$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: lER/LRD5g004oCtDhFyxD8g6DrkG4kpXqylYVPOtNvM= Subject key identifier: CF:B3:2A:FB:B7:C0:6D:B6:CC:12:1F:5C:81:6C:99:DC:18:2C:D3:C4 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 070C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 06E8 Signing time: Fri 30 May 2025 22:16:58 +0000 Manifest this update: Fri 30 May 2025 22:16:57 +0000 Manifest next update: Fri 06 Jun 2025 22:16:57 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: JpPnLcIxqnAJzi/INU+p/8LnDabsoB2HgWtdo7FfB6Q=) 2: 96FC6944591111EEBFB2384AC4F9AE02.roa (hash: ax+xM3Q8UL+b4tURGtbo2gp+tcgS0j+5JXjNoSNoJus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:16:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1804 (0x70c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: May 30 22:16:57 2025 GMT Not After : Jun 6 22:16:57 2025 GMT Subject: CN=683a2e5a-c764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:92:7f:54:29:44:8b:5f:c5:96:6c:2e:60:c6: 23:ff:b8:46:91:0f:5d:5c:a0:d1:a7:d4:61:cb:8f: 52:3d:57:cd:ff:db:df:e6:c6:4f:5c:bf:86:a6:00: d4:87:d1:21:27:87:a2:9e:0f:97:a8:4b:23:e9:5a: 91:98:00:03:97:35:18:21:90:72:94:f1:5c:8d:7c: c0:58:d9:4b:1e:cc:73:6b:9a:76:a2:17:99:f8:c2: 03:0a:d9:ad:d5:69:73:b4:26:e0:94:d7:d7:42:6f: 24:e6:6e:89:dc:e0:e6:d5:19:42:9d:5f:9b:07:e8: cf:10:56:e8:c4:13:ad:71:d5:73:96:40:8d:e3:6a: 5b:cb:d3:d0:9f:f8:30:75:d6:cd:17:25:64:96:fa: 03:ed:c6:8a:09:2a:72:ef:9b:01:6d:1e:72:17:ed: 76:76:56:47:6a:7c:cc:c0:a4:02:a6:28:80:f9:e4: 5c:b4:f8:63:9b:a3:dc:f2:91:89:19:43:d7:89:a3: ff:17:71:6f:f0:10:f2:20:76:a2:87:cc:f7:4e:6c: 67:f4:46:d2:93:d9:31:84:61:18:fb:03:c5:77:c5: be:69:fa:9b:fe:ad:e4:ec:e7:4a:83:52:ca:ac:d7: 7d:64:f8:4a:c7:0a:b8:72:23:2c:9c:03:0d:91:9a: 07:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B3:2A:FB:B7:C0:6D:B6:CC:12:1F:5C:81:6C:99:DC:18:2C:D3:C4 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:f0:8b:13:5a:04:a8:0c:e7:6d:2d:27:e4:d9:57:e7:78:11: 39:b1:da:89:00:b1:53:d1:c4:e5:5b:c5:a4:b7:b9:f5:5a:a8: 38:a2:7b:b6:87:b3:58:8d:bc:e1:33:76:24:34:b9:ab:50:e9: 4e:80:44:f6:43:66:a4:a0:9b:ac:d2:c1:c0:06:5b:ac:da:79: 9f:91:79:8d:47:db:8d:1c:c2:24:d3:09:a9:92:80:cb:17:a3: ad:92:ba:1f:cd:76:9a:f8:98:65:e8:6e:ed:6d:ae:8f:41:96: 73:83:31:70:c2:8e:4d:c2:ed:76:fa:73:82:2a:a6:fb:ad:fd: 34:51:9c:d7:58:6b:09:81:af:a4:ac:66:a5:49:f4:33:7c:82: ac:b5:ec:41:66:7c:27:b6:4f:80:cb:49:77:95:37:e7:1b:d1: d7:7b:aa:08:8f:12:0c:6f:1b:32:8f:3d:5e:46:3c:2f:e4:c8: 5c:17:1b:3d:9c:f8:cd:71:2c:81:02:65:73:d9:ed:c8:f7:03: 31:b1:3f:68:e3:87:de:42:2e:fa:d4:94:e0:39:e8:32:fb:42: ec:35:35:aa:47:90:5b:91:a8:4e:be:b5:b1:40:3f:fb:21:5f: cb:d5:d0:c1:c2:20:d6:56:9d:73:14:cd:9d:5e:90:44:dc:2b: 5b:2d:16:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwNTMwMjIxNjU3WhcNMjUwNjA2MjIxNjU3WjAYMRYwFAYD VQQDEw02ODNhMmU1YS1jNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5J/VClEi1/FlmwuYMYj/7hGkQ9dXKDRp9Rhy49SPVfN/9vf5sZPXL+GpgDU h9EhJ4eing+XqEsj6VqRmAADlzUYIZBylPFcjXzAWNlLHsxza5p2oheZ+MIDCtmt 1WlztCbglNfXQm8k5m6J3ODm1RlCnV+bB+jPEFboxBOtcdVzlkCN42pby9PQn/gw ddbNFyVklvoD7caKCSpy75sBbR5yF+12dlZHanzMwKQCpiiA+eRctPhjm6Pc8pGJ GUPXiaP/F3Fv8BDyIHaih8z3Tmxn9EbSk9kxhGEY+wPFd8W+afqb/q3k7OdKg1LK rNd9ZPhKxwq4ciMsnAMNkZoHfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+zKvu3 wG22zBIfXIFsmdwYLNPEMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ8IsTWgSoDOdtLSfk2VfneBE5sdqJALFT0cTlW8Wkt7n1Wqg4onu2 h7NYjbzhM3YkNLmrUOlOgET2Q2akoJus0sHABlus2nmfkXmNR9uNHMIk0wmpkoDL F6OtkrofzXaa+Jhl6G7tba6PQZZzgzFwwo5Nwu12+nOCKqb7rf00UZzXWGsJga+k rGalSfQzfIKstexBZnwntk+Ay0l3lTfnG9HXe6oIjxIMbxsyjz1eRjwv5MhcFxs9 nPjNcSyBAmVz2e3I9wMxsT9o44feQi761JTgOegy+0LsNTWqR5BbkahOvrWxQD/7 IV/L1dDBwiDWVp1zFM2dXpBE3CtbLRZv -----END CERTIFICATE-----Generated at Sat May 31 17:11:20 2025 by rpki-client