$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft File: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft (raw, json) Hash identifier: HiLU8crSw6biLGCDDIiSL/D6HhSzAG5KlGbL15B4+Kc= Subject key identifier: 72:34:DA:8D:A3:6A:35:EB:48:0D:83:45:57:81:27:F4:0F:A2:FF:A2 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 111C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft Manifest number: 0FBE Signing time: Fri 16 May 2025 17:56:20 +0000 Manifest this update: Fri 16 May 2025 17:56:20 +0000 Manifest next update: Fri 23 May 2025 17:56:20 +0000 Files and hashes: 1: Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl (hash: +ABR0uL551Gsbk1k/1G+ENvAKYbsJBEeV5jw6mTx9Kw=) 2: A2745BFEC18411ECBE051C5CC4F9AE02.roa (hash: PrswZfri3dHxcodWDLz5zdIU9mo1iJZykEdVfIHeBvM=) 3: 4CF19A6EAEDC11EF99753F71C4F9AE02.roa (hash: Qn6g14AUkLu1btr8Er+hiQxzqayU2xntHB3orOLLw9E=) 4: ED397A542A1211EFBF48A87FC4F9AE02.roa (hash: tNirD4O5n/APlr4VXtRqMXUQrZa9HBGyAXXcJdhkx8g=) 5: 71043990C4D811EA88E6B21FC4F9AE02.roa (hash: 9vj0wFDRg2m924YSQRU+53hKJgFYHI/k3yYJ69FV68c=) 6: B969078EB94B11EB8CFABC23C4F9AE02.roa (hash: IEsW3GuxCVGYRu/1hhIjcdekM36PkMj/h8FdT1+soSo=) 7: EE0AC1B82A1211EFBF48A87FC4F9AE02.roa (hash: rO7clzQPDfrbQiofxJnNNd8hLM/5/riPsot/0I2BTXI=) 8: F3011EAAB88311EBB2078C50C4F9AE02.roa (hash: WDmBDJ69igHtzeCqQyvNDcFOZ8jROHQ7B6krkg7kRGE=) 9: C4A85FD48FE811E98B967A66C4F9AE02.roa (hash: aiooAIoivVql5FC+SCyKWbhdV5nV3qmBQRAodXfPFtU=) 10: 721709C63F6711EF879C2E11C4F9AE02.roa (hash: OxPA4uUHLc7fRUiKLbuvR0L7g6mPMW1qhFDN6e351sc=) 11: BB54CFD0B94411EBA1CDCA45C4F9AE02.roa (hash: JBQ6069Irn+Fo63UGqCMQV8Nmj1Wx+/dKLn5g7bFNNU=) 12: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (hash: b/LbIzPAU9coJXjT3umWz8BMDzmOcTsQApiNrqEbUbM=) 13: 49F4FFBA0A1C11EEA415BE0CC4F9AE02.roa (hash: Pqc1nBcb+JFkJlWub2Tew10ajFK81balankJIjxH0u0=) 14: C2356A948FE811E98B967A66C4F9AE02.roa (hash: lh6cNUm2NUCxz6vyJ9O8vhiCdo9/t7r94k2HgugqWk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4380 (0x111c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: May 16 17:56:20 2025 GMT Not After : May 23 17:56:20 2025 GMT Subject: CN=68277c44-2272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:09:09:c4:53:7f:f5:21:22:2a:47:5f:fa:72: d0:a6:51:8a:63:12:01:04:17:ef:9b:e8:aa:92:17: bc:61:23:ae:49:28:bc:10:63:52:20:b2:c1:51:01: 65:6f:d6:f3:12:0e:77:f0:3f:41:c6:6b:54:75:8f: d3:4e:c1:12:de:98:c7:f1:e2:dd:fe:2c:ea:81:68: 01:16:36:d3:76:8d:ff:75:e9:73:ad:61:2d:70:75: 0a:f1:82:0d:a7:1a:3d:c3:ac:22:f2:7e:16:4d:e5: db:fa:b5:74:79:4c:33:a7:26:46:69:c2:3d:4e:ea: 64:57:1a:14:3c:c0:19:91:7e:b9:6a:0f:ac:31:ce: 24:ff:e3:22:98:43:6d:25:a9:77:21:ca:28:cf:7b: 4c:6c:15:05:0b:33:79:06:94:62:85:50:06:4a:05: fe:1c:92:f3:92:ed:b2:f9:8e:08:3f:c2:ae:3d:de: bd:ad:d2:20:34:be:be:ea:76:2a:74:03:81:09:c5: 78:24:9e:ec:b8:e0:70:91:a9:9c:f4:96:57:ca:ad: 49:6e:f7:26:a4:52:33:ee:9e:85:63:3e:c8:41:dd: 4e:96:9b:3b:75:74:33:29:78:be:8e:69:30:10:c4: 0b:dd:d9:41:20:a2:ca:45:ff:0b:83:54:59:8f:c0: 06:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:34:DA:8D:A3:6A:35:EB:48:0D:83:45:57:81:27:F4:0F:A2:FF:A2 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:e2:85:36:9d:24:e1:cf:ea:14:1c:ea:b6:ca:31:45:15:d8: 0a:6b:bc:39:a4:d4:50:56:f4:56:45:dc:48:08:d0:6b:59:a9: 1e:20:d8:2f:d2:80:a7:3b:9a:8a:15:1f:84:b0:84:df:ce:b9: 9d:39:4e:09:dd:7b:cc:4f:0c:60:55:eb:ba:b1:0e:7b:34:2b: c2:3b:7b:45:b4:70:94:38:c7:87:01:4f:81:7e:03:b0:0d:a6: 4a:00:04:89:2b:e1:f9:4b:ff:50:02:93:13:fc:cf:5d:67:18: be:c4:86:c9:0b:21:b5:a8:c2:bb:b2:0b:6a:30:8d:1a:dc:cf: cb:75:4b:d5:b7:e2:e3:4c:cb:64:77:09:24:fa:ea:a3:87:53: cb:51:f1:82:68:cf:d9:1b:43:58:9b:4b:cf:08:c3:99:4f:f1: 04:01:7f:11:ec:21:3c:6a:32:08:38:fd:ce:f4:12:5b:ab:9c: ec:14:e2:4e:ef:8c:03:30:e8:66:21:8d:0a:04:5e:a2:07:11: bf:41:15:e1:39:cd:6a:38:7a:01:ee:38:6a:74:c8:93:ef:61: 31:b5:40:e8:cf:0e:78:4f:06:22:d4:5f:d3:82:63:9b:8c:a0: 98:c5:e2:cd:4b:d8:0a:ca:fb:1d:04:84:bb:cf:a5:07:71:fb: 6f:64:63:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNTE2MTc1NjIwWhcNMjUwNTIzMTc1NjIwWjAYMRYwFAYD VQQDEw02ODI3N2M0NC0yMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgkJxFN/9SEiKkdf+nLQplGKYxIBBBfvm+iqkhe8YSOuSSi8EGNSILLBUQFl b9bzEg538D9BxmtUdY/TTsES3pjH8eLd/izqgWgBFjbTdo3/delzrWEtcHUK8YIN pxo9w6wi8n4WTeXb+rV0eUwzpyZGacI9TupkVxoUPMAZkX65ag+sMc4k/+MimENt Jal3Icooz3tMbBUFCzN5BpRihVAGSgX+HJLzku2y+Y4IP8KuPd69rdIgNL6+6nYq dAOBCcV4JJ7suOBwkamc9JZXyq1JbvcmpFIz7p6FYz7IQd1Olps7dXQzKXi+jmkw EMQL3dlBIKLKRf8Lg1RZj8AGaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHI02o2j ajXrSA2DRVeBJ/QPov+iMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDNEQi8wREMzNUQzRThERDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0 Q0ZyNkJzQ1Q1VXFkUDllMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt4oU2nSThz+oUHOq2yjFFFdgKa7w5pNRQVvRWRdxICNBrWakeINgv 0oCnO5qKFR+EsITfzrmdOU4J3XvMTwxgVeu6sQ57NCvCO3tFtHCUOMeHAU+BfgOw DaZKAASJK+H5S/9QApMT/M9dZxi+xIbJCyG1qMK7sgtqMI0a3M/LdUvVt+LjTMtk dwkk+uqjh1PLUfGCaM/ZG0NYm0vPCMOZT/EEAX8R7CE8ajIIOP3O9BJbq5zsFOJO 74wDMOhmIY0KBF6iBxG/QRXhOc1qOHoB7jhqdMiT72ExtUDozw54TwYi1F/TgmOb jKCYxeLNS9gKyvsdBIS7z6UHcftvZGPT -----END CERTIFICATE-----Generated at Sat May 17 05:02:50 2025 by rpki-client