$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft File: nczQgPBy3iTvhCxqopJJnvE2m_Q.mft (raw, json) Hash identifier: PhML4Kg65WbseW8rf3ixKhUHSt8H57eIcrbqPNsVm3E= Subject key identifier: 18:14:E6:E8:0A:45:AC:E6:BC:8E:BA:14:F2:D1:7B:2F:1C:4A:C2:64 Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft Manifest number: 27 Signing time: Sat 29 Mar 2025 07:06:09 +0000 Manifest this update: Sat 29 Mar 2025 07:06:09 +0000 Manifest next update: Sat 05 Apr 2025 07:06:09 +0000 Files and hashes: 1: nczQgPBy3iTvhCxqopJJnvE2m_Q.crl (hash: XsSR1nfLW7n11qdePv3af3Gr9jcEb+JHluW9r5BbZ0U=) 2: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (hash: 4wQj2D8FHVqXjukwrv/CmROQ+WtAW+LZQBCb8jHb8l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504 Validity Not Before: Mar 29 07:06:09 2025 GMT Not After : Apr 5 07:06:09 2025 GMT Subject: CN=67e79be1-5b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:1b:79:0d:65:8f:c1:7d:56:53:66:83:05: a6:98:be:10:a9:54:cc:09:d5:30:06:48:37:2a:45: 40:b9:83:65:5a:a9:6a:32:36:11:4f:a2:d0:e4:68: 17:21:1d:6e:31:3c:fb:76:6b:bd:74:86:2a:19:3e: 50:15:df:ff:f4:fe:22:df:81:e8:ea:e4:d4:13:69: 7d:eb:74:4c:e4:20:08:d1:28:78:52:37:8f:74:4c: 74:0d:41:cc:a1:62:57:ad:f5:1b:a3:50:63:6d:c8: bd:9b:4b:c9:4d:36:d3:29:f9:91:29:04:62:61:db: 3c:43:97:a9:62:ca:75:1c:f3:e4:f7:f5:07:7e:de: 60:b8:87:36:05:76:0d:0c:da:41:34:23:07:da:86: 50:2e:4e:cc:3d:04:24:97:14:b9:e2:ac:e2:b4:2e: 56:49:65:1d:57:0a:21:b8:d5:46:25:66:f9:5d:e4: 0b:67:38:ea:03:c9:ed:d7:c8:f2:e8:b8:34:87:cd: 60:97:5f:8f:25:db:db:78:d6:2e:d2:9c:5e:09:8f: 32:30:38:a0:28:e6:bc:ce:be:84:ca:c8:6b:84:80: a2:c3:9c:6c:9a:97:99:36:81:54:cd:75:06:8e:41: 4c:83:ac:19:97:44:b5:8b:bb:57:6c:d0:0f:42:82: cd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:14:E6:E8:0A:45:AC:E6:BC:8E:BA:14:F2:D1:7B:2F:1C:4A:C2:64 X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:23:39:3d:2c:73:f6:58:a8:e0:0f:e0:19:3a:65:39:d2:97: 59:85:c3:3f:21:0b:38:df:65:67:66:5c:07:22:d3:cd:d1:03: 9e:23:16:78:f4:7d:8d:f4:bd:63:4c:35:2c:89:44:05:d4:1a: 72:0c:53:50:a6:09:22:60:fd:85:63:98:a8:76:ed:79:62:c5: e3:11:14:df:67:dc:0f:c4:83:8d:e6:1d:b0:03:6a:50:1a:2f: 18:3d:53:89:af:63:11:ec:17:08:5c:35:76:68:25:60:cb:1b: 28:e6:77:9f:17:fc:6b:2a:bb:ac:9e:7d:e4:0e:f2:d0:4e:43: 2c:0d:6e:4e:2a:8f:be:72:4e:e2:99:71:4b:21:51:61:5c:ef: 93:0c:66:6f:63:d4:c8:24:7b:b2:91:18:89:61:dc:2c:44:1b: 2e:1f:a9:a9:de:7d:09:80:49:e8:c7:d8:9a:af:f4:ee:de:fb: 37:7e:4a:ab:03:bc:7b:6f:3c:cc:b6:53:e3:bc:a5:08:a2:1c: 7d:76:48:5c:1a:f9:cd:85:d7:de:09:1a:a6:b7:a5:98:58:ba: 29:69:82:0a:25:04:9d:05:68:5a:c6:8c:9d:19:65:a1:11:0d: 03:52:94:b0:c3:79:e0:37:44:ac:7e:53:34:97:e0:64:12:dd: 22:aa:3d:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUwNDExMC8GA1UEBRMoOURDQ0QwODBGMDcyREUyNEVGODQyQzZBQTI5MjQ5OUVG MTM2OUJGNDAeFw0yNTAzMjkwNzA2MDlaFw0yNTA0MDUwNzA2MDlaMBgxFjAUBgNV BAMTDTY3ZTc5YmUxLTViMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGCBt5DWWPwX1WU2aDBaaYvhCpVMwJ1TAGSDcqRUC5g2VaqWoyNhFPotDkaBch HW4xPPt2a710hioZPlAV3//0/iLfgejq5NQTaX3rdEzkIAjRKHhSN490THQNQcyh Ylet9RujUGNtyL2bS8lNNtMp+ZEpBGJh2zxDl6liynUc8+T39Qd+3mC4hzYFdg0M 2kE0IwfahlAuTsw9BCSXFLnirOK0LlZJZR1XCiG41UYlZvld5AtnOOoDye3XyPLo uDSHzWCXX48l29t41i7SnF4JjzIwOKAo5rzOvoTKyGuEgKLDnGyal5k2gVTNdQaO QUyDrBmXRLWLu1ds0A9Cgs0TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGBTm6ApF rOa8jroU8tF7LxxKwmQwHwYDVR0jBBgwFoAUnczQgPBy3iTvhCxqopJJnvE2m/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTA0LzMyMUJDNDhDRDNB QjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1f US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmN6UWdQQnkzaVR2aEN4cW9wSkpudkUybV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB NTA0LzMyMUJDNDhDRDNBQjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lU dmhDeHFvcEpKbnZFMm1fUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGkjOT0sc/ZYqOAP4Bk6ZTnSl1mFwz8hCzjfZWdmXAci083RA54jFnj0 fY30vWNMNSyJRAXUGnIMU1CmCSJg/YVjmKh27XlixeMRFN9n3A/Eg43mHbADalAa Lxg9U4mvYxHsFwhcNXZoJWDLGyjmd58X/Gsqu6yefeQO8tBOQywNbk4qj75yTuKZ cUshUWFc75MMZm9j1Mgke7KRGIlh3CxEGy4fqanefQmASejH2Jqv9O7e+zd+SqsD vHtvPMy2U+O8pQiiHH12SFwa+c2F194JGqa3pZhYuilpggolBJ0FaFrGjJ0ZZaER DQNSlLDDeeA3RKx+UzSX4GQS3SKqPbg= -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:25 2025 by rpki-client