$ rpki-client -vvf rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft File: NhKQaSiZCCzeI_UEU6QVXgqreXg.mft (raw, json) Hash identifier: 5D6+neWh5fzo4bvj9k2Ej0yEuFguXwrjFuj+Un2bwec= Subject key identifier: 66:09:17:35:52:C1:E5:70:4D:DD:55:CF:01:17:C3:A5:C9:92:9B:7F Authority key identifier: 36:12:90:69:28:99:08:2C:DE:23:F5:04:53:A4:15:5E:0A:AB:79:78 Certificate issuer: /CN=A911894F/serialNumber=361290692899082CDE23F50453A4155E0AAB7978 Certificate serial: 2641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhKQaSiZCCzeI_UEU6QVXgqreXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft Manifest number: 262F Signing time: Sun 06 Apr 2025 15:39:01 +0000 Manifest this update: Sun 06 Apr 2025 15:39:01 +0000 Manifest next update: Sun 13 Apr 2025 15:39:01 +0000 Files and hashes: 1: NhKQaSiZCCzeI_UEU6QVXgqreXg.crl (hash: 0UvZFUayjqkeHuGJ3aGakRsqFbhgRuBuYFl4i2TI/5w=) 2: 802FBE707FEB11EB8B5E2817C4F9AE02.roa (hash: 9/RiaD7uB0sOA1UktuQmdvYmR8W/ohMuly3N0jCGO/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.crl rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhKQaSiZCCzeI_UEU6QVXgqreXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9793 (0x2641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911894F Validity Not Before: Apr 6 15:39:01 2025 GMT Not After : Apr 13 15:39:01 2025 GMT Subject: CN=67f2a015-f173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f1:10:68:09:91:e0:44:50:04:20:61:b4:39: d9:c3:bf:a9:0d:49:f4:8c:b8:f0:3a:d7:bc:cc:bc: bb:be:b4:d7:00:27:f3:47:a4:13:73:0d:f1:d5:55: 59:20:ae:7d:85:17:f6:f5:52:5e:f0:6d:60:18:a7: 72:c7:f8:e7:10:85:9d:c0:8e:37:fd:c3:14:58:e3: 92:2a:e6:f4:de:96:24:38:35:30:e2:ef:0b:f6:79: 7c:32:9b:2a:c6:e2:3a:d2:cd:01:cb:d7:79:85:37: 6f:35:8f:73:59:7e:af:1d:17:92:f4:5c:2d:84:c6: 77:a5:93:7e:86:8d:e6:26:d9:03:75:bd:ba:fc:b0: c6:55:70:1b:92:d1:af:30:91:ad:2e:85:80:52:22: 50:2b:48:8a:56:19:bc:fd:72:49:03:29:c0:f2:9d: 4f:4d:5f:c1:9d:7d:c0:0f:92:07:b0:b5:d5:61:5d: 58:ad:f5:ea:98:24:39:d9:86:35:70:d2:d7:13:0e: 10:e6:2a:7e:56:43:32:3c:8c:df:eb:3c:49:34:30: 77:76:96:a1:3c:34:46:e1:26:80:d8:78:b7:78:3b: 7b:29:c1:35:85:6a:82:bf:03:e3:d8:17:56:c5:65: e1:68:4e:fa:02:50:ed:89:04:dc:71:a7:56:02:52: 14:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:09:17:35:52:C1:E5:70:4D:DD:55:CF:01:17:C3:A5:C9:92:9B:7F X509v3 Authority Key Identifier: keyid:36:12:90:69:28:99:08:2C:DE:23:F5:04:53:A4:15:5E:0A:AB:79:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhKQaSiZCCzeI_UEU6QVXgqreXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911894F/963CF0CEEC5E11E48E7D0119C4F9AE02/NhKQaSiZCCzeI_UEU6QVXgqreXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:86:51:77:b9:94:53:60:a8:8b:55:83:b1:0a:65:a8:30:71: 77:12:bf:3e:41:57:e0:a6:4b:c1:63:c4:f0:ac:f1:dc:99:12: bd:40:1a:d8:34:2c:e2:2b:95:cd:8c:37:a7:7f:be:83:e4:d6: 99:e7:2a:67:f9:9a:98:6c:df:38:81:14:53:bd:96:d2:83:bb: 67:18:23:aa:28:b8:54:4d:b8:fa:02:8d:d9:b2:c1:60:78:e7: 8b:07:d9:75:96:47:fe:04:66:12:6d:85:3d:16:da:6e:82:8d: 9a:12:d2:83:b9:76:be:62:a8:61:5c:39:b4:a8:b6:3e:48:7e: d0:8e:50:30:6f:3a:de:11:32:90:bb:60:f8:b2:a6:42:95:8b: 3a:6d:06:f1:20:ca:08:d8:e9:31:d9:1d:60:61:f7:87:01:38: 9f:c5:4c:77:6f:35:9e:7e:ff:52:ab:f5:e8:bf:53:76:c3:54: b6:ed:eb:96:d9:33:04:3d:60:9e:34:e4:a3:9b:ac:6b:d8:ee: 48:01:b8:6e:d4:ca:7f:56:ec:4e:c8:eb:ec:be:25:f3:dc:c5: a6:1f:2e:ed:fe:5b:40:ad:37:2a:4f:e8:d4:fd:d2:ce:73:c9: 87:4d:44:ba:09:45:20:ca:d5:eb:19:4f:53:8b:f0:d3:81:14: d1:58:9b:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg5NEYxMTAvBgNVBAUTKDM2MTI5MDY5Mjg5OTA4MkNERTIzRjUwNDUzQTQxNTVF MEFBQjc5NzgwHhcNMjUwNDA2MTUzOTAxWhcNMjUwNDEzMTUzOTAxWjAYMRYwFAYD VQQDEw02N2YyYTAxNS1mMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovEQaAmR4ERQBCBhtDnZw7+pDUn0jLjwOte8zLy7vrTXACfzR6QTcw3x1VVZ IK59hRf29VJe8G1gGKdyx/jnEIWdwI43/cMUWOOSKub03pYkODUw4u8L9nl8Mpsq xuI60s0By9d5hTdvNY9zWX6vHReS9FwthMZ3pZN+ho3mJtkDdb26/LDGVXAbktGv MJGtLoWAUiJQK0iKVhm8/XJJAynA8p1PTV/BnX3AD5IHsLXVYV1YrfXqmCQ52YY1 cNLXEw4Q5ip+VkMyPIzf6zxJNDB3dpahPDRG4SaA2Hi3eDt7KcE1hWqCvwPj2BdW xWXhaE76AlDtiQTccadWAlIUJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYJFzVS weVwTd1VzwEXw6XJkpt/MB8GA1UdIwQYMBaAFDYSkGkomQgs3iP1BFOkFV4Kq3l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODk0Ri85NjNDRjBDRUVD NUUxMUU0OEU3RDAxMTlDNEY5QUUwMi9OaEtRYVNpWkNDemVJX1VFVTZRVlhncXJl WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05oS1FhU2laQ0N6ZUlfVUVVNlFWWGdxcmVYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODk0Ri85NjNDRjBDRUVDNUUxMUU0OEU3RDAxMTlDNEY5QUUwMi9OaEtRYVNpWkND emVJX1VFVTZRVlhncXJlWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuhlF3uZRTYKiLVYOxCmWoMHF3Er8+QVfgpkvBY8TwrPHcmRK9QBrY NCziK5XNjDenf76D5NaZ5ypn+ZqYbN84gRRTvZbSg7tnGCOqKLhUTbj6Ao3ZssFg eOeLB9l1lkf+BGYSbYU9Ftpugo2aEtKDuXa+YqhhXDm0qLY+SH7QjlAwbzreETKQ u2D4sqZClYs6bQbxIMoI2Okx2R1gYfeHATifxUx3bzWefv9Sq/Xov1N2w1S27euW 2TMEPWCeNOSjm6xr2O5IAbhu1Mp/VuxOyOvsviXz3MWmHy7t/ltArTcqT+jU/dLO c8mHTUS6CUUgytXrGU9Ti/DTgRTRWJsy -----END CERTIFICATE-----Generated at Mon Apr 7 02:54:45 2025 by rpki-client