$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: 6oNlTuiZoLnSWajS+Su+a/IWDwsEQ4lP23GQbiDmZaE= Subject key identifier: C2:8C:C9:D2:3A:04:47:2A:74:1B:9C:6F:C9:E5:19:1B:17:61:64:15 Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 0257 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 024E Signing time: Sat 29 Mar 2025 02:05:55 +0000 Manifest this update: Sat 29 Mar 2025 02:05:54 +0000 Manifest next update: Sat 05 Apr 2025 02:05:54 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: EiiEyTjK4x25l6MJzQUKVttIlEzxAY5dB7KP/cEgrtA=) 2: C54D0330AA4211EE9EF2DA5CC4F9AE02.roa (hash: NWJxrmHC0xCIyFL3Aolhes5Gi51X0pzDlD24uVlzlE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501 Validity Not Before: Mar 29 02:05:54 2025 GMT Not After : Apr 5 02:05:54 2025 GMT Subject: CN=67e75583-706c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d2:df:70:17:4e:5d:cc:a7:6d:46:76:8d:8d: 7e:8e:3b:2a:c4:bd:91:a1:54:02:50:ba:1d:4b:e6: 8b:31:9f:52:aa:4b:0a:1c:a0:8c:14:49:cf:43:34: 8c:cb:9e:69:96:69:82:3e:02:dc:3c:b8:0c:9a:79: 61:98:18:07:f7:46:65:ca:d5:52:57:e0:59:6c:92: 8b:e2:ab:3f:34:7c:e2:61:07:e4:c1:53:2b:5f:eb: f7:f6:40:f8:95:da:07:9f:82:38:1e:07:39:41:c2: f1:46:d8:93:ce:28:89:8f:68:64:a0:41:fa:68:72: 96:3f:82:02:d3:54:e8:f4:a7:1e:98:ed:2a:f9:af: ef:a9:97:9c:99:73:31:e9:8d:8d:65:95:c9:d8:63: 21:4f:d1:5f:6b:87:d5:64:6d:e8:e4:9f:25:fa:ff: 37:20:e6:bf:5b:d1:bd:e7:62:2b:e0:c8:cc:49:54: 77:59:ea:db:c3:fe:70:24:2f:90:8f:a2:68:1a:4f: 5e:0b:16:6f:a8:71:5a:9d:29:c8:da:12:02:00:1a: bc:ec:21:22:a5:eb:fd:93:7a:26:94:9e:25:33:bd: 80:b5:e7:c2:f1:0e:e0:28:26:6d:ed:75:f6:a8:ed: c1:f7:a9:44:84:02:4f:41:6d:e2:d7:a6:19:a0:3d: 36:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8C:C9:D2:3A:04:47:2A:74:1B:9C:6F:C9:E5:19:1B:17:61:64:15 X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:9e:8b:04:19:2a:ee:da:44:ea:be:31:73:34:9d:e8:7a:43: 47:c4:7e:fc:3e:30:7b:25:47:68:9b:fd:1f:76:87:2e:bb:e6: 44:df:5c:a7:00:11:b0:d7:f5:64:11:fb:61:63:b9:65:e7:7b: a5:e0:4e:bd:65:6c:dd:cd:29:0d:98:74:3a:7f:ae:dc:5b:7f: 62:4c:d0:39:49:76:57:39:d0:a3:04:07:ad:a0:57:47:90:6f: 87:c3:45:d7:de:ba:86:5d:7a:9f:c5:96:c4:72:31:ce:fb:96: ed:f1:38:7d:a2:72:74:69:6d:62:4d:a4:cc:a0:24:0f:57:87: 58:f7:df:f5:36:95:a4:ef:ca:78:d7:43:0e:79:2c:27:ff:b8: 66:6f:5d:b7:7e:23:0a:5e:60:e6:8d:3d:63:83:d3:5e:55:bd: d1:14:8d:71:e1:cf:02:3b:4e:6b:eb:83:82:b1:a1:c6:b0:b1: 40:eb:da:b9:dd:4d:5c:0a:26:2d:09:4c:7b:78:f4:70:a7:1e: 06:ef:95:29:60:90:f0:0d:84:42:35:de:3f:f3:57:8a:bb:a6: ca:d4:ef:1c:4c:1c:8f:18:97:fa:eb:d3:6c:d5:d9:2f:d7:e4: ef:b9:de:46:7d:8a:7d:0a:e7:a2:f2:26:bc:a0:72:4e:f4:6a: 22:18:30:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjUwMzI5MDIwNTU0WhcNMjUwNDA1MDIwNTU0WjAYMRYwFAYD VQQDEw02N2U3NTU4My03MDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9LfcBdOXcynbUZ2jY1+jjsqxL2RoVQCULodS+aLMZ9SqksKHKCMFEnPQzSM y55plmmCPgLcPLgMmnlhmBgH90ZlytVSV+BZbJKL4qs/NHziYQfkwVMrX+v39kD4 ldoHn4I4Hgc5QcLxRtiTziiJj2hkoEH6aHKWP4IC01To9KcemO0q+a/vqZecmXMx 6Y2NZZXJ2GMhT9Ffa4fVZG3o5J8l+v83IOa/W9G952Ir4MjMSVR3Werbw/5wJC+Q j6JoGk9eCxZvqHFanSnI2hICABq87CEipev9k3omlJ4lM72AtefC8Q7gKCZt7XX2 qO3B96lEhAJPQW3i16YZoD02zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKMydI6 BEcqdBucb8nlGRsXYWQVMB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWnosEGSru2kTqvjFzNJ3oekNHxH78PjB7JUdom/0fdocuu+ZE31yn ABGw1/VkEfthY7ll53ul4E69ZWzdzSkNmHQ6f67cW39iTNA5SXZXOdCjBAetoFdH kG+Hw0XX3rqGXXqfxZbEcjHO+5bt8Th9onJ0aW1iTaTMoCQPV4dY99/1NpWk78p4 10MOeSwn/7hmb123fiMKXmDmjT1jg9NeVb3RFI1x4c8CO05r64OCsaHGsLFA69q5 3U1cCiYtCUx7ePRwpx4G75UpYJDwDYRCNd4/81eKu6bK1O8cTByPGJf669Ns1dkv 1+Tvud5GfYp9Cuei8ia8oHJO9GoiGDBR -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:17 2025 by rpki-client