$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft File: NCaEGmQGa3hlW77KDAH9CfZXBTY.mft (raw, json) Hash identifier: GKf7BYssDgxNf+xUZOegpq/rEG/882MPQOxu71Z0Des= Subject key identifier: DC:EB:67:2F:1F:F4:CD:13:19:AA:27:95:B1:8F:9A:C5:E8:F1:18:DD Authority key identifier: 34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 Certificate issuer: /CN=A9157DAE/serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Certificate serial: 0187 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft Manifest number: 0187 Signing time: Mon 12 May 2025 17:03:34 +0000 Manifest this update: Mon 12 May 2025 17:03:34 +0000 Manifest next update: Mon 19 May 2025 17:03:34 +0000 Files and hashes: 1: NCaEGmQGa3hlW77KDAH9CfZXBTY.crl (hash: khk+D273Q81/Nv0eXO4GdutQGQtHfu/gL5s756PblWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=3426841A64066B78655BBECA0C01FD09F6570536 Validity Not Before: May 12 17:03:34 2025 GMT Not After : May 19 17:03:34 2025 GMT Subject: CN=682229e6-3193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e9:63:47:64:26:66:cd:f7:34:ff:23:85:4c: 22:d8:d4:59:3d:70:8e:02:69:7b:0b:b6:ef:25:86: 01:58:50:a4:6d:73:64:cc:d6:3b:7a:c6:09:c3:39: 3a:ac:fb:35:94:0a:a8:9f:a0:9b:ff:19:ed:d7:48: 78:65:0a:7e:72:2a:21:f8:50:3f:39:f1:d5:39:c3: c7:01:3e:6b:7e:8a:fb:c5:34:b8:f6:5e:dc:81:a2: 9e:f9:93:1d:97:48:e5:f9:7e:ac:db:5b:00:eb:1b: c7:eb:20:ad:f2:5e:5d:6a:7a:e1:09:af:96:b3:a0: b7:e1:97:8b:23:1b:0a:f1:a2:75:32:c8:94:a0:49: a2:72:12:d5:2e:72:14:b0:8e:37:55:84:6b:1c:ff: 53:ba:0c:f3:2f:56:30:3b:b4:c4:b1:b6:34:f1:76: 2e:3d:f9:55:dc:b6:ea:2e:45:4f:8e:82:fe:6d:f5: e1:d8:cd:7a:00:c6:38:02:a0:cc:a3:3f:0e:34:f2: ce:ff:6b:85:0f:61:e6:ed:0a:4a:4e:c5:2e:94:b3: 3d:82:f7:a9:24:22:12:2a:49:83:17:07:8e:bc:84: 98:09:96:96:99:99:c1:a1:f4:13:99:96:05:bf:89: da:77:a3:45:7e:cf:1b:66:4f:a3:3c:7e:0a:9b:97: 12:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EB:67:2F:1F:F4:CD:13:19:AA:27:95:B1:8F:9A:C5:E8:F1:18:DD X509v3 Authority Key Identifier: keyid:34:26:84:1A:64:06:6B:78:65:5B:BE:CA:0C:01:FD:09:F6:57:05:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/NCaEGmQGa3hlW77KDAH9CfZXBTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/104A7E1EDFAD11ED95153D31C4F9AE02/NCaEGmQGa3hlW77KDAH9CfZXBTY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:79:82:d9:a1:4c:34:c4:85:29:e3:a3:6b:4d:bf:a2:4a:dc: c9:98:88:86:20:e0:47:93:bd:d2:d8:63:4b:6c:9d:9f:f7:82: 84:67:1c:12:39:dc:72:6b:aa:c4:7a:67:80:87:2d:c7:17:b5: 24:22:f4:0f:bd:89:69:a1:a9:d7:10:20:e1:47:ae:69:84:c9: 3d:d9:ef:84:a1:7c:33:8a:35:60:9b:43:b9:97:71:fb:b1:ae: 13:3c:98:87:4c:32:63:70:58:2b:99:72:49:ef:a1:51:b1:17: 3d:97:68:b3:8d:8e:9f:b9:e4:08:a4:20:16:41:1d:89:da:81: d1:49:41:94:f7:8c:d9:dc:14:86:bc:ef:90:c8:1e:c5:9b:83: f3:29:c1:16:99:f0:93:7a:55:db:5c:83:cd:f1:53:7d:6e:26: 25:44:5b:53:0a:30:a2:b2:45:5a:a3:f8:51:a7:d7:bc:93:ce: c9:64:ee:68:94:69:07:a8:af:3d:42:d8:f3:4d:89:a8:f5:09: 41:e0:bb:16:ed:0f:0e:fa:7c:85:b2:03:d4:4e:37:a1:48:ba: 28:21:c1:57:ca:2a:fc:1b:36:60:bb:fa:75:bc:53:71:3c:9c: da:66:fc:b0:7c:a3:43:b8:c9:f2:5f:45:fe:43:b4:90:5f:3a: 77:9a:99:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDM0MjY4NDFBNjQwNjZCNzg2NTVCQkVDQTBDMDFGRDA5 RjY1NzA1MzYwHhcNMjUwNTEyMTcwMzM0WhcNMjUwNTE5MTcwMzM0WjAYMRYwFAYD VQQDEw02ODIyMjllNi0zMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+ljR2QmZs33NP8jhUwi2NRZPXCOAml7C7bvJYYBWFCkbXNkzNY7esYJwzk6 rPs1lAqon6Cb/xnt10h4ZQp+cioh+FA/OfHVOcPHAT5rfor7xTS49l7cgaKe+ZMd l0jl+X6s21sA6xvH6yCt8l5danrhCa+Ws6C34ZeLIxsK8aJ1MsiUoEmichLVLnIU sI43VYRrHP9TugzzL1YwO7TEsbY08XYuPflV3LbqLkVPjoL+bfXh2M16AMY4AqDM oz8ONPLO/2uFD2Hm7QpKTsUulLM9gvepJCISKkmDFweOvISYCZaWmZnBofQTmZYF v4nad6NFfs8bZk+jPH4Km5cS0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzrZy8f 9M0TGaonlbGPmsXo8RjdMB8GA1UdIwQYMBaAFDQmhBpkBmt4ZVu+ygwB/Qn2VwU2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS8xMDRBN0UxRURG QUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2EzaGxXNzdLREFIOUNmWlhC VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL05DYUVHbVFHYTNobFc3N0tEQUg5Q2ZaWEJUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS8xMDRBN0UxRURGQUQxMUVEOTUxNTNEMzFDNEY5QUUwMi9OQ2FFR21RR2Ez aGxXNzdLREFIOUNmWlhCVFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADeYLZoUw0xIUp46NrTb+iStzJmIiGIOBHk73S2GNLbJ2f94KEZxwS Odxya6rEemeAhy3HF7UkIvQPvYlpoanXECDhR65phMk92e+EoXwzijVgm0O5l3H7 sa4TPJiHTDJjcFgrmXJJ76FRsRc9l2izjY6fueQIpCAWQR2J2oHRSUGU94zZ3BSG vO+QyB7Fm4PzKcEWmfCTelXbXIPN8VN9biYlRFtTCjCiskVao/hRp9e8k87JZO5o lGkHqK89QtjzTYmo9QlB4LsW7Q8O+nyFsgPUTjehSLooIcFXyir8GzZgu/p1vFNx PJzaZvywfKNDuMnyX0X+Q7SQXzp3mpkI -----END CERTIFICATE-----Generated at Tue May 13 00:19:00 2025 by rpki-client