$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft File: nvPmBKY_LO9L3eN9yokNBFGWeuw.mft (raw, json) Hash identifier: /1j1EbwX525OtBA7p/3qf9ir6XhZX/D1m1aK53oJjTM= Subject key identifier: 42:35:57:27:D6:AA:5F:5E:2A:60:7D:D2:8B:06:5D:56:E2:AC:D4:EA Authority key identifier: 9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC Certificate issuer: /CN=A91EB002/serialNumber=9EF3E604A63F2CEF4BDDE37DCA890D0451967AEC Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft Manifest number: BD Signing time: Wed 09 Apr 2025 04:51:31 +0000 Manifest this update: Wed 09 Apr 2025 04:51:30 +0000 Manifest next update: Wed 16 Apr 2025 04:51:30 +0000 Files and hashes: 1: nvPmBKY_LO9L3eN9yokNBFGWeuw.crl (hash: eZO+XuNliOQvD5v/EwBvHqRziXAIojjlgbdcYXLI2p4=) 2: A8E08476F1BB11EF9C4FBD41C4F9AE02.roa (hash: wizBRHqAhxq5TDJd9ORO3aI0XD9YwCzlFRUIm/jjcVM=) 3: 5A65F048F19211EFA4D9CD34C4F9AE02.roa (hash: 00Gxu/B4q0Oej8/UcNpQ1rIkErXZo9wae3oYgISIoHo=) 4: C00BD754F1BB11EF8DC4E241C4F9AE02.roa (hash: gkdI4g/jCDkiZBNQ9fSbLl+77wcKcjbE4DlEqTCL5ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB002 Validity Not Before: Apr 9 04:51:30 2025 GMT Not After : Apr 16 04:51:30 2025 GMT Subject: CN=67f5fcd2-fbe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2a:c4:66:90:33:17:6f:c5:f1:37:c8:8e:a7: 4c:c7:dd:69:8f:dc:1e:bf:28:9f:a1:1e:91:97:e4: 82:13:ad:f3:8e:15:25:80:78:cd:be:23:ba:93:a5: 1b:b1:f8:4b:ea:f2:b6:82:07:a7:6b:8d:a8:a0:5a: 07:b0:e8:3c:b7:46:b8:a2:b4:79:99:fd:4e:f6:8a: 5f:07:37:ba:17:ea:89:8c:6b:73:b3:9b:73:75:23: 0b:86:1a:70:cd:17:c6:37:0f:c6:46:48:93:d5:a1: 07:ac:80:87:86:79:a6:bd:e6:ff:33:1a:0e:2e:d1: ba:0c:bc:06:bd:59:0d:dd:da:02:f9:3f:fe:ed:80: 78:c9:9b:2a:12:09:77:e9:91:88:7e:10:f4:9e:b4: 3e:83:95:5a:16:ff:81:ed:eb:54:50:9a:09:fc:8f: 28:22:da:6b:73:b8:cc:29:a5:bc:ae:f2:bd:22:5d: 1c:f1:69:c6:84:14:93:8d:bc:44:b5:00:39:49:51: 4c:72:f4:ac:9e:87:ef:6c:3d:4f:d1:82:71:0f:df: eb:da:33:00:93:6c:fb:7b:2c:ed:b0:c3:ab:29:b7: ba:8d:db:a7:3d:6c:79:40:97:e1:57:69:cc:00:34: 3e:b5:4b:be:76:86:18:30:52:ee:f4:a0:fe:52:1e: ea:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:35:57:27:D6:AA:5F:5E:2A:60:7D:D2:8B:06:5D:56:E2:AC:D4:EA X509v3 Authority Key Identifier: keyid:9E:F3:E6:04:A6:3F:2C:EF:4B:DD:E3:7D:CA:89:0D:04:51:96:7A:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvPmBKY_LO9L3eN9yokNBFGWeuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB002/E24F8234022E11EF856F5132C4F9AE02/nvPmBKY_LO9L3eN9yokNBFGWeuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:8d:f5:74:fb:96:0c:c3:39:44:4c:74:18:6a:dc:b1:f1:2a: 04:37:6f:04:46:aa:8c:27:00:5f:f2:88:58:30:7c:bf:72:73: 0a:b1:1d:ee:0e:ea:2e:cf:49:88:15:94:cd:b3:40:67:91:8b: e6:d7:01:a5:29:bf:72:87:d9:e2:c0:ef:83:60:95:3b:08:49: 42:e8:c3:55:4f:d3:92:7b:8e:2c:68:db:6f:cf:7c:b0:19:13: 98:84:35:40:91:d0:35:29:98:b8:f1:11:05:ce:c0:c3:91:d3: a8:1a:ec:74:bb:22:f5:34:94:3f:1b:47:89:78:17:6c:f4:4b: 83:3e:be:41:3d:bf:22:7e:07:e2:09:e6:11:90:1d:d7:70:f0: b1:a1:b9:c1:93:21:39:59:33:bf:85:9b:d9:1e:83:95:22:d4: 7f:58:75:e5:fb:b8:2d:80:51:4b:d0:32:2b:4e:39:54:17:79: 0c:85:5a:36:14:b8:dc:37:f6:9a:ef:05:20:00:6f:3d:f6:b6: 79:0f:a4:80:13:8c:3a:c8:d1:7c:16:ac:80:0d:85:42:76:be: b3:38:0f:f1:67:8b:db:02:3c:83:e2:2a:dd:5d:a9:4c:04:36: 7e:69:f7:dc:45:fe:81:24:59:66:dc:4e:c8:87:c1:81:02:ec: fe:f9:ca:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwMDIxMTAvBgNVBAUTKDlFRjNFNjA0QTYzRjJDRUY0QkRERTM3RENBODkwRDA0 NTE5NjdBRUMwHhcNMjUwNDA5MDQ1MTMwWhcNMjUwNDE2MDQ1MTMwWjAYMRYwFAYD VQQDEw02N2Y1ZmNkMi1mYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyrEZpAzF2/F8TfIjqdMx91pj9wevyifoR6Rl+SCE63zjhUlgHjNviO6k6Ub sfhL6vK2ggena42ooFoHsOg8t0a4orR5mf1O9opfBze6F+qJjGtzs5tzdSMLhhpw zRfGNw/GRkiT1aEHrICHhnmmveb/MxoOLtG6DLwGvVkN3doC+T/+7YB4yZsqEgl3 6ZGIfhD0nrQ+g5VaFv+B7etUUJoJ/I8oItprc7jMKaW8rvK9Il0c8WnGhBSTjbxE tQA5SVFMcvSsnofvbD1P0YJxD9/r2jMAk2z7eyztsMOrKbe6jdunPWx5QJfhV2nM ADQ+tUu+doYYMFLu9KD+Uh7qHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEI1VyfW ql9eKmB90osGXVbirNTqMB8GA1UdIwQYMBaAFJ7z5gSmPyzvS93jfcqJDQRRlnrs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjAwMi9FMjRGODIzNDAy MkUxMUVGODU2RjUxMzJDNEY5QUUwMi9udlBtQktZX0xPOUwzZU45eW9rTkJGR1dl dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252UG1CS1lfTE85TDNlTjl5b2tOQkZHV2V1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjAwMi9FMjRGODIzNDAyMkUxMUVGODU2RjUxMzJDNEY5QUUwMi9udlBtQktZX0xP OUwzZU45eW9rTkJGR1dldXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvjfV0+5YMwzlETHQYatyx8SoEN28ERqqMJwBf8ohYMHy/cnMKsR3u Duouz0mIFZTNs0BnkYvm1wGlKb9yh9niwO+DYJU7CElC6MNVT9OSe44saNtvz3yw GROYhDVAkdA1KZi48REFzsDDkdOoGux0uyL1NJQ/G0eJeBds9EuDPr5BPb8ifgfi CeYRkB3XcPCxobnBkyE5WTO/hZvZHoOVItR/WHXl+7gtgFFL0DIrTjlUF3kMhVo2 FLjcN/aa7wUgAG899rZ5D6SAE4w6yNF8FqyADYVCdr6zOA/xZ4vbAjyD4irdXalM BDZ+affcRf6BJFlm3E7Ih8GBAuz++cqg -----END CERTIFICATE-----Generated at Thu Apr 10 17:01:19 2025 by rpki-client