$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft File: NsqppHOp6nOCn3NWgJvBYQOtA64.mft (raw, json) Hash identifier: vilQGTl57A+7DGGFYlY+ecFDDExb3tIW/d+9Alllic4= Subject key identifier: 97:8D:86:15:DD:61:04:A4:E9:47:BE:67:A1:B0:4D:1C:F9:A1:68:1A Authority key identifier: 36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE Certificate issuer: /CN=A9152329/serialNumber=36CAA9A473A9EA73829F7356809BC16103AD03AE Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft Manifest number: 47 Signing time: Sat 29 Mar 2025 06:42:27 +0000 Manifest this update: Sat 29 Mar 2025 06:42:26 +0000 Manifest next update: Sat 05 Apr 2025 06:42:26 +0000 Files and hashes: 1: NsqppHOp6nOCn3NWgJvBYQOtA64.crl (hash: YhlZaN1WEKpIS25dO+eKDRiBqbCQOV6L6q0Aq8X+NVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329 Validity Not Before: Mar 29 06:42:26 2025 GMT Not After : Apr 5 06:42:26 2025 GMT Subject: CN=67e79653-9cb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3f:65:f4:e0:a5:3b:eb:59:5d:ec:f1:e9:d7: ca:f1:cc:6d:0b:19:30:72:49:e2:1f:c4:e1:ed:15: 47:fc:d0:0f:a0:94:80:37:46:f2:1f:b4:ec:19:1b: 61:9d:f2:5d:e8:39:6b:7e:a5:6a:2a:1e:5d:2e:63: fa:15:a8:12:a2:1a:f4:e1:df:0e:01:ec:88:0c:68: 73:25:44:80:00:cc:fb:c1:61:0a:ab:7d:e7:c6:c2: 6f:be:7d:76:e8:e5:6f:86:d5:0e:a0:36:48:3a:c7: 0e:72:84:0e:30:91:1e:3b:c5:6c:34:f7:be:63:84: 59:93:da:c4:b0:45:cb:7f:c9:ff:ae:40:bc:23:4b: 1d:cc:86:76:96:b9:0c:f6:49:41:f8:7c:d3:67:ac: 81:ae:2f:05:1d:e3:c8:25:8c:98:ff:94:c8:e7:96: 12:f2:b3:d8:1f:04:9f:61:40:84:b5:b9:ad:aa:f4: f3:2f:69:f4:d0:b1:ce:55:be:5b:79:9a:69:5a:79: af:b6:49:b3:4a:74:a4:e4:da:cb:c6:21:0c:db:ab: a0:2f:83:7a:e4:c1:e3:66:2b:e8:a6:c4:76:ca:55: f4:00:e1:d8:1e:ea:51:b6:d1:08:3a:2f:59:64:38: 09:73:f3:50:a9:1d:ce:18:1c:1b:77:34:b8:e0:23: 1c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8D:86:15:DD:61:04:A4:E9:47:BE:67:A1:B0:4D:1C:F9:A1:68:1A X509v3 Authority Key Identifier: keyid:36:CA:A9:A4:73:A9:EA:73:82:9F:73:56:80:9B:C1:61:03:AD:03:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NsqppHOp6nOCn3NWgJvBYQOtA64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/D086D55EA26811EF9D914118C4F9AE02/NsqppHOp6nOCn3NWgJvBYQOtA64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:fc:d3:31:ba:8a:03:51:dd:49:13:af:08:7a:75:63:51:5b: 0d:ac:46:fa:72:7e:d6:7a:d9:84:d1:c4:c8:1d:56:5c:d8:74: 3a:8d:d0:be:7f:8a:83:30:eb:66:90:98:f2:ff:40:13:2e:cd: 0c:d1:16:88:1f:e8:7b:97:d1:4f:f2:e8:0a:02:80:ad:26:92: 47:94:a7:fb:e5:78:52:77:c4:7a:9e:3b:9a:6d:70:f7:f6:0b: 24:42:dd:e0:41:d8:b8:19:3e:f6:46:67:79:04:02:2c:8e:b4: 96:41:80:c8:f3:c3:90:eb:54:f8:99:86:e6:b8:d9:22:5b:db: 05:73:b2:43:02:ad:d8:15:f9:52:6c:44:12:60:72:f2:81:05: d1:1c:8c:61:51:7a:b8:26:d4:1e:b8:9e:88:58:d9:fa:12:1f: 1d:9b:31:66:5b:39:e2:af:f2:92:0b:f8:79:81:76:99:c9:61: ad:ee:d3:68:51:94:4b:ad:84:f8:89:c6:b8:56:d4:15:dd:a1: bf:07:cb:72:13:c2:7d:e4:9a:79:6f:15:d3:f6:50:51:31:72: 62:9f:b3:9f:f3:fe:d7:c0:a1:dd:97:d1:87:6f:7c:8a:d7:27: 1f:dd:40:ee:72:0f:7e:b2:18:af:cc:df:68:1c:69:fb:c7:f0: 20:14:a9:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjMyOTExMC8GA1UEBRMoMzZDQUE5QTQ3M0E5RUE3MzgyOUY3MzU2ODA5QkMxNjEw M0FEMDNBRTAeFw0yNTAzMjkwNjQyMjZaFw0yNTA0MDUwNjQyMjZaMBgxFjAUBgNV BAMTDTY3ZTc5NjUzLTljYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkP2X04KU761ld7PHp18rxzG0LGTBySeIfxOHtFUf80A+glIA3RvIftOwZG2Gd 8l3oOWt+pWoqHl0uY/oVqBKiGvTh3w4B7IgMaHMlRIAAzPvBYQqrfefGwm++fXbo 5W+G1Q6gNkg6xw5yhA4wkR47xWw0975jhFmT2sSwRct/yf+uQLwjSx3MhnaWuQz2 SUH4fNNnrIGuLwUd48gljJj/lMjnlhLys9gfBJ9hQIS1ua2q9PMvafTQsc5Vvlt5 mmlaea+2SbNKdKTk2svGIQzbq6Avg3rkweNmK+imxHbKVfQA4dge6lG20Qg6L1lk OAlz81CpHc4YHBt3NLjgIxxvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl42GFd1h BKTpR75nobBNHPmhaBowHwYDVR0jBBgwFoAUNsqppHOp6nOCn3NWgJvBYQOtA64w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMzI5L0QwODZENTVFQTI2 ODExRUY5RDkxNDExOEM0RjlBRTAyL05zcXBwSE9wNm5PQ24zTldnSnZCWVFPdEE2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTnNxcHBIT3A2bk9DbjNOV2dKdkJZUU90QTY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy MzI5L0QwODZENTVFQTI2ODExRUY5RDkxNDExOEM0RjlBRTAyL05zcXBwSE9wNm5P Q24zTldnSnZCWVFPdEE2NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGP80zG6igNR3UkTrwh6dWNRWw2sRvpyftZ62YTRxMgdVlzYdDqN0L5/ ioMw62aQmPL/QBMuzQzRFogf6HuX0U/y6AoCgK0mkkeUp/vleFJ3xHqeO5ptcPf2 CyRC3eBB2LgZPvZGZ3kEAiyOtJZBgMjzw5DrVPiZhua42SJb2wVzskMCrdgV+VJs RBJgcvKBBdEcjGFRergm1B64nohY2foSHx2bMWZbOeKv8pIL+HmBdpnJYa3u02hR lEuthPiJxrhW1BXdob8Hy3ITwn3kmnlvFdP2UFExcmKfs5/z/tfAod2X0YdvfIrX Jx/dQO5yD36yGK/M32gcafvH8CAUqZ8= -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:39 2025 by rpki-client