$ rpki-client -vvf rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft File: nWBHd6Cse-aqCBCwJetJPqbdNGM.mft (raw, json) Hash identifier: cUcbZ16f1xZ06hQNVXwM3GDUhJLOhnruVyjVHNDtOXc= Subject key identifier: D8:09:E7:B1:1C:4D:39:1D:77:33:14:97:4C:38:86:24:B7:AB:38:9E Authority key identifier: 9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 Certificate issuer: /CN=A9198FD0/serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft Manifest number: 048C Signing time: Sat 31 May 2025 00:13:56 +0000 Manifest this update: Sat 31 May 2025 00:13:55 +0000 Manifest next update: Sat 07 Jun 2025 00:13:55 +0000 Files and hashes: 1: nWBHd6Cse-aqCBCwJetJPqbdNGM.crl (hash: 9xte9iVeY7+tJXqhBRgD3SslFeqNPlC/ruIH3cU9Ou8=) 2: 8327C2403DE011ECAB508171C4F9AE02.roa (hash: Sa14PRGt0bBOrLuIs7j8Gc0qLkwHSO6EtTYwSlnujqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198FD0, serialNumber=9D604777A0AC7BE6AA0810B025EB493EA6DD3463 Validity Not Before: May 31 00:13:55 2025 GMT Not After : Jun 7 00:13:55 2025 GMT Subject: CN=683a49c4-f07b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:f0:37:a0:cc:ef:9e:9a:f3:6f:8c:63:af: 68:64:ee:38:0f:0b:a9:71:88:09:58:8a:47:0e:3f: ef:8f:9d:f8:1f:73:45:29:12:6c:2c:f1:7f:d8:0e: 1a:80:1b:1d:03:8e:df:70:99:7c:8e:58:cb:6d:61: 55:0a:e1:bf:6f:08:87:f2:d3:61:de:84:5b:58:ed: dd:5d:9e:a7:56:a7:14:59:b3:d0:e9:0c:35:fc:1b: 74:9b:95:37:00:c9:de:1e:35:c8:5a:3b:0e:4e:9a: ab:95:d7:9c:fc:b0:7b:bf:44:0f:e6:a5:fd:81:8c: f5:00:3d:f0:7d:e2:d6:f2:91:07:67:6b:c8:f3:0d: 78:81:e6:e9:38:80:51:8e:cc:b4:6b:c9:16:ce:20: 05:aa:24:45:53:15:12:4c:d5:9b:2a:a0:79:e7:30: 45:a8:7e:67:ff:ce:62:82:e3:0a:54:ae:94:35:14: 5e:56:9d:0b:47:91:02:20:f3:d0:24:d7:f6:f1:47: b3:ee:74:dd:6d:60:5f:df:b1:5c:fa:61:6b:34:17: 95:0d:16:02:b2:74:86:d1:05:40:88:f3:8e:61:28: 89:7f:ec:2a:09:29:88:fb:11:ac:8c:cc:c0:71:3d: c0:b5:ba:25:fc:dd:d8:7c:75:23:4e:89:77:1a:5f: 2b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:09:E7:B1:1C:4D:39:1D:77:33:14:97:4C:38:86:24:B7:AB:38:9E X509v3 Authority Key Identifier: keyid:9D:60:47:77:A0:AC:7B:E6:AA:08:10:B0:25:EB:49:3E:A6:DD:34:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nWBHd6Cse-aqCBCwJetJPqbdNGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198FD0/20B4BD803DD511ECB7266464C4F9AE02/nWBHd6Cse-aqCBCwJetJPqbdNGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:7f:5e:c4:c4:ef:5b:93:ee:e7:e4:75:a1:65:11:22:a0:60: bc:64:e6:ba:1e:0f:34:06:a0:fa:af:c2:22:64:ee:da:aa:65: b8:3a:d0:6b:10:e6:d9:0b:a0:23:70:51:24:95:c5:2c:9c:e6: 7c:fc:4c:96:7f:0e:94:ef:0d:72:28:e6:30:26:46:a9:a2:7d: a0:0d:5c:26:ea:30:d2:1a:f7:7f:7c:6b:ce:d5:dc:2f:26:5a: a8:c6:eb:88:12:d5:48:59:73:1d:95:8f:a7:e9:57:08:e7:c9: 8b:53:2a:ee:2f:0e:4c:23:8f:f3:df:16:b2:61:7e:1c:19:43: 1e:6b:69:52:26:b5:3b:77:47:06:70:e7:13:b0:a6:0d:60:27: 35:49:e9:45:15:b9:1b:48:f5:ee:6d:38:b5:c7:47:0e:58:c8: 43:97:e0:d0:c6:49:82:53:9f:11:16:36:d3:86:a2:55:16:71: 7f:5c:b8:73:aa:ee:2e:d0:69:00:f8:46:36:49:f3:aa:d7:da: ff:df:8c:f9:48:44:dd:e0:27:d0:ac:08:1c:0a:50:7e:b6:fb: 52:ab:c2:6f:c1:50:e8:d0:d5:aa:81:e0:cb:17:05:08:4d:32: 04:7b:1f:31:c3:72:5d:2f:cb:2e:db:30:17:ee:3f:2e:f3:97: e1:b7:df:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGRDAxMTAvBgNVBAUTKDlENjA0Nzc3QTBBQzdCRTZBQTA4MTBCMDI1RUI0OTNF QTZERDM0NjMwHhcNMjUwNTMxMDAxMzU1WhcNMjUwNjA3MDAxMzU1WjAYMRYwFAYD VQQDEw02ODNhNDljNC1mMDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcXwN6DM756a82+MY69oZO44DwupcYgJWIpHDj/vj534H3NFKRJsLPF/2A4a gBsdA47fcJl8jljLbWFVCuG/bwiH8tNh3oRbWO3dXZ6nVqcUWbPQ6Qw1/Bt0m5U3 AMneHjXIWjsOTpqrldec/LB7v0QP5qX9gYz1AD3wfeLW8pEHZ2vI8w14gebpOIBR jsy0a8kWziAFqiRFUxUSTNWbKqB55zBFqH5n/85iguMKVK6UNRReVp0LR5ECIPPQ JNf28Uez7nTdbWBf37Fc+mFrNBeVDRYCsnSG0QVAiPOOYSiJf+wqCSmI+xGsjMzA cT3Atbol/N3YfHUjTol3Gl8rOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgJ57Ec TTkddzMUl0w4hiS3qzieMB8GA1UdIwQYMBaAFJ1gR3egrHvmqggQsCXrST6m3TRj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEZEMC8yMEI0QkQ4MDNE RDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2UtYXFDQkN3SmV0SlBxYmRO R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25XQkhkNkNzZS1hcUNCQ3dKZXRKUHFiZE5HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEZEMC8yMEI0QkQ4MDNERDUxMUVDQjcyNjY0NjRDNEY5QUUwMi9uV0JIZDZDc2Ut YXFDQkN3SmV0SlBxYmROR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAf17ExO9bk+7n5HWhZREioGC8ZOa6Hg80BqD6r8IiZO7aqmW4OtBr EObZC6AjcFEklcUsnOZ8/EyWfw6U7w1yKOYwJkapon2gDVwm6jDSGvd/fGvO1dwv JlqoxuuIEtVIWXMdlY+n6VcI58mLUyruLw5MI4/z3xayYX4cGUMea2lSJrU7d0cG cOcTsKYNYCc1SelFFbkbSPXubTi1x0cOWMhDl+DQxkmCU58RFjbThqJVFnF/XLhz qu4u0GkA+EY2SfOq19r/34z5SETd4CfQrAgcClB+tvtSq8JvwVDo0NWqgeDLFwUI TTIEex8xw3JdL8su2zAX7j8u85fht9+P -----END CERTIFICATE-----Generated at Sat May 31 16:59:26 2025 by rpki-client