1Lkp3B6QvWE6AtCdDqzBAHyQFpJhd4YR Wq1piabu3+5rawXDUB2sJmH0SZOWhceST3oMMbFPNG/65lPST/x8QNYHdL9Wc3Jg 4Km//lhVQK+YATSoXxRQXiroCRlrWFG2Exkaej+nZz0ZNTF/N931RPWA9RyVlIxY 0l0Vfi1Rzheajh5fpV2xfvKO/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFETprQh/ 6CNagOtXZjOEwNkkqfpXMB8GA1UdIwQYMBaAFDb39dtwNbkP2ykoWOL8+Oa5kYF4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzYzNi81NEQyN0UyMDQy MzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVRX2JLU2hZNHZ6NDVybVJn WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL052ZjEyM0ExdVFfYktTaFk0dno0NXJtUmdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzYzNi81NEQyN0UyMDQyMzUxMUVFQTg0MEYxNDhDNEY5QUUwMi9OdmYxMjNBMXVR X2JLU2hZNHZ6NDVybVJnWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADdCmSCNhVEEQC7H/i+xK0NtvZFzQNUBAEksq21mNjMJmpmE0CmLQ5 qhV5marEt8lP2tfamkikvTmPKG0yko66EYANACop5xl/Gf50UplDRdjh2J4GxP8J X7FiLNcYwBAftB3Gn92c0MuD7Byw/IvvPKPEWw2Zh+ds1ULlhSJ/AOiA1nB+hDHT sRlIqe3qhtDtgWg0TidaTZENdbME38pPVrd6JOVwMoYEAPv1nMo5qrDmInHgzBD0 2dtV+PP1NO798GmQ/JluQebiYPXMTjmCHFRnzGgDvnRKt+SMRgi1ljEspXQPi82W cmLO9Q6pibF7pBBC/GMvz6BALgul1p6H -----END CERTIFICATE-----Generated at Sat Apr 26 04:36:44 2025 by rpki-client