$ rpki-client -vvf rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft File: nyv9fYAM-hPpBIrhALSFFDASb9M.mft (raw, json) Hash identifier: WZ/B9Ker9a4DOgTuCUHgNlkEuulSRkY+x3ClEFEUC/s= Subject key identifier: 8D:63:BF:DB:8E:BC:7E:02:85:D8:7F:63:FD:50:D6:B4:19:93:CA:2E Authority key identifier: 9F:2B:FD:7D:80:0C:FA:13:E9:04:8A:E1:00:B4:85:14:30:12:6F:D3 Certificate issuer: /CN=A913EFAB/serialNumber=9F2BFD7D800CFA13E9048AE100B4851430126FD3 Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft Manifest number: 0503 Signing time: Wed 16 Apr 2025 23:19:29 +0000 Manifest this update: Wed 16 Apr 2025 23:19:29 +0000 Manifest next update: Wed 23 Apr 2025 23:19:29 +0000 Files and hashes: 1: nyv9fYAM-hPpBIrhALSFFDASb9M.crl (hash: oV/k5mjvxMXzI3qoL2D/ikk5RaN4J4AAlY70hcI9Q7o=) 2: 06D647D4057811EC8BCE3783C4F9AE02.roa (hash: grJhcWmzDCOgdxUnDbK2ZLr2jRQYlivgBq7XqkPgbbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.crl rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 23:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EFAB, serialNumber=9F2BFD7D800CFA13E9048AE100B4851430126FD3 Validity Not Before: Apr 16 23:19:29 2025 GMT Not After : Apr 23 23:19:29 2025 GMT Subject: CN=68003b01-41fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:93:19:34:83:d6:39:7b:8b:e8:e6:89:b4:44: 9c:78:5c:10:35:df:e8:b8:67:03:15:02:aa:70:6e: 23:db:14:fd:96:0f:25:f3:3f:a7:9f:e1:bd:58:c9: 4b:2c:be:a6:58:53:a8:08:7e:b0:df:fa:f5:09:36: 63:c1:3d:db:8b:56:47:cb:ee:1b:76:28:59:32:f9: 26:09:60:ae:f0:42:f4:b0:87:27:e9:bc:9b:84:b9: 5e:2c:c7:74:21:79:0c:f6:bc:86:32:2b:80:0b:57: 8e:19:14:4f:5b:92:1a:82:52:bb:41:ef:1c:75:01: 58:a2:f2:89:f7:05:b6:37:ed:33:d3:d0:91:87:0b: 4e:0a:62:db:a0:77:f4:a9:4b:4b:4e:14:5c:70:3f: 3c:5c:2f:12:33:cc:30:c0:40:1e:70:00:1e:ae:10: 34:04:73:9c:6b:d9:f5:6e:3a:65:92:68:45:71:83: ed:5e:69:47:54:57:75:ea:fe:42:7a:92:1e:6a:84: 90:2a:b1:dc:4e:3c:c9:2c:42:bd:d2:29:fb:a9:23: 35:54:45:ad:bd:94:aa:0b:76:40:9e:c9:62:a5:a8: ec:cb:1f:d6:d3:1c:68:56:e4:bd:91:d2:ff:54:29: bb:16:4c:32:f7:f7:94:97:09:e2:8d:be:e2:71:e8: 69:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:63:BF:DB:8E:BC:7E:02:85:D8:7F:63:FD:50:D6:B4:19:93:CA:2E X509v3 Authority Key Identifier: keyid:9F:2B:FD:7D:80:0C:FA:13:E9:04:8A:E1:00:B4:85:14:30:12:6F:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nyv9fYAM-hPpBIrhALSFFDASb9M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EFAB/E82D06FE057411ECA242C57FC4F9AE02/nyv9fYAM-hPpBIrhALSFFDASb9M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:2d:76:c0:ea:51:39:9d:33:ae:97:66:cc:d7:34:cc:e0:30: a8:b8:4a:98:14:0a:36:94:e2:e1:7d:65:56:c4:ba:96:51:19: 38:9b:c2:1b:93:2a:fd:75:7a:16:e9:80:1a:4b:9e:f6:57:a1: 7f:9f:33:d3:ec:91:68:25:c3:ee:dc:24:95:c7:57:cc:07:1a: e2:14:0b:c0:c8:6b:48:e6:3e:e3:65:ee:e5:e8:b4:72:9b:2a: 26:2a:b0:b7:f0:c8:1b:06:53:4f:bd:74:af:9f:f9:c0:92:7e: e9:9a:c6:db:fc:b0:75:84:3a:d6:9a:9d:65:31:85:8d:1e:0e: 1c:e1:2a:27:9d:0f:3b:e8:ce:ec:8c:30:4e:5b:8d:e2:8e:8e: b3:b0:7f:60:e9:78:06:77:e2:9e:6c:cc:84:59:c2:4e:4b:aa: a1:ad:ef:80:8c:ac:30:32:7f:db:aa:87:74:32:27:ba:d6:c3: cd:e5:e1:48:08:4c:0b:3b:04:75:fd:7e:c5:75:8b:0b:c7:ef: fe:32:05:a4:a9:84:a9:89:bd:22:9e:9c:b3:db:93:62:cd:69: ab:1c:b1:dd:ed:26:a8:d4:b3:b0:ec:b0:db:4e:4d:51:70:9f: 7d:b6:59:58:d7:e6:81:64:fb:98:13:e8:1d:73:e9:f3:e4:f1: a7:0c:18:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGQUIxMTAvBgNVBAUTKDlGMkJGRDdEODAwQ0ZBMTNFOTA0OEFFMTAwQjQ4NTE0 MzAxMjZGRDMwHhcNMjUwNDE2MjMxOTI5WhcNMjUwNDIzMjMxOTI5WjAYMRYwFAYD VQQDEw02ODAwM2IwMS00MWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZMZNIPWOXuL6OaJtESceFwQNd/ouGcDFQKqcG4j2xT9lg8l8z+nn+G9WMlL LL6mWFOoCH6w3/r1CTZjwT3bi1ZHy+4bdihZMvkmCWCu8EL0sIcn6bybhLleLMd0 IXkM9ryGMiuAC1eOGRRPW5IaglK7Qe8cdQFYovKJ9wW2N+0z09CRhwtOCmLboHf0 qUtLThRccD88XC8SM8wwwEAecAAerhA0BHOca9n1bjplkmhFcYPtXmlHVFd16v5C epIeaoSQKrHcTjzJLEK90in7qSM1VEWtvZSqC3ZAnslipajsyx/W0xxoVuS9kdL/ VCm7Fkwy9/eUlwnijb7icehpAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1jv9uO vH4Chdh/Y/1Q1rQZk8ouMB8GA1UdIwQYMBaAFJ8r/X2ADPoT6QSK4QC0hRQwEm/T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUZBQi9FODJEMDZGRTA1 NzQxMUVDQTI0MkM1N0ZDNEY5QUUwMi9ueXY5ZllBTS1oUHBCSXJoQUxTRkZEQVNi OU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL255djlmWUFNLWhQcEJJcmhBTFNGRkRBU2I5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUZBQi9FODJEMDZGRTA1NzQxMUVDQTI0MkM1N0ZDNEY5QUUwMi9ueXY5ZllBTS1o UHBCSXJoQUxTRkZEQVNiOU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmLXbA6lE5nTOul2bM1zTM4DCouEqYFAo2lOLhfWVWxLqWURk4m8Ib kyr9dXoW6YAaS572V6F/nzPT7JFoJcPu3CSVx1fMBxriFAvAyGtI5j7jZe7l6LRy myomKrC38MgbBlNPvXSvn/nAkn7pmsbb/LB1hDrWmp1lMYWNHg4c4SonnQ876M7s jDBOW43ijo6zsH9g6XgGd+KebMyEWcJOS6qhre+AjKwwMn/bqod0Mie61sPN5eFI CEwLOwR1/X7FdYsLx+/+MgWkqYSpib0inpyz25NizWmrHLHd7Sao1LOw7LDbTk1R cJ99tllY1+aBZPuYE+gdc+nz5PGnDBi4 -----END CERTIFICATE-----Generated at Thu Apr 17 09:26:36 2025 by rpki-client