$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft File: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft (raw, json) Hash identifier: IfFLUo+/OvVtzAbEyoW/Kv5W1m7+xNKpjpVORTn/WCA= Subject key identifier: 1B:02:74:17:F9:14:59:53:40:A2:02:53:9B:C5:B0:56:D3:16:1C:5C Authority key identifier: F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 Certificate issuer: /CN=A91DC46A/serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Certificate serial: 1E31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft Manifest number: 1DF4 Signing time: Sat 31 May 2025 16:04:51 +0000 Manifest this update: Sat 31 May 2025 16:04:51 +0000 Manifest next update: Sat 07 Jun 2025 16:04:51 +0000 Files and hashes: 1: -NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl (hash: k65ZxmrbNwW8AwnZ9U40NLHyyFjNw15k1QxJE0jwmAE=) 2: 527AA5C69F4F11EAA7970484C4F9AE02.roa (hash: zuUsKZCcjPOj5pM09o9z0mAoFhewcmu+fcIGUoGJ1jw=) 3: BD6571EEC0AC11EF8F832C34C4F9AE02.roa (hash: G/Ubv3z+VEdcNFiGQpNHf2mTf7Lsh6KdDEju5wCmKbw=) 4: C86831A80CB311EDB2750F60C4F9AE02.roa (hash: lSszTQ1c+gMLFVw7Gk7VDvJy/TEZ74hKfBC2kdiByE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7729 (0x1e31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC46A, serialNumber=F8D4A632D069964C61A33E41D6243D535B007D54 Validity Not Before: May 31 16:04:51 2025 GMT Not After : Jun 7 16:04:51 2025 GMT Subject: CN=683b28a3-b5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9f:79:43:e2:96:b7:4f:13:50:38:d9:af:2a: ed:da:d0:7e:b5:17:35:6c:95:f4:7f:96:a1:e0:7d: 7d:6f:8c:14:76:68:6b:01:bb:30:e0:bd:c8:8b:8b: bb:1c:d6:39:27:3f:4e:f1:fb:95:78:85:bd:ad:4e: 8a:9e:1c:b6:73:95:ee:3c:3e:23:f2:ff:11:c1:44: 20:b3:04:d0:4a:30:94:10:e6:78:f8:28:62:3b:5c: ad:85:e1:ce:f1:3e:6e:d7:4b:3d:63:ac:8b:14:f7: e3:8e:0e:c2:22:b5:4e:ed:19:82:92:c1:9f:e3:92: fc:c5:7b:0b:74:26:60:2b:02:12:05:80:84:16:17: 5b:34:8c:8b:5c:f1:4e:a0:85:cc:e5:31:20:e7:96: c5:97:1f:6d:5c:b2:0e:5d:6c:88:ca:61:27:e8:f3: b9:a0:09:29:1f:90:e2:76:7b:8a:b5:c8:c2:1b:4b: b8:ee:06:32:25:8a:30:d4:01:82:a5:92:48:53:3c: ab:cb:2e:e3:1f:7a:9f:e8:8d:4d:aa:b7:15:d4:85: 32:64:b7:61:54:9f:de:ad:41:f3:fe:ae:2a:e2:c6: 0a:66:75:43:15:e8:f4:5f:ed:92:03:16:bd:1f:ba: a4:a7:c7:5c:2e:43:35:28:db:0e:9c:ea:cf:fb:6e: ab:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:02:74:17:F9:14:59:53:40:A2:02:53:9B:C5:B0:56:D3:16:1C:5C X509v3 Authority Key Identifier: keyid:F8:D4:A6:32:D0:69:96:4C:61:A3:3E:41:D6:24:3D:53:5B:00:7D:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC46A/00500164943211E68C1B824AC4F9AE02/-NSmMtBplkxhoz5B1iQ9U1sAfVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:45:66:b5:b5:a1:08:4c:a2:4b:68:95:f4:71:d4:55:d3:4d: 2c:e6:dc:33:de:e6:e9:f3:57:d9:ef:38:84:bb:b6:a9:82:21: 4c:1b:b0:48:2a:13:df:f3:61:61:6f:a2:c8:76:9b:a4:f5:fe: 4b:23:86:b1:3c:c0:00:4f:8f:9d:14:f8:6b:2f:6f:53:a7:85: ca:9f:7e:94:dc:8c:49:a5:8e:ce:84:15:8d:f7:e3:4a:41:4b: c3:b5:fa:8b:9d:66:eb:26:81:a2:b9:ee:9b:bb:d9:66:8a:27: 5c:d9:fd:6e:5a:d0:c6:b9:be:e4:bf:64:63:ea:58:1f:2d:12: cc:66:5b:ca:79:8a:c0:27:aa:93:db:70:bd:87:f4:73:40:a1: a3:2d:48:60:51:8c:e9:79:88:f2:78:18:4b:5f:6d:96:cf:82: d8:e8:7e:d5:bb:0b:0a:e2:f6:c1:42:97:90:de:99:b5:50:4f: d1:ac:4f:95:59:02:c1:73:83:2c:42:34:b6:2a:b0:89:16:e2: c1:59:40:06:eb:e9:cd:e9:a4:5c:37:ca:71:89:19:53:b1:c9: 9c:09:78:72:ee:03:3f:68:98:83:35:c8:e2:cc:11:cd:01:34: f0:ff:f5:15:aa:52:ce:40:d9:66:55:36:94:1b:cf:09:d6:a3: 63:6d:7d:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NkExMTAvBgNVBAUTKEY4RDRBNjMyRDA2OTk2NEM2MUEzM0U0MUQ2MjQzRDUz NUIwMDdENTQwHhcNMjUwNTMxMTYwNDUxWhcNMjUwNjA3MTYwNDUxWjAYMRYwFAYD VQQDEw02ODNiMjhhMy1iNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs595Q+KWt08TUDjZryrt2tB+tRc1bJX0f5ah4H19b4wUdmhrAbsw4L3Ii4u7 HNY5Jz9O8fuVeIW9rU6Knhy2c5XuPD4j8v8RwUQgswTQSjCUEOZ4+ChiO1ytheHO 8T5u10s9Y6yLFPfjjg7CIrVO7RmCksGf45L8xXsLdCZgKwISBYCEFhdbNIyLXPFO oIXM5TEg55bFlx9tXLIOXWyIymEn6PO5oAkpH5DidnuKtcjCG0u47gYyJYow1AGC pZJIUzyryy7jH3qf6I1NqrcV1IUyZLdhVJ/erUHz/q4q4sYKZnVDFej0X+2SAxa9 H7qkp8dcLkM1KNsOnOrP+26rUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsCdBf5 FFlTQKICU5vFsFbTFhxcMB8GA1UdIwQYMBaAFPjUpjLQaZZMYaM+QdYkPVNbAH1U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ2QS8wMDUwMDE2NDk0 MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxreGhvejVCMWlROVUxc0Fm VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1OU21NdEJwbGt4aG96NUIxaVE5VTFzQWZWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ2QS8wMDUwMDE2NDk0MzIxMUU2OEMxQjgyNEFDNEY5QUUwMi8tTlNtTXRCcGxr eGhvejVCMWlROVUxc0FmVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArRWa1taEITKJLaJX0cdRV000s5twz3ubp81fZ7ziEu7apgiFMG7BI KhPf82Fhb6LIdpuk9f5LI4axPMAAT4+dFPhrL29Tp4XKn36U3IxJpY7OhBWN9+NK QUvDtfqLnWbrJoGiue6bu9lmiidc2f1uWtDGub7kv2Rj6lgfLRLMZlvKeYrAJ6qT 23C9h/RzQKGjLUhgUYzpeYjyeBhLX22Wz4LY6H7VuwsK4vbBQpeQ3pm1UE/RrE+V WQLBc4MsQjS2KrCJFuLBWUAG6+nN6aRcN8pxiRlTscmcCXhy7gM/aJiDNcjizBHN ATTw//UVqlLOQNlmVTaUG88J1qNjbX2h -----END CERTIFICATE-----Generated at Sat May 31 17:51:39 2025 by rpki-client