$ rpki-client -vvf rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft File: nb0ycj1x0bhWzIRJBDf78NpVJWo.mft (raw, json) Hash identifier: edW3e3c8jIBIPqIzoWsEjpJVGNWge0V/+CdjYqHUu9M= Subject key identifier: 92:E6:F2:CB:2F:8D:61:1A:4C:DB:74:EA:6B:DD:12:5A:BC:E4:11:41 Authority key identifier: 9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A Certificate issuer: /CN=A9165B41/serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Certificate serial: 0F35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft Manifest number: 0F2E Signing time: Sat 10 May 2025 17:28:58 +0000 Manifest this update: Sat 10 May 2025 17:28:57 +0000 Manifest next update: Sat 17 May 2025 17:28:57 +0000 Files and hashes: 1: nb0ycj1x0bhWzIRJBDf78NpVJWo.crl (hash: A9qAaxq/wr8yc3/KvHnOxViTZgl9HArLodIcGuTsVbA=) 2: B0DA9FC46FDD11E9BC194664C4F9AE02.roa (hash: Hb9hkw/JGVDNL3WRZDBLo8Md0h4gCqoVhQUhIQUyimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3893 (0xf35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165B41, serialNumber=9DBD32723D71D1B856CC84490437FBF0DA55256A Validity Not Before: May 10 17:28:57 2025 GMT Not After : May 17 17:28:57 2025 GMT Subject: CN=681f8cda-48a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:77:84:36:24:89:b1:e5:df:52:05:b3:1f: 94:9f:46:47:45:ee:9f:05:d8:62:81:4d:94:a1:c9: 7a:fe:39:9c:86:81:60:30:a3:3c:3c:a2:70:7c:ae: f7:36:a6:00:22:91:e8:d0:61:bd:47:0b:1c:7f:c6: 8e:a5:61:c5:d9:0d:00:2d:38:0b:0c:9a:28:d8:31: a8:00:6f:d8:70:8d:3f:eb:3d:60:c5:08:4e:8a:92: fd:f1:94:66:5f:24:92:22:df:3d:dc:20:e7:80:ff: 99:cd:0f:38:4a:69:eb:2c:ea:12:34:c2:d3:e6:a3: a3:63:bc:0a:a7:fe:da:07:9c:e0:05:51:99:57:c7: d5:ef:84:76:67:d2:8b:aa:05:ae:a2:e1:67:a2:09: a1:12:e7:b0:60:09:cf:02:5e:80:0a:5d:30:07:5f: 83:3a:58:1a:5d:84:dc:5b:20:79:8d:9b:32:ed:46: 60:27:d9:aa:92:fa:53:a0:89:54:30:d0:ac:63:10: 27:1b:bb:b6:58:56:d1:bf:c3:d2:65:23:92:88:3f: 49:85:0f:83:7c:74:f5:58:8f:cf:ff:91:ee:e6:ca: 36:7b:09:08:e1:4a:98:24:1b:55:93:8d:f0:c3:40: 37:26:d5:a4:64:86:b1:c9:5d:3e:8d:f0:19:93:eb: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E6:F2:CB:2F:8D:61:1A:4C:DB:74:EA:6B:DD:12:5A:BC:E4:11:41 X509v3 Authority Key Identifier: keyid:9D:BD:32:72:3D:71:D1:B8:56:CC:84:49:04:37:FB:F0:DA:55:25:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nb0ycj1x0bhWzIRJBDf78NpVJWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165B41/33D253166FDB11E9A6E6BD5DC4F9AE02/nb0ycj1x0bhWzIRJBDf78NpVJWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:49:4e:e1:29:02:fd:c5:57:67:dd:c2:20:c3:84:55:6e:3e: 38:3f:19:73:8d:46:41:72:e1:db:c3:5a:c0:79:83:6f:72:df: 61:ee:63:2b:fa:6b:2a:f2:11:b7:0c:82:ae:92:5a:8a:73:60: 43:c6:25:7a:65:6f:50:8f:26:f9:a3:71:15:06:4b:58:f9:8f: b8:2d:f2:42:95:97:15:73:c5:08:9d:8d:f2:d8:69:67:8e:1d: cb:4c:b1:18:fc:06:e6:40:a8:7f:bb:4a:e0:cf:a9:d2:25:03: 7c:21:d3:50:25:88:77:17:47:24:41:02:bd:38:98:1c:3b:23: 17:a6:57:be:24:25:46:06:79:2d:1f:bf:1d:bf:ea:a0:a2:9c: f6:d3:ab:46:d8:d5:1b:d6:2d:d4:99:62:4c:62:54:c6:60:63: 44:0b:8b:e7:f2:50:77:e2:38:0b:38:78:e7:ff:91:1e:69:36: be:81:8b:96:43:dd:75:97:72:06:65:e5:5c:16:ff:1c:3e:d8: 07:aa:ef:d6:b5:a5:99:92:4b:a3:3b:a8:a8:c8:3a:5e:2b:14: c1:fa:35:9d:66:c4:b7:0d:f2:a8:dd:f2:dd:35:74:a1:59:38: 32:93:ff:a7:00:b1:0d:c4:05:85:a9:0d:ee:7f:cd:98:93:58: 26:e6:b2:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCNDExMTAvBgNVBAUTKDlEQkQzMjcyM0Q3MUQxQjg1NkNDODQ0OTA0MzdGQkYw REE1NTI1NkEwHhcNMjUwNTEwMTcyODU3WhcNMjUwNTE3MTcyODU3WjAYMRYwFAYD VQQDEw02ODFmOGNkYS00OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0853hDYkibHl31IFsx+Un0ZHRe6fBdhigU2Uocl6/jmchoFgMKM8PKJwfK73 NqYAIpHo0GG9Rwscf8aOpWHF2Q0ALTgLDJoo2DGoAG/YcI0/6z1gxQhOipL98ZRm XySSIt893CDngP+ZzQ84SmnrLOoSNMLT5qOjY7wKp/7aB5zgBVGZV8fV74R2Z9KL qgWuouFnogmhEuewYAnPAl6ACl0wB1+DOlgaXYTcWyB5jZsy7UZgJ9mqkvpToIlU MNCsYxAnG7u2WFbRv8PSZSOSiD9JhQ+DfHT1WI/P/5Hu5so2ewkI4UqYJBtVk43w w0A3JtWkZIaxyV0+jfAZk+tPEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLm8ssv jWEaTNt06mvdElq85BFBMB8GA1UdIwQYMBaAFJ29MnI9cdG4VsyESQQ3+/DaVSVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUI0MS8zM0QyNTMxNjZG REIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBiaFd6SVJKQkRmNzhOcFZK V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iMHljajF4MGJoV3pJUkpCRGY3OE5wVkpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUI0MS8zM0QyNTMxNjZGREIxMUU5QTZFNkJENURDNEY5QUUwMi9uYjB5Y2oxeDBi aFd6SVJKQkRmNzhOcFZKV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCESU7hKQL9xVdn3cIgw4RVbj44PxlzjUZBcuHbw1rAeYNvct9h7mMr +msq8hG3DIKuklqKc2BDxiV6ZW9Qjyb5o3EVBktY+Y+4LfJClZcVc8UInY3y2Gln jh3LTLEY/AbmQKh/u0rgz6nSJQN8IdNQJYh3F0ckQQK9OJgcOyMXple+JCVGBnkt H78dv+qgopz206tG2NUb1i3UmWJMYlTGYGNEC4vn8lB34jgLOHjn/5EeaTa+gYuW Q911l3IGZeVcFv8cPtgHqu/WtaWZkkujO6ioyDpeKxTB+jWdZsS3DfKo3fLdNXSh WTgyk/+nALENxAWFqQ3uf82Yk1gm5rId -----END CERTIFICATE-----Generated at Sun May 11 22:30:27 2025 by rpki-client