$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: K2uLMXmBlJxw2O7iyp5mTvt5FeQyXkH/rZN0vk3kCN0= Subject key identifier: 59:08:69:1F:B9:74:6B:54:B3:7A:93:7D:1B:DB:EE:28:3C:B0:7B:1E Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2B46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B32 Signing time: Wed 12 Mar 2025 14:25:26 +0000 Manifest this update: Wed 12 Mar 2025 14:25:26 +0000 Manifest next update: Wed 19 Mar 2025 14:25:26 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: MovUqpy5oqV8hTy6WRYFg/Ocnes9ihKuo6x17FZldWg=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11078 (0x2b46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422 Validity Not Before: Mar 12 14:25:26 2025 GMT Not After : Mar 19 14:25:26 2025 GMT Subject: CN=67d19956-06b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:83:dd:c2:b2:67:8c:f9:f1:4a:f4:cd:c7:d0: 6e:61:be:5d:9c:96:94:ff:4b:9a:b7:17:56:fb:5d: b4:0a:c3:60:0d:ef:04:bb:08:7c:0d:1f:a5:15:6d: e8:d2:09:26:a2:c9:a4:41:e6:55:aa:fc:1b:f6:e5: 77:1d:9c:b7:0a:39:df:50:42:36:4b:a0:50:40:4d: 2e:30:08:ff:cf:b9:b5:4f:27:22:ff:8f:71:fd:d1: 6a:a9:ed:81:1e:a2:b7:39:cc:12:90:6a:d0:b9:19: 8f:bc:c5:2c:bc:34:e4:7a:a8:af:2d:32:48:41:5e: 78:cb:ba:10:f2:5b:04:48:df:c4:40:29:5b:13:93: ed:f2:84:b3:9f:05:a5:9f:d3:5d:bd:7a:13:a6:7c: b6:2b:80:28:ba:2d:fc:77:80:4a:8f:ac:99:b7:c3: 2c:1a:7e:8a:1d:c9:df:ab:36:66:61:51:98:0e:2f: f6:8a:c3:65:cf:d1:c0:2c:39:3b:ff:86:ed:9f:61: 54:69:e4:58:4f:de:b6:7d:64:c5:21:ff:3d:d7:f7: 86:44:21:cf:7f:a9:09:40:81:df:72:bf:77:6a:0f: d0:59:c1:06:db:fe:8d:40:e8:ca:13:cb:c6:55:a8: c9:32:b7:7b:9f:7f:4f:9e:05:66:86:9f:9a:2f:81: e2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:08:69:1F:B9:74:6B:54:B3:7A:93:7D:1B:DB:EE:28:3C:B0:7B:1E X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:1e:20:1d:7b:b3:df:9e:a5:64:64:f6:de:8c:b7:f2:85:b5: 3b:55:6f:4e:0e:56:aa:a6:19:e1:7e:2f:18:7e:de:4b:2e:5e: e9:12:f2:05:3f:73:d0:49:5b:c9:b7:43:82:2b:be:92:b3:cb: eb:9b:cb:98:d5:24:f7:9c:92:89:89:da:6c:cc:da:64:d8:11: 04:b3:15:8c:d2:bf:75:bb:d6:7b:32:c0:ef:bd:4e:74:7e:70: af:39:11:31:02:9a:04:f0:fb:72:2e:36:7a:f7:90:a2:e0:ee: 66:e5:af:1d:e9:d7:bf:89:27:7a:53:e0:2a:52:a0:32:8b:c7: 91:8a:b6:6a:7b:61:5b:5b:9a:07:b3:6c:a8:1e:33:2d:9b:2d: 56:1e:be:7b:cd:ae:1a:9d:5f:43:b4:00:21:07:3d:f7:f8:44: 12:b4:07:d2:9c:35:66:b0:2b:21:9f:96:27:52:14:10:3e:2f: 6b:51:ab:02:44:2a:02:72:28:7e:51:05:0c:cb:9c:ad:fc:64: b7:f5:69:22:b2:89:41:21:54:65:3b:93:5e:23:33:15:fd:54: 2e:7e:d6:6b:12:9c:13:a5:b7:95:e2:c7:03:90:40:d4:83:46: 5f:9c:c9:90:cb:6f:4b:35:ce:64:2f:cf:69:af:22:0a:51:b9: e3:c6:9d:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwMzEyMTQyNTI2WhcNMjUwMzE5MTQyNTI2WjAYMRYwFAYD VQQDEw02N2QxOTk1Ni0wNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYPdwrJnjPnxSvTNx9BuYb5dnJaU/0uatxdW+120CsNgDe8Euwh8DR+lFW3o 0gkmosmkQeZVqvwb9uV3HZy3CjnfUEI2S6BQQE0uMAj/z7m1Tyci/49x/dFqqe2B HqK3OcwSkGrQuRmPvMUsvDTkeqivLTJIQV54y7oQ8lsESN/EQClbE5Pt8oSznwWl n9NdvXoTpny2K4Aoui38d4BKj6yZt8MsGn6KHcnfqzZmYVGYDi/2isNlz9HALDk7 /4btn2FUaeRYT962fWTFIf891/eGRCHPf6kJQIHfcr93ag/QWcEG2/6NQOjKE8vG VajJMrd7n39PngVmhp+aL4HiTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkIaR+5 dGtUs3qTfRvb7ig8sHseMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5HiAde7PfnqVkZPbejLfyhbU7VW9ODlaqphnhfi8Yft5LLl7pEvIF P3PQSVvJt0OCK76Ss8vrm8uY1ST3nJKJidpszNpk2BEEsxWM0r91u9Z7MsDvvU50 fnCvORExApoE8PtyLjZ695Ci4O5m5a8d6de/iSd6U+AqUqAyi8eRirZqe2FbW5oH s2yoHjMtmy1WHr57za4anV9DtAAhBz33+EQStAfSnDVmsCshn5YnUhQQPi9rUasC RCoCcih+UQUMy5yt/GS39WkisolBIVRlO5NeIzMV/VQuftZrEpwTpbeV4scDkEDU g0ZfnMmQy29LNc5kL89pryIKUbnjxp0W -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:01 2025 by rpki-client