$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft File: NUOeC_NciIu4TRsk7N5wYM90TpE.mft (raw, json) Hash identifier: sBFnVTIhEmxZBWGKYHGWU/pYYoQt3pmSfuGqmXjJIfc= Subject key identifier: EC:85:AF:55:F2:5F:86:BB:8C:45:AA:93:D5:CE:66:4B:06:8A:B3:C9 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2B67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft Manifest number: 2B53 Signing time: Fri 16 May 2025 14:25:32 +0000 Manifest this update: Fri 16 May 2025 14:25:31 +0000 Manifest next update: Fri 23 May 2025 14:25:31 +0000 Files and hashes: 1: NUOeC_NciIu4TRsk7N5wYM90TpE.crl (hash: 09JVwLU6pj6aW+gPTKmPHIDV6uN/FDhGCgcygNTS3n0=) 2: F645F318500C11EBA2295426C4F9AE02.roa (hash: cs/JN2roMF9559frpHSU57kLMdZZdt/kq/+fgPXNaTg=) 3: 6313DADA500011EBB74A2C2AC4F9AE02.roa (hash: kOKMH7bC+n+8o1xcllbA3RXGetoc8aW0IIWJBu8P/uI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 14:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11111 (0x2b67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: May 16 14:25:31 2025 GMT Not After : May 23 14:25:31 2025 GMT Subject: CN=68274adb-50fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:de:05:72:c7:a4:90:f3:a4:8d:d5:3b:36:8d: 8b:bc:ea:0d:a3:45:42:95:c0:60:88:8c:5e:4b:dc: 3f:e2:e6:5e:a9:8b:4c:16:0f:f0:28:0e:82:c9:50: 3e:63:7c:f5:04:2c:98:71:f1:8c:d6:4a:41:fb:4b: 4f:0e:29:b5:f7:c7:ef:39:18:c9:5b:af:20:69:1f: bc:dc:ea:73:da:33:65:e6:86:81:a6:ce:21:d9:89: 80:9d:01:26:56:00:6b:ff:1f:83:e5:41:74:18:2d: 41:a8:d4:06:66:63:b1:72:d0:f5:ef:8c:ff:05:72: 50:11:8a:5f:9a:c4:9f:eb:70:2d:24:f8:a2:87:60: 3d:09:bf:6e:af:c4:9e:07:75:58:fe:90:d5:63:9a: 0a:7e:db:0f:43:7a:7f:eb:0b:7e:b4:ee:49:ab:38: 99:05:2c:c1:9c:7e:20:3b:a6:7d:28:48:be:6f:02: 7a:e6:7d:a2:e2:66:0a:65:ed:0a:2b:e1:0b:94:6a: 8d:5a:a9:da:1f:3e:8f:42:7f:6d:87:c1:a1:32:2f: 21:5d:c8:ef:79:4e:47:c0:a3:4b:19:51:59:b4:64: 7b:a5:af:76:91:da:69:68:98:1f:9b:68:0f:17:28: 3e:e3:32:d2:1c:8a:21:b8:25:58:66:b2:8c:54:d2: e3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:85:AF:55:F2:5F:86:BB:8C:45:AA:93:D5:CE:66:4B:06:8A:B3:C9 X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:c7:fc:98:b0:89:7c:b4:9f:cd:13:df:d9:88:a2:b1:74:17: b4:7d:46:ab:26:b7:32:d4:45:b1:e8:b4:9e:8d:06:99:82:e7: e7:66:af:ce:dc:90:c2:cb:82:f7:fc:72:53:e8:36:49:62:34: 05:4c:31:a5:c7:eb:df:34:60:0c:88:72:74:b1:64:8b:68:91: 6e:83:91:08:ac:f2:c2:00:43:a8:98:2d:b7:f1:88:cc:03:09: 11:4d:23:46:32:5d:05:70:49:8f:26:08:5d:91:2b:cc:2d:9f: 89:32:4d:85:62:63:9b:dc:59:c6:ae:5b:7e:1e:f5:f8:3e:3b: 1c:38:e7:0f:69:ce:a4:81:fa:b9:da:12:a3:80:7a:88:09:2f: 30:89:fa:a5:66:be:4a:c6:b4:d4:79:96:d4:8d:b6:b8:ca:14: e6:91:7c:a0:93:b7:a7:07:77:b8:71:c1:c2:b9:26:9f:a3:fe: ce:4d:c5:5b:58:38:ac:ed:04:f2:77:b6:81:62:03:e1:99:7a: d5:dc:e8:40:3f:15:af:cd:5c:e0:fc:d0:cd:3c:43:f2:80:69: 4e:4e:4c:4b:88:35:80:24:bd:d1:d0:83:70:18:b7:6a:51:44: e7:bd:95:4f:39:6a:99:49:b7:a0:27:cd:d7:ee:25:09:f9:ac: a6:a3:b4:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwNTE2MTQyNTMxWhcNMjUwNTIzMTQyNTMxWjAYMRYwFAYD VQQDEw02ODI3NGFkYi01MGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy94FcsekkPOkjdU7No2LvOoNo0VClcBgiIxeS9w/4uZeqYtMFg/wKA6CyVA+ Y3z1BCyYcfGM1kpB+0tPDim198fvORjJW68gaR+83Opz2jNl5oaBps4h2YmAnQEm VgBr/x+D5UF0GC1BqNQGZmOxctD174z/BXJQEYpfmsSf63AtJPiih2A9Cb9ur8Se B3VY/pDVY5oKftsPQ3p/6wt+tO5JqziZBSzBnH4gO6Z9KEi+bwJ65n2i4mYKZe0K K+ELlGqNWqnaHz6PQn9th8GhMi8hXcjveU5HwKNLGVFZtGR7pa92kdppaJgfm2gP Fyg+4zLSHIohuCVYZrKMVNLjlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyFr1Xy X4a7jEWqk9XOZksGirPJMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi8zRTc0NTM2OEVENTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJ dTRUUnNrN041d1lNOTBUcEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCex/yYsIl8tJ/NE9/ZiKKxdBe0fUarJrcy1EWx6LSejQaZgufnZq/O 3JDCy4L3/HJT6DZJYjQFTDGlx+vfNGAMiHJ0sWSLaJFug5EIrPLCAEOomC238YjM AwkRTSNGMl0FcEmPJghdkSvMLZ+JMk2FYmOb3FnGrlt+HvX4PjscOOcPac6kgfq5 2hKjgHqICS8wifqlZr5KxrTUeZbUjba4yhTmkXygk7enB3e4ccHCuSafo/7OTcVb WDis7QTyd7aBYgPhmXrV3OhAPxWvzVzg/NDNPEPygGlOTkxLiDWAJL3R0INwGLdq UUTnvZVPOWqZSbegJ83X7iUJ+aymo7Sz -----END CERTIFICATE-----Generated at Sat May 17 06:49:32 2025 by rpki-client