$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: dEjvcs00BodmKN9B+tvTeO4sw/GEdmRA80O4QnfXTOE= Subject key identifier: 2B:F6:42:E5:58:B0:8C:80:71:4D:2E:1B:33:1B:84:74:56:FC:00:A9 Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 33 Signing time: Fri 25 Apr 2025 06:40:57 +0000 Manifest this update: Fri 25 Apr 2025 06:40:56 +0000 Manifest next update: Fri 02 May 2025 06:40:56 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: 09ICOssHJaf4Pl3a7uC3uyIepLJWF10T5cb5ZsAPQ+w=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Apr 25 06:40:56 2025 GMT Not After : May 2 06:40:56 2025 GMT Subject: CN=680b2e78-6242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:06:86:eb:bc:59:6d:85:35:03:3b:2b:4d:71: 6e:ed:b3:b1:50:99:ff:02:6d:69:5c:5c:87:d6:56: 05:03:51:31:26:9e:fd:92:eb:e8:4d:49:bc:95:c5: 58:86:b0:65:20:c5:11:85:65:4e:19:32:36:d2:fc: f6:c6:e3:f0:51:9e:dd:41:42:8f:c7:76:e6:e7:ae: 02:2b:03:c1:c0:97:70:c4:7e:79:cc:c6:00:1e:66: e8:26:58:b6:5b:23:42:3a:46:eb:ac:3a:4b:e2:93: 6e:a1:4b:ce:36:80:99:9c:2b:56:8d:49:63:cc:b3: 84:a5:06:9f:c4:56:a4:24:27:52:be:ad:18:97:b3: 8c:26:ea:de:0e:13:b1:85:43:5e:50:1d:e4:f6:42: bd:de:8f:2e:e4:4c:31:a7:25:68:a7:d7:16:54:6f: d4:3e:85:97:c2:71:c7:4a:2e:72:d3:79:4b:89:0e: ae:dd:36:e7:0f:dd:0e:eb:05:d4:b8:4c:4a:38:08: f2:a5:32:af:ba:41:b6:68:d1:8e:a7:50:61:c1:53: 95:aa:7f:2d:81:74:77:da:76:7b:08:23:13:a6:91: 5e:7b:6a:7e:b2:a5:ac:c3:44:53:6f:81:70:d0:d4: 83:e9:24:85:ef:c4:e4:f0:39:78:80:4e:9b:ae:73: 4d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F6:42:E5:58:B0:8C:80:71:4D:2E:1B:33:1B:84:74:56:FC:00:A9 X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:83:8b:49:2b:50:21:98:54:a6:bc:34:67:3e:7d:f7:72:9c: 67:f8:af:53:7e:0d:6d:36:e2:e7:85:7c:79:e2:e6:18:d7:55: 0d:f8:dd:23:41:56:64:ec:64:81:5a:67:42:c8:0e:28:13:44: 2c:97:76:de:42:90:b9:b7:44:5e:44:4f:90:80:4e:fb:a3:c7: 26:95:2e:16:d4:91:37:82:65:a7:e8:5e:5c:9c:35:ad:0d:43: 0d:13:a5:02:c9:f2:30:04:3c:d3:7e:c1:69:14:45:64:a6:8e: 96:5a:9d:0a:3f:02:c0:7d:74:ae:87:e7:25:a2:2a:3d:4d:f4: ac:00:1d:5b:e1:f4:74:ae:82:ec:cc:19:0f:65:79:b1:14:31: 1d:e0:98:42:b6:4b:d0:8d:78:64:9f:c9:95:54:68:23:e5:e3: fa:0d:e1:37:52:d0:fb:c4:72:37:38:ac:e8:71:b4:33:1e:49: 1f:68:d1:01:16:dc:57:54:1b:1a:0e:8e:b6:2f:14:9c:ce:6d: 51:f2:8f:a2:81:97:6d:a1:a7:32:49:7e:29:06:a2:5c:4c:af: f0:e5:77:00:6d:37:25:c0:32:10:9c:b2:a9:3c:88:ac:c9:bd: bc:33:2e:45:ab:d9:4d:08:7b:a6:0e:00:24:e5:c4:ec:5f:d5: f3:9f:16:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA0MjUwNjQwNTZaFw0yNTA1MDIwNjQwNTZaMBgxFjAUBgNV BAMTDTY4MGIyZTc4LTYyNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTBobrvFlthTUDOytNcW7ts7FQmf8CbWlcXIfWVgUDUTEmnv2S6+hNSbyVxViG sGUgxRGFZU4ZMjbS/PbG4/BRnt1BQo/HdubnrgIrA8HAl3DEfnnMxgAeZugmWLZb I0I6RuusOkvik26hS842gJmcK1aNSWPMs4SlBp/EVqQkJ1K+rRiXs4wm6t4OE7GF Q15QHeT2Qr3ejy7kTDGnJWin1xZUb9Q+hZfCccdKLnLTeUuJDq7dNucP3Q7rBdS4 TEo4CPKlMq+6QbZo0Y6nUGHBU5Wqfy2BdHfadnsIIxOmkV57an6ypazDRFNvgXDQ 1IPpJIXvxOTwOXiATpuuc02TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK/ZC5Viw jIBxTS4bMxuEdFb8AKkwHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANeDi0krUCGYVKa8NGc+ffdynGf4r1N+DW024ueFfHni5hjXVQ343SNB VmTsZIFaZ0LIDigTRCyXdt5CkLm3RF5ET5CATvujxyaVLhbUkTeCZafoXlycNa0N Qw0TpQLJ8jAEPNN+wWkURWSmjpZanQo/AsB9dK6H5yWiKj1N9KwAHVvh9HSuguzM GQ9lebEUMR3gmEK2S9CNeGSfyZVUaCPl4/oN4TdS0PvEcjc4rOhxtDMeSR9o0QEW 3FdUGxoOjrYvFJzObVHyj6KBl22hpzJJfikGolxMr/DldwBtNyXAMhCcsqk8iKzJ vbwzLkWr2U0Ie6YOACTlxOxf1fOfFok= -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:21 2025 by rpki-client