$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: 0I9rigPi73dLVpJwUl0Ggp8+DpIYXTYp5936KryaszQ= Subject key identifier: 7E:88:C5:7C:33:97:7D:22:CB:80:EC:09:F9:29:B2:6E:61:34:1E:28 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D0D Signing time: Thu 24 Apr 2025 18:01:50 +0000 Manifest this update: Thu 24 Apr 2025 18:01:50 +0000 Manifest next update: Thu 01 May 2025 18:01:50 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: z84v8I8vk0IjS4aH0ntmeMk3oZUblv4NekySuBor8oU=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: 6Rm16lqV7D8ogEdcWjZlICaxyf3FBMg+FZuEOmrvZ+E=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: Kvq9xzCrVcc/vYKOgXHbGDUWHenbRQHuJZ7CogmXIPc=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: 7Q5TQ0GutKyzM0PazgyPbgCiIYVuSp/HifdYRSL6/UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Apr 24 18:01:50 2025 GMT Not After : May 1 18:01:50 2025 GMT Subject: CN=680a7c8e-e345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f7:4b:7c:43:70:e4:1a:ab:9c:ab:cb:2e:e0: d7:3c:3d:71:3f:d3:e3:55:a8:d6:f0:16:eb:cc:4f: cc:35:12:60:79:a5:62:44:ad:f4:d6:69:6d:e5:b9: 83:05:aa:d0:28:43:b2:5e:b9:02:40:f7:0b:60:2c: 02:fb:f7:a1:22:38:ea:c3:b1:bf:73:e3:cf:bc:eb: 69:e5:38:66:81:38:b1:f5:2c:38:be:19:52:4a:2c: 45:3d:0a:c9:bf:23:1c:a2:c1:7f:a8:80:1b:56:5f: 46:ac:2a:14:f3:5b:61:90:d0:df:0b:c0:02:07:ff: c3:2f:7e:4b:c4:f8:64:a0:33:33:0d:99:05:26:ec: a6:3e:ba:d1:a3:db:aa:94:f0:11:e2:7e:17:10:4c: c9:5d:7f:27:87:3f:c9:a1:ba:de:d0:ab:fa:d2:b6: 98:8c:d3:0b:40:46:cf:0e:62:58:e7:0e:00:0c:34: 0b:d9:9f:bd:e8:75:98:92:fb:68:fd:05:cd:cb:1c: 28:90:b1:b5:e3:6a:4a:79:a9:5f:c5:c4:cb:1a:c6: e8:bd:3a:4e:91:43:6c:52:c8:42:b9:9d:0a:d4:a5: 10:67:e2:b9:ef:c2:d6:3a:75:86:97:d8:70:b8:77: 4d:5c:c2:eb:b4:0c:92:4f:3f:3b:4d:fc:08:7b:d3: a6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:88:C5:7C:33:97:7D:22:CB:80:EC:09:F9:29:B2:6E:61:34:1E:28 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:c5:6a:78:8f:96:9e:36:4b:c2:df:59:61:e9:ab:2e:7b:a8: 62:e4:09:c6:ad:1d:99:eb:e4:05:69:da:1f:a5:1d:9e:a0:94: b7:74:86:13:33:62:97:5a:cf:4f:2a:eb:e4:25:ec:af:43:cf: 61:d0:4c:b1:53:d1:f8:cf:5a:08:c6:66:7b:c0:59:eb:59:a7: 64:d4:02:2a:81:6e:9e:0d:71:26:42:a9:a8:17:a4:cd:31:bf: 22:85:17:fd:21:75:fa:3d:d5:f5:f7:b3:33:98:70:18:1b:df: e9:b4:b3:75:23:85:5b:de:3b:8e:bd:16:19:ec:b2:d8:79:7e: 53:90:a5:98:6e:3b:e1:be:ff:0c:3b:10:7a:0f:38:b7:cc:ec: a9:af:92:1b:7d:05:c6:15:73:77:c5:65:22:d9:02:6a:19:f5: 3e:ed:6e:d4:f8:2b:19:30:2c:4b:4a:33:d0:90:b7:6f:76:ab: 62:4a:73:8c:85:5f:81:e9:e4:3f:a8:f7:56:2a:23:03:ff:aa: 86:f7:7c:43:f0:8a:9c:38:b0:95:f5:5f:90:12:8b:87:69:ef: d8:ce:8d:89:03:56:45:6a:82:17:e3:b8:3a:35:52:7e:f0:51: c3:bc:59:74:7b:88:db:9c:aa:36:51:3c:f4:95:e4:83:08:7e: 32:58:f8:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNDI0MTgwMTUwWhcNMjUwNTAxMTgwMTUwWjAYMRYwFAYD VQQDEw02ODBhN2M4ZS1lMzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8fdLfENw5BqrnKvLLuDXPD1xP9PjVajW8BbrzE/MNRJgeaViRK301mlt5bmD BarQKEOyXrkCQPcLYCwC+/ehIjjqw7G/c+PPvOtp5ThmgTix9Sw4vhlSSixFPQrJ vyMcosF/qIAbVl9GrCoU81thkNDfC8ACB//DL35LxPhkoDMzDZkFJuymPrrRo9uq lPAR4n4XEEzJXX8nhz/Jobre0Kv60raYjNMLQEbPDmJY5w4ADDQL2Z+96HWYkvto /QXNyxwokLG142pKealfxcTLGsbovTpOkUNsUshCuZ0K1KUQZ+K578LWOnWGl9hw uHdNXMLrtAySTz87TfwIe9OmyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6IxXwz l30iy4DsCfkpsm5hNB4oMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqxWp4j5aeNkvC31lh6asue6hi5AnGrR2Z6+QFadofpR2eoJS3dIYT M2KXWs9PKuvkJeyvQ89h0EyxU9H4z1oIxmZ7wFnrWadk1AIqgW6eDXEmQqmoF6TN Mb8ihRf9IXX6PdX197MzmHAYG9/ptLN1I4Vb3juOvRYZ7LLYeX5TkKWYbjvhvv8M OxB6Dzi3zOypr5IbfQXGFXN3xWUi2QJqGfU+7W7U+CsZMCxLSjPQkLdvdqtiSnOM hV+B6eQ/qPdWKiMD/6qG93xD8IqcOLCV9V+QEouHae/Yzo2JA1ZFaoIX47g6NVJ+ 8FHDvFl0e4jbnKo2UTz0leSDCH4yWPiH -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:36 2025 by rpki-client