$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: K3ywz1zp2HsMdIsd5w+05u6k3tZNkP9wYvJNSRCF83w= Subject key identifier: 0C:1A:B3:59:F9:48:22:E4:72:CE:10:A7:1D:56:29:EB:E0:23:37:C6 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 07E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 07DA Signing time: Fri 30 May 2025 21:15:27 +0000 Manifest this update: Fri 30 May 2025 21:15:27 +0000 Manifest next update: Fri 06 Jun 2025 21:15:26 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: 1Tx/fHgYJS8NlX2sK4K/ADA+r+WQZcUywfgyxA0jKiM=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2016 (0x7e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: May 30 21:15:27 2025 GMT Not After : Jun 6 21:15:26 2025 GMT Subject: CN=683a1fef-8dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:7a:68:a4:c4:fc:e0:1c:70:f3:eb:b8:09: 58:c9:43:a0:01:42:18:18:2f:d0:5a:ea:03:6a:73: 7a:12:e4:06:31:c9:46:ce:cd:5a:05:39:2e:3c:47: cd:a0:fc:15:13:0e:84:fe:46:3c:1e:86:ea:d8:bc: 76:f4:42:ac:79:79:69:e6:6c:49:69:70:b7:a5:c1: a2:fe:8f:c4:25:9c:82:78:c9:55:63:df:0e:36:e9: c7:14:50:3e:56:e0:45:e0:d3:46:f8:ef:81:0a:63: a5:3e:cb:a8:71:49:ca:d6:1e:98:9f:e9:3b:b8:9b: 28:89:9f:c6:66:46:fe:3d:42:09:11:d4:9e:53:39: 2d:8c:f5:21:66:72:c8:36:f9:14:31:46:24:46:1d: de:eb:cd:15:02:c8:72:49:1c:ec:3a:4e:8c:3f:e2: a9:d4:8f:ae:47:5e:ac:ea:0a:70:5f:22:6b:c2:1f: 0c:be:1d:d3:4e:4a:c4:93:6a:06:ce:9b:30:b3:e1: 67:63:cb:68:9b:06:79:bc:90:f4:97:77:d5:b7:7f: 4d:27:cd:df:58:ca:6b:f9:6f:8a:d1:a7:e8:bb:47: b9:8b:d4:fa:a4:4e:e0:74:1c:1d:eb:23:10:af:8a: ac:c0:98:23:c4:47:3b:67:44:02:86:00:9d:45:66: e0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1A:B3:59:F9:48:22:E4:72:CE:10:A7:1D:56:29:EB:E0:23:37:C6 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e3:0a:d6:6f:b4:55:57:86:6b:54:df:46:fd:9c:54:13:48: b0:44:f0:08:d5:c9:e9:30:48:c6:5c:7c:86:f6:34:d1:08:52: 48:ff:44:e5:c9:67:ae:a9:6e:6a:4b:77:9a:7d:91:e3:11:60: e9:2b:02:f7:4d:3e:2a:3e:14:a8:0b:e8:e5:2a:59:0e:c3:51: b8:58:65:0b:db:c8:a6:13:1d:14:d2:a2:64:19:88:d8:c3:c1: 17:fc:2b:ad:1e:4d:fe:83:56:af:d8:c2:f1:de:63:51:99:5a: 45:c3:ff:93:5a:fa:04:4b:b3:e3:fb:1d:23:09:c5:4f:53:1a: 54:c3:be:d5:71:cd:42:41:26:04:bd:55:a8:88:aa:14:08:ef: 23:d5:70:3f:6e:83:3d:f2:89:4c:89:45:4b:22:db:b4:9f:04: 8a:fc:a9:0d:02:bd:94:a4:3b:37:20:ce:8e:db:96:bc:a2:c0: 9b:75:52:95:e9:83:8b:0b:73:23:26:a7:a9:5c:de:a8:e8:cf: 27:ab:6f:ca:1b:f3:86:d7:74:fa:45:7a:ab:ee:4a:7a:af:9f: 2f:c7:f1:10:25:7b:53:23:77:7a:00:26:f8:1d:94:ff:78:09: da:75:e9:9d:1b:37:db:e3:30:47:be:dd:2b:5b:5e:68:d5:d8: ed:0d:59:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwNTMwMjExNTI3WhcNMjUwNjA2MjExNTI2WjAYMRYwFAYD VQQDEw02ODNhMWZlZi04ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBN6aKTE/OAccPPruAlYyUOgAUIYGC/QWuoDanN6EuQGMclGzs1aBTkuPEfN oPwVEw6E/kY8Hobq2Lx29EKseXlp5mxJaXC3pcGi/o/EJZyCeMlVY98ONunHFFA+ VuBF4NNG+O+BCmOlPsuocUnK1h6Yn+k7uJsoiZ/GZkb+PUIJEdSeUzktjPUhZnLI NvkUMUYkRh3e680VAshySRzsOk6MP+Kp1I+uR16s6gpwXyJrwh8Mvh3TTkrEk2oG zpsws+FnY8tomwZ5vJD0l3fVt39NJ83fWMpr+W+K0afou0e5i9T6pE7gdBwd6yMQ r4qswJgjxEc7Z0QChgCdRWbgnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwas1n5 SCLkcs4Qpx1WKevgIzfGMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP4wrWb7RVV4ZrVN9G/ZxUE0iwRPAI1cnpMEjGXHyG9jTRCFJI/0Tl yWeuqW5qS3eafZHjEWDpKwL3TT4qPhSoC+jlKlkOw1G4WGUL28imEx0U0qJkGYjY w8EX/CutHk3+g1av2MLx3mNRmVpFw/+TWvoES7Pj+x0jCcVPUxpUw77Vcc1CQSYE vVWoiKoUCO8j1XA/boM98olMiUVLItu0nwSK/KkNAr2UpDs3IM6O25a8osCbdVKV 6YOLC3MjJqepXN6o6M8nq2/KG/OG13T6RXqr7kp6r58vx/EQJXtTI3d6ACb4HZT/ eAnademdGzfb4zBHvt0rW15o1djtDVmM -----END CERTIFICATE-----Generated at Sat May 31 17:47:46 2025 by rpki-client