$ rpki-client -vvf rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft File: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft (raw, json) Hash identifier: qiCrVhYhk/+6foJrsJhvGPv+G7BzVesxIUkge2GtOKI= Subject key identifier: 60:00:FA:E6:05:0B:FC:52:C7:9E:47:2A:47:C8:3F:94:7A:95:75:F9 Authority key identifier: 9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 Certificate issuer: /CN=A9197501/serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Certificate serial: 028C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft Manifest number: 0279 Signing time: Sat 31 May 2025 01:56:38 +0000 Manifest this update: Sat 31 May 2025 01:56:38 +0000 Manifest next update: Sat 07 Jun 2025 01:56:38 +0000 Files and hashes: 1: nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl (hash: 2NssLUATomtG9IwuVW1mvpWpQD5eH97yaY1yetY1yw4=) 2: 0E8725F61E9311F0B6662631C4F9AE02.roa (hash: uGNo0kqNctZXhYZoYXPLnEjuYisLB79lt85EjQOz3BM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197501, serialNumber=9F0AAF2E0AFA3E6F8DAE5A46A7E58CCFFA34C127 Validity Not Before: May 31 01:56:38 2025 GMT Not After : Jun 7 01:56:38 2025 GMT Subject: CN=683a61d6-22c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:84:99:c6:38:6d:e9:85:e0:ee:7c:59:48: df:f6:23:4f:d1:21:73:34:19:47:b7:af:56:57:d3: fe:dc:82:a3:0c:79:9b:8b:7e:37:66:0a:69:87:bb: 44:54:be:30:3e:5c:fc:f5:c9:d6:28:09:2a:53:fb: 30:79:02:5b:14:91:1a:4b:fe:95:e8:4a:9e:c9:30: 80:10:7a:de:85:14:39:61:a3:a3:49:80:a0:6a:81: e4:14:08:36:a4:5f:27:09:79:fc:e9:db:7e:bc:4f: 54:a6:9a:d4:60:99:13:b9:c2:b4:b0:7f:22:e5:c9: 98:ea:58:da:7c:d7:dc:e4:18:92:df:8f:d9:d4:64: da:22:0f:3f:d8:01:43:42:0e:1c:3f:3a:29:e6:03: 54:3e:f6:95:1e:01:28:41:c5:b1:7c:fe:28:fc:bb: 68:61:0f:bd:89:ed:af:fd:34:ef:d1:6c:d1:46:01: 9b:4f:ed:55:a3:44:e4:df:88:9a:10:e5:37:4e:58: 94:54:33:a7:93:6f:90:b8:27:a2:e0:10:4d:90:13: 5a:03:71:a0:7e:ba:4e:12:ce:3b:5b:80:fe:e3:18: cb:a8:6d:5e:d3:48:6f:89:aa:9f:d6:57:71:bc:2d: 93:4b:32:50:3c:82:c5:71:4f:fc:70:6e:c7:d2:d8: 16:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:00:FA:E6:05:0B:FC:52:C7:9E:47:2A:47:C8:3F:94:7A:95:75:F9 X509v3 Authority Key Identifier: keyid:9F:0A:AF:2E:0A:FA:3E:6F:8D:AE:5A:46:A7:E5:8C:CF:FA:34:C1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197501/99B58BB013DB11ED9304C582C4F9AE02/nwqvLgr6Pm-NrlpGp-WMz_o0wSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:58:1a:32:5d:44:2e:97:c9:b5:75:52:e0:2c:03:39:0c:8f: 61:4f:6d:e5:df:b6:f1:70:07:8a:ed:ea:79:ce:f1:3d:50:20: db:83:3f:7b:51:38:48:65:b1:93:db:2a:9a:e1:f5:cd:46:22: 49:7c:ab:1e:b6:50:3e:4e:35:08:04:ed:a8:4a:1c:08:ed:44: d6:70:c1:e8:e7:20:8a:cc:dd:80:4f:17:e1:24:a6:21:1b:69: 4d:27:b7:63:ac:a0:89:c0:6d:ad:03:be:c4:16:5a:dd:d0:bb: f4:ce:0c:9c:cc:ff:39:d5:90:6e:9e:ed:e3:68:73:51:ec:ac: 00:12:d1:b5:bb:9a:63:2a:94:16:d2:b8:6b:36:79:57:fc:40: a0:59:35:04:41:22:25:1b:7a:ed:69:81:f2:40:91:4f:75:78: 75:b9:61:f9:d8:57:72:46:62:00:84:de:49:29:ed:82:23:fd: b7:8a:b1:11:fe:28:40:66:e6:f1:6a:a8:9b:0a:ad:11:f7:7a: 0b:29:79:d6:b4:da:d1:8c:79:a0:58:fb:f2:63:9e:68:d9:2c: a2:f8:52:50:d5:02:36:1b:ea:ad:41:ae:9b:c2:f0:19:93:a1: 8a:14:d8:59:d1:a2:92:38:11:aa:82:0a:88:2d:4d:0a:69:b5: ac:bd:90:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1MDExMTAvBgNVBAUTKDlGMEFBRjJFMEFGQTNFNkY4REFFNUE0NkE3RTU4Q0NG RkEzNEMxMjcwHhcNMjUwNTMxMDE1NjM4WhcNMjUwNjA3MDE1NjM4WjAYMRYwFAYD VQQDEw02ODNhNjFkNi0yMmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqOEmcY4bemF4O58WUjf9iNP0SFzNBlHt69WV9P+3IKjDHmbi343Zgpph7tE VL4wPlz89cnWKAkqU/sweQJbFJEaS/6V6EqeyTCAEHrehRQ5YaOjSYCgaoHkFAg2 pF8nCXn86dt+vE9UpprUYJkTucK0sH8i5cmY6ljafNfc5BiS34/Z1GTaIg8/2AFD Qg4cPzop5gNUPvaVHgEoQcWxfP4o/LtoYQ+9ie2v/TTv0WzRRgGbT+1Vo0Tk34ia EOU3TliUVDOnk2+QuCei4BBNkBNaA3GgfrpOEs47W4D+4xjLqG1e00hviaqf1ldx vC2TSzJQPILFcU/8cG7H0tgWqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAA+uYF C/xSx55HKkfIP5R6lXX5MB8GA1UdIwQYMBaAFJ8Kry4K+j5vja5aRqfljM/6NMEn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzUwMS85OUI1OEJCMDEz REIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBtLU5ybHBHcC1XTXpfbzB3 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253cXZMZ3I2UG0tTnJscEdwLVdNel9vMHdTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzUwMS85OUI1OEJCMDEzREIxMUVEOTMwNEM1ODJDNEY5QUUwMi9ud3F2TGdyNlBt LU5ybHBHcC1XTXpfbzB3U2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXWBoyXUQul8m1dVLgLAM5DI9hT23l37bxcAeK7ep5zvE9UCDbgz97 UThIZbGT2yqa4fXNRiJJfKsetlA+TjUIBO2oShwI7UTWcMHo5yCKzN2ATxfhJKYh G2lNJ7djrKCJwG2tA77EFlrd0Lv0zgyczP851ZBunu3jaHNR7KwAEtG1u5pjKpQW 0rhrNnlX/ECgWTUEQSIlG3rtaYHyQJFPdXh1uWH52FdyRmIAhN5JKe2CI/23irER /ihAZubxaqibCq0R93oLKXnWtNrRjHmgWPvyY55o2Syi+FJQ1QI2G+qtQa6bwvAZ k6GKFNhZ0aKSOBGqggqILU0KabWsvZCL -----END CERTIFICATE-----Generated at Sat May 31 17:33:00 2025 by rpki-client