$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: 8621fBGUfMsGO1XOuXoUvcHsp7aEsXxEOsXz44R/fBA= Subject key identifier: 57:33:17:89:B6:7B:51:AE:19:76:65:15:DE:88:58:FA:74:57:E7:A1 Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 02D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 02D2 Signing time: Sat 05 Apr 2025 01:32:26 +0000 Manifest this update: Sat 05 Apr 2025 01:32:25 +0000 Manifest next update: Sat 12 Apr 2025 01:32:25 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: 5Gl6m6+I75doq3sT7yNf1twEy+1edzHjOOxlvnyfqyc=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: 8iGFuZI4O9j0Gdt93MzFvxSKeiFq7gMt0350fxzYb8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 726 (0x2d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88 Validity Not Before: Apr 5 01:32:25 2025 GMT Not After : Apr 12 01:32:25 2025 GMT Subject: CN=67f0882a-306e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d2:4a:62:79:3b:c4:23:59:82:20:f5:36:07: 2f:50:66:7d:0d:0b:5e:7d:98:63:40:5f:0d:65:e3: a4:13:c2:99:95:55:0a:83:87:18:95:7f:c1:85:a2: 08:a1:e1:06:ab:79:c8:59:49:46:6b:ea:0d:51:d7: c0:2c:1b:fb:b7:7c:d6:a4:16:95:65:78:1e:9e:1c: d6:4a:fb:80:13:77:c9:c5:99:f9:90:64:55:6a:db: 7b:a0:5e:c1:31:36:26:46:a8:65:fe:58:b6:58:7e: be:a7:68:4b:5a:2c:82:d0:e2:21:f2:c1:42:af:ae: e2:e5:f9:9a:86:81:28:c8:fb:a8:e0:e5:18:57:bf: 38:c3:76:87:48:8b:3e:65:01:08:fd:c5:19:5c:cf: 4a:a8:cf:40:6a:f3:73:62:7e:2a:6b:f4:0e:2f:1c: a2:46:58:f7:2a:3e:47:dc:41:c9:ce:5a:9c:90:85: 33:0d:b4:e7:12:fc:ad:c8:ba:49:2c:c3:8e:09:26: 7d:1c:02:fb:d8:6f:18:a9:73:08:2f:d4:de:be:2a: fc:33:98:a3:0c:ae:d4:26:7c:c5:21:7a:a4:c1:8f: d9:4a:3e:56:be:fd:aa:74:2d:ea:47:63:59:62:ba: ec:af:30:8b:ba:bb:03:46:73:cc:a7:89:96:87:ec: 0d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:33:17:89:B6:7B:51:AE:19:76:65:15:DE:88:58:FA:74:57:E7:A1 X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:79:25:10:d4:9e:a3:6e:17:72:e2:06:0c:da:36:79:99:db: 8a:e0:1b:f3:b4:9a:f7:8e:27:a6:62:d6:8d:08:fa:43:b6:98: 7d:4f:1f:b5:6b:90:bd:16:a9:3b:f9:49:d1:e5:11:3e:cc:28: 61:0b:58:cf:63:88:4c:42:4d:f3:f9:68:e2:c8:1b:a8:73:c8: 49:51:d1:c0:1c:8b:3d:af:35:a3:77:8a:5e:fa:64:1c:4e:c6: 36:80:e5:3b:a7:f8:2e:50:ae:24:9c:57:e1:44:85:5b:93:61: 99:c6:19:60:02:cb:b7:32:cd:a1:fe:8e:75:cd:b4:b3:34:86: 84:e6:00:b9:ef:a8:60:7a:b6:c0:a8:ed:f0:e7:b1:eb:11:fd: 1c:d3:5b:1b:2a:75:55:f8:0d:9c:46:48:2f:f6:82:dd:4a:ac: c8:71:2d:50:8b:30:df:15:02:c5:48:ab:ea:cd:01:a7:72:71: 5c:a9:4b:93:6a:21:8a:68:23:ff:9a:e3:6a:03:47:38:b1:c6: f8:17:5c:db:1e:77:41:da:7f:63:c7:ff:b0:37:f1:87:a7:2a: 10:9e:fa:a1:89:b6:bd:75:a4:97:db:8e:12:7c:24:bb:6d:75: 51:df:53:df:14:27:da:b5:ad:7b:7c:63:1c:ee:b2:e0:19:8e: 30:a3:da:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUwNDA1MDEzMjI1WhcNMjUwNDEyMDEzMjI1WjAYMRYwFAYD VQQDEw02N2YwODgyYS0zMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA89JKYnk7xCNZgiD1NgcvUGZ9DQtefZhjQF8NZeOkE8KZlVUKg4cYlX/BhaII oeEGq3nIWUlGa+oNUdfALBv7t3zWpBaVZXgenhzWSvuAE3fJxZn5kGRVatt7oF7B MTYmRqhl/li2WH6+p2hLWiyC0OIh8sFCr67i5fmahoEoyPuo4OUYV784w3aHSIs+ ZQEI/cUZXM9KqM9AavNzYn4qa/QOLxyiRlj3Kj5H3EHJzlqckIUzDbTnEvytyLpJ LMOOCSZ9HAL72G8YqXMIL9Tevir8M5ijDK7UJnzFIXqkwY/ZSj5Wvv2qdC3qR2NZ YrrsrzCLursDRnPMp4mWh+wNlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFczF4m2 e1GuGXZlFd6IWPp0V+ehMB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7eSUQ1J6jbhdy4gYM2jZ5mduK4BvztJr3jiemYtaNCPpDtph9Tx+1 a5C9Fqk7+UnR5RE+zChhC1jPY4hMQk3z+WjiyBuoc8hJUdHAHIs9rzWjd4pe+mQc TsY2gOU7p/guUK4knFfhRIVbk2GZxhlgAsu3Ms2h/o51zbSzNIaE5gC576hgerbA qO3w57HrEf0c01sbKnVV+A2cRkgv9oLdSqzIcS1QizDfFQLFSKvqzQGncnFcqUuT aiGKaCP/muNqA0c4scb4F1zbHndB2n9jx/+wN/GHpyoQnvqhiba9daSX244SfCS7 bXVR31PfFCfata17fGMc7rLgGY4wo9py -----END CERTIFICATE-----Generated at Sat Apr 5 16:44:23 2025 by rpki-client