$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: 0WCLUVGkLrgi9P2je5wbD0iWJDS0QcIZLsaL75R2utE= Subject key identifier: B4:B2:A2:FE:7E:79:08:18:7B:32:5B:26:9B:B9:FB:DC:82:82:6F:35 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 07CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 07C9 Signing time: Thu 24 Apr 2025 20:53:51 +0000 Manifest this update: Thu 24 Apr 2025 20:53:51 +0000 Manifest next update: Thu 01 May 2025 20:53:51 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: 5lFbZzA0av+IvuraIhYLbE67PFelvvzb/T5ZoAcpIPI=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1999 (0x7cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Apr 24 20:53:51 2025 GMT Not After : May 1 20:53:51 2025 GMT Subject: CN=680aa4df-b798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:da:00:7a:c4:c6:e1:e5:e7:c1:19:a5:a2:2d: 11:90:70:96:fd:5d:94:11:07:8d:e4:fa:94:dc:14: 55:b1:bf:42:a4:20:53:1a:77:d1:8f:fd:60:28:e5: c7:8b:ba:9f:51:0f:39:1b:0f:a8:ce:01:16:89:33: 9d:08:95:f0:b2:0b:c4:19:8e:9d:bd:17:67:64:4e: 8b:25:26:ee:5c:b8:ed:e3:01:f2:cf:1e:2b:2a:c0: 7d:fa:72:58:9c:c6:0e:1f:5d:00:07:84:d2:06:d0: 84:bc:fa:69:97:bd:57:80:de:f3:b8:38:76:28:32: 76:86:ae:ea:3c:f6:d2:f7:e0:f6:66:66:49:6e:4c: 03:5e:64:b2:64:25:93:e3:34:c8:03:11:67:15:b5: f6:21:f3:f5:e1:fc:8a:09:9a:0d:fc:14:ef:dc:5f: 0a:f9:a8:25:5a:5e:9f:ad:f1:23:65:93:67:e6:dd: b4:1e:9e:e7:fa:55:39:80:5b:3d:84:4d:bb:69:47: 66:1f:8f:4f:d2:68:1c:21:c6:66:4f:67:36:34:3e: 01:4f:70:21:7b:10:08:12:a4:af:b2:47:a3:e2:ac: 68:2a:ab:19:60:68:d2:c3:1c:f1:2b:2d:4e:4d:a0: 22:0b:e7:87:30:8b:56:f4:66:11:b6:63:82:27:15: 3a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B2:A2:FE:7E:79:08:18:7B:32:5B:26:9B:B9:FB:DC:82:82:6F:35 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:96:34:df:23:49:62:f1:a9:56:db:06:6b:45:44:15:16:31: a2:23:68:cf:a9:24:63:5e:d9:9c:d7:7a:9e:e7:5c:67:1f:08: 32:d5:1b:97:f8:75:78:04:e5:10:47:e8:0f:2e:8d:e4:24:93: 85:e2:2f:ff:c0:cf:38:f3:ab:62:60:cd:5f:c7:5c:be:16:0e: d0:e9:16:b4:e8:0e:4b:ea:88:f7:03:0b:28:9a:9c:ce:21:4d: d9:a0:9c:0d:d8:7e:db:77:b2:39:33:14:9d:04:f6:b4:be:c6: 6d:ec:fb:90:92:2b:b7:d7:4a:ac:7b:8b:c3:fe:35:10:10:08: 36:37:c0:9a:a2:0c:9e:f1:58:f4:7b:c2:be:42:de:b7:83:94: 82:ae:63:4a:28:5d:d6:08:9e:85:a2:ea:ff:bb:4e:67:f7:52: 36:df:e7:65:24:59:5d:81:33:2a:93:df:92:0e:d6:15:5f:bd: 86:58:aa:70:bb:c6:f6:73:8b:23:00:1e:ee:79:13:60:61:52: 00:9d:18:32:fb:7d:8c:16:97:6a:fe:e1:af:21:40:1a:50:76: 6c:97:19:a5:30:7a:31:0e:73:93:7d:d7:e2:66:c3:17:bb:eb: 46:29:2a:5e:d6:5e:1e:e5:44:de:d6:29:1e:9b:40:0d:1b:4b: 3a:14:1d:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwNDI0MjA1MzUxWhcNMjUwNTAxMjA1MzUxWjAYMRYwFAYD VQQDEw02ODBhYTRkZi1iNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2doAesTG4eXnwRmloi0RkHCW/V2UEQeN5PqU3BRVsb9CpCBTGnfRj/1gKOXH i7qfUQ85Gw+ozgEWiTOdCJXwsgvEGY6dvRdnZE6LJSbuXLjt4wHyzx4rKsB9+nJY nMYOH10AB4TSBtCEvPppl71XgN7zuDh2KDJ2hq7qPPbS9+D2ZmZJbkwDXmSyZCWT 4zTIAxFnFbX2IfP14fyKCZoN/BTv3F8K+aglWl6frfEjZZNn5t20Hp7n+lU5gFs9 hE27aUdmH49P0mgcIcZmT2c2ND4BT3AhexAIEqSvskej4qxoKqsZYGjSwxzxKy1O TaAiC+eHMItW9GYRtmOCJxU6NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSyov5+ eQgYezJbJpu5+9yCgm81MB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXljTfI0li8alW2wZrRUQVFjGiI2jPqSRjXtmc13qe51xnHwgy1RuX +HV4BOUQR+gPLo3kJJOF4i//wM8486tiYM1fx1y+Fg7Q6Ra06A5L6oj3AwsompzO IU3ZoJwN2H7bd7I5MxSdBPa0vsZt7PuQkiu310qse4vD/jUQEAg2N8Caogye8Vj0 e8K+Qt63g5SCrmNKKF3WCJ6Four/u05n91I23+dlJFldgTMqk9+SDtYVX72GWKpw u8b2c4sjAB7ueRNgYVIAnRgy+32MFpdq/uGvIUAaUHZslxmlMHoxDnOTfdfiZsMX u+tGKSpe1l4e5UTe1ikem0ANG0s6FB0y -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:00 2025 by rpki-client