$ rpki-client -vvf rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft File: nLIZXrqiCWDa-IL7X0frVaGdIuw.mft (raw, json) Hash identifier: qlJyyW7G4stQ4ek5r7DrWlFIBj6z3ht2liSSdyc9YpU= Subject key identifier: D0:11:D4:10:58:B7:B1:DB:B8:00:D2:E3:37:44:83:C5:84:DE:63:C5 Authority key identifier: 9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC Certificate issuer: /CN=A91C862F/serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Certificate serial: 0399 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft Manifest number: 0391 Signing time: Thu 03 Apr 2025 00:50:05 +0000 Manifest this update: Thu 03 Apr 2025 00:50:05 +0000 Manifest next update: Thu 10 Apr 2025 00:50:04 +0000 Files and hashes: 1: nLIZXrqiCWDa-IL7X0frVaGdIuw.crl (hash: yiK9QMq5lKhCxvSDovrA1bqtkcnQyzzjG/tEjXam2rk=) 2: 437E6F641A2A11ED8E5B3178C4F9AE02.roa (hash: W2t7cvkTvvu4tLiipq3paLT/+ja5H4MoySHQU+pxdNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 921 (0x399) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C862F Validity Not Before: Apr 3 00:50:05 2025 GMT Not After : Apr 10 00:50:04 2025 GMT Subject: CN=67eddb3d-6567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:8e:19:c1:3f:6c:73:56:58:f6:1e:9e:fd: e0:7d:b2:93:b3:b0:b8:dd:6b:28:9e:40:e9:b6:ca: e6:07:ce:3a:d3:42:f5:f3:ae:92:24:4e:12:40:8a: 63:94:d3:29:1a:04:2d:81:d4:a6:15:68:a2:e6:e7: 82:c5:a5:c4:a7:20:6d:32:e5:c1:55:29:18:27:d4: c1:57:81:34:30:49:1f:11:fb:bf:19:0e:b2:27:00: 67:41:9f:e4:1a:9b:9a:24:e2:ce:7f:54:17:e5:71: 25:c6:8d:37:bb:04:7b:60:bf:ef:3c:69:89:df:fd: ce:d7:43:9f:82:80:e4:bf:28:62:d4:9c:92:13:84: eb:a5:97:57:51:d5:1f:6b:8c:66:31:20:a1:17:b7: 98:ab:bd:90:f6:ca:1f:38:d3:a1:80:27:f3:18:aa: 3d:82:7c:a8:e2:5c:cc:c2:3a:24:ad:59:f1:5f:ae: 9e:f2:cb:25:83:90:20:fc:66:b7:cd:ba:65:af:e1: b4:04:c1:16:c4:c3:1b:cf:cc:59:b9:0e:8e:9a:7b: 50:87:c1:7d:8b:3d:a5:ad:6a:53:21:07:ee:84:d1: c5:75:82:3a:5e:e6:50:dc:19:16:f8:96:d7:ac:ed: bd:bc:18:dc:fe:bb:a3:27:05:9b:3d:50:f2:66:99: f5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:11:D4:10:58:B7:B1:DB:B8:00:D2:E3:37:44:83:C5:84:DE:63:C5 X509v3 Authority Key Identifier: keyid:9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:4a:be:49:16:18:78:53:ce:14:f0:79:d7:25:9e:89:1c:f7: a1:05:49:3a:05:ce:1b:61:44:57:0a:09:c5:9d:a6:c9:3b:8e: e2:30:39:d1:e3:4b:91:e4:30:10:5d:17:27:95:58:0a:54:58: 18:75:96:53:e5:38:f1:f7:78:fb:b6:2a:ef:e0:fe:f4:36:5a: 7a:c2:7c:e7:4b:54:ea:71:7f:64:9d:5c:92:38:8d:e2:9d:f4: 53:0e:19:c7:b9:5f:3b:1a:16:39:ff:41:f1:65:87:fe:24:e9: 00:d5:bf:00:de:e9:c4:a6:ee:a1:15:d8:6f:0f:51:69:56:8c: 47:f0:ab:13:af:46:76:8d:c6:2d:42:9e:d8:4c:87:85:61:2a: 37:8d:37:ee:d6:a1:da:c0:a3:76:f3:92:53:15:87:1b:5c:ac: c4:d2:5b:cc:10:0c:00:d8:8b:5c:26:e3:45:53:6a:7c:9c:98: 09:39:9a:d9:1b:9b:25:f0:18:8f:4a:a4:37:37:c4:94:5e:15: 84:00:66:d1:e9:ba:78:3d:7d:83:8e:55:7a:8c:6f:17:b0:70: c6:ff:8d:36:9f:e0:ee:df:fe:7d:e1:eb:26:23:cd:73:28:b0: b2:54:97:92:8b:4f:5d:d8:fb:96:5c:9a:a9:e0:90:d5:d7:6c: 7f:bf:83:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg2MkYxMTAvBgNVBAUTKDlDQjIxOTVFQkFBMjA5NjBEQUY4ODJGQjVGNDdFQjU1 QTE5RDIyRUMwHhcNMjUwNDAzMDA1MDA1WhcNMjUwNDEwMDA1MDA0WjAYMRYwFAYD VQQDEw02N2VkZGIzZC02NTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xmOGcE/bHNWWPYenv3gfbKTs7C43WsonkDptsrmB84600L1866SJE4SQIpj lNMpGgQtgdSmFWii5ueCxaXEpyBtMuXBVSkYJ9TBV4E0MEkfEfu/GQ6yJwBnQZ/k GpuaJOLOf1QX5XElxo03uwR7YL/vPGmJ3/3O10OfgoDkvyhi1JySE4TrpZdXUdUf a4xmMSChF7eYq72Q9sofONOhgCfzGKo9gnyo4lzMwjokrVnxX66e8sslg5Ag/Ga3 zbplr+G0BMEWxMMbz8xZuQ6OmntQh8F9iz2lrWpTIQfuhNHFdYI6XuZQ3BkW+JbX rO29vBjc/rujJwWbPVDyZpn1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAR1BBY t7HbuADS4zdEg8WE3mPFMB8GA1UdIwQYMBaAFJyyGV66oglg2viC+19H61WhnSLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODYyRi9ENUUxRERFQTk2 NUYxMUVDQUQyMTczNzZDNEY5QUUwMi9uTElaWHJxaUNXRGEtSUw3WDBmclZhR2RJ dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MSVpYcnFpQ1dEYS1JTDdYMGZyVmFHZEl1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODYyRi9ENUUxRERFQTk2NUYxMUVDQUQyMTczNzZDNEY5QUUwMi9uTElaWHJxaUNX RGEtSUw3WDBmclZhR2RJdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCASr5JFhh4U84U8HnXJZ6JHPehBUk6Bc4bYURXCgnFnabJO47iMDnR 40uR5DAQXRcnlVgKVFgYdZZT5Tjx93j7tirv4P70Nlp6wnznS1TqcX9knVySOI3i nfRTDhnHuV87GhY5/0HxZYf+JOkA1b8A3unEpu6hFdhvD1FpVoxH8KsTr0Z2jcYt Qp7YTIeFYSo3jTfu1qHawKN285JTFYcbXKzE0lvMEAwA2ItcJuNFU2p8nJgJOZrZ G5sl8BiPSqQ3N8SUXhWEAGbR6bp4PX2DjlV6jG8XsHDG/402n+Du3/594esmI81z KLCyVJeSi09d2PuWXJqp4JDV12x/v4MP -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:32 2025 by rpki-client