$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft File: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft (raw, json) Hash identifier: Vb4AxkIqtOmbhvNZwS9wlgLJxprV8v3SWTooO03eOjQ= Subject key identifier: F0:08:4F:58:F3:B9:CA:24:8B:D5:24:45:54:C8:60:E9:E8:57:BE:8E Authority key identifier: 34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A Certificate issuer: /CN=A91D4E53/serialNumber=349E597C71788104B0649F073ABA72F65F284B9A Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft Manifest number: 06CA Signing time: Wed 02 Apr 2025 22:03:28 +0000 Manifest this update: Wed 02 Apr 2025 22:03:28 +0000 Manifest next update: Wed 09 Apr 2025 22:03:28 +0000 Files and hashes: 1: NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl (hash: LhEV4+A+z8tEq/4/+IcJBRzUKp+XX/DnrRE2JfITPmU=) 2: 349EFE924E6511EBBFE35D1AC4F9AE02.roa (hash: ErOTyz5l442f54R4SgwNJSi5aE/r3E7WeodId76rTk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E53 Validity Not Before: Apr 2 22:03:28 2025 GMT Not After : Apr 9 22:03:28 2025 GMT Subject: CN=67edb430-7f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:75:fa:18:ca:d0:ea:7d:83:7c:ba:43:ec:e9: 42:1a:47:0c:c6:2b:e8:b3:38:10:0e:fc:a4:83:ed: d3:3b:f5:05:81:00:ec:d2:da:ab:d9:27:2b:74:a2: 03:c9:a7:8f:64:20:03:0d:a8:05:c6:4a:d4:2d:e8: 49:db:00:bb:d7:6f:f4:cd:0d:20:90:aa:0f:ce:9e: 19:4d:f3:54:47:a7:0b:2c:92:a0:4a:d4:5d:bb:07: 75:23:72:97:47:69:2e:07:40:d3:24:1b:17:77:ba: 37:bb:dd:5d:8a:57:e8:ef:9f:7f:d7:08:af:d2:f1: 7f:55:6c:b0:20:b9:6b:1d:f4:f6:77:18:f0:f5:a8: 36:4a:4c:63:f3:e0:43:36:4c:0e:b8:15:49:c8:82: 5d:1c:6c:ac:d0:bd:14:60:ff:63:b5:3f:df:bb:24: ff:2c:c3:94:15:2a:2e:35:15:66:d1:1a:60:6e:1e: 43:78:f1:52:56:73:c8:79:4a:82:4f:49:3e:d2:61: 2a:74:74:57:55:80:84:c8:19:19:30:8f:3f:36:c7: cb:45:e2:a6:cd:ce:c2:9f:49:27:e8:05:38:57:70: 49:7e:4f:0f:4b:e7:1f:0a:42:86:24:42:cd:a3:bf: 72:b5:f6:14:fe:26:37:e2:89:c1:a2:32:ee:b5:f9: e2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:08:4F:58:F3:B9:CA:24:8B:D5:24:45:54:C8:60:E9:E8:57:BE:8E X509v3 Authority Key Identifier: keyid:34:9E:59:7C:71:78:81:04:B0:64:9F:07:3A:BA:72:F6:5F:28:4B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E53/A4A519EA4E6211EBA8ACAC5AC4F9AE02/NJ5ZfHF4gQSwZJ8HOrpy9l8oS5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:54:16:4b:c8:67:ac:d2:bb:c6:b7:ff:14:8a:04:2f:b0:e6: 9f:5b:d4:7a:03:df:68:ac:a8:a8:59:2c:1f:19:40:61:8c:fc: 8e:15:7f:d0:b6:ed:b0:cc:98:d5:d4:7d:99:68:9a:dd:84:35: 6f:64:f9:59:ed:11:ec:bc:f6:e3:26:fd:2d:88:d9:15:b8:e5: bf:4c:a9:aa:ee:d7:df:9d:55:f8:9d:a3:50:05:06:91:5b:16: 17:20:65:c0:aa:c6:ca:08:9f:a4:95:74:df:0d:b9:4f:71:ff: a1:23:6a:e2:02:63:0f:2d:06:73:1d:bb:ed:b3:72:60:e8:a2: b8:65:b0:0d:98:51:75:5d:af:82:a2:63:43:af:ac:99:a8:c7: a6:12:98:75:67:f2:65:9f:e0:b5:af:ec:e8:c7:d9:11:bc:b6: 08:68:86:5d:0a:c3:b9:81:44:c3:f8:d5:79:44:a7:a4:25:1e: 42:82:b6:ba:9a:c2:6f:00:5c:00:03:29:cf:92:6d:66:3c:a5: a4:9a:b8:30:f5:e9:35:36:70:80:c4:5d:45:00:85:70:d6:5f: 3d:91:c5:9f:10:60:b1:af:f6:89:9c:ef:7b:f7:f3:1a:6c:67: 20:57:9c:72:da:ce:c0:66:d5:f3:66:c5:a2:3e:76:9b:bd:fd: 45:14:5a:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNTMxMTAvBgNVBAUTKDM0OUU1OTdDNzE3ODgxMDRCMDY0OUYwNzNBQkE3MkY2 NUYyODRCOUEwHhcNMjUwNDAyMjIwMzI4WhcNMjUwNDA5MjIwMzI4WjAYMRYwFAYD VQQDEw02N2VkYjQzMC03Zjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HX6GMrQ6n2DfLpD7OlCGkcMxivoszgQDvykg+3TO/UFgQDs0tqr2ScrdKID yaePZCADDagFxkrULehJ2wC712/0zQ0gkKoPzp4ZTfNUR6cLLJKgStRduwd1I3KX R2kuB0DTJBsXd7o3u91dilfo759/1wiv0vF/VWywILlrHfT2dxjw9ag2Skxj8+BD NkwOuBVJyIJdHGys0L0UYP9jtT/fuyT/LMOUFSouNRVm0Rpgbh5DePFSVnPIeUqC T0k+0mEqdHRXVYCEyBkZMI8/NsfLReKmzc7Cn0kn6AU4V3BJfk8PS+cfCkKGJELN o79ytfYU/iY34onBojLutfniIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAIT1jz ucoki9UkRVTIYOnoV76OMB8GA1UdIwQYMBaAFDSeWXxxeIEEsGSfBzq6cvZfKEua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU1My9BNEE1MTlFQTRF NjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdRU3daSjhIT3JweTlsOG9T NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05KNVpmSEY0Z1FTd1pKOEhPcnB5OWw4b1M1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEU1My9BNEE1MTlFQTRFNjIxMUVCQThBQ0FDNUFDNEY5QUUwMi9OSjVaZkhGNGdR U3daSjhIT3JweTlsOG9TNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaVBZLyGes0rvGt/8UigQvsOafW9R6A99orKioWSwfGUBhjPyOFX/Q tu2wzJjV1H2ZaJrdhDVvZPlZ7RHsvPbjJv0tiNkVuOW/TKmq7tffnVX4naNQBQaR WxYXIGXAqsbKCJ+klXTfDblPcf+hI2riAmMPLQZzHbvts3Jg6KK4ZbANmFF1Xa+C omNDr6yZqMemEph1Z/Jln+C1r+zox9kRvLYIaIZdCsO5gUTD+NV5RKekJR5Cgra6 msJvAFwAAynPkm1mPKWkmrgw9ek1NnCAxF1FAIVw1l89kcWfEGCxr/aJnO979/Ma bGcgV5xy2s7AZtXzZsWiPnabvf1FFFrI -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:24 2025 by rpki-client