$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json) Hash identifier: Vf7dDGaZCBvf8Kz0M05QvRfxIgXy0ddPkqoRPvSQjt8= Subject key identifier: 9C:93:6B:AA:7A:AB:6A:E0:58:B8:73:FB:D5:8F:83:C6:36:D7:D4:C5 Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft Manifest number: 018C Signing time: Sat 31 May 2025 03:14:45 +0000 Manifest this update: Sat 31 May 2025 03:14:44 +0000 Manifest next update: Sat 07 Jun 2025 03:14:44 +0000 Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: fFkA9wd9scDIIrFUIJD6hyBTZkD4oJSQT6uwaqs8zEI=) 2: BE7ACD44FEDF11EDB4C36F29C4F9AE02.roa (hash: TcJPWywxYGP4zNwqCV3RMOeXIr2sCq4he29rvfSHcP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECA2, serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Validity Not Before: May 31 03:14:44 2025 GMT Not After : Jun 7 03:14:44 2025 GMT Subject: CN=683a7425-480c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6b:23:fa:ac:2b:c0:23:c0:16:d2:18:b6:b3: 8d:3d:00:36:4e:d5:a8:b9:22:2a:a9:46:d0:6e:27: e0:88:44:4d:28:78:23:9c:64:f6:f2:b2:b2:20:67: 65:b2:4e:fc:6c:3e:94:e1:ae:6b:7d:5c:af:fd:92: 35:50:6f:cf:14:8f:8a:39:56:ea:f2:ca:c6:76:88: 56:ea:2c:96:09:71:f8:fd:ca:0d:a2:f4:be:65:fb: 40:d2:79:e9:68:41:e7:22:e1:00:fd:0b:ae:29:69: 04:cd:34:45:f2:a9:52:c5:0d:34:3f:8f:99:f6:9a: a3:e9:a5:ad:47:e1:28:7b:08:e3:41:d3:3d:4d:18: ca:b1:1d:40:b1:c7:12:f2:c5:34:66:17:fa:15:ef: b4:33:d6:24:b8:bb:a7:3a:f9:8e:bb:cf:7e:08:11: a1:ef:59:01:64:a0:14:6e:63:1c:00:ef:31:27:c3: 5e:62:6d:92:3c:71:bb:a4:ce:f7:86:ad:fc:8c:45: a6:b3:f2:34:4f:28:4e:2d:65:84:92:5d:ef:b9:24: 09:3c:85:ef:a6:4f:16:3e:f8:f9:cf:f7:da:68:ae: 8a:b0:a1:ec:dc:d0:ca:f2:b2:63:28:8d:11:94:9d: 95:2b:8a:41:9b:e6:87:2a:53:96:cc:de:fa:8d:82: 11:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:93:6B:AA:7A:AB:6A:E0:58:B8:73:FB:D5:8F:83:C6:36:D7:D4:C5 X509v3 Authority Key Identifier: keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:1c:e8:8d:c4:69:80:85:1a:04:1f:79:d0:ea:26:b6:e8:32: 51:7d:68:66:e7:8d:fa:e2:5c:c0:85:d9:3b:34:9d:a9:a8:48: c4:75:7d:7e:3e:32:0b:91:52:d5:32:33:4f:a7:2a:e0:d5:d3: 47:c6:00:10:3b:83:24:0c:f8:cd:88:26:f8:af:af:3f:b3:1d: 25:ab:65:bc:e4:19:52:de:bd:2c:2d:e7:94:25:87:ed:b4:e8: ae:05:76:2a:53:58:d8:83:7e:25:e6:a5:f1:85:85:b1:0b:c3: ee:04:fe:d5:ce:cd:2a:97:35:30:e8:70:7a:a4:e2:66:c9:85: 63:2c:e4:06:ef:d2:fd:1c:ba:75:6a:ea:8e:fc:2b:93:34:44: 53:af:0d:56:e2:0f:8a:a1:4e:53:bf:6c:70:00:d9:1c:91:da: f1:c3:b8:66:42:32:47:2e:ed:ce:b9:3a:12:6a:c0:c3:52:31: df:dd:aa:49:e3:ba:9e:8f:f6:1b:63:c0:08:b3:cd:f0:31:dd: 71:31:19:d5:5d:90:3f:72:c3:27:94:e0:e2:d9:e4:85:76:8b: 7c:4f:e0:38:08:88:30:c1:3a:f0:e4:69:c1:7a:e6:0e:8c:c4: e1:95:26:2e:f3:49:87:a0:ea:5e:d7:9f:01:00:7f:c7:12:3a: a1:20:03:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky ODQ2ODZEQjAwHhcNMjUwNTMxMDMxNDQ0WhcNMjUwNjA3MDMxNDQ0WjAYMRYwFAYD VQQDEw02ODNhNzQyNS00ODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGsj+qwrwCPAFtIYtrONPQA2TtWouSIqqUbQbifgiERNKHgjnGT28rKyIGdl sk78bD6U4a5rfVyv/ZI1UG/PFI+KOVbq8srGdohW6iyWCXH4/coNovS+ZftA0nnp aEHnIuEA/QuuKWkEzTRF8qlSxQ00P4+Z9pqj6aWtR+EoewjjQdM9TRjKsR1AsccS 8sU0Zhf6Fe+0M9YkuLunOvmOu89+CBGh71kBZKAUbmMcAO8xJ8NeYm2SPHG7pM73 hq38jEWms/I0TyhOLWWEkl3vuSQJPIXvpk8WPvj5z/faaK6KsKHs3NDK8rJjKI0R lJ2VK4pBm+aHKlOWzN76jYIRKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJyTa6p6 q2rgWLhz+9WPg8Y219TFMB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0 MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3HOiNxGmAhRoEH3nQ6ia26DJRfWhm54364lzAhdk7NJ2pqEjEdX1+ PjILkVLVMjNPpyrg1dNHxgAQO4MkDPjNiCb4r68/sx0lq2W85BlS3r0sLeeUJYft tOiuBXYqU1jYg34l5qXxhYWxC8PuBP7Vzs0qlzUw6HB6pOJmyYVjLOQG79L9HLp1 auqO/CuTNERTrw1W4g+KoU5Tv2xwANkckdrxw7hmQjJHLu3OuToSasDDUjHf3apJ 47qej/YbY8AIs83wMd1xMRnVXZA/csMnlODi2eSFdot8T+A4CIgwwTrw5GnBeuYO jMThlSYu80mHoOpe158BAH/HEjqhIAMl -----END CERTIFICATE-----Generated at Sat May 31 16:32:20 2025 by rpki-client