$ rpki-client -vvf rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft File: _nQHcdbqABLeOHBW-Iy-3TbEqGA.mft (raw, json) Hash identifier: MNpI8yY/yscUg83rQ1BtCcbiddx8PSI3sMKmV3SKuaU= Subject key identifier: 17:5B:62:51:87:DA:F4:8B:68:9A:3B:C0:69:E7:6C:D3:AB:F4:68:3A Authority key identifier: FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 Certificate issuer: /CN=A91889A4/serialNumber=FE740771D6EA0012DE387056F88CBEDD36C4A860 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft Manifest number: 0157 Signing time: Thu 03 Apr 2025 03:21:47 +0000 Manifest this update: Thu 03 Apr 2025 03:21:47 +0000 Manifest next update: Thu 10 Apr 2025 03:21:47 +0000 Files and hashes: 1: _nQHcdbqABLeOHBW-Iy-3TbEqGA.crl (hash: WybBNH8cgrAU/FvyQuypIoH/7XQQmK9MumKckULpyh0=) 2: 37B318C0050111EEAFBCAE7EC4F9AE02.roa (hash: pZ0jtDypa9zbTRVdqPzNYcOmaqaH3zak3MFxphvTBnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889A4 Validity Not Before: Apr 3 03:21:47 2025 GMT Not After : Apr 10 03:21:47 2025 GMT Subject: CN=67edfecb-ae47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:df:5d:5b:7b:7c:56:e1:9c:bf:f9:7c:37:ae: 7b:15:1a:ff:6b:8e:bc:74:eb:2f:c4:90:3e:0c:3f: be:72:6f:d6:31:b0:de:da:77:66:cc:42:a2:6b:3a: 7d:9a:ca:41:9a:e7:44:8c:14:df:15:4d:0d:6f:20: d8:56:b6:46:22:94:7e:c6:6a:bd:57:f8:91:06:ca: 9e:40:06:08:90:d9:ed:bf:a8:ef:b2:79:26:7c:8f: d6:c9:d4:5f:b7:58:90:f6:64:51:40:20:7f:4e:32: 1a:b8:ce:bf:20:2c:78:83:af:7c:bc:d5:f9:d9:69: 35:65:56:36:fa:8e:23:e0:08:b1:50:4d:44:08:6b: fb:33:34:2d:f6:45:6e:0f:39:32:c3:10:92:57:53: d6:68:f5:f2:f8:ae:c7:6e:47:b9:12:15:8d:ff:a1: b5:9a:1d:50:dd:a3:25:c7:4d:aa:5d:82:1c:e6:c9: b7:4c:d0:e8:c0:da:6b:ac:dd:96:1d:91:17:75:4f: a1:ea:3f:82:08:38:d3:41:60:0b:e4:7f:7f:c9:7a: 17:bb:fe:7f:a2:aa:8d:d0:6e:69:81:18:be:11:a8: ca:07:30:d9:79:14:fe:b6:5e:57:fa:10:43:8b:8a: d6:24:04:02:71:f5:22:b3:65:dc:3b:6a:91:1d:43: 51:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5B:62:51:87:DA:F4:8B:68:9A:3B:C0:69:E7:6C:D3:AB:F4:68:3A X509v3 Authority Key Identifier: keyid:FE:74:07:71:D6:EA:00:12:DE:38:70:56:F8:8C:BE:DD:36:C4:A8:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_nQHcdbqABLeOHBW-Iy-3TbEqGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889A4/27A25A5604FA11EE8D46E245C4F9AE02/_nQHcdbqABLeOHBW-Iy-3TbEqGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:01:bf:70:db:03:70:d2:69:9b:f8:21:16:6e:e1:40:2d:52: 4f:57:ca:5d:74:73:3a:76:57:94:31:f2:67:ea:ea:90:af:ed: f7:75:e4:2c:a5:1e:10:1c:99:3b:9a:49:2a:71:58:23:70:6a: 9d:b0:18:7d:63:f3:3e:07:4e:34:cc:de:68:b5:6d:1b:12:fc: a0:5d:9b:29:34:a6:97:5f:27:53:67:29:7e:5f:e0:c7:af:98: 95:41:d6:eb:5f:43:d1:19:ba:f2:56:f3:1d:2c:18:36:d1:34: e0:34:64:e5:91:1b:fc:b6:fb:a3:54:59:ce:c5:a3:42:38:44: c1:a8:70:6f:e0:14:60:fc:75:7a:1c:60:57:43:d3:b3:93:98: 88:0c:bf:59:84:33:dd:2c:63:ee:6a:b1:cc:b3:e9:9c:73:c8: d1:64:79:e8:5a:bc:17:7f:35:8e:4f:88:9f:79:bf:07:9c:3b: 15:1a:e3:d2:d2:b4:06:72:93:9c:40:c7:0d:b3:88:75:c7:61: 9a:16:ee:3a:41:06:3d:89:8e:b9:41:2b:02:97:80:75:03:b9: 58:e7:61:2b:be:69:88:85:c2:7b:92:65:f8:25:06:90:cc:08: fa:b2:6f:62:e8:e5:4d:d9:8e:4e:70:fa:ff:d8:6a:4a:fa:71: 54:01:4d:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QTQxMTAvBgNVBAUTKEZFNzQwNzcxRDZFQTAwMTJERTM4NzA1NkY4OENCRURE MzZDNEE4NjAwHhcNMjUwNDAzMDMyMTQ3WhcNMjUwNDEwMDMyMTQ3WjAYMRYwFAYD VQQDEw02N2VkZmVjYi1hZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzd9dW3t8VuGcv/l8N657FRr/a468dOsvxJA+DD++cm/WMbDe2ndmzEKiazp9 mspBmudEjBTfFU0NbyDYVrZGIpR+xmq9V/iRBsqeQAYIkNntv6jvsnkmfI/WydRf t1iQ9mRRQCB/TjIauM6/ICx4g698vNX52Wk1ZVY2+o4j4AixUE1ECGv7MzQt9kVu DzkywxCSV1PWaPXy+K7Hbke5EhWN/6G1mh1Q3aMlx02qXYIc5sm3TNDowNprrN2W HZEXdU+h6j+CCDjTQWAL5H9/yXoXu/5/oqqN0G5pgRi+EajKBzDZeRT+tl5X+hBD i4rWJAQCcfUis2XcO2qRHUNRSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdbYlGH 2vSLaJo7wGnnbNOr9Gg6MB8GA1UdIwQYMBaAFP50B3HW6gAS3jhwVviMvt02xKhg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlBNC8yN0EyNUE1NjA0 RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFCTGVPSEJXLUl5LTNUYkVx R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19uUUhjZGJxQUJMZU9IQlctSXktM1RiRXFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlBNC8yN0EyNUE1NjA0RkExMUVFOEQ0NkUyNDVDNEY5QUUwMi9fblFIY2RicUFC TGVPSEJXLUl5LTNUYkVxR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRAb9w2wNw0mmb+CEWbuFALVJPV8pddHM6dleUMfJn6uqQr+33deQs pR4QHJk7mkkqcVgjcGqdsBh9Y/M+B040zN5otW0bEvygXZspNKaXXydTZyl+X+DH r5iVQdbrX0PRGbryVvMdLBg20TTgNGTlkRv8tvujVFnOxaNCOETBqHBv4BRg/HV6 HGBXQ9Ozk5iIDL9ZhDPdLGPuarHMs+mcc8jRZHnoWrwXfzWOT4ifeb8HnDsVGuPS 0rQGcpOcQMcNs4h1x2GaFu46QQY9iY65QSsCl4B1A7lY52ErvmmIhcJ7kmX4JQaQ zAj6sm9i6OVN2Y5OcPr/2GpK+nFUAU3A -----END CERTIFICATE-----Generated at Fri Apr 4 18:32:17 2025 by rpki-client