$ rpki-client -vvf rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft File: nAcegU2AsQ4sofcemy5TXDkFy2U.mft (raw, json) Hash identifier: mrChnK2QuqOz4frPzEA/5c/sW/us/nAV+UACD9H57zA= Subject key identifier: D5:C2:F8:70:93:14:14:9B:B9:1F:3B:3D:FB:73:F1:FD:FF:91:49:E6 Authority key identifier: 9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 Certificate issuer: /CN=A91A998A/serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft Manifest number: 93 Signing time: Sat 31 May 2025 06:12:19 +0000 Manifest this update: Sat 31 May 2025 06:12:18 +0000 Manifest next update: Sat 07 Jun 2025 06:12:18 +0000 Files and hashes: 1: nAcegU2AsQ4sofcemy5TXDkFy2U.crl (hash: rRzyw2zeiPxzBuSv6Yt2MnCDOFzc6uFIwsNomXaE2tY=) 2: B6DE83747AE811EF94E01B38C4F9AE02.roa (hash: NENKWBR9x0FYQGSayxsc772B6xcKqdDax7O0tt16MtA=) 3: F60E5BC87C8711EFB9EB5F5FC4F9AE02.roa (hash: HhvN0QQ/t1aifshxGL31iNmJ/1oYowbGlAhBK1OxOCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:12:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A998A, serialNumber=9C071E814D80B10E2CA1F71E9B2E535C3905CB65 Validity Not Before: May 31 06:12:18 2025 GMT Not After : Jun 7 06:12:18 2025 GMT Subject: CN=683a9dc3-10ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c0:1e:d1:bf:00:8b:a3:e3:46:ad:46:95:3d: c5:12:56:19:c9:e7:33:a3:ea:b1:ff:7c:4b:2f:c4: 89:f4:ab:70:e3:33:0c:c1:a9:9d:ee:79:75:d4:a0: c4:02:9a:a4:ad:22:e8:15:4a:3a:d9:53:5e:ce:c2: b5:e8:c5:87:7b:71:c3:3b:57:1d:5b:de:e2:36:2f: e7:d7:d5:f0:09:ad:25:38:4a:eb:fb:81:a4:1f:74: b1:c8:60:6b:e9:a1:b8:a4:f3:18:ba:ab:8d:24:80: 0c:41:40:40:96:b9:56:7c:84:0a:e6:dc:28:8e:5e: 72:c4:7c:c2:2e:2a:9e:0c:81:7f:9f:b9:bc:02:a1: 4c:a2:96:38:51:b1:ad:a7:3c:55:85:61:27:13:f8: f3:a8:ce:4e:6d:60:39:92:54:48:4c:10:43:98:7a: 59:af:e2:e6:5e:4c:f3:62:4d:11:a9:8f:17:94:c8: ec:0d:05:e6:f0:03:7c:79:75:0c:6a:db:d8:5e:23: 0b:0c:9e:73:17:3b:d6:1d:6d:70:40:82:5b:72:bb: 2b:5e:ba:f8:df:41:72:d6:bd:14:2e:19:a2:8f:3f: 11:36:b9:e9:f6:84:68:17:fb:14:a4:a5:88:05:7b: df:01:9e:d4:fa:07:90:54:03:b3:34:74:09:c8:10: b0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C2:F8:70:93:14:14:9B:B9:1F:3B:3D:FB:73:F1:FD:FF:91:49:E6 X509v3 Authority Key Identifier: keyid:9C:07:1E:81:4D:80:B1:0E:2C:A1:F7:1E:9B:2E:53:5C:39:05:CB:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nAcegU2AsQ4sofcemy5TXDkFy2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A998A/522CB7347AE811EF9A4A4737C4F9AE02/nAcegU2AsQ4sofcemy5TXDkFy2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:60:6b:ea:c9:52:27:c0:18:cd:d6:5a:14:df:4d:f2:2b:9b: 07:e7:1d:11:fb:50:4e:fa:63:af:0b:fb:34:f3:af:18:15:eb: 01:9a:56:49:19:e2:27:e4:3b:51:c7:f2:8d:2c:e0:c8:72:0c: b3:1a:5a:5e:d1:5b:9c:8b:b7:ab:c9:1b:02:ce:79:4b:15:96: b4:dc:93:29:3f:8a:0a:4f:46:04:dc:b4:a7:72:f1:cb:09:f2: 81:2d:c3:6a:bb:c0:6e:e5:aa:b8:2a:d9:0d:3c:4a:2c:0d:9b: 01:1a:29:98:6c:6b:72:9a:df:15:05:13:1d:c6:64:fe:bf:15: ed:5c:db:e9:34:2e:18:4c:ef:de:f7:ae:a2:cc:43:d9:61:3d: 45:d4:9f:e9:5b:12:48:aa:0c:2b:80:e6:c0:3c:7d:32:7f:3a: b4:81:62:b9:26:a6:c9:05:41:e1:d4:1f:ed:2c:bf:dc:88:a0: 33:43:ab:ca:05:52:99:da:c7:97:60:68:1b:b3:4b:d3:cc:d3: 3e:4c:1d:55:b8:0b:63:9f:1e:01:1e:56:85:03:c1:65:8c:68: 57:c1:65:d3:6d:1c:d7:c9:18:06:80:bb:67:50:e8:ec:39:d3: 42:09:b6:44:07:e3:51:4d:14:c6:57:f4:c7:a5:12:29:f7:c1: 8f:2b:b0:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk5OEExMTAvBgNVBAUTKDlDMDcxRTgxNEQ4MEIxMEUyQ0ExRjcxRTlCMkU1MzVD MzkwNUNCNjUwHhcNMjUwNTMxMDYxMjE4WhcNMjUwNjA3MDYxMjE4WjAYMRYwFAYD VQQDEw02ODNhOWRjMy0xMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68Ae0b8Ai6PjRq1GlT3FElYZyeczo+qx/3xLL8SJ9Ktw4zMMwamd7nl11KDE ApqkrSLoFUo62VNezsK16MWHe3HDO1cdW97iNi/n19XwCa0lOErr+4GkH3SxyGBr 6aG4pPMYuquNJIAMQUBAlrlWfIQK5twojl5yxHzCLiqeDIF/n7m8AqFMopY4UbGt pzxVhWEnE/jzqM5ObWA5klRITBBDmHpZr+LmXkzzYk0RqY8XlMjsDQXm8AN8eXUM atvYXiMLDJ5zFzvWHW1wQIJbcrsrXrr430Fy1r0ULhmijz8RNrnp9oRoF/sUpKWI BXvfAZ7U+geQVAOzNHQJyBCwCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXC+HCT FBSbuR87Pftz8f3/kUnmMB8GA1UdIwQYMBaAFJwHHoFNgLEOLKH3HpsuU1w5Bctl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTk4QS81MjJDQjczNDdB RTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNRNHNvZmNlbXk1VFhEa0Z5 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BY2VnVTJBc1E0c29mY2VteTVUWERrRnkyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTk4QS81MjJDQjczNDdBRTgxMUVGOUE0QTQ3MzdDNEY5QUUwMi9uQWNlZ1UyQXNR NHNvZmNlbXk1VFhEa0Z5MlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZYGvqyVInwBjN1loU303yK5sH5x0R+1BO+mOvC/s0868YFesBmlZJ GeIn5DtRx/KNLODIcgyzGlpe0Vuci7eryRsCznlLFZa03JMpP4oKT0YE3LSncvHL CfKBLcNqu8Bu5aq4KtkNPEosDZsBGimYbGtymt8VBRMdxmT+vxXtXNvpNC4YTO/e 966izEPZYT1F1J/pWxJIqgwrgObAPH0yfzq0gWK5JqbJBUHh1B/tLL/ciKAzQ6vK BVKZ2seXYGgbs0vTzNM+TB1VuAtjnx4BHlaFA8FljGhXwWXTbRzXyRgGgLtnUOjs OdNCCbZEB+NRTRTGV/THpRIp98GPK7BG -----END CERTIFICATE-----Generated at Sat May 31 17:01:18 2025 by rpki-client