$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: DGYtEUqFB0l/IPqMUFQDOpxIINcqcTBb2TkRvG2WAwg= Subject key identifier: 11:62:78:85:3A:A0:22:17:C6:31:59:8D:0D:0A:5C:E8:8E:7D:A6:B1 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 16 Signing time: Sat 29 Mar 2025 07:18:02 +0000 Manifest this update: Sat 29 Mar 2025 07:18:01 +0000 Manifest next update: Sat 05 Apr 2025 07:18:01 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: 8+N3naktjBqJH5E6nrCBlH+L/xlyQzjpHdOYhzZV/no=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: Yu5htw9gFwcLd352zvwoy0u2xmOJCVCXwCzZ+nX1BhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72 Validity Not Before: Mar 29 07:18:01 2025 GMT Not After : Apr 5 07:18:01 2025 GMT Subject: CN=67e79ea9-e40e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2d:ab:4c:e4:b5:f5:0c:39:12:3c:f8:08:f7: 78:4c:bd:4a:69:b6:0d:d0:f7:96:e0:44:ac:07:f9: be:a7:97:8d:c6:b3:99:96:e0:9e:02:73:88:d9:d3: 75:10:21:7d:27:56:be:cf:96:23:70:02:c6:77:0f: 34:bf:ba:76:27:66:22:f8:3c:6c:ae:45:10:c0:2e: bb:d5:ba:fb:72:8b:73:be:22:10:08:da:a3:6d:9a: 06:5f:3b:cd:7a:5f:bd:94:fd:5f:ff:94:e8:29:71: 1b:90:63:b4:35:0b:ad:49:0d:72:d0:6a:98:1e:68: 57:51:56:3c:d8:55:11:0d:71:a9:c3:6f:bc:37:95: 82:8c:98:28:d4:19:04:c0:a3:88:4c:9e:69:64:ee: e5:97:32:c0:6b:6a:af:bf:8c:20:a5:22:ec:61:33: 69:81:c1:2b:25:eb:f1:5e:9c:23:c9:05:63:ca:23: cd:a1:00:7a:f3:c9:cd:ab:12:0c:7f:85:97:fa:16: 21:16:9f:b7:8b:cb:1c:bb:c4:48:a4:63:5e:dc:bf: f7:ff:ed:ef:b1:f3:12:2c:05:bb:1b:7b:90:10:31: 9f:73:ae:29:18:69:89:68:85:d5:99:ae:89:5f:a9: c3:b8:19:86:e6:db:6e:27:41:d0:52:65:31:6a:be: 81:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:62:78:85:3A:A0:22:17:C6:31:59:8D:0D:0A:5C:E8:8E:7D:A6:B1 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:f2:9e:ee:f2:87:70:8b:98:f1:8a:7d:73:25:70:78:97:1f: fd:18:13:0b:0a:2a:c1:ae:a0:0f:c9:12:5b:09:3d:91:ee:97: 84:3b:d8:b9:e4:27:4e:3c:64:9b:fa:9f:32:68:90:78:8b:9d: 28:14:fc:9f:15:7a:81:54:60:28:9d:35:d8:fb:fa:f1:8e:ae: 82:de:85:e6:70:24:31:cf:8e:0c:01:b2:fa:c5:3c:8f:6d:a7: f2:67:6e:d1:86:89:af:e7:ff:76:c4:6b:cc:25:20:d2:b0:77: b0:66:8b:e5:94:7f:be:40:2e:b3:08:8f:9f:70:a6:d0:82:58: 24:e1:1c:5f:48:60:9d:8b:74:03:6b:00:28:c8:dd:86:4d:08: c9:5e:e2:28:74:a6:82:74:3b:f9:e7:9a:97:e3:96:c1:d4:fb: de:8b:d4:cb:26:0e:2a:2f:7d:e1:1e:68:c8:e3:69:66:4b:96: 7a:5b:bd:01:6a:2e:53:59:0f:7a:4a:ae:78:c4:f8:5d:0a:06: 53:65:c0:f6:35:3a:01:e2:b9:74:ea:fd:e0:65:25:54:22:43: a3:17:c0:15:f3:8e:9d:8f:04:08:8a:71:0e:55:e5:c0:ad:bd: 7b:ee:a1:c4:04:ce:e9:ec:b7:df:f5:55:16:79:c7:ed:8b:a9: ea:ff:2d:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTAzMjkwNzE4MDFaFw0yNTA0MDUwNzE4MDFaMBgxFjAUBgNV BAMTDTY3ZTc5ZWE5LWU0MGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9LatM5LX1DDkSPPgI93hMvUpptg3Q95bgRKwH+b6nl43Gs5mW4J4Cc4jZ03UQ IX0nVr7PliNwAsZ3DzS/unYnZiL4PGyuRRDALrvVuvtyi3O+IhAI2qNtmgZfO816 X72U/V//lOgpcRuQY7Q1C61JDXLQapgeaFdRVjzYVRENcanDb7w3lYKMmCjUGQTA o4hMnmlk7uWXMsBraq+/jCClIuxhM2mBwSsl6/FenCPJBWPKI82hAHrzyc2rEgx/ hZf6FiEWn7eLyxy7xEikY17cv/f/7e+x8xIsBbsbe5AQMZ9zrikYaYlohdWZrolf qcO4GYbm224nQdBSZTFqvoHVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEWJ4hTqg IhfGMVmNDQpc6I59prEwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADHynu7yh3CLmPGKfXMlcHiXH/0YEwsKKsGuoA/JElsJPZHul4Q72Lnk J048ZJv6nzJokHiLnSgU/J8VeoFUYCidNdj7+vGOroLeheZwJDHPjgwBsvrFPI9t p/JnbtGGia/n/3bEa8wlINKwd7Bmi+WUf75ALrMIj59wptCCWCThHF9IYJ2LdANr ACjI3YZNCMle4ih0poJ0O/nnmpfjlsHU+96L1MsmDiovfeEeaMjjaWZLlnpbvQFq LlNZD3pKrnjE+F0KBlNlwPY1OgHiuXTq/eBlJVQiQ6MXwBXzjp2PBAiKcQ5V5cCt vXvuocQEzunst9/1VRZ5x+2Lqer/LTg= -----END CERTIFICATE-----Generated at Fri Apr 4 22:15:02 2025 by rpki-client