$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft File: NOt2jjwYUO8RSYszIMrNGyYdWSk.mft (raw, json) Hash identifier: eVLJgKYWDCqMC5AvPUv4rLAtq0lWenFzqVFRw7TGGik= Subject key identifier: A2:E8:D3:5B:DD:8C:EF:74:76:F7:47:6C:6E:C6:2D:0A:62:9C:5F:8E Authority key identifier: 34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 Certificate issuer: /CN=A9163EEB/serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Certificate serial: 346F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft Manifest number: 346D Signing time: Tue 22 Apr 2025 15:11:22 +0000 Manifest this update: Tue 22 Apr 2025 15:11:21 +0000 Manifest next update: Tue 29 Apr 2025 15:11:21 +0000 Files and hashes: 1: NOt2jjwYUO8RSYszIMrNGyYdWSk.crl (hash: PiNb8Ypw19/T6x5oMiclYJ6JnGAgJdn4/+AkJWyeIm4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 15:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13423 (0x346f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EEB, serialNumber=34EB768E3C1850EF11498B3320CACD1B261D5929 Validity Not Before: Apr 22 15:11:21 2025 GMT Not After : Apr 29 15:11:21 2025 GMT Subject: CN=6807b199-a553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5c:99:6b:21:c9:a5:e0:97:f8:e8:44:c9:66: 03:73:e5:88:09:ae:3f:cb:1c:d9:f3:43:b4:a2:3f: 92:67:fb:82:d0:f7:3c:17:fa:29:15:f8:5b:d0:c9: ba:d6:90:5a:0f:4c:e6:6f:f5:e5:cb:63:6a:73:b1: 34:d0:f9:de:55:f8:1a:08:58:c6:9a:ed:9c:b9:5a: c6:05:c4:78:14:0e:d3:b2:16:7e:18:23:d1:ef:50: e3:ab:a3:83:3f:df:79:22:f4:db:02:6b:60:ba:8a: ce:40:9c:ed:f7:34:dc:77:7d:a0:4d:da:d1:ab:b7: 2c:cc:34:cf:dd:d5:f3:26:6d:eb:e4:ae:c8:0f:7e: 10:e9:82:e5:47:8d:71:4d:8c:ea:5f:ef:e5:1e:ca: 66:7f:c0:e3:20:ea:d8:da:09:01:d4:1b:ee:8d:ca: a2:f0:03:9f:3a:1a:d6:91:b7:fb:ae:68:9e:9d:10: 54:7d:b3:7b:94:5a:63:4e:a5:52:77:08:af:d9:7f: 47:09:ee:87:3c:25:c4:60:1c:75:5b:3f:7c:a6:1b: c3:1f:b3:17:27:1b:30:e2:4c:c0:39:e5:aa:6b:da: 6e:7e:c5:9b:19:53:6e:7e:84:1f:fc:a1:7b:09:8e: 25:db:83:9b:b4:23:e0:16:15:e5:a8:5a:7f:25:8c: e4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E8:D3:5B:DD:8C:EF:74:76:F7:47:6C:6E:C6:2D:0A:62:9C:5F:8E X509v3 Authority Key Identifier: keyid:34:EB:76:8E:3C:18:50:EF:11:49:8B:33:20:CA:CD:1B:26:1D:59:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOt2jjwYUO8RSYszIMrNGyYdWSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EEB/6DE427681DA411E28081719A08B02CD2/NOt2jjwYUO8RSYszIMrNGyYdWSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e2:a8:f6:34:90:16:f4:4f:88:00:1e:32:cd:bc:62:f7:28: 07:e2:ef:f2:bb:09:ca:67:e7:6d:57:7d:36:1b:01:34:17:6e: 7d:aa:15:e9:ac:f0:68:35:cc:2a:fe:3c:b8:78:eb:f7:3b:09: 1a:d3:ea:f0:52:53:09:21:8b:d2:a1:3f:9f:2c:cc:e2:d5:c2: 4c:92:78:5d:65:6b:87:f6:cd:0d:64:9d:fc:ab:19:06:6c:b9: b7:01:1c:53:4c:59:f6:66:20:c1:38:ff:1f:77:90:dd:60:74: 89:4d:a4:67:5e:24:02:80:13:3b:23:74:71:92:4b:6c:52:ac: 62:09:a8:6b:35:67:a7:fb:5e:ce:2a:f7:60:66:d0:dd:8b:95: e8:8e:65:30:db:39:06:ad:1b:d3:c6:13:ba:e1:4b:41:4e:f6: 61:fb:ac:26:a9:ac:c5:89:16:3f:ea:70:45:33:95:35:fc:ae: 97:08:7f:c2:a4:1d:dc:e1:6b:cf:6d:9d:3d:13:91:a0:7f:8d: f2:f5:b1:45:a7:e3:8c:e1:1f:e4:ac:db:a4:37:af:f8:99:c3: f5:47:74:b9:5d:8f:9b:46:8b:e0:c1:91:a6:ba:e7:ed:28:d5: 2e:ff:8b:91:c6:82:9c:9a:38:d4:fb:e4:af:1f:2c:2a:01:19: 3b:c1:ea:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFRUIxMTAvBgNVBAUTKDM0RUI3NjhFM0MxODUwRUYxMTQ5OEIzMzIwQ0FDRDFC MjYxRDU5MjkwHhcNMjUwNDIyMTUxMTIxWhcNMjUwNDI5MTUxMTIxWjAYMRYwFAYD VQQDEw02ODA3YjE5OS1hNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01yZayHJpeCX+OhEyWYDc+WICa4/yxzZ80O0oj+SZ/uC0Pc8F/opFfhb0Mm6 1pBaD0zmb/Xly2Nqc7E00PneVfgaCFjGmu2cuVrGBcR4FA7TshZ+GCPR71Djq6OD P995IvTbAmtguorOQJzt9zTcd32gTdrRq7cszDTP3dXzJm3r5K7ID34Q6YLlR41x TYzqX+/lHspmf8DjIOrY2gkB1Bvujcqi8AOfOhrWkbf7rmienRBUfbN7lFpjTqVS dwiv2X9HCe6HPCXEYBx1Wz98phvDH7MXJxsw4kzAOeWqa9pufsWbGVNufoQf/KF7 CY4l24ObtCPgFhXlqFp/JYzkKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLo01vd jO90dvdHbG7GLQpinF+OMB8GA1UdIwQYMBaAFDTrdo48GFDvEUmLMyDKzRsmHVkp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VFQi82REU0Mjc2ODFE QTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVPOFJTWXN6SU1yTkd5WWRX U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PdDJqandZVU84UlNZc3pJTXJOR3lZZFdTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VFQi82REU0Mjc2ODFEQTQxMUUyODA4MTcxOUEwOEIwMkNEMi9OT3Qyamp3WVVP OFJTWXN6SU1yTkd5WWRXU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw4qj2NJAW9E+IAB4yzbxi9ygH4u/yuwnKZ+dtV302GwE0F259qhXp rPBoNcwq/jy4eOv3Owka0+rwUlMJIYvSoT+fLMzi1cJMknhdZWuH9s0NZJ38qxkG bLm3ARxTTFn2ZiDBOP8fd5DdYHSJTaRnXiQCgBM7I3RxkktsUqxiCahrNWen+17O KvdgZtDdi5XojmUw2zkGrRvTxhO64UtBTvZh+6wmqazFiRY/6nBFM5U1/K6XCH/C pB3c4WvPbZ09E5Ggf43y9bFFp+OM4R/krNukN6/4mcP1R3S5XY+bRovgwZGmuuft KNUu/4uRxoKcmjjU++SvHywqARk7weqg -----END CERTIFICATE-----Generated at Tue Apr 22 19:13:28 2025 by rpki-client