$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft File: NHTCU5hhEAr9ljoWPIAtAmT47H0.mft (raw, json) Hash identifier: /BsmBh7KONwxrtiHhgtyOrGpjdH2Ux3XaH+t2B+F/Wk= Subject key identifier: 3B:E8:93:82:68:DE:F4:CF:7C:9F:91:F7:30:96:0C:B5:F0:39:5E:89 Authority key identifier: 34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D Certificate issuer: /CN=A91D63AF/serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft Manifest number: F5 Signing time: Fri 25 Apr 2025 04:22:48 +0000 Manifest this update: Fri 25 Apr 2025 04:22:47 +0000 Manifest next update: Fri 02 May 2025 04:22:47 +0000 Files and hashes: 1: NHTCU5hhEAr9ljoWPIAtAmT47H0.crl (hash: nwu7+GNJ4P8piCCNUxb4E9B2g2UMHcNt1YwBcKMNRm8=) 2: 8C508DC055F711EFA5200828C4F9AE02.roa (hash: ihNWokHlCtMazUN4Q0S1jw6bRWJLab7FqUZHdXu5av8=) 3: 6241069011E111EFBBB70B32C4F9AE02.roa (hash: 1oT/iS9d2Pt0zquYaFCDfGNU++P67uGYK/ZfWm8Kv/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=3474C2539861100AFD963A163C802D0264F8EC7D Validity Not Before: Apr 25 04:22:47 2025 GMT Not After : May 2 04:22:47 2025 GMT Subject: CN=680b0e18-0103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fc:80:fb:fe:f7:1c:b7:f2:04:86:ba:bb:14: 07:69:4a:b1:da:9e:2f:8f:2a:33:d1:af:b2:c6:5c: 49:37:68:a1:f4:8a:fc:f5:f4:91:ca:bb:8f:40:51: b9:80:5f:97:75:58:c1:72:3d:ff:53:71:89:6a:4f: b9:41:0f:81:20:6c:4e:2b:49:fb:06:58:ca:8c:69: 4d:39:51:b6:33:a2:dc:19:04:69:c1:3f:67:36:3a: 91:b8:84:72:75:2c:40:79:03:ea:aa:5f:4e:01:1b: d4:3c:fa:c9:9b:7a:b9:19:36:be:7f:05:55:68:1f: 9f:a2:03:e0:f3:33:cc:95:84:38:79:d7:72:bd:12: 3f:1f:49:26:42:e6:32:36:7a:3e:e5:1f:9f:9f:0c: 4a:34:c8:ad:f1:07:ac:fc:ba:bb:73:25:92:69:e3: cd:32:72:8b:74:a4:a6:2a:36:78:4b:d6:ad:fd:0c: d6:ad:bd:56:be:0f:31:ca:ad:c5:ad:64:61:cb:bc: 8e:c3:c9:60:f4:17:e8:5d:65:34:1e:4f:df:6e:14: 29:f9:c0:58:35:9b:87:81:d0:05:65:9d:4f:c1:4c: 58:02:ab:73:aa:a6:31:62:8d:f7:07:d0:68:06:62: ab:63:4c:44:a8:b6:9b:78:e1:2f:b6:a0:5e:b9:2c: 36:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E8:93:82:68:DE:F4:CF:7C:9F:91:F7:30:96:0C:B5:F0:39:5E:89 X509v3 Authority Key Identifier: keyid:34:74:C2:53:98:61:10:0A:FD:96:3A:16:3C:80:2D:02:64:F8:EC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NHTCU5hhEAr9ljoWPIAtAmT47H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/4DFE6824B6B711EEA9D7FC3AC4F9AE02/NHTCU5hhEAr9ljoWPIAtAmT47H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:dd:c6:0b:38:81:03:fc:45:7e:9e:1b:76:2f:99:15:a3:bd: 98:68:c7:88:91:01:6b:e2:ad:89:69:1a:46:4e:95:40:03:d2: f4:ed:bd:6b:6d:29:cd:30:19:78:9b:bc:a8:96:7b:6d:16:72: 89:c4:a3:da:97:6b:83:08:6b:1d:54:e9:4e:a1:1c:92:f7:32: 66:c3:fb:c6:f2:1b:e9:34:61:f3:6c:4d:38:11:03:25:86:0f: a3:c3:c6:44:65:d1:57:e9:78:f2:5b:d2:ed:1c:74:a8:37:53: f7:f4:cb:59:10:fc:73:df:36:0f:b2:01:76:48:b5:01:ad:9a: 50:92:a9:34:5c:ca:30:c5:23:11:69:72:6f:3b:ee:2f:6a:29: 53:07:69:46:2c:cc:a7:12:a9:59:a8:07:71:b3:a9:6e:1b:11: 93:e3:49:9c:bd:40:02:b0:dd:13:3b:6c:70:f0:e6:1a:2a:78: 6b:b5:04:6f:06:fd:5f:75:3a:c7:04:3d:2a:d4:ad:72:9f:d6: 20:91:0e:ff:fa:fa:0c:57:59:f5:20:6f:29:d1:b2:03:82:85: 23:85:36:47:06:cf:74:43:cf:c6:9d:5a:8f:8e:6d:cb:1c:59: d6:99:7b:e4:e5:64:ad:38:e4:99:d4:95:cc:f1:8f:b5:88:45: 6b:39:90:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKDM0NzRDMjUzOTg2MTEwMEFGRDk2M0ExNjNDODAyRDAy NjRGOEVDN0QwHhcNMjUwNDI1MDQyMjQ3WhcNMjUwNTAyMDQyMjQ3WjAYMRYwFAYD VQQDEw02ODBiMGUxOC0wMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vyA+/73HLfyBIa6uxQHaUqx2p4vjyoz0a+yxlxJN2ih9Ir89fSRyruPQFG5 gF+XdVjBcj3/U3GJak+5QQ+BIGxOK0n7BljKjGlNOVG2M6LcGQRpwT9nNjqRuIRy dSxAeQPqql9OARvUPPrJm3q5GTa+fwVVaB+fogPg8zPMlYQ4eddyvRI/H0kmQuYy Nno+5R+fnwxKNMit8Qes/Lq7cyWSaePNMnKLdKSmKjZ4S9at/QzWrb1Wvg8xyq3F rWRhy7yOw8lg9BfoXWU0Hk/fbhQp+cBYNZuHgdAFZZ1PwUxYAqtzqqYxYo33B9Bo BmKrY0xEqLabeOEvtqBeuSw2twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvok4Jo 3vTPfJ+R9zCWDLXwOV6JMB8GA1UdIwQYMBaAFDR0wlOYYRAK/ZY6FjyALQJk+Ox9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi80REZFNjgyNEI2 QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVBcjlsam9XUElBdEFtVDQ3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05IVENVNWhoRUFyOWxqb1dQSUF0QW1UNDdIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi80REZFNjgyNEI2QjcxMUVFQTlEN0ZDM0FDNEY5QUUwMi9OSFRDVTVoaEVB cjlsam9XUElBdEFtVDQ3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM3cYLOIED/EV+nht2L5kVo72YaMeIkQFr4q2JaRpGTpVAA9L07b1r bSnNMBl4m7yolnttFnKJxKPal2uDCGsdVOlOoRyS9zJmw/vG8hvpNGHzbE04EQMl hg+jw8ZEZdFX6XjyW9LtHHSoN1P39MtZEPxz3zYPsgF2SLUBrZpQkqk0XMowxSMR aXJvO+4vailTB2lGLMynEqlZqAdxs6luGxGT40mcvUACsN0TO2xw8OYaKnhrtQRv Bv1fdTrHBD0q1K1yn9YgkQ7/+voMV1n1IG8p0bIDgoUjhTZHBs90Q8/GnVqPjm3L HFnWmXvk5WStOOSZ1JXM8Y+1iEVrOZAR -----END CERTIFICATE-----Generated at Sat Apr 26 18:37:29 2025 by rpki-client