$ rpki-client -vvf rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft File: NNe9YUOWrkRRcOBY4K7c661JQF8.mft (raw, json) Hash identifier: DEb5xtApCDUf0QCL2olg6R6EVfoDAjzFT4JhGgSPo4Y= Subject key identifier: 46:82:4B:08:9E:37:46:3C:30:52:7E:4A:02:07:86:6B:79:DC:5C:62 Authority key identifier: 34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F Certificate issuer: /CN=A9133F6B/serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft Manifest number: 7D Signing time: Sun 11 May 2025 05:27:49 +0000 Manifest this update: Sun 11 May 2025 05:27:49 +0000 Manifest next update: Sun 18 May 2025 05:27:49 +0000 Files and hashes: 1: NNe9YUOWrkRRcOBY4K7c661JQF8.crl (hash: TEwHgk1Ax2TyLH+Hbp1yy5wCkjC5ZBp7ezjOfmQTo6E=) 2: CDB922F074AF11EFA0B26646C4F9AE02.roa (hash: Z9wgm3vGJOLLYnMtYAwUdfFZW4JgmPyeFWsMY0AhztU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133F6B, serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Validity Not Before: May 11 05:27:49 2025 GMT Not After : May 18 05:27:49 2025 GMT Subject: CN=68203555-ad18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3e:55:a9:18:45:61:27:5b:17:42:36:70:8c: 66:17:65:cd:84:f6:e9:ab:79:43:bf:a5:1e:ae:be: cf:12:d6:ff:08:77:fc:d8:e4:1d:c4:01:3e:5d:95: 30:15:b4:e8:22:2d:e5:a4:7a:da:fb:80:a9:f1:ca: 85:80:1a:62:ee:ee:af:1d:0a:61:46:31:75:ad:e1: b9:12:26:76:7e:16:7c:00:41:fb:ef:39:30:50:07: 8d:f4:63:89:76:52:1d:c0:83:e4:24:2a:6a:fc:78: d4:5b:04:ef:ab:5c:05:96:ee:90:b1:6f:4b:d8:fa: a7:0e:d8:f2:4b:6a:9f:63:b5:7e:fd:6b:fe:c5:c5: 79:b9:2c:e6:3c:30:67:66:97:2d:e3:86:6e:e9:15: 19:a0:72:2e:1f:fe:29:b7:9f:43:6a:47:8c:a1:8b: f5:89:10:4c:63:1c:2e:0a:56:dd:71:4e:02:f0:d0: aa:41:14:ab:1b:26:03:f3:30:8a:2d:27:66:1c:e5: 2f:4c:a7:57:62:50:75:7a:a5:28:8d:de:34:9a:ab: b9:a3:54:a3:28:0f:f0:b2:bc:c5:1b:38:f2:f9:b0: 41:c0:de:b5:49:e4:4a:8d:38:37:c3:2a:87:80:84: 30:09:59:39:7c:bb:cb:d7:dd:f1:f5:70:42:02:97: 3f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:82:4B:08:9E:37:46:3C:30:52:7E:4A:02:07:86:6B:79:DC:5C:62 X509v3 Authority Key Identifier: keyid:34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:0f:e2:34:20:ee:f7:b5:d4:40:27:c5:58:b5:38:20:f5:45: 77:92:51:c1:9a:7f:ee:69:28:77:06:be:d7:7a:47:aa:f1:c0: f3:fe:be:c4:71:8a:c2:93:5f:f6:7c:08:18:22:8b:50:05:82: e7:dc:72:6c:15:a4:7c:b5:ad:25:71:6e:f5:2f:54:87:b4:22: c9:6d:76:a3:ac:94:b0:43:d0:3e:6b:fa:45:7f:d3:da:39:91: 2f:4c:0a:7a:e8:97:33:f1:80:2e:f4:d9:83:82:86:2a:fe:91: 08:d9:a3:c7:ba:f3:41:a6:ca:b2:7d:a8:d7:ad:b2:ba:f5:96: 15:41:5e:25:b7:f6:78:d9:8a:ef:9b:8d:96:bf:2a:1a:1e:fe: a8:51:3c:18:59:ce:0c:b2:80:91:c6:8b:0f:6a:af:ab:33:f6: 85:08:6f:d6:0e:b2:f0:8b:4c:af:b3:71:e7:3c:d3:18:5c:40: ef:f3:b9:8a:8c:88:2f:3f:9b:7b:35:02:2a:6a:e8:29:58:78: 81:3e:0d:d6:d9:3c:3b:77:bd:93:88:b0:98:c6:f5:e1:2c:cf: 51:93:32:9e:c3:24:d6:5c:74:99:c0:06:9b:f0:8f:38:90:9c: 2a:18:b4:8e:9c:25:a9:96:19:83:53:d7:be:1d:69:d4:7d:7c: 8a:38:13:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0Y2QjExMC8GA1UEBRMoMzREN0JENjE0Mzk2QUU0NDUxNzBFMDU4RTBBRURDRUJB RDQ5NDA1RjAeFw0yNTA1MTEwNTI3NDlaFw0yNTA1MTgwNTI3NDlaMBgxFjAUBgNV BAMTDTY4MjAzNTU1LWFkMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5PlWpGEVhJ1sXQjZwjGYXZc2E9umreUO/pR6uvs8S1v8Id/zY5B3EAT5dlTAV tOgiLeWketr7gKnxyoWAGmLu7q8dCmFGMXWt4bkSJnZ+FnwAQfvvOTBQB430Y4l2 Uh3Ag+QkKmr8eNRbBO+rXAWW7pCxb0vY+qcO2PJLap9jtX79a/7FxXm5LOY8MGdm ly3jhm7pFRmgci4f/im3n0NqR4yhi/WJEExjHC4KVt1xTgLw0KpBFKsbJgPzMIot J2Yc5S9Mp1diUHV6pSiN3jSaq7mjVKMoD/CyvMUbOPL5sEHA3rVJ5EqNODfDKoeA hDAJWTl8u8vX3fH1cEIClz/VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURoJLCJ43 RjwwUn5KAgeGa3ncXGIwHwYDVR0jBBgwFoAUNNe9YUOWrkRRcOBY4K7c661JQF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzRjZCLzk4NTI5MzNFNzRB NjExRUZBQjRCMDUzQ0M0RjlBRTAyL05OZTlZVU9XcmtSUmNPQlk0SzdjNjYxSlFG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTk5lOVlVT1dya1JSY09CWTRLN2M2NjFKUUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz RjZCLzk4NTI5MzNFNzRBNjExRUZBQjRCMDUzQ0M0RjlBRTAyL05OZTlZVU9XcmtS UmNPQlk0SzdjNjYxSlFGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABYP4jQg7ve11EAnxVi1OCD1RXeSUcGaf+5pKHcGvtd6R6rxwPP+vsRx isKTX/Z8CBgii1AFgufccmwVpHy1rSVxbvUvVIe0IsltdqOslLBD0D5r+kV/09o5 kS9MCnrolzPxgC702YOChir+kQjZo8e680GmyrJ9qNetsrr1lhVBXiW39njZiu+b jZa/Khoe/qhRPBhZzgyygJHGiw9qr6sz9oUIb9YOsvCLTK+zcec80xhcQO/zuYqM iC8/m3s1Aipq6ClYeIE+DdbZPDt3vZOIsJjG9eEsz1GTMp7DJNZcdJnABpvwjziQ nCoYtI6cJamWGYNT174dadR9fIo4E/8= -----END CERTIFICATE-----Generated at Mon May 12 15:53:18 2025 by rpki-client