$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft File: NZYOHhaeA_Rvr5H04_8TUUamMTo.mft (raw, json) Hash identifier: /FKspjJjVJEtx9BaoO+YsS0j11x7o/q7z0vtnJIQuCs= Subject key identifier: DF:1B:A7:B4:90:58:DA:97:49:A4:EA:D6:1C:AE:B4:1F:CC:C7:05:C4 Authority key identifier: 35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A Certificate issuer: /CN=A91BBBA5/serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Certificate serial: 1377 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft Manifest number: 1370 Signing time: Fri 30 May 2025 17:09:54 +0000 Manifest this update: Fri 30 May 2025 17:09:53 +0000 Manifest next update: Fri 06 Jun 2025 17:09:53 +0000 Files and hashes: 1: NZYOHhaeA_Rvr5H04_8TUUamMTo.crl (hash: 4He7rwTT6lnZzu+HKUoRHVTqNKerIF1CmyrQ1llqH0I=) 2: 21333DA69B2E11E8908CC50FC4F9AE02.roa (hash: +1SNSIFs+P7lOAKW1zIJPA5+xtDNMIC4L/Fb0Zo2lHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4983 (0x1377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBBA5, serialNumber=35960E1E169E03F46FAF91F4E3FF135146A6313A Validity Not Before: May 30 17:09:53 2025 GMT Not After : Jun 6 17:09:53 2025 GMT Subject: CN=6839e661-0de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:24:87:86:c9:53:c1:68:7e:73:71:a3:25:cd: 6d:f9:9b:97:fc:26:5c:52:d2:9a:4e:24:d9:be:5c: 18:0b:cd:1f:f4:02:38:8d:10:4a:81:39:56:86:a2: 35:cd:30:75:dd:2e:52:89:67:61:46:e6:8c:26:65: d2:db:42:4b:02:89:38:ba:1f:05:4c:ee:59:81:7c: a9:35:f1:14:54:b7:53:57:da:47:ed:9d:86:16:06: 3a:bd:21:81:76:f7:95:26:a3:5f:77:32:ca:b4:25: fe:d6:73:e4:74:ca:89:f1:69:f2:bd:16:8d:2c:ef: 77:6d:51:ba:18:8d:7b:eb:3e:b2:7b:ac:67:12:f2: 57:d0:7e:87:90:49:fa:9f:77:ff:2c:cf:80:fe:3f: ef:8b:a1:77:9c:7f:46:08:a3:70:46:9e:7e:f8:60: 1d:50:be:0d:68:90:5c:4c:09:c6:35:ed:fc:9c:8e: 14:b5:6c:6e:fd:50:17:eb:95:12:de:50:0b:04:36: 0b:0e:7c:16:21:77:5d:29:9e:16:21:fc:6b:24:82: 47:1a:21:0e:f6:67:d9:8d:fb:b8:f6:eb:71:cc:a5: f3:e5:a3:3f:9d:17:85:32:f3:8e:07:1b:d0:52:3a: af:1b:ed:85:c0:36:71:46:74:3c:df:c6:fa:7c:e9: 26:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1B:A7:B4:90:58:DA:97:49:A4:EA:D6:1C:AE:B4:1F:CC:C7:05:C4 X509v3 Authority Key Identifier: keyid:35:96:0E:1E:16:9E:03:F4:6F:AF:91:F4:E3:FF:13:51:46:A6:31:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NZYOHhaeA_Rvr5H04_8TUUamMTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBBA5/E6484ACE9B2D11E8B465D80FC4F9AE02/NZYOHhaeA_Rvr5H04_8TUUamMTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:3a:20:b2:0b:d0:bc:09:f5:f9:fb:a4:07:7f:b8:9a:ea:90: 00:ae:86:1c:05:d6:f4:81:20:3c:20:e6:dd:16:17:cd:5f:f5: 19:c0:0f:4c:bb:8b:98:17:51:d0:d5:e9:c9:1e:3c:ee:a9:c2: 80:3b:6a:b2:21:2c:fc:95:fa:09:1a:ba:21:ec:ba:5c:95:3f: ac:2f:00:83:15:43:fe:7d:da:0d:19:ab:f3:13:51:99:e9:30: 16:a0:af:95:f8:0b:3b:13:59:b5:ce:e3:d4:86:1c:33:91:a5: a4:d2:56:26:9f:3e:e2:60:2d:15:30:ad:39:86:8a:a7:ae:ed: db:29:a8:d7:6f:3e:86:5e:d2:0a:67:f5:1a:b7:eb:86:86:09: d6:66:6e:db:af:ed:e1:65:0b:b1:80:2e:d9:be:d0:dc:3a:ae: cd:68:b9:2b:84:1d:31:13:33:90:7d:16:14:df:2a:ed:82:f1: fc:9b:ce:8e:15:78:41:cb:f5:99:ad:54:52:e9:b0:8e:d0:02: c6:f3:55:49:d7:67:f5:69:10:ed:00:6a:eb:1a:f7:ff:15:af: 52:6a:bc:91:71:0a:79:7e:8c:2f:13:1f:7b:7b:e9:78:a4:e8: 94:28:4c:c3:34:1c:36:44:37:fd:99:8d:79:d0:42:0d:6c:03: 10:57:ea:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJCQTUxMTAvBgNVBAUTKDM1OTYwRTFFMTY5RTAzRjQ2RkFGOTFGNEUzRkYxMzUx NDZBNjMxM0EwHhcNMjUwNTMwMTcwOTUzWhcNMjUwNjA2MTcwOTUzWjAYMRYwFAYD VQQDEw02ODM5ZTY2MS0wZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiSHhslTwWh+c3GjJc1t+ZuX/CZcUtKaTiTZvlwYC80f9AI4jRBKgTlWhqI1 zTB13S5SiWdhRuaMJmXS20JLAok4uh8FTO5ZgXypNfEUVLdTV9pH7Z2GFgY6vSGB dveVJqNfdzLKtCX+1nPkdMqJ8WnyvRaNLO93bVG6GI176z6ye6xnEvJX0H6HkEn6 n3f/LM+A/j/vi6F3nH9GCKNwRp5++GAdUL4NaJBcTAnGNe38nI4UtWxu/VAX65US 3lALBDYLDnwWIXddKZ4WIfxrJIJHGiEO9mfZjfu49utxzKXz5aM/nReFMvOOBxvQ UjqvG+2FwDZxRnQ838b6fOkmXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8bp7SQ WNqXSaTq1hyutB/MxwXEMB8GA1UdIwQYMBaAFDWWDh4WngP0b6+R9OP/E1FGpjE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkJBNS9FNjQ4NEFDRTlC MkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFfUnZyNUgwNF84VFVVYW1N VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05aWU9IaGFlQV9SdnI1SDA0XzhUVVVhbU1Uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkJBNS9FNjQ4NEFDRTlCMkQxMUU4QjQ2NUQ4MEZDNEY5QUUwMi9OWllPSGhhZUFf UnZyNUgwNF84VFVVYW1NVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOiCyC9C8CfX5+6QHf7ia6pAAroYcBdb0gSA8IObdFhfNX/UZwA9M u4uYF1HQ1enJHjzuqcKAO2qyISz8lfoJGroh7LpclT+sLwCDFUP+fdoNGavzE1GZ 6TAWoK+V+As7E1m1zuPUhhwzkaWk0lYmnz7iYC0VMK05hoqnru3bKajXbz6GXtIK Z/Uat+uGhgnWZm7br+3hZQuxgC7ZvtDcOq7NaLkrhB0xEzOQfRYU3yrtgvH8m86O FXhBy/WZrVRS6bCO0ALG81VJ12f1aRDtAGrrGvf/Fa9SaryRcQp5fowvEx97e+l4 pOiUKEzDNBw2RDf9mY150EINbAMQV+oG -----END CERTIFICATE-----Generated at Sat May 31 16:43:53 2025 by rpki-client