$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: +qXVj45ZqigQ4L0JV4WyVx7bXHtGMdrkrWj4bRmuIaE= Subject key identifier: 11:AD:55:99:07:9C:7A:B8:B7:FA:52:44:D9:9A:41:39:1F:91:8E:7B Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 073D Signing time: Mon 12 May 2025 21:31:38 +0000 Manifest this update: Mon 12 May 2025 21:31:37 +0000 Manifest next update: Mon 19 May 2025 21:31:37 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: 3EIYHAweVu/b8vOM2RbWhoMCJFlOQBMrnP55Uvhl944=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: May 12 21:31:37 2025 GMT Not After : May 19 21:31:37 2025 GMT Subject: CN=682268b9-3e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:60:f1:f6:e0:11:64:d0:f1:76:8b:bf:3e:58: 4e:42:6f:d9:f6:50:96:a0:93:63:72:b5:b3:b0:a0: 5a:14:95:00:e6:c4:26:9c:37:ab:5e:d0:2c:88:dc: 3a:17:a3:28:56:cc:f9:d5:2a:3c:4e:b4:0e:7a:dd: e7:73:a6:94:24:9b:d3:0b:e0:34:de:27:ad:36:14: 35:3b:cd:c3:45:79:cb:8c:00:49:f8:21:8d:eb:c6: 3b:bf:71:ca:73:5f:94:a9:08:50:5b:fc:1f:1e:ad: f1:79:67:33:7a:43:cf:5d:c0:4d:0c:3d:3d:2e:49: 7a:37:03:b6:dc:7d:3d:1e:0d:51:96:77:4e:17:30: f9:0e:df:ac:44:15:6e:6e:b9:7a:59:b3:0e:f1:36: 25:37:f2:cf:71:c0:3d:c6:ee:66:51:f7:40:fa:02: de:10:f9:b5:d8:0a:10:e2:ef:e3:84:8f:c2:9b:31: cb:03:1a:1d:68:51:f6:b2:46:74:01:f5:d6:99:5f: 98:48:05:55:8c:98:3b:3c:0f:7e:e9:9a:40:79:11: db:9d:fe:99:3c:d4:33:b0:81:60:f1:e8:1b:f7:7d: 9e:12:fb:2c:fc:2d:9f:41:19:25:4f:76:7a:bd:99: 2f:d9:79:db:74:83:ff:73:e2:ac:12:36:83:26:57: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AD:55:99:07:9C:7A:B8:B7:FA:52:44:D9:9A:41:39:1F:91:8E:7B X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:80:68:4c:6a:fb:02:f7:a6:65:22:04:10:18:9a:27:e6:df: f9:e7:f7:16:35:25:02:bc:ce:2c:ba:72:52:3f:85:a8:1b:ed: 3b:69:57:62:3e:ad:38:e2:cc:62:d0:30:ec:7d:f6:59:0d:97: 88:a6:46:7a:f1:ca:c0:bd:88:7b:43:4a:62:46:00:9d:fa:1e: d4:d6:bd:e0:f6:1b:eb:ac:68:11:45:13:eb:ff:01:22:6f:fb: fd:13:38:ee:6a:7f:2b:db:eb:27:1d:08:1e:dd:28:aa:6a:2a: 44:53:67:07:99:90:18:de:6d:00:9f:dc:9d:f0:be:fc:b6:bb: 23:ea:5b:8c:9e:00:14:7c:49:6b:f1:69:97:42:1e:a7:6b:7f: 10:d0:b9:17:a5:57:ab:2a:db:ce:88:dd:ca:f9:e7:17:1f:16: 00:11:e2:59:35:05:b6:f8:0e:5d:24:0b:92:46:e5:85:58:3a: 50:1f:95:e3:56:d1:fb:d0:cd:c8:37:6a:55:46:66:c3:61:21: ea:fa:5b:4a:f0:0f:91:41:dc:0c:f6:08:7b:f2:7b:83:eb:20: 11:98:be:6a:c9:e0:12:09:55:ad:4f:e2:e7:0f:c5:77:23:be: 80:23:45:c8:8a:58:97:8b:eb:74:0e:5e:52:65:9c:40:2a:d3: a5:71:7c:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwNTEyMjEzMTM3WhcNMjUwNTE5MjEzMTM3WjAYMRYwFAYD VQQDEw02ODIyNjhiOS0zZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnmDx9uARZNDxdou/PlhOQm/Z9lCWoJNjcrWzsKBaFJUA5sQmnDerXtAsiNw6 F6MoVsz51So8TrQOet3nc6aUJJvTC+A03ietNhQ1O83DRXnLjABJ+CGN68Y7v3HK c1+UqQhQW/wfHq3xeWczekPPXcBNDD09Lkl6NwO23H09Hg1RlndOFzD5Dt+sRBVu brl6WbMO8TYlN/LPccA9xu5mUfdA+gLeEPm12AoQ4u/jhI/CmzHLAxodaFH2skZ0 AfXWmV+YSAVVjJg7PA9+6ZpAeRHbnf6ZPNQzsIFg8egb932eEvss/C2fQRklT3Z6 vZkv2XnbdIP/c+KsEjaDJld4YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGtVZkH nHq4t/pSRNmaQTkfkY57MB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAagGhMavsC96ZlIgQQGJon5t/55/cWNSUCvM4sunJSP4WoG+07aVdi Pq044sxi0DDsffZZDZeIpkZ68crAvYh7Q0piRgCd+h7U1r3g9hvrrGgRRRPr/wEi b/v9Ezjuan8r2+snHQge3SiqaipEU2cHmZAY3m0An9yd8L78trsj6luMngAUfElr 8WmXQh6na38Q0LkXpVerKtvOiN3K+ecXHxYAEeJZNQW2+A5dJAuSRuWFWDpQH5Xj VtH70M3IN2pVRmbDYSHq+ltK8A+RQdwM9gh78nuD6yARmL5qyeASCVWtT+LnD8V3 I76AI0XIiliXi+t0Dl5SZZxAKtOlcXwS -----END CERTIFICATE-----Generated at Tue May 13 15:25:07 2025 by rpki-client