$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: NzDBOK8mDZIx7colotTIQHBnnmDZhNYxaLf/AQdqCVc= Subject key identifier: 95:88:70:D8:57:F8:6A:FA:2B:75:B3:9B:F4:58:FB:FF:40:CF:F1:17 Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 29F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 29EC Signing time: Sat 26 Apr 2025 14:23:09 +0000 Manifest this update: Sat 26 Apr 2025 14:23:09 +0000 Manifest next update: Sat 03 May 2025 14:23:08 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: mljAVddp+pSzUHq7O3tll0rrcESSBaw55DFd5EoofRo=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: 7nXeTuR6Lk+Z8nTiU9kBUgYIuWYLSQwBB8CP9oDRsnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:23:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10742 (0x29f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: Apr 26 14:23:09 2025 GMT Not After : May 3 14:23:08 2025 GMT Subject: CN=680cec4d-197c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:80:75:35:43:8f:91:3b:d2:07:2e:6c:6f:cb: 5a:75:32:a5:28:bf:5c:06:a8:f4:81:b9:a0:5b:c8: 68:8b:31:c3:06:b9:e8:bd:52:55:b2:db:c7:9d:ec: 98:fb:70:31:da:73:3a:f2:82:aa:6c:59:22:ed:3d: d1:86:ee:6e:45:04:22:38:c3:27:ec:db:8a:be:fe: b0:71:51:e0:88:62:5b:73:9b:b1:ee:91:47:de:62: ff:6c:ac:52:27:17:44:d8:e1:b6:d5:bc:cf:90:a3: 3f:64:08:6a:4d:0f:1b:a3:93:92:53:eb:c9:d0:a5: 27:af:23:7b:82:e2:79:26:71:9b:05:d6:49:f5:36: 70:61:20:54:59:8f:4c:a3:d4:b0:24:1d:73:7b:0c: 56:5b:65:7a:35:5b:d0:01:bf:45:32:6b:ff:d0:20: 7d:6c:68:53:22:f6:37:7e:75:2d:f3:bc:fe:ff:5c: 05:7f:ea:81:f9:83:e7:8d:87:19:8f:40:97:03:2d: 1b:67:0a:39:83:51:d8:50:37:54:8a:7d:d9:f2:64: b6:de:ba:03:a0:73:ef:dc:89:4c:7e:4f:4f:d0:8b: ba:b6:04:a6:f5:73:47:69:98:f5:2d:c3:41:8f:25: f8:74:14:e2:98:f4:ee:72:00:70:7c:71:bb:27:bd: 49:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:88:70:D8:57:F8:6A:FA:2B:75:B3:9B:F4:58:FB:FF:40:CF:F1:17 X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:5a:98:7a:d6:5b:5e:5c:0c:52:9d:d4:68:f8:8b:42:bd:5b: 2b:61:96:6d:cd:cf:a4:9c:23:27:f2:15:5d:18:a7:b2:58:73: 15:53:3e:02:8d:3b:3a:3b:0f:52:53:ed:27:22:fe:5c:e5:1c: 1b:b7:a0:a4:3a:a5:81:a1:3e:ee:f4:41:3e:68:16:61:a1:03: db:15:6b:4d:4f:d2:75:60:91:20:ae:17:f3:80:ba:ba:2d:6f: 3d:ff:26:f1:4b:8b:53:56:c8:77:68:cb:55:ae:b1:f2:85:4f: 04:8e:90:25:6a:d1:e5:f3:dd:48:a9:f5:2f:f6:32:1e:dc:f4: 30:1e:68:78:4b:2c:7f:2d:be:7e:34:92:2e:ae:55:f3:9c:87: 9a:c8:f1:8d:71:1f:57:c6:27:73:58:6f:4f:a1:b8:92:6e:6b: c3:85:19:6c:29:08:fa:8b:20:f8:d3:4b:4b:be:6b:ad:84:13: 0e:9b:9e:2b:6d:c9:78:d5:25:7e:7b:6e:9a:0c:5e:4c:fd:6f: 43:29:df:94:ce:41:d8:c1:9e:83:ae:04:92:7c:f0:6b:79:2e: 57:f9:03:e7:35:7a:e4:e2:3b:4e:00:15:10:1e:4e:e9:42:ba: 80:e4:e5:48:d0:c6:e0:de:a2:9f:91:eb:ea:e8:cf:db:27:03: 91:01:18:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjUwNDI2MTQyMzA5WhcNMjUwNTAzMTQyMzA4WjAYMRYwFAYD VQQDEw02ODBjZWM0ZC0xOTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlIB1NUOPkTvSBy5sb8tadTKlKL9cBqj0gbmgW8hoizHDBrnovVJVstvHneyY +3Ax2nM68oKqbFki7T3Rhu5uRQQiOMMn7NuKvv6wcVHgiGJbc5ux7pFH3mL/bKxS JxdE2OG21bzPkKM/ZAhqTQ8bo5OSU+vJ0KUnryN7guJ5JnGbBdZJ9TZwYSBUWY9M o9SwJB1zewxWW2V6NVvQAb9FMmv/0CB9bGhTIvY3fnUt87z+/1wFf+qB+YPnjYcZ j0CXAy0bZwo5g1HYUDdUin3Z8mS23roDoHPv3IlMfk9P0Iu6tgSm9XNHaZj1LcNB jyX4dBTimPTucgBwfHG7J71JmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWIcNhX +Gr6K3Wzm/RY+/9Az/EXMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYWph61lteXAxSndRo+ItCvVsrYZZtzc+knCMn8hVdGKeyWHMVUz4C jTs6Ow9SU+0nIv5c5Rwbt6CkOqWBoT7u9EE+aBZhoQPbFWtNT9J1YJEgrhfzgLq6 LW89/ybxS4tTVsh3aMtVrrHyhU8EjpAlatHl891IqfUv9jIe3PQwHmh4Syx/Lb5+ NJIurlXznIeayPGNcR9XxidzWG9PobiSbmvDhRlsKQj6iyD400tLvmuthBMOm54r bcl41SV+e26aDF5M/W9DKd+UzkHYwZ6DrgSSfPBreS5X+QPnNXrk4jtOABUQHk7p QrqA5OVI0Mbg3qKfkevq6M/bJwORARhP -----END CERTIFICATE-----Generated at Sun Apr 27 05:13:07 2025 by rpki-client