$ rpki-client -vvf rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft File: nczQgPBy3iTvhCxqopJJnvE2m_Q.mft (raw, json) Hash identifier: CJIJue1ZWqLkQch0X+TWJjRgELJavEaYF+ZpCMsBtWw= Subject key identifier: 39:A0:20:CA:ED:8D:41:E6:EE:30:39:80:4D:9A:B5:9F:7D:E8:CC:3D Authority key identifier: 9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 Certificate issuer: /CN=A916A504/serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft Manifest number: 3F Signing time: Thu 15 May 2025 06:47:06 +0000 Manifest this update: Thu 15 May 2025 06:47:05 +0000 Manifest next update: Thu 22 May 2025 06:47:05 +0000 Files and hashes: 1: nczQgPBy3iTvhCxqopJJnvE2m_Q.crl (hash: 0eWlOChthfvnmQALRLkwuvEmcbI+CpErL4FFZe5FiLg=) 2: D7BBDE18D3AB11EFB022202CC4F9AE02.roa (hash: 4wQj2D8FHVqXjukwrv/CmROQ+WtAW+LZQBCb8jHb8l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A504, serialNumber=9DCCD080F072DE24EF842C6AA292499EF1369BF4 Validity Not Before: May 15 06:47:05 2025 GMT Not After : May 22 06:47:05 2025 GMT Subject: CN=68258dea-a00d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4d:0e:dd:46:92:62:32:10:f3:df:64:57:47: bb:2c:f7:25:42:5e:24:a3:13:f0:7a:7b:2c:73:13: 68:26:43:b9:68:64:6d:be:39:c7:f7:d2:85:03:6d: 90:98:cf:d7:84:61:54:bc:14:b0:29:eb:b3:cc:10: 01:25:2d:0e:bd:77:27:52:9b:a8:00:d6:11:cb:8f: 62:3c:2d:40:ba:de:68:d8:2a:dc:9c:67:89:1d:80: 82:b1:a3:99:4d:1f:66:3c:da:68:47:fe:6f:f3:a7: b0:0a:4f:5f:e0:1a:79:8a:3c:31:d2:80:07:48:f2: ce:78:32:4f:ef:44:e6:06:2a:48:e4:e2:89:a1:f9: 4a:38:18:47:78:9c:a5:ad:0b:f8:a3:c9:1a:d8:4d: 69:30:cc:29:6d:14:b6:e9:c0:b2:b2:88:23:94:95: 93:6c:74:bb:27:d2:ee:14:f8:78:72:06:04:06:13: ab:e3:07:2f:af:05:ee:ce:13:55:6c:8d:a8:4a:1e: f3:24:9e:26:8e:5e:3e:05:55:73:f2:64:ea:83:da: 50:35:b0:16:a2:00:19:e1:6e:d7:e7:72:d5:18:a1: 39:a4:cd:0d:e8:91:d3:a7:97:7e:d5:f3:f8:59:d8: 25:a2:c9:a4:58:67:df:c1:5a:57:dd:dd:51:c3:fc: f9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A0:20:CA:ED:8D:41:E6:EE:30:39:80:4D:9A:B5:9F:7D:E8:CC:3D X509v3 Authority Key Identifier: keyid:9D:CC:D0:80:F0:72:DE:24:EF:84:2C:6A:A2:92:49:9E:F1:36:9B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nczQgPBy3iTvhCxqopJJnvE2m_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A504/321BC48CD3AB11EF8EBD0C2BC4F9AE02/nczQgPBy3iTvhCxqopJJnvE2m_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:13:4d:31:01:ee:5e:bb:a4:6a:36:cc:08:d1:77:f7:b0:ab: e4:92:6c:6f:2e:80:73:73:ab:c8:62:1a:dd:1d:f7:0c:ac:c6: e7:8d:e8:fa:b4:f7:0d:40:a6:47:46:8e:86:7c:fc:9c:f0:7f: 44:6f:45:aa:84:24:02:e7:d6:85:66:80:8e:21:b7:32:df:fe: 3b:7b:fa:e7:4e:24:66:51:01:bc:3e:19:90:a2:3d:31:88:49: 63:6c:8c:38:72:68:3d:7e:f5:a1:df:64:9c:b0:50:82:b4:dd: ff:6e:ba:2a:69:82:3c:82:59:bb:1a:91:83:1e:8a:e8:6f:b5: 42:de:40:bc:48:1e:67:16:3c:46:18:62:0c:35:1f:4c:d3:23: 5d:09:25:fe:f3:1d:5f:b2:8d:c0:d6:18:fa:56:62:97:63:e3: 4b:d3:00:ea:7e:74:86:e4:be:37:5c:7e:ea:08:17:05:97:96: 7c:0b:ec:35:84:93:1e:ea:54:3d:d8:be:08:ea:57:0e:3d:36: 87:93:04:a3:bd:e9:93:82:e5:ba:3a:92:41:bc:0d:42:cc:48: 96:7d:eb:a1:43:be:0c:f5:2f:ff:19:84:fb:38:c2:84:6c:3a: bf:5c:f6:b5:b0:2b:1b:79:43:49:fb:9f:5f:7a:7f:b1:d8:60: 87:6f:fe:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUwNDExMC8GA1UEBRMoOURDQ0QwODBGMDcyREUyNEVGODQyQzZBQTI5MjQ5OUVG MTM2OUJGNDAeFw0yNTA1MTUwNjQ3MDVaFw0yNTA1MjIwNjQ3MDVaMBgxFjAUBgNV BAMTDTY4MjU4ZGVhLWEwMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxTQ7dRpJiMhDz32RXR7ss9yVCXiSjE/B6eyxzE2gmQ7loZG2+Ocf30oUDbZCY z9eEYVS8FLAp67PMEAElLQ69dydSm6gA1hHLj2I8LUC63mjYKtycZ4kdgIKxo5lN H2Y82mhH/m/zp7AKT1/gGnmKPDHSgAdI8s54Mk/vROYGKkjk4omh+Uo4GEd4nKWt C/ijyRrYTWkwzCltFLbpwLKyiCOUlZNsdLsn0u4U+HhyBgQGE6vjBy+vBe7OE1Vs jahKHvMkniaOXj4FVXPyZOqD2lA1sBaiABnhbtfnctUYoTmkzQ3okdOnl37V8/hZ 2CWiyaRYZ9/BWlfd3VHD/PnbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOaAgyu2N QebuMDmATZq1n33ozD0wHwYDVR0jBBgwFoAUnczQgPBy3iTvhCxqopJJnvE2m/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTA0LzMyMUJDNDhDRDNB QjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lUdmhDeHFvcEpKbnZFMm1f US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmN6UWdQQnkzaVR2aEN4cW9wSkpudkUybV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB NTA0LzMyMUJDNDhDRDNBQjExRUY4RUJEMEMyQkM0RjlBRTAyL25jelFnUEJ5M2lU dmhDeHFvcEpKbnZFMm1fUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEUTTTEB7l67pGo2zAjRd/ewq+SSbG8ugHNzq8hiGt0d9wysxueN6Pq0 9w1ApkdGjoZ8/Jzwf0RvRaqEJALn1oVmgI4htzLf/jt7+udOJGZRAbw+GZCiPTGI SWNsjDhyaD1+9aHfZJywUIK03f9uuippgjyCWbsakYMeiuhvtULeQLxIHmcWPEYY Ygw1H0zTI10JJf7zHV+yjcDWGPpWYpdj40vTAOp+dIbkvjdcfuoIFwWXlnwL7DWE kx7qVD3YvgjqVw49NoeTBKO96ZOC5bo6kkG8DULMSJZ966FDvgz1L/8ZhPs4woRs Or9c9rWwKxt5Q0n7n196f7HYYIdv/u8= -----END CERTIFICATE-----Generated at Sat May 17 03:40:36 2025 by rpki-client