$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft File: Nu6KQBMF6zjijYal2392KKq34k8.mft (raw, json) Hash identifier: 1b8eTAtjXLpKnlbOPX7wLrqqFHA1Rpioe3uaQ97+L7g= Subject key identifier: 63:B3:FB:09:86:FF:9B:EC:93:3E:46:A3:AE:24:1E:A0:6A:FF:D1:E5 Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 10F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft Manifest number: 1095 Signing time: Fri 16 May 2025 17:35:01 +0000 Manifest this update: Fri 16 May 2025 17:35:01 +0000 Manifest next update: Fri 23 May 2025 17:35:01 +0000 Files and hashes: 1: Nu6KQBMF6zjijYal2392KKq34k8.crl (hash: 4/JXNNeMOQqS4xzV/xkwVOKdRnY7RO5GQ5LdqzUZbrU=) 2: 264DBA882E9411E9A7232A19C4F9AE02.roa (hash: 6F8MZepb4YKIzRX/VIlir5UqD3bAL/MGaiUqh38H4VM=) 3: 8F5856362E9511E9896EFA1DC4F9AE02.roa (hash: pa1Fyj4rJ9wsQhHKUYwleZnXaMszFSBEcPoalFBKpsk=) 4: 53DFF8EC2E9111E999636910C4F9AE02.roa (hash: pFWyJjF088oOGw4nNl0g4YWTqxbuE3QpkV5M07utSjo=) 5: 8CD1AEC62E9511E9896EFA1DC4F9AE02.roa (hash: nCG2ItoYRYsNw2ltluT/NhcDchTRJwPgu00JBArVHNU=) 6: 52685F222E9111E999636910C4F9AE02.roa (hash: syk5eLA6QE1f9vtOv8vWj023d03Vzooyr78RlQmdrWU=) 7: 8DFDF8AE2E9511E9896EFA1DC4F9AE02.roa (hash: bboRKjRgAmNIyMUD8F0R6YlK8KxKhJJ94gWMf5xkK7c=) 8: 81CBCECA0BFF11EE9AE0F676C4F9AE02.roa (hash: qkUQDs49KFim2MLHAjsJwTxoBoVgmCtXt1u3Zkv+Xtw=) 9: 5870952EC53011EA98D1D651C4F9AE02.roa (hash: qlkxrtDkdB7rHBdwPP73Uk43WLSuezxmGhVTKZPNFac=) 10: 8D76CA462E9511E9896EFA1DC4F9AE02.roa (hash: uqBg3EfYSkP8xrpkIoXRk79rOz8VHiKa+sc7sMHbX+4=) 11: 8EA288F62E9511E9896EFA1DC4F9AE02.roa (hash: 7HqOnLpZm+A/vwRmSQHLC5scxprHPl3diogTB/9e/W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4343 (0x10f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 16 17:35:01 2025 GMT Not After : May 23 17:35:01 2025 GMT Subject: CN=68277745-a50a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:73:60:c1:97:5e:dc:9c:7b:6b:52:4c:2b:4b: 35:f7:e0:66:41:9b:52:47:56:a1:2a:0b:49:13:e1: bb:04:81:10:27:cb:9e:a8:e2:b2:b7:d3:13:f4:54: 2c:58:f7:e4:7d:a5:16:dc:b9:57:d0:ce:08:18:07: 7d:a0:91:15:15:50:db:28:a5:a2:62:52:c8:96:04: 79:cc:e7:c0:c9:0f:f8:ef:7d:4e:6c:03:d5:f0:50: 1d:9a:2e:92:b2:de:2c:22:bb:79:42:ad:ff:90:2a: fb:26:97:1b:f6:d4:8e:47:69:b7:cc:4b:6d:0e:b5: 0e:65:ab:0d:c5:ae:c3:96:84:1b:9c:cc:34:ea:17: bb:6c:a1:42:0f:b7:86:be:f2:a7:71:19:f6:7f:75: ed:56:93:f0:ca:60:5a:c7:fc:7a:fb:5d:fc:38:0a: d8:de:4a:8b:cb:df:49:39:26:c6:5e:47:97:b4:92: 13:06:cf:15:13:2b:9c:6e:67:81:92:37:07:86:cc: 9d:e3:b7:d5:4d:58:16:5d:25:78:5c:7f:3f:cb:72: 1b:b8:1e:c2:2b:ef:de:9e:f7:4f:f0:6d:db:43:91: 14:25:29:08:49:22:70:fd:11:5b:8e:d5:8a:7c:81: 3d:93:b8:20:04:f8:d3:d0:c0:82:b0:75:24:0f:b7: 10:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B3:FB:09:86:FF:9B:EC:93:3E:46:A3:AE:24:1E:A0:6A:FF:D1:E5 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b4:c9:61:61:2e:43:26:19:51:fb:e4:65:e0:29:09:38:ba: 91:21:1a:cb:7a:07:14:81:f1:f7:36:58:29:26:80:94:cd:be: db:25:af:c0:e0:c2:8f:98:a3:96:a8:42:9b:90:14:2c:f1:a8: 43:f6:84:66:e8:9d:7c:33:37:99:d1:da:56:25:4e:b3:17:6d: 6e:b0:85:3e:7b:9a:89:06:4f:36:19:97:a3:5c:56:22:f0:f0: e2:5c:78:b8:06:dd:25:fa:10:24:86:2f:2c:90:99:0c:ec:37: 22:a3:96:0e:99:13:a6:74:0d:16:cf:d4:db:93:13:21:4c:78: 19:06:76:41:9d:c6:22:c5:5d:0b:81:66:3b:df:16:fb:f4:79: d6:8a:ff:4f:be:b3:5c:76:18:f0:00:11:4f:0b:e4:73:2d:c8: 39:a7:cd:af:53:13:ed:2d:71:92:cd:7d:b2:43:db:bb:4e:56: 25:89:44:81:ba:52:55:db:8c:6a:a8:17:a1:a4:3f:94:76:e4: ba:b7:65:4a:f1:da:5f:b2:d9:80:e3:78:48:35:d7:64:60:a4: bd:f8:bb:9f:fd:1b:57:91:7f:42:dd:7c:5c:ab:25:ad:be:1b: 48:13:a7:e9:73:36:85:23:a2:ad:36:f9:1c:cc:6c:03:63:c4: f4:64:f0:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTE2MTczNTAxWhcNMjUwNTIzMTczNTAxWjAYMRYwFAYD VQQDEw02ODI3Nzc0NS1hNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnNgwZde3Jx7a1JMK0s19+BmQZtSR1ahKgtJE+G7BIEQJ8ueqOKyt9MT9FQs WPfkfaUW3LlX0M4IGAd9oJEVFVDbKKWiYlLIlgR5zOfAyQ/4731ObAPV8FAdmi6S st4sIrt5Qq3/kCr7Jpcb9tSOR2m3zEttDrUOZasNxa7DloQbnMw06he7bKFCD7eG vvKncRn2f3XtVpPwymBax/x6+138OArY3kqLy99JOSbGXkeXtJITBs8VEyucbmeB kjcHhsyd47fVTVgWXSV4XH8/y3IbuB7CK+/envdP8G3bQ5EUJSkISSJw/RFbjtWK fIE9k7ggBPjT0MCCsHUkD7cQywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOz+wmG /5vskz5Go64kHqBq/9HlMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDlCQy84OTI4OTczMDJFOTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6 amlqWWFsMjM5MktLcTM0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCStMlhYS5DJhlR++Rl4CkJOLqRIRrLegcUgfH3NlgpJoCUzb7bJa/A 4MKPmKOWqEKbkBQs8ahD9oRm6J18MzeZ0dpWJU6zF21usIU+e5qJBk82GZejXFYi 8PDiXHi4Bt0l+hAkhi8skJkM7Dcio5YOmROmdA0Wz9TbkxMhTHgZBnZBncYixV0L gWY73xb79HnWiv9PvrNcdhjwABFPC+RzLcg5p82vUxPtLXGSzX2yQ9u7TlYliUSB ulJV24xqqBehpD+UduS6t2VK8dpfstmA43hINddkYKS9+Luf/RtXkX9C3XxcqyWt vhtIE6fpczaFI6KtNvkczGwDY8T0ZPCz -----END CERTIFICATE-----Generated at Sun May 18 13:24:57 2025 by rpki-client