$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft File: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft (raw, json) Hash identifier: +sVWPzilD/jVACb1Tp8uOYOmJNhgTj66vZ9MV1Ghu+A= Subject key identifier: 43:22:3C:96:AF:20:5E:D4:65:F5:65:8C:95:82:75:58:71:EE:F4:28 Authority key identifier: 34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F Certificate issuer: /CN=A91C779D/serialNumber=3480C56523348DDABA303E31F22DFA363F887E8F Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft Manifest number: C8 Signing time: Wed 09 Apr 2025 04:38:33 +0000 Manifest this update: Wed 09 Apr 2025 04:38:32 +0000 Manifest next update: Wed 16 Apr 2025 04:38:32 +0000 Files and hashes: 1: NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl (hash: 26bFXvD2TDBVERSDMeBqnRw0+y+clfTO09PpaN6N5pY=) 2: 0BBBE2B2E2B211EEACBA3341C4F9AE02.roa (hash: dwiUCjJJt0eG2N+1FVdoqJWTzPaXWWEUJdKiT+scZJI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D Validity Not Before: Apr 9 04:38:32 2025 GMT Not After : Apr 16 04:38:32 2025 GMT Subject: CN=67f5f9c8-57c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:17:14:a1:d5:93:b6:14:69:4a:8f:bb:3e:bb: 0f:6b:54:41:0e:44:9b:39:58:40:68:e4:fa:b1:4b: ab:bf:0b:b3:f6:67:75:49:90:7f:75:2d:0a:5a:dc: ad:b4:02:65:71:4e:00:32:8b:da:93:40:50:eb:cd: 4a:4e:60:37:47:d6:36:ff:7f:b1:e5:67:4d:9f:78: 07:66:2d:1e:2c:16:92:e6:a7:4a:dd:c1:03:2c:15: 45:5d:98:0a:25:34:b8:c7:31:dd:c2:3b:83:f8:fe: 24:9a:6f:fb:63:2a:12:1f:ed:75:fd:25:da:36:d6: f1:be:a5:b8:7b:b7:bc:b7:f6:62:3b:53:08:ac:34: 7b:91:58:79:44:03:23:ad:78:40:da:99:f1:fa:d5: 2a:1f:3b:b2:7e:7d:82:91:55:68:e3:01:dd:65:9e: 24:1a:44:da:20:0f:1b:e1:b7:fc:c1:3c:14:a0:24: b5:bb:7f:75:b0:e3:1a:c5:68:7d:89:d0:33:46:0a: 59:4e:e7:ab:e5:29:8d:ba:a5:f3:2e:ef:53:a4:61: 59:b2:8d:63:cb:10:15:d5:69:42:2a:1c:b4:27:9c: 7c:62:77:71:50:51:ab:57:00:82:2f:1f:e8:bb:fe: c1:03:2d:e4:74:09:e7:d4:65:1c:7b:62:53:bc:df: 99:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:22:3C:96:AF:20:5E:D4:65:F5:65:8C:95:82:75:58:71:EE:F4:28 X509v3 Authority Key Identifier: keyid:34:80:C5:65:23:34:8D:DA:BA:30:3E:31:F2:2D:FA:36:3F:88:7E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/460D1C5AE2AE11EE86F33C1EC4F9AE02/NIDFZSM0jdq6MD4x8i36Nj-Ifo8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:71:65:06:19:64:75:9b:f4:57:88:5a:09:f8:de:67:f7:e0: 7e:d7:a8:4f:39:34:9e:5f:25:1e:0d:da:98:75:63:fa:40:6b: 78:51:8f:ec:76:3b:85:f7:66:eb:c9:f8:e3:5b:ed:4b:52:c6: 85:67:2f:8e:9c:de:c8:ff:42:04:22:cc:46:02:d5:26:72:1c: 05:6c:6e:6b:23:ef:4a:29:5e:62:db:bb:91:51:e5:a3:60:22: 74:f4:95:97:ac:2b:71:f4:b7:5a:d8:7e:91:4e:65:5d:da:21: d1:d7:21:3b:33:70:fb:70:31:bd:81:b2:7f:6a:35:6e:f6:3a: 89:9a:aa:fd:30:ee:39:be:80:d9:eb:92:0a:89:fe:d1:91:9f: 2b:3a:4f:3e:da:97:7f:f8:c6:14:b1:2c:2a:27:28:61:58:33: 90:27:be:c0:c3:86:85:5b:70:fd:6c:e4:dc:1f:86:0b:70:b3: 26:68:2a:fd:b6:61:b1:e8:94:d9:fa:83:50:28:7f:52:9e:09: d9:78:00:c5:a9:1c:50:b5:4d:9d:2b:8a:a5:fd:d9:a2:45:92: 70:43:06:a7:b3:41:27:64:b0:1e:86:44:1c:0a:86:ab:76:93: 29:3c:04:88:93:8b:e8:d7:6e:a3:f0:99:f8:4e:17:33:6d:ef: 9c:a5:75:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDM0ODBDNTY1MjMzNDhEREFCQTMwM0UzMUYyMkRGQTM2 M0Y4ODdFOEYwHhcNMjUwNDA5MDQzODMyWhcNMjUwNDE2MDQzODMyWjAYMRYwFAYD VQQDEw02N2Y1ZjljOC01N2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxcUodWTthRpSo+7PrsPa1RBDkSbOVhAaOT6sUurvwuz9md1SZB/dS0KWtyt tAJlcU4AMovak0BQ681KTmA3R9Y2/3+x5WdNn3gHZi0eLBaS5qdK3cEDLBVFXZgK JTS4xzHdwjuD+P4kmm/7YyoSH+11/SXaNtbxvqW4e7e8t/ZiO1MIrDR7kVh5RAMj rXhA2pnx+tUqHzuyfn2CkVVo4wHdZZ4kGkTaIA8b4bf8wTwUoCS1u391sOMaxWh9 idAzRgpZTuer5SmNuqXzLu9TpGFZso1jyxAV1WlCKhy0J5x8YndxUFGrVwCCLx/o u/7BAy3kdAnn1GUce2JTvN+ZyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMiPJav IF7UZfVljJWCdVhx7vQoMB8GA1UdIwQYMBaAFDSAxWUjNI3aujA+MfIt+jY/iH6P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80NjBEMUM1QUUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpkcTZNRDR4OGkzNk5qLUlm bzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05JREZaU00wamRxNk1ENHg4aTM2TmotSWZvOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80NjBEMUM1QUUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9OSURGWlNNMGpk cTZNRDR4OGkzNk5qLUlmbzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZcWUGGWR1m/RXiFoJ+N5n9+B+16hPOTSeXyUeDdqYdWP6QGt4UY/s djuF92bryfjjW+1LUsaFZy+OnN7I/0IEIsxGAtUmchwFbG5rI+9KKV5i27uRUeWj YCJ09JWXrCtx9Lda2H6RTmVd2iHR1yE7M3D7cDG9gbJ/ajVu9jqJmqr9MO45voDZ 65IKif7RkZ8rOk8+2pd/+MYUsSwqJyhhWDOQJ77Aw4aFW3D9bOTcH4YLcLMmaCr9 tmGx6JTZ+oNQKH9SngnZeADFqRxQtU2dK4ql/dmiRZJwQwans0EnZLAehkQcCoar dpMpPASIk4vo126j8Jn4Thczbe+cpXWj -----END CERTIFICATE-----Generated at Thu Apr 10 23:58:27 2025 by rpki-client