$ rpki-client -vvf rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft File: NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft (raw, json) Hash identifier: 67BEQxnOgmaWFRyi/6rdTeH7ZWS8nzB4W6Wa7lpLyUU= Subject key identifier: 31:2A:CE:CD:B3:EB:89:C5:8A:9F:6A:E1:85:E4:86:67:01:1A:D3:9C Authority key identifier: 37:25:B2:E9:7D:D4:5D:C0:B7:52:1C:0A:1B:B5:E4:06:09:B0:5D:96 Certificate issuer: /CN=A913CADE/serialNumber=3725B2E97DD45DC0B7521C0A1BB5E40609B05D96 Certificate serial: 1695 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft Manifest number: 168C Signing time: Fri 04 Apr 2025 16:46:00 +0000 Manifest this update: Fri 04 Apr 2025 16:46:00 +0000 Manifest next update: Fri 11 Apr 2025 16:46:00 +0000 Files and hashes: 1: NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl (hash: SPkXK39bo5aJ/KyAZrBgSwv/l7ZysoGU/MDDgVm6U9c=) 2: DDDE13B8FAE811E7A715F157C4F9AE02.roa (hash: ZIFDDGs8pzafe5+UUxAyWx6ARFXkQp6Z5m5nmDElxJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5781 (0x1695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CADE Validity Not Before: Apr 4 16:46:00 2025 GMT Not After : Apr 11 16:46:00 2025 GMT Subject: CN=67f00cc8-ccfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:23:38:4e:fa:72:82:d3:fe:a2:a6:bc:22:11: 76:f9:e9:3e:71:f8:29:c4:db:f6:23:02:33:fe:4e: b0:b9:92:0c:f8:77:a0:ab:8e:18:45:3e:eb:0b:6f: 83:42:dc:fa:72:f0:6a:0e:13:88:79:72:ad:10:e0: 84:70:83:68:10:4a:60:dc:cc:2f:43:c2:63:cc:d2: 3f:ca:97:e4:03:a6:1a:5b:bc:f1:0e:d9:39:68:2c: 09:68:18:39:f4:c3:1e:25:cf:9c:b8:7d:26:71:11: 9b:32:c1:3d:97:22:03:f5:96:8a:75:0f:6b:f9:a9: 1e:3e:28:4f:1a:32:55:24:65:a6:6b:ec:0d:5b:f2: a1:7a:79:75:94:2f:47:f1:6c:a1:3b:d5:36:69:22: 63:9b:07:0c:9b:c7:ae:7e:3e:0e:af:b6:29:25:af: 1e:22:85:51:af:87:11:73:58:a5:f7:d6:de:1a:08: e2:b8:5a:04:d4:8a:6a:18:dd:34:5e:87:63:fd:95: 44:8f:7b:af:6e:88:71:29:3f:50:bb:7e:e8:74:3b: 01:cc:7b:35:19:1a:e8:ed:58:41:87:09:2a:e6:02: 81:5f:37:1d:89:78:90:39:ea:d4:95:f5:f5:09:63: 50:58:d4:c1:38:ba:7c:a6:39:f7:95:98:47:cb:68: 98:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2A:CE:CD:B3:EB:89:C5:8A:9F:6A:E1:85:E4:86:67:01:1A:D3:9C X509v3 Authority Key Identifier: keyid:37:25:B2:E9:7D:D4:5D:C0:B7:52:1C:0A:1B:B5:E4:06:09:B0:5D:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ea:37:b8:1e:c1:8d:40:47:35:c6:1e:2a:8d:ac:6e:fd:17: 4b:5c:32:81:22:95:64:6c:2d:f8:ce:2e:d4:f8:a5:8a:0d:08: 02:13:df:b9:51:0b:ab:ef:e6:22:19:b8:d9:1f:0f:9b:c7:6f: d4:e4:40:aa:7f:c2:08:a2:db:63:5a:81:6a:cf:6e:f8:85:79: c8:1d:c8:cf:bd:49:58:73:c3:0b:6c:d3:07:8d:0e:92:e4:c8: a4:1f:b3:b1:78:6f:f2:c7:d1:cc:58:7e:4c:17:aa:28:3f:72: fa:e4:1e:29:b2:7e:c2:69:b1:cc:26:d1:82:44:c7:27:1d:1e: 42:8b:26:63:05:f2:81:70:33:1e:50:cb:0b:26:c0:73:45:00: 2e:05:81:6b:47:92:32:08:e7:32:9f:be:f8:10:2e:c8:7d:b5: 96:7f:8f:19:80:29:c8:84:1d:b5:8c:56:36:d6:ed:f0:54:73: 64:e0:ea:72:6f:5f:15:7c:89:d3:2b:88:24:e7:26:7a:84:5c: f7:78:fa:df:87:b8:00:92:37:fc:8f:f9:63:b3:e6:97:63:d5: 33:ab:87:11:7b:f0:c3:0e:f2:29:dd:3e:cf:0d:4c:8a:f7:3c: ca:22:22:ff:3d:9e:a5:a6:05:05:d4:f7:b3:f3:04:cf:f6:7b: 52:4b:cd:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBREUxMTAvBgNVBAUTKDM3MjVCMkU5N0RENDVEQzBCNzUyMUMwQTFCQjVFNDA2 MDlCMDVEOTYwHhcNMjUwNDA0MTY0NjAwWhcNMjUwNDExMTY0NjAwWjAYMRYwFAYD VQQDEw02N2YwMGNjOC1jY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyM4TvpygtP+oqa8IhF2+ek+cfgpxNv2IwIz/k6wuZIM+Hegq44YRT7rC2+D Qtz6cvBqDhOIeXKtEOCEcINoEEpg3MwvQ8JjzNI/ypfkA6YaW7zxDtk5aCwJaBg5 9MMeJc+cuH0mcRGbMsE9lyID9ZaKdQ9r+akePihPGjJVJGWma+wNW/Khenl1lC9H 8WyhO9U2aSJjmwcMm8eufj4Or7YpJa8eIoVRr4cRc1il99beGgjiuFoE1IpqGN00 Xodj/ZVEj3uvbohxKT9Qu37odDsBzHs1GRro7VhBhwkq5gKBXzcdiXiQOerUlfX1 CWNQWNTBOLp8pjn3lZhHy2iYnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEqzs2z 64nFip9q4YXkhmcBGtOcMB8GA1UdIwQYMBaAFDclsul91F3At1IcChu15AYJsF2W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FERS9GMDJBQjE3Q0ZB RTYxMUU3OTIzRUExNTBDNEY5QUUwMi9OeVd5NlgzVVhjQzNVaHdLRzdYa0JnbXdY WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055V3k2WDNVWGNDM1Vod0tHN1hrQmdtd1haWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0FERS9GMDJBQjE3Q0ZBRTYxMUU3OTIzRUExNTBDNEY5QUUwMi9OeVd5NlgzVVhj QzNVaHdLRzdYa0JnbXdYWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf6je4HsGNQEc1xh4qjaxu/RdLXDKBIpVkbC34zi7U+KWKDQgCE9+5 UQur7+YiGbjZHw+bx2/U5ECqf8IIottjWoFqz274hXnIHcjPvUlYc8MLbNMHjQ6S 5MikH7OxeG/yx9HMWH5MF6ooP3L65B4psn7CabHMJtGCRMcnHR5CiyZjBfKBcDMe UMsLJsBzRQAuBYFrR5IyCOcyn774EC7IfbWWf48ZgCnIhB21jFY21u3wVHNk4Opy b18VfInTK4gk5yZ6hFz3ePrfh7gAkjf8j/ljs+aXY9Uzq4cRe/DDDvIp3T7PDUyK 9zzKIiL/PZ6lpgUF1Pez8wTP9ntSS80f -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:19 2025 by rpki-client