$ rpki-client -vvf rpki.apnic.net/member_repository/A912929D/6E050EF6B13011EFAA0BB53AC4F9AE02/NYQa4z32kxIBQGeYrmT8wIf1oeU.mft File: NYQa4z32kxIBQGeYrmT8wIf1oeU.mft (raw, json) Hash identifier: LMjIIHpSRB5wR6n5x4RyjTj3lt68ii5Gs0x1P9+HIX4= Subject key identifier: 8F:5A:64:31:4F:E0:C0:02:8F:AF:CD:FF:3A:32:C6:D5:ED:88:57:77 Authority key identifier: 35:84:1A:E3:3D:F6:93:12:01:40:67:98:AE:64:FC:C0:87:F5:A1:E5 Certificate issuer: /CN=A912929D/serialNumber=35841AE33DF6931201406798AE64FCC087F5A1E5 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYQa4z32kxIBQGeYrmT8wIf1oeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912929D/6E050EF6B13011EFAA0BB53AC4F9AE02/NYQa4z32kxIBQGeYrmT8wIf1oeU.mft Manifest number: 42 Signing time: Mon 07 Apr 2025 06:19:09 +0000 Manifest this update: Mon 07 Apr 2025 06:19:09 +0000 Manifest next update: Mon 14 Apr 2025 06:19:08 +0000 Files and hashes: 1: NYQa4z32kxIBQGeYrmT8wIf1oeU.crl (hash: jXQmzjlXip/jplrcSdhllOGTS4XR2vM3gzGR1G2n1ok=) 2: AC205A92B13011EFB45E6B3BC4F9AE02.roa (hash: uKwkZfPxaBZe+NEWyqJ10DRoEbJiI4u5JFaaWffNJlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912929D/6E050EF6B13011EFAA0BB53AC4F9AE02/NYQa4z32kxIBQGeYrmT8wIf1oeU.crl rsync://rpki.apnic.net/member_repository/A912929D/6E050EF6B13011EFAA0BB53AC4F9AE02/NYQa4z32kxIBQGeYrmT8wIf1oeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYQa4z32kxIBQGeYrmT8wIf1oeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912929D Validity Not Before: Apr 7 06:19:09 2025 GMT Not After : Apr 14 06:19:08 2025 GMT Subject: CN=67f36e5d-f121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:ff:72:82:6a:c5:2b:ac:dc:b3:e9:7d:4e: 5a:dc:d0:5d:57:9f:d0:0d:40:2a:d6:ae:15:ec:f2: a0:ec:35:a7:1d:34:13:fa:da:89:d7:f9:7e:96:cd: 6e:6b:c1:89:04:a5:f5:f0:c1:23:08:6e:45:98:e1: 80:a3:7f:13:49:4c:18:e6:f2:6d:06:b1:cf:d7:76: 09:29:64:36:37:0b:45:34:66:9b:f6:e6:42:3f:fa: 8c:91:ef:84:7f:b4:83:a2:4d:6c:db:54:74:46:ac: e1:a9:08:5f:96:f3:67:c2:f8:fd:2e:7d:f8:ec:b9: 56:11:8f:47:86:72:cc:17:91:69:93:8f:d4:c3:fa: 2b:c8:a8:2d:50:ab:2a:0f:e6:d5:a9:79:be:27:1f: 17:d4:77:e8:f1:be:6b:31:64:5d:eb:ce:19:51:43: 16:17:37:01:ca:15:ee:2e:0d:89:c5:7a:fb:02:e4: bd:1a:55:26:66:92:62:5f:1a:c1:65:e8:5f:92:67: 5c:ad:0d:0c:a1:7a:c9:b2:c9:06:5f:a0:c5:1e:47: 69:4b:3a:75:b3:72:c3:94:27:96:f9:e6:e2:c3:72: b0:6b:5f:74:03:a8:20:86:47:09:0b:84:53:85:29: bb:84:4c:2f:4d:c6:78:1e:e8:94:ea:26:be:51:8f: bd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5A:64:31:4F:E0:C0:02:8F:AF:CD:FF:3A:32:C6:D5:ED:88:57:77 X509v3 Authority Key Identifier: keyid:35:84:1A:E3:3D:F6:93:12:01:40:67:98:AE:64:FC:C0:87:F5:A1:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912929D/6E050EF6B13011EFAA0BB53AC4F9AE02/NYQa4z32kxIBQGeYrmT8wIf1oeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYQa4z32kxIBQGeYrmT8wIf1oeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912929D/6E050EF6B13011EFAA0BB53AC4F9AE02/NYQa4z32kxIBQGeYrmT8wIf1oeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:2d:4a:53:7d:b7:0b:e6:7a:45:ab:ff:52:80:2e:79:55:69: 75:f7:ed:b7:ea:11:83:16:f3:b4:af:26:be:b4:6b:24:22:a2: 7f:89:33:f0:dc:5a:29:2e:31:f4:dc:78:dc:8a:28:73:55:a6: 13:62:de:b0:ce:1e:91:0a:67:3d:e9:09:28:d2:de:ef:20:43: 27:c5:43:4a:1f:19:fc:3d:9c:a2:68:04:30:c6:77:9a:fc:79: 98:a4:86:a6:3a:cf:8e:12:bc:61:a1:38:be:18:da:f8:b0:7c: 4d:86:c9:52:78:8c:2c:3f:24:af:ec:b9:87:59:a5:35:70:16: 14:b5:d1:bf:a1:ae:ec:a5:29:b7:b5:e6:14:63:7a:91:df:51: 13:4d:1b:3a:34:00:92:aa:3e:1c:69:07:07:68:f0:3c:7a:cb: 19:bb:49:ed:31:29:08:be:b0:f1:32:d9:81:42:3e:2d:df:cb: 9a:70:c4:b8:5d:b4:7a:03:ab:5a:d7:ae:f6:58:5d:dc:07:5e: 94:0d:06:33:86:55:04:19:52:ed:9d:cf:c8:3b:9a:dd:65:7b: 96:6f:78:76:25:33:36:d6:d5:d9:4f:1b:80:b3:89:db:82:6d: 58:cc:1f:ed:0f:1f:e3:51:fb:f1:47:07:9d:ca:50:84:fa:5f: 18:b3:43:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy OTI5RDExMC8GA1UEBRMoMzU4NDFBRTMzREY2OTMxMjAxNDA2Nzk4QUU2NEZDQzA4 N0Y1QTFFNTAeFw0yNTA0MDcwNjE5MDlaFw0yNTA0MTQwNjE5MDhaMBgxFjAUBgNV BAMTDTY3ZjM2ZTVkLWYxMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+O/9ygmrFK6zcs+l9Tlrc0F1Xn9ANQCrWrhXs8qDsNacdNBP62onX+X6WzW5r wYkEpfXwwSMIbkWY4YCjfxNJTBjm8m0Gsc/XdgkpZDY3C0U0Zpv25kI/+oyR74R/ tIOiTWzbVHRGrOGpCF+W82fC+P0uffjsuVYRj0eGcswXkWmTj9TD+ivIqC1QqyoP 5tWpeb4nHxfUd+jxvmsxZF3rzhlRQxYXNwHKFe4uDYnFevsC5L0aVSZmkmJfGsFl 6F+SZ1ytDQyhesmyyQZfoMUeR2lLOnWzcsOUJ5b55uLDcrBrX3QDqCCGRwkLhFOF KbuETC9Nxnge6JTqJr5Rj72NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj1pkMU/g wAKPr83/OjLG1e2IV3cwHwYDVR0jBBgwFoAUNYQa4z32kxIBQGeYrmT8wIf1oeUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI5MjlELzZFMDUwRUY2QjEz MDExRUZBQTBCQjUzQUM0RjlBRTAyL05ZUWE0ejMya3hJQlFHZVlybVQ4d0lmMW9l VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllRYTR6MzJreElCUUdlWXJtVDh3SWYxb2VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI5 MjlELzZFMDUwRUY2QjEzMDExRUZBQTBCQjUzQUM0RjlBRTAyL05ZUWE0ejMya3hJ QlFHZVlybVQ4d0lmMW9lVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFstSlN9twvmekWr/1KALnlVaXX37bfqEYMW87SvJr60ayQion+JM/Dc WikuMfTceNyKKHNVphNi3rDOHpEKZz3pCSjS3u8gQyfFQ0ofGfw9nKJoBDDGd5r8 eZikhqY6z44SvGGhOL4Y2viwfE2GyVJ4jCw/JK/suYdZpTVwFhS10b+hruylKbe1 5hRjepHfURNNGzo0AJKqPhxpBwdo8Dx6yxm7Se0xKQi+sPEy2YFCPi3fy5pwxLhd tHoDq1rXrvZYXdwHXpQNBjOGVQQZUu2dz8g7mt1le5ZveHYlMzbW1dlPG4CziduC bVjMH+0PH+NR+/FHB53KUIT6XxizQy0= -----END CERTIFICATE-----Generated at Tue Apr 8 18:40:28 2025 by rpki-client