$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft File: NkbrHzcLfmPR823rNsJHbJbmuug.mft (raw, json) Hash identifier: HLf/kX+827/zelVfuHhd9/T1BxkXqqp10p0TE/YX3rU= Subject key identifier: 6D:88:EB:89:3A:90:A2:8B:EA:96:54:B9:B7:B7:16:B6:48:8C:E4:F3 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 02C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft Manifest number: 02BD Signing time: Sun 11 May 2025 00:59:20 +0000 Manifest this update: Sun 11 May 2025 00:59:19 +0000 Manifest next update: Sun 18 May 2025 00:59:19 +0000 Files and hashes: 1: NkbrHzcLfmPR823rNsJHbJbmuug.crl (hash: Un1ILJoUhMMmlP51atV2zPhTpVCMdwHgD0Ft7Pna0/4=) 2: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (hash: Pd8L7s4R6wRwdLV9+7BZMCdFVQ0DCoXNeo8OuEc6g0M=) 3: F3B00CD2666C11EEB1B4711CC4F9AE02.roa (hash: R6LgYLeeG431V+MNRMFG0A1SQaUDq0hWnr4R0asmc6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5, serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: May 11 00:59:19 2025 GMT Not After : May 18 00:59:19 2025 GMT Subject: CN=681ff667-4617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:74:d2:f3:ac:b8:f4:6a:29:d1:16:07:aa:d8: 41:c9:39:bf:fb:22:4c:fb:e8:69:f4:4a:44:a8:2b: 85:7e:8f:88:4e:58:f5:eb:b0:5b:56:6c:1d:90:e1: fc:3f:88:14:2b:1b:d1:f8:9f:47:20:d1:75:7a:a2: ed:9b:f8:51:9f:f3:d0:be:05:67:dc:5b:29:c6:99: 05:f5:15:94:9f:02:e6:8a:0d:70:56:11:bc:61:b3: 22:4f:e9:d5:51:da:a9:5a:c7:c7:9c:4c:8c:df:75: 77:78:45:cc:95:ff:e0:35:17:1b:e7:1e:24:30:01: 12:6e:49:c0:ea:b0:fe:c1:a8:9b:5b:cf:bb:b6:fa: 3a:b1:c4:78:8e:bf:ea:0e:f6:df:2b:a9:1d:3e:c2: a6:cc:80:20:9e:34:ad:89:62:e1:e6:99:32:6c:a4: 00:33:d7:a6:a9:83:4c:f7:48:3e:a3:e0:b2:5c:ab: 2a:a5:5a:52:27:78:c7:a7:fe:a5:7f:02:14:89:1d: e0:d9:0b:c9:d2:5c:98:a1:09:af:e3:bc:9c:f0:68: de:66:c1:43:5e:5b:30:b7:29:a4:60:08:3c:96:3d: 9b:d3:70:0e:b7:ed:1c:ac:f1:36:c0:f7:e8:3f:a7: d4:54:f3:2f:94:01:cd:ab:a3:22:f5:42:ea:9b:02: bc:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:88:EB:89:3A:90:A2:8B:EA:96:54:B9:B7:B7:16:B6:48:8C:E4:F3 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:8c:55:b6:e6:fb:05:d6:21:d3:e3:d4:7a:b6:33:1e:c9:ed: 17:f0:dd:2f:b1:f6:47:4b:85:f4:94:20:dd:dc:fc:e2:eb:7a: b3:29:84:00:ea:68:20:92:dd:67:a2:31:1d:3d:a4:01:8b:2f: 48:fc:0c:f4:cf:5e:f3:64:fc:7a:e7:b6:fd:41:7c:aa:0c:2d: 26:b5:f4:bd:21:0c:db:9d:4f:80:e1:84:1d:85:90:39:aa:be: 68:4e:04:d9:d1:86:db:bf:e6:a0:e6:87:49:5b:5c:db:fe:ee: 78:6a:26:e9:cb:87:cd:c0:c7:26:24:19:fa:f4:ec:dd:3d:61: 5d:ed:82:3d:57:b8:3d:a7:12:87:80:9b:40:4d:a4:c9:fd:fe: 5f:fd:55:0f:5d:91:14:34:8d:38:ac:b9:3a:2c:20:6b:f6:63: 02:bb:c4:13:1e:63:a1:95:cd:df:0d:c9:f7:9f:de:8d:a9:05: 65:46:a1:c4:47:c9:90:6e:41:01:79:2b:3e:a2:5a:bd:c4:ed: 01:92:fb:19:22:3a:f6:a5:91:9e:55:16:0e:7e:22:95:b0:19: 0b:31:12:15:bf:00:9e:3a:bf:f8:02:d3:6c:e5:0d:62:54:66: 4c:14:05:1c:c1:de:aa:cb:de:df:51:cf:6b:fd:db:a4:19:87: 48:0b:89:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjUwNTExMDA1OTE5WhcNMjUwNTE4MDA1OTE5WjAYMRYwFAYD VQQDEw02ODFmZjY2Ny00NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HTS86y49Gop0RYHqthByTm/+yJM++hp9EpEqCuFfo+ITlj167BbVmwdkOH8 P4gUKxvR+J9HINF1eqLtm/hRn/PQvgVn3FspxpkF9RWUnwLmig1wVhG8YbMiT+nV UdqpWsfHnEyM33V3eEXMlf/gNRcb5x4kMAESbknA6rD+waibW8+7tvo6scR4jr/q DvbfK6kdPsKmzIAgnjStiWLh5pkybKQAM9emqYNM90g+o+CyXKsqpVpSJ3jHp/6l fwIUiR3g2QvJ0lyYoQmv47yc8GjeZsFDXlswtymkYAg8lj2b03AOt+0crPE2wPfo P6fUVPMvlAHNq6Mi9ULqmwK8sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2I64k6 kKKL6pZUube3FrZIjOTzMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0JFNS82MTFDNTEyQ0YwRjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZt UFI4MjNyTnNKSGJKYm11dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZjFW25vsF1iHT49R6tjMeye0X8N0vsfZHS4X0lCDd3Pzi63qzKYQA 6mggkt1nojEdPaQBiy9I/Az0z17zZPx657b9QXyqDC0mtfS9IQzbnU+A4YQdhZA5 qr5oTgTZ0Ybbv+ag5odJW1zb/u54aibpy4fNwMcmJBn69OzdPWFd7YI9V7g9pxKH gJtATaTJ/f5f/VUPXZEUNI04rLk6LCBr9mMCu8QTHmOhlc3fDcn3n96NqQVlRqHE R8mQbkEBeSs+olq9xO0BkvsZIjr2pZGeVRYOfiKVsBkLMRIVvwCeOr/4AtNs5Q1i VGZMFAUcwd6qy97fUc9r/dukGYdIC4kz -----END CERTIFICATE-----Generated at Sun May 11 16:01:21 2025 by rpki-client