$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json) Hash identifier: zZoigWvtqkB6wQ1IfygNOYzxJ0zoCB2QXmWqYpkzbuM= Subject key identifier: 2F:66:53:77:B2:E1:7D:2E:4A:26:AF:A1:02:D8:54:89:BE:D3:70:FB Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft Manifest number: 7A Signing time: Wed 09 Apr 2025 05:47:11 +0000 Manifest this update: Wed 09 Apr 2025 05:47:10 +0000 Manifest next update: Wed 16 Apr 2025 05:47:10 +0000 Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: XiWrUve7YjrCbyENhqke6+Y6mVPk3497StXjp1+vPcE=) 2: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: NENKWBR9x0FYQGSayxsc772B6xcKqdDax7O0tt16MtA=) 3: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: HhvN0QQ/t1aifshxGL31iNmJ/1oYowbGlAhBK1OxOCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 05:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A Validity Not Before: Apr 9 05:47:10 2025 GMT Not After : Apr 16 05:47:10 2025 GMT Subject: CN=67f609de-e948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:62:54:5b:26:7f:ea:a3:06:c8:21:08:7e:ea: 6c:cf:1f:bb:41:53:0d:57:d1:8a:4d:c9:c6:88:9c: 90:0b:fc:80:63:71:d5:d1:68:a6:3c:83:31:a8:d7: d6:d8:1b:27:15:86:2d:f0:b0:62:e2:95:ff:62:42: 88:33:8d:92:25:93:1b:40:a8:cd:d9:fc:d1:ea:1f: 68:48:cf:c4:f1:e1:ab:c1:8a:12:af:55:e2:7b:fa: a1:2a:05:5b:8c:e1:21:20:9a:94:dd:87:ee:0a:e6: eb:c8:86:6a:b9:3c:84:f5:6f:a7:d7:d5:5d:12:11: bc:e4:f5:01:8b:81:52:2e:00:09:5d:e6:4a:6f:bc: 00:ea:9f:df:d9:cf:43:2f:0a:f0:81:dc:09:45:83: d7:4e:38:7a:1d:8a:13:ae:e4:08:39:df:ae:f8:34: e0:fe:77:3e:a7:9c:ed:06:a8:97:45:41:a5:f3:68: 5c:d8:16:35:1d:d7:27:67:43:5c:88:4b:e1:57:de: 3b:63:88:61:d3:94:f4:81:66:59:c2:b8:68:1d:39: 3d:58:b2:aa:32:e5:a5:ad:28:f8:76:39:c6:0f:f1: f2:0e:da:25:c1:bd:7a:f8:66:3a:12:79:66:8c:df: 68:57:4c:9b:3b:b3:27:fc:d1:81:fa:98:12:5e:59: 90:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:66:53:77:B2:E1:7D:2E:4A:26:AF:A1:02:D8:54:89:BE:D3:70:FB X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:95:cc:9f:10:be:23:78:77:a6:3c:8c:a8:4c:41:66:b3:b0: 00:49:96:53:97:dd:17:f9:0e:ee:c1:07:1b:a9:48:fd:a1:be: 29:04:61:28:25:78:15:9b:49:09:42:71:03:64:78:fd:3a:81: 32:75:61:fb:0d:d3:45:1e:35:e1:bd:b7:ce:c8:ec:93:63:df: 74:26:e5:15:67:d4:3b:c5:e0:b4:52:5e:57:87:45:17:d1:25: 9f:1f:20:dd:c5:71:16:87:17:26:8a:3e:a2:70:df:91:7d:62: 4c:47:ff:b5:5b:39:1f:74:60:3a:39:c2:16:4d:db:ff:15:02: 76:dc:6b:d2:b1:6b:e8:5c:26:a3:b1:57:fa:22:0f:8c:ea:bd: 57:f6:07:6e:af:0e:16:88:96:3d:35:1c:12:4a:88:9f:9d:68: 34:8d:29:bd:42:19:6f:b8:87:74:8b:2a:12:c5:bf:ae:2d:82: 6b:5c:91:65:f1:79:4f:c0:97:85:7c:09:da:94:3f:86:37:a9: f0:50:61:39:63:2a:29:6a:66:11:39:f0:c4:8c:2d:3a:64:2d: 29:e8:b7:3a:92:6c:49:a5:d0:5d:77:93:3b:27:c4:ea:a5:dc: bf:a6:00:8c:2a:ed:1e:f3:bb:9c:63:68:b6:4d:4c:68:07:19: fa:51:09:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjUwNDA5MDU0NzEwWhcNMjUwNDE2MDU0NzEwWjAYMRYwFAYD VQQDEw02N2Y2MDlkZS1lOTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmJUWyZ/6qMGyCEIfupszx+7QVMNV9GKTcnGiJyQC/yAY3HV0WimPIMxqNfW 2BsnFYYt8LBi4pX/YkKIM42SJZMbQKjN2fzR6h9oSM/E8eGrwYoSr1Xie/qhKgVb jOEhIJqU3YfuCubryIZquTyE9W+n19VdEhG85PUBi4FSLgAJXeZKb7wA6p/f2c9D LwrwgdwJRYPXTjh6HYoTruQIOd+u+DTg/nc+p5ztBqiXRUGl82hc2BY1HdcnZ0Nc iEvhV947Y4hh05T0gWZZwrhoHTk9WLKqMuWlrSj4djnGD/HyDtolwb16+GY6Enlm jN9oV0ybO7Mn/NGB+pgSXlmQ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9mU3ey 4X0uSiavoQLYVIm+03D7MB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk4QS81MjJDQjczNDdBRTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNR NHNvZmNlbXk1VFhEa0Z5MlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAllcyfEL4jeHemPIyoTEFms7AASZZTl90X+Q7uwQcbqUj9ob4pBGEo JXgVm0kJQnEDZHj9OoEydWH7DdNFHjXhvbfOyOyTY990JuUVZ9Q7xeC0Ul5Xh0UX 0SWfHyDdxXEWhxcmij6icN+RfWJMR/+1WzkfdGA6OcIWTdv/FQJ23GvSsWvoXCaj sVf6Ig+M6r1X9gdurw4WiJY9NRwSSoifnWg0jSm9QhlvuId0iyoSxb+uLYJrXJFl 8XlPwJeFfAnalD+GN6nwUGE5YyopamYROfDEjC06ZC0p6Lc6kmxJpdBdd5M7J8Tq pdy/pgCMKu0e87ucY2i2TUxoBxn6UQne -----END CERTIFICATE-----Generated at Fri Apr 11 07:01:42 2025 by rpki-client