$ rpki-client -vvf rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft File: NJajCV1HiwJuR1VeusUdjgorO5Y.mft (raw, json) Hash identifier: iyZ/dhunrtNXNJ99hSKfyQwEdUQ8jP4QQS0NtN3fhMM= Subject key identifier: 88:9B:0C:1D:EF:33:9A:39:01:2C:EB:44:9F:92:DC:3F:CE:BB:38:4C Authority key identifier: 34:96:A3:09:5D:47:8B:02:6E:47:55:5E:BA:C5:1D:8E:0A:2B:3B:96 Certificate issuer: /CN=A91112C1/serialNumber=3496A3095D478B026E47555EBAC51D8E0A2B3B96 Certificate serial: 0567 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft Manifest number: 0563 Signing time: Wed 02 Apr 2025 23:22:05 +0000 Manifest this update: Wed 02 Apr 2025 23:22:04 +0000 Manifest next update: Wed 09 Apr 2025 23:22:04 +0000 Files and hashes: 1: NJajCV1HiwJuR1VeusUdjgorO5Y.crl (hash: sQJszewYb8t/7CKYEIJD8M3djA80aC5Z6Fp9PHdHuE4=) 2: F7C5E44EDA2E11EB8FAAB246C4F9AE02.roa (hash: FpiXZKAhTjkDCch/pIRU9MHgJD8fPUreDGZSqo9JNCY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.crl rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 23:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112C1 Validity Not Before: Apr 2 23:22:04 2025 GMT Not After : Apr 9 23:22:04 2025 GMT Subject: CN=67edc69d-271e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:65:e0:0f:68:14:66:60:f9:49:83:44:c7:6b: 96:5a:1f:a7:af:0f:b4:01:33:f0:4c:cf:fe:17:e2: 9e:f0:51:8e:aa:12:31:86:2b:1e:c2:99:78:c6:a1: e8:15:f0:2f:e6:81:40:6c:76:49:09:1c:e6:ee:dc: 1d:fa:f8:86:4d:aa:df:63:69:32:d5:81:28:00:5d: 14:32:9d:3b:bd:1f:cc:81:fc:ce:bd:84:04:4c:bd: a7:d4:43:cb:31:1a:c8:bf:7e:fb:8e:cc:8e:5e:96: 82:3a:4e:69:fb:2c:eb:9a:88:7c:84:58:02:3a:60: 02:2c:c0:5a:4b:30:8c:0f:f0:ac:28:79:b9:8f:28: 2f:2a:7e:ec:0d:55:5c:c8:cc:64:d2:62:b6:58:50: d7:75:20:2f:32:f3:1f:ca:8b:1e:f7:4f:6b:9f:56: bd:a8:c6:4e:db:c8:80:c1:79:16:43:6c:a6:f5:8c: 7e:2e:9e:63:9b:8d:fa:b7:da:cb:63:58:54:1a:3e: a1:c6:ca:14:e4:05:80:43:dd:e9:45:58:d7:33:a1: 52:c8:45:8d:64:b7:46:c8:08:38:ef:64:29:2f:3e: 0c:b8:3d:2b:9b:38:65:36:f4:8a:da:02:13:0f:fc: 48:8c:65:a9:63:ef:5a:22:35:81:28:80:4a:4f:3b: 65:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:9B:0C:1D:EF:33:9A:39:01:2C:EB:44:9F:92:DC:3F:CE:BB:38:4C X509v3 Authority Key Identifier: keyid:34:96:A3:09:5D:47:8B:02:6E:47:55:5E:BA:C5:1D:8E:0A:2B:3B:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJajCV1HiwJuR1VeusUdjgorO5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112C1/86AB6624DA2B11EB8F0B013FC4F9AE02/NJajCV1HiwJuR1VeusUdjgorO5Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:00:8f:d2:fc:e0:73:01:e3:dd:3e:10:3e:99:19:66:38:5a: 95:09:4a:f7:a6:14:b0:86:19:6b:46:c3:0d:84:4e:65:07:47: 55:78:e8:2a:0c:f0:3b:de:41:b1:6a:17:7f:d1:cd:26:3a:22: cb:6b:4c:24:57:e5:e0:3c:e2:80:23:2d:c8:44:d2:b5:ab:df: 6c:70:4b:a0:74:f4:2e:70:d1:ac:31:2a:47:8c:fb:0b:bf:e9: 8d:dc:01:0e:ad:32:29:cd:d1:6c:6b:96:97:90:b9:0c:01:47: 44:2d:5c:94:0b:54:93:54:8a:6b:17:24:b8:7f:3b:eb:39:6c: 85:a1:38:14:8d:00:c8:e7:3d:30:68:81:a0:42:01:bb:cc:19: 4d:43:25:84:8b:ab:d0:1f:14:54:b2:40:3e:07:70:62:ff:00: ea:e0:16:07:5c:80:3e:e9:d0:09:7b:40:5b:0b:a1:dc:c2:cb: ca:b5:7a:0a:63:00:3c:a3:40:1e:f2:1c:43:51:03:1c:ac:e3: 53:e2:25:73:29:9e:b4:f9:c8:15:a4:c1:3d:fc:25:f2:0b:bb: a4:a4:76:df:9f:da:62:7e:4f:fe:a3:f5:d2:72:fb:6e:d5:df: bb:4f:82:5c:84:3d:85:0a:35:2a:02:b6:dc:eb:3f:98:d8:d3: 62:9c:46:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQzExMTAvBgNVBAUTKDM0OTZBMzA5NUQ0NzhCMDI2RTQ3NTU1RUJBQzUxRDhF MEEyQjNCOTYwHhcNMjUwNDAyMjMyMjA0WhcNMjUwNDA5MjMyMjA0WjAYMRYwFAYD VQQDEw02N2VkYzY5ZC0yNzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymXgD2gUZmD5SYNEx2uWWh+nrw+0ATPwTM/+F+Ke8FGOqhIxhisewpl4xqHo FfAv5oFAbHZJCRzm7twd+viGTarfY2ky1YEoAF0UMp07vR/MgfzOvYQETL2n1EPL MRrIv377jsyOXpaCOk5p+yzrmoh8hFgCOmACLMBaSzCMD/CsKHm5jygvKn7sDVVc yMxk0mK2WFDXdSAvMvMfyose909rn1a9qMZO28iAwXkWQ2ym9Yx+Lp5jm436t9rL Y1hUGj6hxsoU5AWAQ93pRVjXM6FSyEWNZLdGyAg472QpLz4MuD0rmzhlNvSK2gIT D/xIjGWpY+9aIjWBKIBKTztl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIibDB3v M5o5ASzrRJ+S3D/OuzhMMB8GA1UdIwQYMBaAFDSWowldR4sCbkdVXrrFHY4KKzuW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJDMS84NkFCNjYyNERB MkIxMUVCOEYwQjAxM0ZDNEY5QUUwMi9OSmFqQ1YxSGl3SnVSMVZldXNVZGpnb3JP NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KYWpDVjFIaXdKdVIxVmV1c1Vkamdvck81WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTJDMS84NkFCNjYyNERBMkIxMUVCOEYwQjAxM0ZDNEY5QUUwMi9OSmFqQ1YxSGl3 SnVSMVZldXNVZGpnb3JPNVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHAI/S/OBzAePdPhA+mRlmOFqVCUr3phSwhhlrRsMNhE5lB0dVeOgq DPA73kGxahd/0c0mOiLLa0wkV+XgPOKAIy3IRNK1q99scEugdPQucNGsMSpHjPsL v+mN3AEOrTIpzdFsa5aXkLkMAUdELVyUC1STVIprFyS4fzvrOWyFoTgUjQDI5z0w aIGgQgG7zBlNQyWEi6vQHxRUskA+B3Bi/wDq4BYHXIA+6dAJe0BbC6HcwsvKtXoK YwA8o0Ae8hxDUQMcrONT4iVzKZ60+cgVpME9/CXyC7ukpHbfn9pifk/+o/XScvtu 1d+7T4JchD2FCjUqArbc6z+Y2NNinEbh -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:54 2025 by rpki-client