$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft File: nIFHHxiq7s35RafJF_2KiYXXw6w.mft (raw, json) Hash identifier: 5LfgfV98OQTqq0DBlrNYCEtdOneQ73fJqW6EEM0bjcE= Subject key identifier: 86:C2:DE:40:02:49:98:33:AF:CF:97:62:04:DF:0A:EF:C0:C6:BA:1C Authority key identifier: 9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC Certificate issuer: /CN=A914C33A/serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Certificate serial: 2A84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft Manifest number: 2A46 Signing time: Wed 14 May 2025 15:37:32 +0000 Manifest this update: Wed 14 May 2025 15:37:32 +0000 Manifest next update: Wed 21 May 2025 15:37:32 +0000 Files and hashes: 1: nIFHHxiq7s35RafJF_2KiYXXw6w.crl (hash: 7Qej5f+tyJeGVs7zBGkihDtA7KOZdWVOk7vy/9iMYDY=) 2: FB405D86900E11EAA43BB21FC4F9AE02.roa (hash: xBHGq+I+gC6mBEO7iAqcoK3D8WpSvv5eSxXQn/j0Q60=) 3: 3118E43E966B11EAAA23047CC4F9AE02.roa (hash: gq6V0/TIcAAKvh2pY9bQTg3IwnYpN56MDdlGTWJZ3cM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10884 (0x2a84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=9C81471F18AAEECDF945A7C917FD8A8985D7C3AC Validity Not Before: May 14 15:37:32 2025 GMT Not After : May 21 15:37:32 2025 GMT Subject: CN=6824b8bc-dc17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:60:0c:64:ab:5c:d0:57:cd:5b:bf:74:40:ba: 96:6d:27:43:89:4e:a2:79:c0:d7:04:55:ec:61:1a: 15:f0:01:07:0e:c5:61:3e:34:82:70:1d:88:ab:d3: d3:50:64:d0:5b:64:b4:48:59:8c:a0:0b:52:77:53: a8:0b:ab:8e:91:a4:eb:75:f3:27:6a:c3:6e:15:8c: c6:1a:e2:6e:6b:aa:36:7b:e8:df:10:28:37:6d:e8: 48:1b:4c:11:f7:a5:56:5d:2e:88:b4:70:e1:97:a2: e8:38:2e:a7:ee:9b:30:c0:c2:ed:dc:42:e8:2a:24: 45:f7:a9:21:80:59:70:f5:8b:e3:97:6c:ee:0e:78: 85:21:40:2d:cc:ec:93:14:7e:38:97:23:97:f2:a5: 7c:7d:e7:9a:39:b7:3b:c3:63:c8:59:a4:26:04:7b: 8f:9f:72:be:45:fb:e8:9d:d2:97:ef:cb:15:9c:06: c2:de:97:9e:4c:44:2a:88:4a:f3:05:f5:da:ee:9a: 09:50:d0:f9:9f:55:9f:92:b6:a5:f8:7b:e2:8b:75: 76:00:77:ff:98:6a:ad:89:56:10:98:02:d0:51:10: 57:24:63:d3:10:1d:23:70:80:a8:67:e2:43:64:1b: 4f:8d:68:a5:30:17:6a:b9:59:ea:1a:f1:fb:87:b2: ba:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C2:DE:40:02:49:98:33:AF:CF:97:62:04:DF:0A:EF:C0:C6:BA:1C X509v3 Authority Key Identifier: keyid:9C:81:47:1F:18:AA:EE:CD:F9:45:A7:C9:17:FD:8A:89:85:D7:C3:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIFHHxiq7s35RafJF_2KiYXXw6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/1D2BD03E2DDB11E49AF61530C4F9AE02/nIFHHxiq7s35RafJF_2KiYXXw6w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:05:61:dd:b1:d9:6c:ff:29:5f:82:c0:6f:68:18:c7:34:fd: 74:e1:64:76:f3:cb:31:bb:de:e5:17:c5:1b:e6:dc:4b:6b:bc: 35:0a:51:a1:25:e1:e2:a9:80:09:93:d6:a2:f7:7d:ac:2d:14: 58:8e:02:37:c3:cb:de:52:52:f8:94:f5:72:68:6a:28:6f:b4: cb:f5:49:f5:70:53:aa:9a:03:e9:5e:66:17:aa:39:c7:60:c9: b0:67:c7:e8:e6:da:e2:55:bf:0f:4f:eb:a9:e2:00:26:7c:8a: c3:2e:10:42:0d:ef:df:af:50:a1:cc:19:4e:c8:15:d3:a1:12: 2c:fd:ad:fa:c9:db:37:9f:a1:cd:21:d1:2d:ca:53:9b:18:e2: 8a:a8:dc:0b:24:fd:36:35:55:5c:93:09:99:39:a9:9a:6c:66: 56:81:26:47:08:56:e6:47:48:44:9c:87:37:fd:8b:3b:09:9f: c4:7a:fe:77:d1:82:67:d1:92:aa:e6:c3:9b:e5:f6:45:74:4c: 36:94:07:28:ee:16:86:d3:7e:66:7a:2c:23:23:c5:ed:4b:2c: 79:02:de:2c:9e:e0:1c:75:11:60:21:55:b1:c5:7e:4a:2d:80: 84:47:91:41:26:81:bf:34:9c:6b:bd:63:5a:21:6b:18:92:05: 12:0d:9b:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDlDODE0NzFGMThBQUVFQ0RGOTQ1QTdDOTE3RkQ4QTg5 ODVEN0MzQUMwHhcNMjUwNTE0MTUzNzMyWhcNMjUwNTIxMTUzNzMyWjAYMRYwFAYD VQQDEw02ODI0YjhiYy1kYzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+mAMZKtc0FfNW790QLqWbSdDiU6iecDXBFXsYRoV8AEHDsVhPjSCcB2Iq9PT UGTQW2S0SFmMoAtSd1OoC6uOkaTrdfMnasNuFYzGGuJua6o2e+jfECg3behIG0wR 96VWXS6ItHDhl6LoOC6n7pswwMLt3ELoKiRF96khgFlw9Yvjl2zuDniFIUAtzOyT FH44lyOX8qV8feeaObc7w2PIWaQmBHuPn3K+RfvondKX78sVnAbC3peeTEQqiErz BfXa7poJUND5n1Wfkral+Hvii3V2AHf/mGqtiVYQmALQURBXJGPTEB0jcICoZ+JD ZBtPjWilMBdquVnqGvH7h7K6oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbC3kAC SZgzr8+XYgTfCu/AxrocMB8GA1UdIwQYMBaAFJyBRx8Yqu7N+UWnyRf9iomF18Os MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS8xRDJCRDAzRTJE REIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdzMzVSYWZKRl8yS2lZWFh3 NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JRkhIeGlxN3MzNVJhZkpGXzJLaVlYWHc2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzMzQS8xRDJCRDAzRTJEREIxMUU0OUFGNjE1MzBDNEY5QUUwMi9uSUZISHhpcTdz MzVSYWZKRl8yS2lZWFh3NncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/BWHdsdls/ylfgsBvaBjHNP104WR288sxu97lF8Ub5txLa7w1ClGh JeHiqYAJk9ai932sLRRYjgI3w8veUlL4lPVyaGoob7TL9Un1cFOqmgPpXmYXqjnH YMmwZ8fo5triVb8PT+up4gAmfIrDLhBCDe/fr1ChzBlOyBXToRIs/a36yds3n6HN IdEtylObGOKKqNwLJP02NVVckwmZOamabGZWgSZHCFbmR0hEnIc3/Ys7CZ/Eev53 0YJn0ZKq5sOb5fZFdEw2lAco7haG035meiwjI8XtSyx5At4snuAcdRFgIVWxxX5K LYCER5FBJoG/NJxrvWNaIWsYkgUSDZvK -----END CERTIFICATE-----Generated at Fri May 16 09:49:38 2025 by rpki-client