$ rpki-client -vvf rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft File: nkKx9pFGDihG-nHwbcib8sdB25o.mft (raw, json) Hash identifier: 4QmVLQCPKmy6Pl/unVzU9iGQBnzJ63Y1PPZSYMKK9xQ= Subject key identifier: EB:30:1E:EE:7D:00:12:69:C8:F9:3A:89:BF:5A:16:BB:A7:42:5E:3B Authority key identifier: 9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A Certificate issuer: /CN=A911BCDD/serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft Manifest number: 0116 Signing time: Fri 09 May 2025 03:55:34 +0000 Manifest this update: Fri 09 May 2025 03:55:34 +0000 Manifest next update: Fri 16 May 2025 03:55:34 +0000 Files and hashes: 1: nkKx9pFGDihG-nHwbcib8sdB25o.crl (hash: N8OM2jrTy0vwRwQi9eo0zcWm28xouuXnYKGnGm7wih0=) 2: 5ED417AE869011EEA9011A36C4F9AE02.roa (hash: secqQJuczQrOBoLhJh1bWX70I59NSlP/4Mk301elvvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 03:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BCDD, serialNumber=9E42B1F691460E2846FA71F06DC89BF2C741DB9A Validity Not Before: May 9 03:55:34 2025 GMT Not After : May 16 03:55:34 2025 GMT Subject: CN=681d7cb6-62d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:90:cd:5a:77:6c:77:7e:98:b7:79:5b:dd:28: f9:90:4e:d0:21:53:6d:2d:5a:70:ba:0f:17:81:dd: 23:c1:aa:aa:6e:22:a2:ba:c0:59:dc:fc:75:84:c0: 92:74:eb:93:1e:55:7e:51:32:ec:75:d8:39:36:0a: e6:a4:26:4f:18:10:d9:e1:6d:fa:91:6b:ff:c0:d2: ca:13:ab:af:5d:49:35:50:16:51:5a:73:37:b4:a3: d7:61:fe:e7:ed:3f:32:30:6d:90:71:24:f7:65:0a: 80:51:e8:aa:ac:c8:aa:b4:ac:43:6a:85:de:8e:12: 29:8c:fd:8f:11:d2:df:c4:f7:7d:ed:af:6e:83:9d: eb:8a:87:0e:d0:ef:58:b7:65:be:b7:85:bd:6d:e3: 0a:62:ca:ad:3a:1f:cc:c7:24:2e:0e:fc:c1:c0:ac: da:0f:2e:38:d3:de:1a:85:06:d3:f0:65:fb:3e:8e: 6d:30:6f:0a:6d:82:c8:22:e8:25:0e:a8:3e:0f:e2: 08:54:c0:0a:ac:65:c6:ee:e5:c5:6f:4d:12:97:a2: be:5d:17:12:9c:61:87:f6:a6:e7:10:87:f5:52:0f: 0b:0c:3c:65:6d:b7:e2:37:52:67:3f:ae:4f:6d:b9: 16:15:98:63:9e:0f:47:85:50:d2:a3:55:36:06:32: 1b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:30:1E:EE:7D:00:12:69:C8:F9:3A:89:BF:5A:16:BB:A7:42:5E:3B X509v3 Authority Key Identifier: keyid:9E:42:B1:F6:91:46:0E:28:46:FA:71:F0:6D:C8:9B:F2:C7:41:DB:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nkKx9pFGDihG-nHwbcib8sdB25o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BCDD/348AD8AC861311EEA8C95042C4F9AE02/nkKx9pFGDihG-nHwbcib8sdB25o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:bf:f8:06:0b:55:2f:b5:be:8e:82:c7:80:31:e6:a1:23:af: 5b:d9:1e:5e:61:23:29:aa:3a:72:c1:56:3c:df:26:1d:20:1c: 39:f5:20:e4:00:19:db:e6:ec:23:8c:4d:0c:6e:be:7e:d7:a5: 9c:f0:8d:11:6e:b1:f8:f9:40:86:fa:09:6d:8e:58:6d:9a:5b: 2c:e9:d6:95:79:9f:57:06:78:e2:e9:2a:5a:92:73:3a:49:d2: 12:75:3b:15:08:17:de:e3:d2:34:89:38:d3:e5:77:00:d6:1a: 08:56:dc:7b:f2:54:d6:3b:e2:e8:d1:ae:ae:16:b7:6c:74:a0: c7:5f:2f:80:2a:d4:0f:c5:e7:dc:bf:e4:f3:a4:00:ad:ee:26: 08:5b:25:7f:64:34:7a:e9:4f:92:3c:82:02:c7:5e:b6:0d:20: 02:ab:82:d8:ae:be:43:1b:02:e8:59:dd:c6:62:48:fe:62:86: c5:52:3a:9f:fb:dc:48:84:3d:ae:83:7a:c4:7f:59:71:e4:58: 42:c2:69:96:a4:15:65:1c:d1:b9:d2:e9:3a:c8:09:5d:5a:ab: 30:b1:e6:d0:62:9d:a1:b3:4b:94:80:01:eb:84:95:67:b4:51: f4:a4:d1:8b:e8:23:cb:81:9a:a9:5c:96:cf:42:7a:0f:b2:5e: 4a:77:77:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDREQxMTAvBgNVBAUTKDlFNDJCMUY2OTE0NjBFMjg0NkZBNzFGMDZEQzg5QkYy Qzc0MURCOUEwHhcNMjUwNTA5MDM1NTM0WhcNMjUwNTE2MDM1NTM0WjAYMRYwFAYD VQQDEw02ODFkN2NiNi02MmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5DNWndsd36Yt3lb3Sj5kE7QIVNtLVpwug8Xgd0jwaqqbiKiusBZ3Px1hMCS dOuTHlV+UTLsddg5NgrmpCZPGBDZ4W36kWv/wNLKE6uvXUk1UBZRWnM3tKPXYf7n 7T8yMG2QcST3ZQqAUeiqrMiqtKxDaoXejhIpjP2PEdLfxPd97a9ug53riocO0O9Y t2W+t4W9beMKYsqtOh/MxyQuDvzBwKzaDy44094ahQbT8GX7Po5tMG8KbYLIIugl Dqg+D+IIVMAKrGXG7uXFb00Sl6K+XRcSnGGH9qbnEIf1Ug8LDDxlbbfiN1JnP65P bbkWFZhjng9HhVDSo1U2BjIb1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOswHu59 ABJpyPk6ib9aFrunQl47MB8GA1UdIwQYMBaAFJ5CsfaRRg4oRvpx8G3Im/LHQdua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkNERC8zNDhBRDhBQzg2 MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0RpaEctbkh3YmNpYjhzZEIy NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25rS3g5cEZHRGloRy1uSHdiY2liOHNkQjI1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkNERC8zNDhBRDhBQzg2MTMxMUVFQThDOTUwNDJDNEY5QUUwMi9ua0t4OXBGR0Rp aEctbkh3YmNpYjhzZEIyNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAv/gGC1Uvtb6OgseAMeahI69b2R5eYSMpqjpywVY83yYdIBw59SDk ABnb5uwjjE0Mbr5+16Wc8I0RbrH4+UCG+gltjlhtmlss6daVeZ9XBnji6SpaknM6 SdISdTsVCBfe49I0iTjT5XcA1hoIVtx78lTWO+Lo0a6uFrdsdKDHXy+AKtQPxefc v+TzpACt7iYIWyV/ZDR66U+SPIICx162DSACq4LYrr5DGwLoWd3GYkj+YobFUjqf +9xIhD2ug3rEf1lx5FhCwmmWpBVlHNG50uk6yAldWqswsebQYp2hs0uUgAHrhJVn tFH0pNGL6CPLgZqpXJbPQnoPsl5Kd3fe -----END CERTIFICATE-----Generated at Sun May 11 04:21:50 2025 by rpki-client