$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft File: nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft (raw, json) Hash identifier: YwbAj9ouW4oEbr8ybg8qQO6NLm9ZAE3qZOpQ1VnrSdc= Subject key identifier: 00:A1:3D:31:D2:B6:BE:51:7F:47:91:CA:1B:32:E3:A2:54:AB:49:F6 Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft Manifest number: 04A9 Signing time: Thu 10 Apr 2025 23:55:18 +0000 Manifest this update: Thu 10 Apr 2025 23:55:18 +0000 Manifest next update: Thu 17 Apr 2025 23:55:18 +0000 Files and hashes: 1: nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl (hash: MuVrOL7/DHteQyjhwmY8YPqYTDW9dFHHwYQQlbTfYRc=) 2: E747402C940211EFAAB77C3DC4F9AE02.roa (hash: V4kNzC9BCFB4bEAtUd+qwvHLEbfnpMX9a/DaKQbhUdI=) 3: DA655484CF0811EF9CF05B4FC4F9AE02.roa (hash: OtFmSPwV6EFHA0PFmeCzNbPWu4B2WoMirQl5I+it6TQ=) 4: 9C3B0AB8911A11EFB0F2DB5DC4F9AE02.roa (hash: 1ZwXIYT8WEQ8AXmik6kQ0iyXkhUrX8a9G8G1OnokxHI=) 5: DF2C7C5E8A3E11EF96BEBB3AC4F9AE02.roa (hash: Po0zIGF8aATq1hFnPm65zoH3mTgzDOjtTV7rd5eqe/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 23:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Apr 10 23:55:18 2025 GMT Not After : Apr 17 23:55:18 2025 GMT Subject: CN=67f85a66-1c14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:22:db:61:d8:62:5f:c5:87:77:30:ec:6d: 38:f4:5c:52:33:33:e2:ab:da:32:cf:24:47:ca:30: a1:14:1f:b5:c6:70:50:5b:77:de:be:c6:ff:e1:79: b1:ea:73:7b:1d:5d:80:bb:3c:8c:f3:d5:16:d5:df: 33:de:bf:1e:7f:3c:c1:50:5b:8a:8e:ce:a8:5d:5d: ca:58:f0:8e:f8:1c:d1:d1:ad:a4:85:e0:32:df:a6: d3:fa:41:a1:57:65:4d:fe:28:d4:fb:f0:ff:f2:d0: 5f:81:44:7b:1b:91:4c:3f:f2:ce:1f:ba:4e:46:f1: 01:a4:5d:71:6e:d3:db:fe:a1:93:00:77:06:d9:51: 0a:9e:cc:b7:6a:63:91:b2:c2:dc:25:2e:ea:7d:4a: 81:5a:10:a0:27:c8:62:06:a7:5b:37:e2:cc:ef:da: f3:7b:90:49:1d:92:97:6d:a5:15:9d:23:42:1c:d2: 3d:60:f1:f5:b4:ef:d0:44:f6:3f:29:f3:ca:3b:b2: 51:bd:3c:81:30:16:f6:39:c8:60:89:8f:7e:04:d8: f6:ab:78:ed:bf:d3:49:8d:9b:c3:9e:5c:b9:f3:d7: 13:b5:10:83:fd:12:25:ce:2d:f1:62:62:89:23:37: 00:25:81:89:85:95:75:ad:5e:98:49:29:f3:c5:fe: 3e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:A1:3D:31:D2:B6:BE:51:7F:47:91:CA:1B:32:E3:A2:54:AB:49:F6 X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:d5:3f:aa:6e:c6:d5:d1:47:a6:f9:67:50:ae:3d:2a:2e:13: 68:36:6b:72:64:59:fc:50:d9:11:05:a5:3d:e1:b0:1e:87:c7: 1f:44:43:29:ff:15:a3:cc:4a:fc:e4:c1:3d:e5:82:1c:79:3d: 71:cd:d7:ab:40:56:84:b3:92:d8:cf:29:23:38:96:50:98:88: 0d:4d:4e:f0:51:5c:3b:5e:65:b0:5e:01:82:a7:f1:20:ff:ae: e8:99:5c:71:3a:40:f3:9e:5d:62:fb:df:a8:c9:98:37:52:ca: 14:3f:87:98:f1:28:b1:ee:62:08:00:24:10:9c:82:31:68:5e: a7:6c:7e:86:49:69:42:ee:25:b8:8d:8e:ac:3d:f9:ec:8c:83: 18:0b:47:c3:97:52:0c:e2:07:b2:4c:58:02:fd:bd:21:2a:d5: 53:04:dc:27:94:5b:b4:01:e2:b4:1f:fd:fb:0a:75:a8:36:f5: 96:f7:68:ac:5d:a3:46:8b:32:d1:77:f3:b0:e1:4d:41:e1:8f: e0:f4:24:15:f5:b3:c4:76:51:ff:28:7c:6f:6d:5a:b4:1e:63: c2:52:b9:8f:25:a8:00:c1:1e:f8:f5:6c:58:ee:fb:7f:92:ce: f7:c8:58:b8:bb:1a:71:84:d8:31:e6:50:8a:2b:6d:37:51:2b: 2d:83:6d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUwNDEwMjM1NTE4WhcNMjUwNDE3MjM1NTE4WjAYMRYwFAYD VQQDEw02N2Y4NWE2Ni0xYzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHYi22HYYl/Fh3cw7G049FxSMzPiq9oyzyRHyjChFB+1xnBQW3fevsb/4Xmx 6nN7HV2AuzyM89UW1d8z3r8efzzBUFuKjs6oXV3KWPCO+BzR0a2kheAy36bT+kGh V2VN/ijU+/D/8tBfgUR7G5FMP/LOH7pORvEBpF1xbtPb/qGTAHcG2VEKnsy3amOR ssLcJS7qfUqBWhCgJ8hiBqdbN+LM79rze5BJHZKXbaUVnSNCHNI9YPH1tO/QRPY/ KfPKO7JRvTyBMBb2OchgiY9+BNj2q3jtv9NJjZvDnly589cTtRCD/RIlzi3xYmKJ IzcAJYGJhZV1rV6YSSnzxf4+vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAChPTHS tr5Rf0eRyhsy46JUq0n2MB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhENC8yRjU4RTQ3MjJFNTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0 VTVaNURLY3lQVG9KQnY3WUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv1T+qbsbV0Uem+WdQrj0qLhNoNmtyZFn8UNkRBaU94bAeh8cfREMp /xWjzEr85ME95YIceT1xzderQFaEs5LYzykjOJZQmIgNTU7wUVw7XmWwXgGCp/Eg /67omVxxOkDznl1i+9+oyZg3UsoUP4eY8Six7mIIACQQnIIxaF6nbH6GSWlC7iW4 jY6sPfnsjIMYC0fDl1IM4geyTFgC/b0hKtVTBNwnlFu0AeK0H/37CnWoNvWW92is XaNGizLRd/Ow4U1B4Y/g9CQV9bPEdlH/KHxvbVq0HmPCUrmPJagAwR749WxY7vt/ ks73yFi4uxpxhNgx5lCKK203USstg22/ -----END CERTIFICATE-----Generated at Sat Apr 12 17:36:06 2025 by rpki-client