$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft File: nlE6zE17kAFKhn-1KviSKeALpKw.mft (raw, json) Hash identifier: wqPr3lK5HT2m4SCpOwdbJhe/vT6fW/71lfnEgMJlIe0= Subject key identifier: 94:E1:F6:0B:F3:E7:BA:B2:74:36:7D:92:43:5C:66:CD:65:61:76:96 Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft Manifest number: 8A Signing time: Fri 11 Apr 2025 05:44:40 +0000 Manifest this update: Fri 11 Apr 2025 05:44:39 +0000 Manifest next update: Fri 18 Apr 2025 05:44:39 +0000 Files and hashes: 1: nlE6zE17kAFKhn-1KviSKeALpKw.crl (hash: rfRqRDP/gtD6Y9mVdm/tL0BOT+PfaMizfQX5hTO2Npg=) 2: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (hash: /fW0UzdpOpiVi/4bzpgP5X5TzlzFOgXdGZfbyGjzbdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 05:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Apr 11 05:44:39 2025 GMT Not After : Apr 18 05:44:39 2025 GMT Subject: CN=67f8ac47-262a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3d:2b:81:f7:ee:ce:41:e8:5f:64:11:26:6c: b2:a8:32:77:18:da:08:da:2a:61:01:3f:7e:07:88: ef:8d:c7:d1:1a:82:c5:33:f8:25:50:e9:3d:e3:fb: 6e:54:3c:e9:ac:a3:5b:8d:28:1c:cd:a3:32:68:a1: 70:e6:df:f2:40:74:53:52:49:a2:ec:a8:e3:d6:c9: 50:9f:08:60:13:e1:dd:26:18:24:e8:ba:38:a4:87: 9b:95:64:07:e0:56:75:f0:79:cd:6a:94:c8:ab:e1: 77:bb:60:e1:15:67:3d:8e:dd:ce:96:f4:e0:77:ed: ac:b0:c1:d5:3d:37:39:85:c9:15:98:11:58:44:52: 08:d1:49:26:17:7e:b2:f8:84:09:22:ef:3d:f6:2f: 0c:3c:7d:23:2b:d6:78:f2:71:b4:74:02:48:ef:b0: 33:31:01:b9:c8:b8:e2:ce:c4:e8:33:d2:8a:d2:87: e5:a1:b9:ec:b3:05:36:12:43:57:3c:1c:84:24:ec: a0:42:df:bc:f1:ce:bb:97:53:6a:40:41:f2:06:ce: 69:3e:b1:60:58:ee:d5:bc:dc:75:a0:dd:29:25:7f: 3e:62:62:9a:ec:4b:32:5f:a3:90:b5:20:e9:af:ae: 48:23:75:91:bd:9b:c9:7f:58:c2:63:49:06:c6:27: 74:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E1:F6:0B:F3:E7:BA:B2:74:36:7D:92:43:5C:66:CD:65:61:76:96 X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:e6:e0:3c:9c:51:7a:8b:76:7d:48:2a:9c:bc:ff:da:de:4c: 18:ea:98:1d:77:8b:cd:37:69:55:18:74:59:e1:27:2d:a3:4c: 04:3d:75:e8:9a:f4:08:f2:44:e1:4b:f3:6b:2e:cc:44:f0:63: 9a:ea:78:7f:01:91:f8:29:6d:9c:e5:14:79:2d:3e:0e:75:61: f4:fb:2d:67:3f:85:1e:22:d6:10:3f:cf:cd:f8:c5:3b:77:56: 32:2b:d9:3c:31:a8:36:01:32:bd:d8:ae:78:4c:f7:30:bb:32: b5:02:1c:ea:88:74:4f:5e:9f:91:11:59:58:2d:09:c3:0c:28: 22:78:dd:b2:ad:91:db:63:9f:db:ca:08:9d:0e:78:2c:98:02: 9a:2c:1f:33:6f:83:03:8e:41:19:91:92:b6:4a:f7:e1:90:a2: 5d:f3:f7:b6:78:5d:ab:19:9f:39:d0:21:e8:c3:40:48:f8:8a: 3a:12:eb:de:a7:97:1e:bb:be:11:cb:22:48:f5:d1:c5:8e:03: eb:7d:9b:3b:db:06:c3:5d:77:85:4f:ce:75:8a:0b:3b:27:a2: 66:b1:b7:43:2b:69:4b:e4:55:b3:51:fd:fd:0c:61:2a:7e:76: 9a:1a:cf:10:90:61:6f:39:c8:8e:b1:fa:e1:d8:6e:ec:48:05: e8:1c:f3:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUwNDExMDU0NDM5WhcNMjUwNDE4MDU0NDM5WjAYMRYwFAYD VQQDEw02N2Y4YWM0Ny0yNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3T0rgffuzkHoX2QRJmyyqDJ3GNoI2iphAT9+B4jvjcfRGoLFM/glUOk94/tu VDzprKNbjSgczaMyaKFw5t/yQHRTUkmi7Kjj1slQnwhgE+HdJhgk6Lo4pIeblWQH 4FZ18HnNapTIq+F3u2DhFWc9jt3OlvTgd+2ssMHVPTc5hckVmBFYRFII0UkmF36y +IQJIu899i8MPH0jK9Z48nG0dAJI77AzMQG5yLjizsToM9KK0oflobnsswU2EkNX PByEJOygQt+88c67l1NqQEHyBs5pPrFgWO7VvNx1oN0pJX8+YmKa7EsyX6OQtSDp r65II3WRvZvJf1jCY0kGxid0rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTh9gvz 57qydDZ9kkNcZs1lYXaWMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjQ3Mi9FNjJCNzM1QTQ4MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tB Rktobi0xS3ZpU0tlQUxwS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG5uA8nFF6i3Z9SCqcvP/a3kwY6pgdd4vNN2lVGHRZ4Scto0wEPXXo mvQI8kThS/NrLsxE8GOa6nh/AZH4KW2c5RR5LT4OdWH0+y1nP4UeItYQP8/N+MU7 d1YyK9k8Mag2ATK92K54TPcwuzK1AhzqiHRPXp+REVlYLQnDDCgieN2yrZHbY5/b ygidDngsmAKaLB8zb4MDjkEZkZK2SvfhkKJd8/e2eF2rGZ850CHow0BI+Io6Euve p5ceu74RyyJI9dHFjgPrfZs72wbDXXeFT851igs7J6JmsbdDK2lL5FWzUf39DGEq fnaaGs8QkGFvOciOsfrh2G7sSAXoHPNO -----END CERTIFICATE-----Generated at Sun Apr 13 02:21:49 2025 by rpki-client