$ rpki-client -vvf rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft File: nJp0feAK9FuI94QRKOidsT0jFyk.mft (raw, json) Hash identifier: tustwgNYRJcamTleVHPthR1hMAFNHx3VkYwadXBf3oA= Subject key identifier: 48:1D:CA:64:1D:1C:E0:68:AA:DF:F9:37:C5:32:96:D6:E6:DB:1D:6D Authority key identifier: 9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29 Certificate issuer: /CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729 Certificate serial: 05B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft Manifest number: 05B7 Signing time: Fri 04 Apr 2025 23:12:00 +0000 Manifest this update: Fri 04 Apr 2025 23:12:00 +0000 Manifest next update: Fri 11 Apr 2025 23:12:00 +0000 Files and hashes: 1: nJp0feAK9FuI94QRKOidsT0jFyk.crl (hash: gmrU42oxULznrBNNQIrYvjeFIwfEvYZ88tsMaPCjIGc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131AC1 Validity Not Before: Apr 4 23:12:00 2025 GMT Not After : Apr 11 23:12:00 2025 GMT Subject: CN=67f06740-dffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:b1:74:40:d0:68:01:c0:de:ec:a0:7d:9f: dc:11:d0:9d:56:b8:b1:bc:83:f0:52:f7:74:41:95: 5f:54:09:a2:d7:ba:5f:5d:dc:18:0b:b6:23:5a:2f: e6:86:a0:9a:e2:c2:29:51:78:92:30:00:18:e7:2a: 2e:28:7c:f5:19:ed:ba:1b:21:ea:c0:2e:7e:75:af: e5:5f:6c:fa:4d:9f:da:24:cc:46:32:7e:a1:9a:fe: 80:6c:87:ee:31:93:29:ed:00:5c:66:76:e9:c1:0a: 03:7a:cf:2a:43:8b:34:66:b3:c0:be:5b:25:b4:34: ff:68:36:2a:2e:8e:5c:61:4c:77:19:92:b2:1c:9e: f7:81:c1:da:48:82:fd:91:99:b5:b8:39:27:48:a3: f0:f7:8d:b6:7f:f8:45:54:aa:ef:23:05:fc:05:01: 57:f0:c5:ba:81:cd:3f:be:32:15:93:1f:e6:b2:41: e2:d2:2a:e3:e7:d9:e3:c3:fd:a6:a8:ef:1e:d8:ef: 44:39:92:e2:eb:70:9a:00:a9:8e:b2:29:dc:52:0c: 1c:33:4d:c0:d7:de:83:ed:12:54:dd:34:8a:2f:11: be:23:0e:dd:fb:6b:73:3a:17:c3:2c:ef:d3:78:db: 3d:20:30:0e:c9:b5:49:af:1f:e7:46:ce:af:a0:9f: b3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1D:CA:64:1D:1C:E0:68:AA:DF:F9:37:C5:32:96:D6:E6:DB:1D:6D X509v3 Authority Key Identifier: keyid:9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a9:5d:30:ad:05:24:6e:db:71:26:be:4d:9d:51:51:ec:2c: ab:3c:a7:f2:70:d2:6d:c3:f1:02:e3:b4:bd:0a:bb:73:b6:07: b6:57:ce:4e:45:6c:bb:91:77:11:98:d2:9e:ce:78:b8:1c:71: c2:05:34:92:b9:b1:c7:aa:17:f1:ed:11:9a:77:e9:b3:55:0f: ac:1f:75:1d:d5:2b:93:01:46:72:07:2b:89:14:10:2b:54:94: ce:61:92:44:c9:56:56:c0:83:74:68:20:28:bd:8c:a8:f9:66: 97:5d:88:7c:a7:76:ce:ee:a9:bd:a6:6f:97:5b:0e:05:1d:64: ee:c5:3e:dc:41:88:51:b6:27:9f:d5:a8:a7:c4:29:ce:32:ca: 71:66:ca:60:ac:5a:bb:76:88:0b:86:e8:9b:7f:bb:49:a5:3e: 07:6d:88:1c:2a:b6:a7:00:f1:f1:f9:f2:6c:ff:8c:de:88:f0: 20:e0:54:ec:c8:29:0f:3c:57:5d:bf:63:aa:7d:d4:6b:c6:da: b6:74:8a:a1:6b:21:f0:0c:4c:c2:69:2e:24:8a:d7:c6:43:8e: 7c:cf:d8:ff:89:93:fc:26:be:3e:96:d6:1f:82:6e:a5:db:21: 5f:f0:46:8d:fa:d3:89:17:87:e4:d7:b9:ae:db:cc:21:13:cb: 16:d5:4a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQzExMTAvBgNVBAUTKDlDOUE3NDdERTAwQUY0NUI4OEY3ODQxMTI4RTg5REIx M0QyMzE3MjkwHhcNMjUwNDA0MjMxMjAwWhcNMjUwNDExMjMxMjAwWjAYMRYwFAYD VQQDEw02N2YwNjc0MC1kZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkqxdEDQaAHA3uygfZ/cEdCdVrixvIPwUvd0QZVfVAmi17pfXdwYC7YjWi/m hqCa4sIpUXiSMAAY5youKHz1Ge26GyHqwC5+da/lX2z6TZ/aJMxGMn6hmv6AbIfu MZMp7QBcZnbpwQoDes8qQ4s0ZrPAvlsltDT/aDYqLo5cYUx3GZKyHJ73gcHaSIL9 kZm1uDknSKPw9422f/hFVKrvIwX8BQFX8MW6gc0/vjIVkx/mskHi0irj59njw/2m qO8e2O9EOZLi63CaAKmOsincUgwcM03A196D7RJU3TSKLxG+Iw7d+2tzOhfDLO/T eNs9IDAOybVJrx/nRs6voJ+zCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgdymQd HOBoqt/5N8Uyltbm2x1tMB8GA1UdIwQYMBaAFJyadH3gCvRbiPeEESjonbE9Ixcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFDMS9GRTY4RDNDNEI5 OTAxMUVCOUFCRTdFNEVDNEY5QUUwMi9uSnAwZmVBSzlGdUk5NFFSS09pZHNUMGpG eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KcDBmZUFLOUZ1STk0UVJLT2lkc1QwakZ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFDMS9GRTY4RDNDNEI5OTAxMUVCOUFCRTdFNEVDNEY5QUUwMi9uSnAwZmVBSzlG dUk5NFFSS09pZHNUMGpGeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUqV0wrQUkbttxJr5NnVFR7CyrPKfycNJtw/EC47S9Crtztge2V85O RWy7kXcRmNKezni4HHHCBTSSubHHqhfx7RGad+mzVQ+sH3Ud1SuTAUZyByuJFBAr VJTOYZJEyVZWwIN0aCAovYyo+WaXXYh8p3bO7qm9pm+XWw4FHWTuxT7cQYhRtief 1ainxCnOMspxZspgrFq7dogLhuibf7tJpT4HbYgcKranAPHx+fJs/4zeiPAg4FTs yCkPPFddv2OqfdRrxtq2dIqhayHwDEzCaS4kitfGQ458z9j/iZP8Jr4+ltYfgm6l 2yFf8EaN+tOJF4fk17mu28whE8sW1Upy -----END CERTIFICATE-----Generated at Sun Apr 6 12:54:56 2025 by rpki-client