$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft File: NDyCcTdhxY6CRQ2UqleWffm0bxU.mft (raw, json) Hash identifier: rGriU5sI8INYIoY/n1EgYyptx8YBgJlk6+N61A1IoA4= Subject key identifier: 6C:74:7C:49:88:31:89:DE:A3:6F:B3:09:AF:BE:71:DC:9F:D0:2A:C1 Authority key identifier: 34:3C:82:71:37:61:C5:8E:82:45:0D:94:AA:57:96:7D:F9:B4:6F:15 Certificate issuer: /CN=A91DE10F/serialNumber=343C82713761C58E82450D94AA57967DF9B46F15 Certificate serial: 17FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft Manifest number: 17F5 Signing time: Wed 30 Apr 2025 16:31:19 +0000 Manifest this update: Wed 30 Apr 2025 16:31:19 +0000 Manifest next update: Wed 07 May 2025 16:31:19 +0000 Files and hashes: 1: NDyCcTdhxY6CRQ2UqleWffm0bxU.crl (hash: SbmeBOdzoOd9a4fGaeNfK8x7dCDcQnt++M0lrmbFfcs=) 2: 31AA8496B62811E7882B893BC4F9AE02.roa (hash: TzvQgcIEdDiZ2vx98Eai/8pokoL7PkZgm06lLl+dtq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.crl rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 16:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6142 (0x17fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE10F, serialNumber=343C82713761C58E82450D94AA57967DF9B46F15 Validity Not Before: Apr 30 16:31:19 2025 GMT Not After : May 7 16:31:19 2025 GMT Subject: CN=68125057-5721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f1:6a:a8:34:c6:7f:af:d7:60:36:ec:3a:fe: 07:db:29:60:14:ac:f3:50:53:86:3b:3b:f7:5c:05: 52:ee:d2:81:5a:3e:f6:e8:f5:c5:b1:50:57:02:cb: 69:fd:5d:54:1f:4b:93:10:9e:e9:87:bb:42:b9:79: 42:e3:c0:81:ba:19:91:97:5c:b3:29:f5:4d:9f:05: ac:f9:68:0c:b7:af:7e:f2:5b:1c:89:30:8c:95:4f: af:28:fa:a1:a7:c4:aa:90:e4:dd:bb:23:94:63:b6: f7:33:e2:75:03:c1:2e:62:d7:3d:99:ab:d4:aa:c6: e3:e3:0e:e0:90:c1:e5:7f:9c:46:81:2d:78:e7:ff: 19:8c:e2:8a:d2:93:cf:5f:5b:12:2f:af:8e:d6:f9: 58:19:7a:85:62:1a:cb:4e:8d:f3:77:6e:60:0c:80: 84:b6:95:20:cf:bf:72:dd:1c:6c:66:ef:29:ac:40: 5b:e6:cd:8b:fe:56:d0:fe:89:4c:b6:23:21:91:b6: 09:50:2b:4c:b3:b6:9f:2a:f6:50:7d:49:0f:0a:81: 13:2a:14:41:58:0f:e5:e1:c0:82:09:a6:0f:98:b5: 8f:64:99:fd:c4:4b:4f:33:b1:60:d3:a8:e2:aa:b2: 69:44:73:76:29:4d:81:a9:76:db:57:59:4c:c3:d8: 0d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:74:7C:49:88:31:89:DE:A3:6F:B3:09:AF:BE:71:DC:9F:D0:2A:C1 X509v3 Authority Key Identifier: keyid:34:3C:82:71:37:61:C5:8E:82:45:0D:94:AA:57:96:7D:F9:B4:6F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NDyCcTdhxY6CRQ2UqleWffm0bxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE10F/60EA5C2CB5D311E7B6A2DD5DC4F9AE02/NDyCcTdhxY6CRQ2UqleWffm0bxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:0e:f0:27:d9:94:5b:e2:7a:6d:f5:29:3b:bc:20:15:9e:69: 71:fb:df:3d:28:95:3d:2a:ef:5b:2e:44:17:aa:0b:09:77:b7: 86:99:32:c8:bd:31:2d:68:e1:a3:b3:08:c9:85:f5:63:2b:a5: 63:09:24:c6:75:74:a0:59:83:fd:b0:ef:ec:57:f7:b3:c7:c1: 36:d5:c8:8d:6a:22:85:24:a2:bd:75:bb:2f:ea:c7:54:25:18: f6:b9:f6:c3:5f:b0:06:25:eb:ec:dc:fb:10:d7:4e:fb:c6:99: 4c:08:3c:2d:9c:1a:76:0f:e5:90:ff:5b:d7:d8:f9:fb:c0:cb: 14:2b:fe:14:fb:e9:7f:95:f7:0b:3e:4f:9d:1e:83:12:92:31: de:ef:e5:ea:2a:de:d6:b0:7f:c8:d7:69:a7:5f:65:48:94:70: 51:3f:d4:88:89:db:22:96:35:61:b2:6d:8a:38:89:83:7a:e0: 9a:88:a2:5c:52:bd:3d:d7:60:30:93:46:0f:19:5e:ed:1a:00: 0e:65:55:32:a7:08:e7:ab:43:d9:0f:e5:87:91:0e:48:50:79: e0:d4:d2:51:47:d2:f3:9e:46:d5:0d:7c:14:5d:cd:0b:d9:1e: 78:28:9d:87:33:85:fc:a7:e1:d7:2a:cb:31:cb:7a:bf:63:81: eb:60:e7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUxMEYxMTAvBgNVBAUTKDM0M0M4MjcxMzc2MUM1OEU4MjQ1MEQ5NEFBNTc5NjdE RjlCNDZGMTUwHhcNMjUwNDMwMTYzMTE5WhcNMjUwNTA3MTYzMTE5WjAYMRYwFAYD VQQDEw02ODEyNTA1Ny01NzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PFqqDTGf6/XYDbsOv4H2ylgFKzzUFOGOzv3XAVS7tKBWj726PXFsVBXAstp /V1UH0uTEJ7ph7tCuXlC48CBuhmRl1yzKfVNnwWs+WgMt69+8lsciTCMlU+vKPqh p8SqkOTduyOUY7b3M+J1A8EuYtc9mavUqsbj4w7gkMHlf5xGgS145/8ZjOKK0pPP X1sSL6+O1vlYGXqFYhrLTo3zd25gDICEtpUgz79y3RxsZu8prEBb5s2L/lbQ/olM tiMhkbYJUCtMs7afKvZQfUkPCoETKhRBWA/l4cCCCaYPmLWPZJn9xEtPM7Fg06ji qrJpRHN2KU2BqXbbV1lMw9gN+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGx0fEmI MYneo2+zCa++cdyf0CrBMB8GA1UdIwQYMBaAFDQ8gnE3YcWOgkUNlKpXln35tG8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTEwRi82MEVBNUMyQ0I1 RDMxMUU3QjZBMkRENURDNEY5QUUwMi9ORHlDY1RkaHhZNkNSUTJVcWxlV2ZmbTBi eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05EeUNjVGRoeFk2Q1JRMlVxbGVXZmZtMGJ4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTEwRi82MEVBNUMyQ0I1RDMxMUU3QjZBMkRENURDNEY5QUUwMi9ORHlDY1RkaHhZ NkNSUTJVcWxlV2ZmbTBieFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsDvAn2ZRb4npt9Sk7vCAVnmlx+989KJU9Ku9bLkQXqgsJd7eGmTLI vTEtaOGjswjJhfVjK6VjCSTGdXSgWYP9sO/sV/ezx8E21ciNaiKFJKK9dbsv6sdU JRj2ufbDX7AGJevs3PsQ1077xplMCDwtnBp2D+WQ/1vX2Pn7wMsUK/4U++l/lfcL Pk+dHoMSkjHe7+XqKt7WsH/I12mnX2VIlHBRP9SIidsiljVhsm2KOImDeuCaiKJc Ur0912Awk0YPGV7tGgAOZVUypwjnq0PZD+WHkQ5IUHng1NJRR9LznkbVDXwUXc0L 2R54KJ2HM4X8p+HXKssxy3q/Y4HrYOcl -----END CERTIFICATE-----Generated at Thu May 1 19:17:21 2025 by rpki-client