$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: FcLDESiJRw8KOpVLrmg4CHbbGUnmKHwgA0O/D59PVUU= Subject key identifier: BF:9F:6A:68:C4:C5:91:5C:18:7C:80:E2:D9:9F:9E:94:20:0F:03:06 Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 19 Signing time: Sat 31 May 2025 07:51:22 +0000 Manifest this update: Sat 31 May 2025 07:51:21 +0000 Manifest next update: Sat 07 Jun 2025 07:51:21 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: OHZYsPlNq2DIu0vxvogo8a5G/woH/23fhfuOn4JItGQ=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: May 31 07:51:21 2025 GMT Not After : Jun 7 07:51:21 2025 GMT Subject: CN=683ab4fa-b82d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:48:77:65:46:50:5e:93:83:86:67:7c:51:e1: ae:95:71:f6:a0:73:6a:c6:c9:b7:26:1d:cb:89:1b: 06:f2:ca:78:82:74:19:31:fd:cb:a5:cc:70:2d:34: 31:7f:26:28:2e:78:3e:02:31:ec:74:fb:bb:95:61: ab:bd:81:b0:7f:69:40:ad:ab:a5:ab:fc:f1:d5:3e: 4f:bb:48:79:15:1d:92:8e:b7:b1:c5:4a:87:78:55: 0c:98:dc:97:30:bd:e6:87:f5:6a:ff:d0:d5:6b:0f: 7f:fc:24:78:8d:01:15:c4:d9:0c:63:1c:48:8e:74: f0:75:1f:a3:19:1c:59:5b:be:94:6d:f6:2a:c7:73: a9:19:04:4c:14:15:be:de:3d:cc:6c:6c:03:05:5c: fa:2d:aa:8f:ed:50:2d:26:03:1c:59:7d:54:30:40: e4:57:0f:ae:5b:e2:b1:37:91:3f:97:e8:a5:59:49: bc:50:b8:bb:af:1b:e6:e3:22:5a:90:40:47:eb:86: cd:cc:fc:2d:02:09:2f:b3:f3:9a:c5:f2:bf:f6:98: 2a:8e:5c:73:29:9e:cb:a0:4c:40:fe:1d:0d:00:8a: 24:ae:36:a7:ae:68:2a:3f:f2:d8:c4:55:08:bd:0e: fd:13:c0:37:d0:72:bf:a3:c2:10:35:e9:c5:6f:ec: d5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9F:6A:68:C4:C5:91:5C:18:7C:80:E2:D9:9F:9E:94:20:0F:03:06 X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b9:38:b5:b6:af:7d:13:12:c4:a6:f5:ec:51:48:4c:2f:ab: aa:a9:28:e0:13:9a:d9:8d:6e:b9:1a:97:59:7f:51:f6:99:47: 3e:39:77:8a:60:99:84:78:f4:e2:47:93:6c:b0:f1:8a:2e:ce: f7:9e:5d:d4:72:a4:8d:84:7a:55:c4:2d:0a:1c:da:0e:2c:0f: 74:70:dd:50:8c:ac:01:a6:80:a0:6f:5d:91:c4:fd:0c:91:44: 05:e0:61:1d:49:9d:12:05:27:db:01:fb:06:cf:b9:9c:4c:d3: 7f:12:cc:24:4d:5b:d6:bd:44:01:0e:63:86:37:53:ab:28:4c: a2:3f:43:3f:20:02:1f:8a:71:e6:b5:24:db:fc:04:82:70:36: 92:3e:b6:df:a8:03:fb:d1:28:6c:aa:ae:a0:c8:f3:67:75:2c: bc:c2:0b:cb:bd:49:1e:bc:df:27:1c:96:88:89:91:38:f9:9e: 0f:c2:dd:0a:df:fa:a3:b1:a5:56:95:cb:b6:de:ac:62:a2:82: db:10:50:5f:84:e3:f9:37:54:41:22:a1:cc:c5:77:d7:89:4b: e6:2e:ae:11:3e:67:a3:7d:4b:6c:10:99:3b:2b:56:a8:f7:33: d6:8f:61:6c:82:ef:aa:4b:3a:b3:c2:33:16:09:11:6b:ab:bd: fe:28:9d:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA1MzEwNzUxMjFaFw0yNTA2MDcwNzUxMjFaMBgxFjAUBgNV BAMTDTY4M2FiNGZhLWI4MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXSHdlRlBek4OGZ3xR4a6Vcfagc2rGybcmHcuJGwbyyniCdBkx/culzHAtNDF/ JigueD4CMex0+7uVYau9gbB/aUCtq6Wr/PHVPk+7SHkVHZKOt7HFSod4VQyY3Jcw veaH9Wr/0NVrD3/8JHiNARXE2QxjHEiOdPB1H6MZHFlbvpRt9irHc6kZBEwUFb7e PcxsbAMFXPotqo/tUC0mAxxZfVQwQORXD65b4rE3kT+X6KVZSbxQuLuvG+bjIlqQ QEfrhs3M/C0CCS+z85rF8r/2mCqOXHMpnsugTED+HQ0AiiSuNqeuaCo/8tjEVQi9 Dv0TwDfQcr+jwhA16cVv7NU3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv59qaMTF kVwYfIDi2Z+elCAPAwYwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHC5OLW2r30TEsSm9exRSEwvq6qpKOATmtmNbrkal1l/UfaZRz45d4pg mYR49OJHk2yw8YouzveeXdRypI2EelXELQoc2g4sD3Rw3VCMrAGmgKBvXZHE/QyR RAXgYR1JnRIFJ9sB+wbPuZxM038SzCRNW9a9RAEOY4Y3U6soTKI/Qz8gAh+Kcea1 JNv8BIJwNpI+tt+oA/vRKGyqrqDI82d1LLzCC8u9SR683yccloiJkTj5ng/C3Qrf +qOxpVaVy7berGKigtsQUF+E4/k3VEEioczFd9eJS+YurhE+Z6N9S2wQmTsrVqj3 M9aPYWyC76pLOrPCMxYJEWurvf4onUE= -----END CERTIFICATE-----Generated at Sat May 31 16:35:54 2025 by rpki-client