$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft File: n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft (raw, json) Hash identifier: oafyKMKKpHsWO/EKzLzh0m9OPsj52pcbvVQohBpdGYY= Subject key identifier: D0:18:A5:D8:FF:A5:CA:74:7A:E2:CB:0B:DA:12:1C:60:9C:A9:8A:E0 Authority key identifier: 9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB Certificate issuer: /CN=A917D958/serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft Manifest number: 56 Signing time: Tue 13 May 2025 06:27:57 +0000 Manifest this update: Tue 13 May 2025 06:27:56 +0000 Manifest next update: Tue 20 May 2025 06:27:56 +0000 Files and hashes: 1: n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl (hash: 0MKHLMNOTDVff94W2Fjycu+P3w0KaxKZGm9dMxLxoQ4=) 2: 0AC8BB74B5E211EFBEF4BC5AC4F9AE02.roa (hash: oV9dv3enUEk5QI7ZEWYNcHlwdjoeFV6bdPfVFfihoSE=) 3: 0A581522B5E211EFBEF4BC5AC4F9AE02.roa (hash: PxzOBVWe5yWGLa4iNAyNqYyPaQ/eMXGqSREN7aFVLso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=9F4906C0D4CC9645D9BFD93364A23A5A33EF58DB Validity Not Before: May 13 06:27:56 2025 GMT Not After : May 20 06:27:56 2025 GMT Subject: CN=6822e66c-f9db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4e:f2:c8:81:10:d0:a4:54:f0:db:5f:82:82: 4a:a4:c7:e8:ce:b6:8e:2e:30:71:97:38:59:c9:34: 85:15:08:ee:37:d2:31:cb:33:9e:2f:a2:f7:17:8e: 96:6c:10:d5:84:48:eb:67:d2:2f:4d:cf:45:4c:f5: 2b:ae:4d:4c:7b:a4:ea:52:58:c5:71:59:7c:76:1e: 2d:83:8c:7d:ba:52:a4:d6:cf:bb:40:cf:8d:73:6a: 7d:97:2c:ae:02:1d:89:05:4e:e9:9a:e9:a5:69:fe: 61:e7:06:e9:e2:7f:06:20:a5:ca:e8:b4:88:fd:92: fa:9d:bb:44:0d:ef:32:a2:0c:a3:a7:ec:db:14:3b: e8:ef:f0:fc:1f:df:c7:ca:45:e4:5f:0a:9a:62:84: b5:00:06:0b:c4:6a:88:83:39:18:4b:a9:cd:ea:49: 2c:97:9f:9d:b8:1a:ea:4c:81:38:92:a7:be:d6:7d: 12:3e:e4:ff:06:7d:71:1d:93:e7:44:20:09:c7:f4: cb:f8:7c:11:91:0a:1e:f3:50:e9:96:f4:27:30:9e: a9:6e:14:28:a9:7d:43:f9:89:8b:44:2e:da:df:b4: c8:cc:37:80:a5:54:47:97:ef:3b:e0:85:17:fc:05: c9:b3:1e:d5:31:bc:ff:02:f9:20:f5:8b:88:62:d0: 68:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:18:A5:D8:FF:A5:CA:74:7A:E2:CB:0B:DA:12:1C:60:9C:A9:8A:E0 X509v3 Authority Key Identifier: keyid:9F:49:06:C0:D4:CC:96:45:D9:BF:D9:33:64:A2:3A:5A:33:EF:58:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n0kGwNTMlkXZv9kzZKI6WjPvWNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/672DB048B39B11EF80F6435EC4F9AE02/n0kGwNTMlkXZv9kzZKI6WjPvWNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:4f:c7:2b:27:46:1e:47:7d:7e:d5:a8:79:7f:79:b7:78:06: 2d:80:87:64:e1:60:4d:0d:96:df:5a:d3:9a:24:ec:ed:db:db: 4e:63:fb:be:bb:64:f8:19:88:7b:aa:e9:81:4e:a1:22:3e:96: e9:fd:56:df:34:a8:a2:f3:6a:f8:1d:3e:96:fe:5e:f1:01:4f: 58:ee:ad:32:42:a4:3b:25:f8:83:05:df:cd:f0:f0:97:f3:05: 68:d5:e6:48:c0:b6:96:62:ff:08:a2:81:65:ee:3e:66:e2:3d: 57:23:99:fd:69:f7:04:83:ec:5d:97:a4:49:fd:36:c4:ea:c6: 9f:88:ab:94:c5:33:f3:72:6d:0b:0c:ac:f9:1e:78:34:b3:77: 87:74:cb:04:5c:3e:bb:e8:3e:0b:94:dc:b2:9b:91:f3:ee:ec: 9d:d7:72:ca:4d:0e:0b:70:ea:7c:f6:3e:0a:29:6d:b2:4d:ff: 17:89:fe:aa:b9:9d:03:ea:4d:57:11:03:a0:2a:d0:67:5d:dc: b7:ed:99:eb:36:e1:4b:9d:a0:b2:98:4b:e1:c9:d0:d3:9e:5a: c3:c4:80:43:c5:c9:3d:fb:be:ab:ed:62:33:27:f1:81:19:de: 61:af:90:1a:cb:78:21:a9:f0:7f:b1:77:47:e0:15:b1:df:74: 4a:07:7b:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoOUY0OTA2QzBENENDOTY0NUQ5QkZEOTMzNjRBMjNBNUEz M0VGNThEQjAeFw0yNTA1MTMwNjI3NTZaFw0yNTA1MjAwNjI3NTZaMBgxFjAUBgNV BAMTDTY4MjJlNjZjLWY5ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVTvLIgRDQpFTw21+Cgkqkx+jOto4uMHGXOFnJNIUVCO430jHLM54vovcXjpZs ENWESOtn0i9Nz0VM9SuuTUx7pOpSWMVxWXx2Hi2DjH26UqTWz7tAz41zan2XLK4C HYkFTuma6aVp/mHnBunifwYgpcrotIj9kvqdu0QN7zKiDKOn7NsUO+jv8Pwf38fK ReRfCppihLUABgvEaoiDORhLqc3qSSyXn524GupMgTiSp77WfRI+5P8GfXEdk+dE IAnH9Mv4fBGRCh7zUOmW9CcwnqluFCipfUP5iYtELtrftMjMN4ClVEeX7zvghRf8 BcmzHtUxvP8C+SD1i4hi0Gj/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0Bil2P+l ynR64ssL2hIcYJypiuAwHwYDVR0jBBgwFoAUn0kGwNTMlkXZv9kzZKI6WjPvWNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzY3MkRCMDQ4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL24wa0d3TlRNbGtYWnY5a3paS0k2V2pQdldO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbjBrR3dOVE1sa1hadjlrelpLSTZXalB2V05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzY3MkRCMDQ4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL24wa0d3TlRNbGtY WnY5a3paS0k2V2pQdldOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAhPxysnRh5HfX7VqHl/ebd4Bi2Ah2ThYE0Nlt9a05ok7O3b205j+767 ZPgZiHuq6YFOoSI+lun9Vt80qKLzavgdPpb+XvEBT1jurTJCpDsl+IMF383w8Jfz BWjV5kjAtpZi/wiigWXuPmbiPVcjmf1p9wSD7F2XpEn9NsTqxp+Iq5TFM/NybQsM rPkeeDSzd4d0ywRcPrvoPguU3LKbkfPu7J3XcspNDgtw6nz2PgopbbJN/xeJ/qq5 nQPqTVcRA6Aq0Gdd3Lftmes24UudoLKYS+HJ0NOeWsPEgEPFyT37vqvtYjMn8YEZ 3mGvkBrLeCGp8H+xd0fgFbHfdEoHe7k= -----END CERTIFICATE-----Generated at Thu May 15 03:53:23 2025 by rpki-client