$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft File: Ntd-kkOrui_VSWopGDC304sLy8Q.mft (raw, json) Hash identifier: mKK3oVW3rmyh9zcgJre8hYOOTLm0pJsoJO6eDtRO/KQ= Subject key identifier: C7:24:37:DB:77:40:6A:24:46:CA:DF:32:C8:17:88:47:43:92:DB:A4 Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 08C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft Manifest number: 08A5 Signing time: Mon 12 May 2025 20:23:48 +0000 Manifest this update: Mon 12 May 2025 20:23:47 +0000 Manifest next update: Mon 19 May 2025 20:23:47 +0000 Files and hashes: 1: Ntd-kkOrui_VSWopGDC304sLy8Q.crl (hash: gn1h6ofYeGgfqg5AE4N/GwfHftPc5VIqPnOYfuL7s1o=) 2: B453EBC4BB4011EAAF70B028C4F9AE02.roa (hash: Nz/7xCUgKfmqkXApuxeo5myCUO+mgajFtNE4r7Ggzao=) 3: A58B9338AD4A11EBA6B48687C4F9AE02.roa (hash: 9S3WJERMTtwQwqkFdyQh2FAfBQXuWIoDgdAQjyhftzk=) 4: 72E60DEA3CC911EDA5EBD21DC4F9AE02.roa (hash: zq2Qkn/Tk6HTf9mmAUUEV4eovm/AM6TvEoGB/VFCywQ=) 5: 0F91DE9EAD4C11EB903C150DC4F9AE02.roa (hash: KYXdBuY8eVoROAmSDw7JnT54RB6WWf5lcCmMUouYwzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2241 (0x8c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC, serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: May 12 20:23:47 2025 GMT Not After : May 19 20:23:47 2025 GMT Subject: CN=682258d3-43be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:73:00:07:fb:7b:88:59:a8:83:76:f1:aa:0e: 74:3c:a7:7b:f4:13:a4:bc:f2:3a:0e:66:61:32:03: 32:36:ac:f4:21:6e:a7:c7:73:29:1a:5b:bc:f6:79: 47:55:a6:63:b6:57:56:ff:a3:fd:72:4a:a5:99:c1: a1:a0:de:7e:af:01:f5:60:cf:70:f4:d2:50:63:3a: e0:9c:e4:7d:b9:af:3e:f3:fe:85:a6:e4:1f:1b:69: b4:ee:d5:93:a3:6a:fd:e2:37:ab:7f:33:62:a7:1f: c2:b5:1d:50:43:7c:7c:e0:ba:6e:f7:d8:b8:55:df: d8:11:f6:8f:13:10:3b:ca:69:9c:29:b0:0f:1c:09: 65:d7:cd:d0:c0:77:b5:6f:f2:4f:67:fc:43:2e:4f: f7:e7:60:b1:20:bf:00:0c:ea:9c:4b:c1:3b:8d:22: d9:f0:95:ed:eb:ef:20:d9:7d:b2:2c:7b:38:20:8d: 58:d4:bb:63:fe:b1:4a:5e:3a:40:e0:5d:ef:fd:01: a6:07:8b:28:4d:0b:78:89:a0:8e:04:27:22:49:f8: 97:81:1d:15:3f:d2:2d:e2:f9:6a:55:3e:4f:99:9b: 49:d2:6d:b7:45:dd:9d:37:e9:9e:94:29:0e:19:3f: aa:03:b0:d8:7a:91:06:f5:91:c4:fa:c9:2d:3e:c5: 21:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:24:37:DB:77:40:6A:24:46:CA:DF:32:C8:17:88:47:43:92:DB:A4 X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:84:6c:38:66:10:0a:1c:4c:07:26:2d:45:1f:c2:07:49:2b: 1e:61:30:26:f2:7b:e7:d2:32:ea:07:c1:4b:b7:b8:8c:d1:d1: 4e:8b:d7:f0:d3:25:19:af:68:e6:5b:05:01:b5:ec:20:47:2e: 9e:0f:41:03:d4:b7:03:4e:45:a8:d5:4a:5d:89:4f:08:db:02: c0:89:de:1a:90:cf:db:e6:d8:3a:c6:53:07:38:e6:00:46:be: 7d:39:18:54:7b:4a:3c:4e:3f:26:5a:74:58:f9:e3:ac:8e:0c: 12:63:86:b2:19:10:cc:c5:d5:45:0e:e4:0b:d8:10:2d:c0:8a: ac:81:d2:5d:fe:74:fa:0f:fc:f8:9c:59:ce:02:b9:3a:3d:35: 08:d6:65:7f:9d:c8:ad:e2:86:4c:0f:f3:b0:73:53:fe:2f:ff: 7d:2d:d6:7e:b9:e3:95:22:24:c8:04:e6:ee:f8:b0:11:50:2b: ce:5e:f0:20:8b:c0:0a:f1:0b:f0:de:c1:4a:62:fd:f0:53:76: 95:b2:40:73:e9:1a:b4:e0:7e:3e:b9:84:39:65:b8:b2:ee:8c: 43:d5:9c:32:4f:0b:72:77:f3:08:26:30:a6:41:a9:88:1e:22: 48:d5:91:c9:da:de:8f:67:38:26:ad:e7:63:3c:33:00:19:27: 87:f3:c6:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjUwNTEyMjAyMzQ3WhcNMjUwNTE5MjAyMzQ3WjAYMRYwFAYD VQQDEw02ODIyNThkMy00M2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XMAB/t7iFmog3bxqg50PKd79BOkvPI6DmZhMgMyNqz0IW6nx3MpGlu89nlH VaZjtldW/6P9ckqlmcGhoN5+rwH1YM9w9NJQYzrgnOR9ua8+8/6FpuQfG2m07tWT o2r94jerfzNipx/CtR1QQ3x84Lpu99i4Vd/YEfaPExA7ymmcKbAPHAll183QwHe1 b/JPZ/xDLk/352CxIL8ADOqcS8E7jSLZ8JXt6+8g2X2yLHs4II1Y1Ltj/rFKXjpA 4F3v/QGmB4soTQt4iaCOBCciSfiXgR0VP9It4vlqVT5PmZtJ0m23Rd2dN+melCkO GT+qA7DYepEG9ZHE+sktPsUhNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMckN9t3 QGokRsrfMsgXiEdDktukMB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTJBQy9BNDhENTk2NkJCM0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVp X1ZTV29wR0RDMzA0c0x5OFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqhGw4ZhAKHEwHJi1FH8IHSSseYTAm8nvn0jLqB8FLt7iM0dFOi9fw 0yUZr2jmWwUBtewgRy6eD0ED1LcDTkWo1UpdiU8I2wLAid4akM/b5tg6xlMHOOYA Rr59ORhUe0o8Tj8mWnRY+eOsjgwSY4ayGRDMxdVFDuQL2BAtwIqsgdJd/nT6D/z4 nFnOArk6PTUI1mV/ncit4oZMD/Owc1P+L/99LdZ+ueOVIiTIBObu+LARUCvOXvAg i8AK8Qvw3sFKYv3wU3aVskBz6Rq04H4+uYQ5Zbiy7oxD1ZwyTwtyd/MIJjCmQamI HiJI1ZHJ2t6PZzgmredjPDMAGSeH88Z1 -----END CERTIFICATE-----Generated at Wed May 14 04:45:34 2025 by rpki-client