$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft File: 1NfdJccT56lVTPNS2TK_gNplLeQ.mft (raw, json) Hash identifier: IQmVn1zADD68bHlKKthrtxFEks0EyknFEuH+qLsJTMY= Subject key identifier: FC:35:72:9A:E3:27:BF:EE:67:7C:C0:2E:E6:BC:09:85:73:8C:9D:CE Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 08A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft Manifest number: 088A Signing time: Fri 30 May 2025 20:49:54 +0000 Manifest this update: Fri 30 May 2025 20:49:54 +0000 Manifest next update: Fri 06 Jun 2025 20:49:54 +0000 Files and hashes: 1: 1NfdJccT56lVTPNS2TK_gNplLeQ.crl (hash: 70tAUHGpALdN8cwtcnBYb+4UvN+sYe3blxNTaqcQzGU=) 2: 53224C1ADDA311ECA6964F20C4F9AE02.roa (hash: MbDPgGu0QclVT9FsJP5AAT1eEmuh3d/Dz6sn+R/b6KM=) 3: F7968CA6C01411EA912AC365C4F9AE02.roa (hash: cq2+wmybE1qpMjYmMXJ1sPoAauOtHlCzziVm+2eI9Iw=) 4: 5280D466DDA311ECA6964F20C4F9AE02.roa (hash: 82RI8awYpynCWEC9v44MXxvIjgMncGXtmCbSpuF8EGw=) 5: F814A546C01411EA912AC365C4F9AE02.roa (hash: 55QHl+d6Jc6Afsomh5duijKv8tF3LE8W2FzT9OQDDqI=) 6: C21DA992E83B11EBB3231D5EC4F9AE02.roa (hash: NQcAjbSAwzYhxeooFE30slWX1sySx4pom2WdezOetYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2213 (0x8a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F, serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: May 30 20:49:54 2025 GMT Not After : Jun 6 20:49:54 2025 GMT Subject: CN=683a19f2-26b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7d:16:47:f0:f6:e7:48:03:7f:69:80:f1:c4: a6:f4:7c:63:c5:5b:e1:4e:f9:b0:0b:d7:e2:65:a5: 0d:11:a6:c3:74:cb:b0:37:6b:93:01:cb:7b:b0:b5: 3d:58:bf:13:53:7d:ab:30:f3:c6:d7:79:55:fb:c9: b2:8f:ac:9c:2c:cb:1f:2a:80:46:9e:ff:eb:20:1d: ce:c1:ca:fb:6b:ff:89:15:e7:73:28:d2:7f:6e:6a: 57:3b:74:d2:1e:07:c6:8b:50:57:55:de:04:b4:06: d0:19:cc:81:df:2d:2c:da:34:3c:4d:ab:4e:ed:c7: b0:c9:08:b7:46:f1:d8:5c:88:67:bf:9d:62:6b:76: fe:fe:85:89:f8:a9:46:48:ea:0b:b3:b2:bc:fc:a6: 0d:f8:de:e7:0d:38:96:08:a1:92:6c:1d:db:73:05: 97:36:54:f0:2d:3a:33:dd:1a:e5:68:83:40:bf:8b: 76:db:55:9b:56:04:f6:36:c3:1f:4f:26:54:6c:ad: 8a:e2:95:c9:7b:28:76:63:0e:3c:11:d0:51:00:ea: a2:21:b0:19:9a:41:c9:fe:fe:db:dd:18:1a:4d:21: 4e:18:da:31:67:8a:85:13:c9:f9:18:f6:49:7c:81: 39:ff:eb:0b:1f:8b:75:3d:78:c3:fb:66:3a:59:60: dc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:35:72:9A:E3:27:BF:EE:67:7C:C0:2E:E6:BC:09:85:73:8C:9D:CE X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:df:2e:25:be:96:ae:bc:bc:5d:2f:a9:df:ad:f1:42:33:2b: be:97:bc:36:38:6b:79:db:83:f7:36:eb:3c:a3:52:d5:21:df: 2d:1d:4b:d8:9b:28:82:31:1c:6d:09:12:67:c5:03:0a:10:2a: 5f:e9:fc:0a:c9:b1:c2:5a:05:03:41:a0:cb:f1:87:1b:73:85: d5:f2:fa:3e:95:94:bc:46:2f:9e:c2:d2:be:70:c7:79:ff:bc: 26:c9:6d:e9:ab:00:08:c8:31:63:d9:c2:89:af:e9:4f:8c:12: c8:c0:b0:b0:06:73:29:f4:48:9d:79:e3:70:a8:d1:b5:90:5f: 4e:88:cd:e8:77:27:c4:59:a6:df:f8:c5:ce:e1:47:d6:9e:12: d9:db:a3:a0:54:ea:9d:dc:85:82:af:e7:9c:d7:2c:ac:99:9a: c6:6f:f3:4a:3c:01:2a:fa:09:05:96:d0:ce:14:90:b5:68:2d: fc:fd:cc:73:09:5d:61:55:05:c8:15:12:2d:86:62:90:79:78: cd:f8:d1:74:a9:14:ec:e1:dc:45:5b:a7:ea:ea:71:57:4d:8f: de:0f:55:16:38:71:c6:df:37:b6:12:c8:ab:96:09:8a:9e:68: bd:6a:6e:f5:d3:39:a9:25:ff:4b:45:79:9d:22:35:dc:4d:d4: 6c:c5:41:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjUwNTMwMjA0OTU0WhcNMjUwNjA2MjA0OTU0WjAYMRYwFAYD VQQDEw02ODNhMTlmMi0yNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun0WR/D250gDf2mA8cSm9HxjxVvhTvmwC9fiZaUNEabDdMuwN2uTAct7sLU9 WL8TU32rMPPG13lV+8myj6ycLMsfKoBGnv/rIB3Owcr7a/+JFedzKNJ/bmpXO3TS HgfGi1BXVd4EtAbQGcyB3y0s2jQ8TatO7cewyQi3RvHYXIhnv51ia3b+/oWJ+KlG SOoLs7K8/KYN+N7nDTiWCKGSbB3bcwWXNlTwLToz3RrlaINAv4t221WbVgT2NsMf TyZUbK2K4pXJeyh2Yw48EdBRAOqiIbAZmkHJ/v7b3RgaTSFOGNoxZ4qFE8n5GPZJ fIE5/+sLH4t1PXjD+2Y6WWDcQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPw1cprj J7/uZ3zALua8CYVzjJ3OMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTY0Ri8zQzlFMkI1Q0MwMTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2 bFZUUE5TMlRLX2dOcGxMZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA33y4lvpauvLxdL6nfrfFCMyu+l7w2OGt524P3Nus8o1LVId8tHUvY myiCMRxtCRJnxQMKECpf6fwKybHCWgUDQaDL8Ycbc4XV8vo+lZS8Ri+ewtK+cMd5 /7wmyW3pqwAIyDFj2cKJr+lPjBLIwLCwBnMp9EideeNwqNG1kF9OiM3odyfEWabf +MXO4UfWnhLZ26OgVOqd3IWCr+ec1yysmZrGb/NKPAEq+gkFltDOFJC1aC38/cxz CV1hVQXIFRIthmKQeXjN+NF0qRTs4dxFW6fq6nFXTY/eD1UWOHHG3ze2EsirlgmK nmi9am710zmpJf9LRXmdIjXcTdRsxUG3 -----END CERTIFICATE-----Generated at Sat May 31 16:39:45 2025 by rpki-client