$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: +3ddkV08MmMHBChwBuuV2L0nDlgd4npQTU/GKSSjXMg= Subject key identifier: EE:87:39:B0:E9:9C:19:ED:CA:1B:E4:0C:87:92:A3:7A:FA:FB:6B:D5 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0FAA Signing time: Sun 06 Apr 2025 17:35:55 +0000 Manifest this update: Sun 06 Apr 2025 17:35:54 +0000 Manifest next update: Sun 13 Apr 2025 17:35:54 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: yKuLXuPiq5qg2GVWQYMYyRXLLu/4EhDCe1eliqvI1p4=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: PrswZfri3dHxcodWDLz5zdIU9mo1iJZykEdVfIHeBvM=) 3: 4CF19A6EAEDC11EF99753F71C4F9AE02.roa (hash: Qn6g14AUkLu1btr8Er+hiQxzqayU2xntHB3orOLLw9E=) 4: ED397A542A1211EFBF48A87FC4F9AE02.roa (hash: tNirD4O5n/APlr4VXtRqMXUQrZa9HBGyAXXcJdhkx8g=) 5: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: 9vj0wFDRg2m924YSQRU+53hKJgFYHI/k3yYJ69FV68c=) 6: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: IEsW3GuxCVGYRu/1hhIjcdekM36PkMj/h8FdT1+soSo=) 7: EE0AC1B82A1211EFBF48A87FC4F9AE02.roa (hash: rO7clzQPDfrbQiofxJnNNd8hLM/5/riPsot/0I2BTXI=) 8: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: WDmBDJ69igHtzeCqQyvNDcFOZ8jROHQ7B6krkg7kRGE=) 9: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU=) 10: 721709C63F6711EF879C2E11C4F9AE02.roa (hash: OxPA4uUHLc7fRUiKLbuvR0L7g6mPMW1qhFDN6e351sc=) 11: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: JBQ6069Irn+Fo63UGqCMQV8Nmj1Wx+/dKLn5g7bFNNU=) 12: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: b/LbIzPAU9coJXjT3umWz8BMDzmOcTsQApiNrqEbUbM=) 13: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: Pqc1nBcb+JFkJlWub2Tew10ajFK81balankJIjxH0u0=) 14: C2356A948FE811E98B967A66C4F9AE02.roa (hash: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4360 (0x1108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB Validity Not Before: Apr 6 17:35:54 2025 GMT Not After : Apr 13 17:35:54 2025 GMT Subject: CN=67f2bb7a-e3cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:db:d9:d9:ba:7f:57:09:f2:30:23:7a:79:f1: e7:8e:a0:60:80:6f:0d:b8:66:52:ae:a8:be:62:81: 57:56:1e:9e:62:96:69:00:ff:58:7d:f0:74:80:d6: 42:d7:d4:74:59:3b:c7:e7:29:46:04:31:81:a8:e0: 75:66:22:fd:54:30:00:fb:bf:c6:88:84:ff:d7:d4: 5f:0a:99:7f:11:c9:42:db:90:0a:06:a9:0f:b4:45: a0:c0:9f:4b:a8:bf:1b:3a:4c:58:ca:26:23:a7:89: 65:1d:33:a3:4d:50:b7:ea:a4:3e:7a:df:a4:fa:d4: f0:95:cd:e4:df:7f:a9:f1:0e:75:bd:09:95:f0:2f: 63:ad:95:94:9f:d6:ca:89:7b:25:59:37:af:84:92: 5f:67:b3:46:ee:aa:c9:79:6f:e4:0e:d7:6d:1a:57: 05:58:ff:8b:cc:d4:cb:19:ef:f0:f4:82:79:4f:75: b3:8e:e4:00:b1:51:6f:ec:22:4f:f6:1e:a4:7b:89: e0:c4:f6:44:9c:9f:07:a5:60:44:cf:53:a8:aa:95: 8d:90:46:91:16:2b:5d:dc:21:f1:5a:94:e5:ab:db: f8:92:fd:e5:68:33:76:bc:50:dd:55:de:15:24:8c: ae:71:0d:b3:e1:81:c7:0a:84:13:94:01:7d:9b:c0: b2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:87:39:B0:E9:9C:19:ED:CA:1B:E4:0C:87:92:A3:7A:FA:FB:6B:D5 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:12:55:ce:17:2e:f9:1b:ef:db:b8:be:b1:b5:1a:46:9d:59: 88:85:36:d0:85:4a:f4:c3:da:f0:17:fc:2b:0c:b2:f6:b7:46: fd:b8:b2:ac:7f:5d:18:9b:c9:80:72:13:8f:37:54:fa:91:e0: b6:10:ba:02:c0:1b:87:e5:2d:5d:7a:bd:c7:4f:91:19:be:d5: f5:08:80:54:82:0e:89:88:a2:00:9e:ad:bf:1a:b8:d5:85:c6: 0e:0f:93:a8:fa:8a:f5:01:15:b7:3e:71:d6:67:0e:79:cc:d4: f0:52:1f:e1:d3:d4:dd:bc:9e:2e:7f:5e:8c:ce:9e:7c:b6:4b: 49:6b:b1:37:6a:64:d5:ed:21:0d:ec:75:61:9e:bd:d3:bb:37: 84:e1:ce:b8:c0:bf:b3:1e:dd:ca:c1:bd:60:47:f3:3a:03:24: ee:60:f9:b0:be:25:4c:62:17:02:a6:80:40:a8:46:7e:37:8e: ec:7b:c0:47:50:4b:39:84:d9:c3:de:1a:5c:bf:ce:fa:0d:ac: ca:cd:75:25:91:9f:e6:9a:4f:0b:01:d7:cb:24:93:d3:81:7e: 04:9a:66:55:d3:55:1e:e5:16:21:d3:3a:7c:21:1e:27:d3:67: 41:de:86:0b:6d:72:1e:f8:15:53:4b:08:a0:7a:35:7d:9b:f5: fd:f6:9a:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNDA2MTczNTU0WhcNMjUwNDEzMTczNTU0WjAYMRYwFAYD VQQDEw02N2YyYmI3YS1lM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNvZ2bp/VwnyMCN6efHnjqBggG8NuGZSrqi+YoFXVh6eYpZpAP9YffB0gNZC 19R0WTvH5ylGBDGBqOB1ZiL9VDAA+7/GiIT/19RfCpl/EclC25AKBqkPtEWgwJ9L qL8bOkxYyiYjp4llHTOjTVC36qQ+et+k+tTwlc3k33+p8Q51vQmV8C9jrZWUn9bK iXslWTevhJJfZ7NG7qrJeW/kDtdtGlcFWP+LzNTLGe/w9IJ5T3WzjuQAsVFv7CJP 9h6ke4ngxPZEnJ8HpWBEz1OoqpWNkEaRFitd3CHxWpTlq9v4kv3laDN2vFDdVd4V JIyucQ2z4YHHCoQTlAF9m8Cy+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6HObDp nBntyhvkDIeSo3r6+2vVMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJElXOFy75G+/buL6xtRpGnVmIhTbQhUr0w9rwF/wrDLL2t0b9uLKs f10Ym8mAchOPN1T6keC2ELoCwBuH5S1der3HT5EZvtX1CIBUgg6JiKIAnq2/GrjV hcYOD5Oo+or1ARW3PnHWZw55zNTwUh/h09TdvJ4uf16Mzp58tktJa7E3amTV7SEN 7HVhnr3TuzeE4c64wL+zHt3Kwb1gR/M6AyTuYPmwviVMYhcCpoBAqEZ+N47se8BH UEs5hNnD3hpcv876DazKzXUlkZ/mmk8LAdfLJJPTgX4EmmZV01Ue5RYh0zp8IR4n 02dB3oYLbXIe+BVTSwigejV9m/X99ppU -----END CERTIFICATE-----Generated at Mon Apr 7 12:50:28 2025 by rpki-client