$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: nIQ8Ip+bMsFba3IFBMO8G/Gp6oYzn0zRpRpjZMCA6zI= Subject key identifier: 16:50:15:02:A9:8D:FF:07:31:A1:75:B0:58:F8:4F:6F:FD:76:45:30 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2B39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B25 Signing time: Fri 14 Feb 2025 14:27:16 +0000 Manifest this update: Fri 14 Feb 2025 14:27:16 +0000 Manifest next update: Fri 21 Feb 2025 14:27:16 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: PX48PqXMPtvzQaGUrVWcFmrCc+7OEYVjtJ5jP2GO4rI=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11065 (0x2b39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422 Validity Not Before: Feb 14 14:27:16 2025 GMT Not After : Feb 21 14:27:16 2025 GMT Subject: CN=67af52c4-8f47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9e:07:95:68:69:5f:15:22:b9:af:eb:af:8b: 13:c0:34:17:29:44:dc:59:59:6a:19:19:ed:93:95: 25:88:3b:bc:63:ed:35:fe:63:41:dc:64:0c:0f:51: 3e:ef:73:5a:33:6b:4f:8d:e5:ab:9f:ce:36:f9:7b: 49:ae:ea:b6:07:ab:16:9c:5a:ac:f4:16:69:4f:e7: a9:b3:5b:b0:e2:72:ed:30:4e:9b:36:69:a2:bf:2b: 10:26:cd:ee:1f:8e:22:a5:9b:01:19:2d:c9:52:94: f8:f9:53:73:4b:6b:ba:51:2c:a0:0b:20:85:47:9e: 5d:a4:4e:bf:45:d6:ef:d3:67:99:db:2c:7e:31:a0: f3:88:ec:a1:68:11:c4:a6:8b:fb:d6:7b:90:ba:80: f1:e2:67:ca:94:30:73:3c:81:fa:02:06:fb:ca:c1: 3b:7f:ff:20:06:a4:a3:ff:47:d3:d2:13:8d:f9:38: 36:2c:4b:3c:81:4c:06:48:f9:83:80:74:ad:96:15: 51:1c:70:30:4a:8b:56:b4:3b:16:27:f1:eb:6c:65: d6:fc:a2:29:6c:c8:2e:26:6f:53:2e:53:85:db:dc: ce:af:35:8d:4f:a0:06:7a:7c:77:51:8a:bc:1c:43: 38:31:fa:86:d1:81:c8:07:b8:ca:f3:a3:0b:ca:e2: c8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:50:15:02:A9:8D:FF:07:31:A1:75:B0:58:F8:4F:6F:FD:76:45:30 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:59:f7:e0:34:3f:b5:5b:d1:d7:6d:a6:b3:20:3a:de:3a:62: 8b:97:d0:45:68:35:40:b1:5f:35:75:e6:69:c1:35:00:71:99: 70:9f:77:ea:91:ae:e2:a7:4a:a8:e5:5e:c5:31:5e:fd:87:2d: 1f:93:06:18:89:94:bc:21:16:19:33:28:b5:c9:06:c3:a3:00: 69:6b:fc:c4:c7:d7:d0:ca:82:bf:46:e8:75:9d:af:8e:de:7c: 4b:0c:93:2b:45:cb:45:f5:9a:fe:e4:9d:af:3c:35:b9:2f:3b: 11:b7:11:c6:ce:04:60:01:8b:a8:e9:f1:e7:d0:89:1d:23:57: fc:7a:94:81:3b:1b:ee:16:c7:c8:96:e6:ff:3c:e0:d7:fe:17: 09:5c:96:3e:8b:4a:2f:cc:e3:72:7b:3e:48:81:f6:31:19:da: 37:b0:f2:e6:7d:03:e6:5b:57:1e:70:ec:97:30:d8:1f:5d:3d: a8:fe:11:5d:79:c6:5f:db:cf:73:1d:a0:da:d2:f2:8d:a6:27: b6:8f:18:b8:b6:48:8e:ca:22:d3:ad:2c:ca:c0:a9:8b:2b:5c: 93:7f:f6:8f:5e:0a:49:68:26:b7:71:79:44:be:9b:a3:81:03: 31:3b:ee:d7:80:39:87:84:9d:28:50:3d:4d:88:c5:ea:fd:45: 89:28:02:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwMjE0MTQyNzE2WhcNMjUwMjIxMTQyNzE2WjAYMRYwFAYD VQQDEw02N2FmNTJjNC04ZjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup4HlWhpXxUiua/rr4sTwDQXKUTcWVlqGRntk5UliDu8Y+01/mNB3GQMD1E+ 73NaM2tPjeWrn842+XtJruq2B6sWnFqs9BZpT+eps1uw4nLtME6bNmmivysQJs3u H44ipZsBGS3JUpT4+VNzS2u6USygCyCFR55dpE6/Rdbv02eZ2yx+MaDziOyhaBHE pov71nuQuoDx4mfKlDBzPIH6Agb7ysE7f/8gBqSj/0fT0hON+Tg2LEs8gUwGSPmD gHStlhVRHHAwSotWtDsWJ/HrbGXW/KIpbMguJm9TLlOF29zOrzWNT6AGenx3UYq8 HEM4MfqG0YHIB7jK86MLyuLIWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZQFQKp jf8HMaF1sFj4T2/9dkUwMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXWffgND+1W9HXbaazIDreOmKLl9BFaDVAsV81deZpwTUAcZlwn3fq ka7ip0qo5V7FMV79hy0fkwYYiZS8IRYZMyi1yQbDowBpa/zEx9fQyoK/Ruh1na+O 3nxLDJMrRctF9Zr+5J2vPDW5LzsRtxHGzgRgAYuo6fHn0IkdI1f8epSBOxvuFsfI lub/PODX/hcJXJY+i0ovzONyez5IgfYxGdo3sPLmfQPmW1cecOyXMNgfXT2o/hFd ecZf289zHaDa0vKNpie2jxi4tkiOyiLTrSzKwKmLK1yTf/aPXgpJaCa3cXlEvpuj gQMxO+7XgDmHhJ0oUD1NiMXq/UWJKAL5 -----END CERTIFICATE-----Generated at Sun Feb 16 15:09:30 2025 by rpki-client