$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft File: nL-xN0vpMpetwbIdvTeY0VvSdN8.mft (raw, json) Hash identifier: OFkgTN7DRsljXTZbaAIQ1UPDbxRcORPhWXrWwLk/QSc= Subject key identifier: 70:78:82:E4:D7:D8:4C:59:7A:58:22:CD:61:5C:7A:FA:07:05:B3:CD Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0C38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft Manifest number: 0C31 Signing time: Mon 12 May 2025 18:22:28 +0000 Manifest this update: Mon 12 May 2025 18:22:27 +0000 Manifest next update: Mon 19 May 2025 18:22:27 +0000 Files and hashes: 1: nL-xN0vpMpetwbIdvTeY0VvSdN8.crl (hash: c9EZf3+hADPQNK3j6aVcrQf5sanf9bwc5JJaE2TJVdg=) 2: E905CD5808F111EA8E4F1D51C4F9AE02.roa (hash: Ykh/ajdiEQ6UqJC1nIow2mRMlvxbjVdtujI4Th0ysiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696, serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: May 12 18:22:27 2025 GMT Not After : May 19 18:22:27 2025 GMT Subject: CN=68223c64-44a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5d:12:98:9b:7d:a5:14:73:e8:da:ee:29:65: e1:6e:f9:13:4e:cb:df:5d:8f:f5:d2:49:15:d8:87: de:67:32:02:27:7b:44:09:9c:66:e9:3a:d3:3a:01: 41:89:7b:3d:56:e8:78:b9:67:01:2f:1c:ad:d5:14: e3:05:0d:e6:71:a0:db:98:8c:49:4a:3c:30:e4:b2: a4:76:58:c4:e7:25:96:be:27:61:aa:7b:aa:93:3a: 87:7e:b6:19:7b:66:e9:a1:f1:16:6b:3b:6e:72:d3: 6c:f2:e3:31:62:5d:70:54:4e:4e:b5:f6:6e:9e:1c: 4f:15:68:e5:67:4d:80:19:8c:95:cd:3e:33:b2:2c: 30:b5:58:c2:b0:33:93:07:94:cc:0c:ff:47:bd:8f: 00:29:92:3e:70:b3:06:2c:4a:99:13:af:34:47:a3: 06:d8:4b:56:3a:9c:10:05:22:9e:0d:9a:bb:6d:a1: ba:8d:d2:79:2f:dc:c2:64:cd:5d:0e:1e:4b:df:fd: 6a:7e:00:8a:24:2e:0d:ec:4e:a2:7d:0c:40:44:48: ab:fe:9f:ab:dd:1c:72:0c:be:de:54:3a:1c:d4:cc: 0b:0c:3d:3c:ba:88:dd:ed:96:6d:41:2f:bc:fa:f4: 60:ac:54:d4:39:2a:84:44:89:64:e6:6b:21:a1:f6: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:78:82:E4:D7:D8:4C:59:7A:58:22:CD:61:5C:7A:FA:07:05:B3:CD X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:40:8f:60:23:8e:55:f6:36:df:0d:03:9b:4a:13:dc:f5:fb: 54:5c:f5:91:b4:7b:69:1b:fb:a8:3c:fb:23:7b:c3:4b:17:91: 96:38:08:02:59:2e:eb:37:4e:2d:c5:46:05:11:70:7f:cb:b8: 2c:e9:47:68:13:47:09:80:06:96:23:72:0e:17:35:99:76:07: c6:ca:96:2c:a1:ea:2c:0b:0e:a0:6f:e2:54:52:a4:5c:92:e1: a3:5b:6f:09:d8:31:3e:bf:a8:63:01:87:11:3e:47:54:e7:f2: 74:87:8b:9a:1b:aa:97:56:00:69:1a:de:3e:fd:05:dd:c8:88: a5:ea:34:87:bd:03:73:ce:68:6f:4f:59:17:c0:87:2d:0d:7c: 5f:90:b0:8d:18:da:e8:d5:48:bb:48:84:81:2d:99:95:cc:39: 87:a6:dd:62:72:3f:15:fd:67:31:34:ea:7e:d8:9d:7e:34:a9: 0b:89:4d:70:bd:2d:80:ad:7f:3a:c1:f8:1e:af:d1:a4:cb:d3: 19:36:19:c1:d4:29:28:e4:a0:15:c4:a5:2a:be:c0:66:7e:e4: 7a:44:f4:42:5e:6e:96:01:2b:23:d1:c6:ed:e6:04:b5:ac:66: 99:ee:75:07:ab:41:92:90:8c:f5:96:28:8c:4d:b2:d2:ed:33: 7c:cc:ac:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjUwNTEyMTgyMjI3WhcNMjUwNTE5MTgyMjI3WjAYMRYwFAYD VQQDEw02ODIyM2M2NC00NGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl0SmJt9pRRz6NruKWXhbvkTTsvfXY/10kkV2IfeZzICJ3tECZxm6TrTOgFB iXs9Vuh4uWcBLxyt1RTjBQ3mcaDbmIxJSjww5LKkdljE5yWWvidhqnuqkzqHfrYZ e2bpofEWaztuctNs8uMxYl1wVE5OtfZunhxPFWjlZ02AGYyVzT4zsiwwtVjCsDOT B5TMDP9HvY8AKZI+cLMGLEqZE680R6MG2EtWOpwQBSKeDZq7baG6jdJ5L9zCZM1d Dh5L3/1qfgCKJC4N7E6ifQxAREir/p+r3RxyDL7eVDoc1MwLDD08uojd7ZZtQS+8 +vRgrFTUOSqERIlk5mshofYnqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHB4guTX 2ExZelgizWFcevoHBbPNMB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjY5Ni83MjVDQTFENDA2Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1w ZXR3YklkdlRlWTBWdlNkTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdQI9gI45V9jbfDQObShPc9ftUXPWRtHtpG/uoPPsje8NLF5GWOAgC WS7rN04txUYFEXB/y7gs6UdoE0cJgAaWI3IOFzWZdgfGypYsoeosCw6gb+JUUqRc kuGjW28J2DE+v6hjAYcRPkdU5/J0h4uaG6qXVgBpGt4+/QXdyIil6jSHvQNzzmhv T1kXwIctDXxfkLCNGNro1Ui7SISBLZmVzDmHpt1icj8V/WcxNOp+2J1+NKkLiU1w vS2ArX86wfger9Gky9MZNhnB1Cko5KAVxKUqvsBmfuR6RPRCXm6WASsj0cbt5gS1 rGaZ7nUHq0GSkIz1liiMTbLS7TN8zKz6 -----END CERTIFICATE-----Generated at Tue May 13 04:48:06 2025 by rpki-client