$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft File: nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft (raw, json) Hash identifier: 3qqGgM4tXAw3TlZBKf8IrHA+5H8IPn+9ZwkMBV4cB2M= Subject key identifier: A8:A2:97:6E:6B:02:80:68:07:D2:46:04:49:FF:55:78:1D:0C:16:1C Authority key identifier: 9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD Certificate issuer: /CN=A9185D34/serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft Manifest number: 07FB Signing time: Wed 14 May 2025 21:04:45 +0000 Manifest this update: Wed 14 May 2025 21:04:44 +0000 Manifest next update: Wed 21 May 2025 21:04:44 +0000 Files and hashes: 1: nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl (hash: 1QIzCWu5Z4dCfyFvyLJhS8sH2tFeq1/0pv1ynWOXSnw=) 2: C1171FCAB1B111ECBA7F614FC4F9AE02.roa (hash: 5pc4Fgf96yhJHg1dXqyOkvTiTCFOmyYqtcguriQDwlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D34, serialNumber=9EC1216D256416403CB5C53E7345530F83272CDD Validity Not Before: May 14 21:04:44 2025 GMT Not After : May 21 21:04:44 2025 GMT Subject: CN=6825056d-010c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:67:00:32:7a:cf:0f:ee:e5:6d:03:a0:45: 59:d1:31:af:ab:0e:dc:8f:bb:90:0a:3f:9c:21:67: 4c:a1:70:5b:b6:5a:53:4a:c7:fd:d9:27:0b:2f:25: 1c:31:75:88:c8:36:00:d0:55:87:1b:9a:f4:33:56: 69:bd:eb:1e:4c:60:00:4f:ac:38:27:0b:60:18:e3: dc:66:e9:ec:b6:2f:1e:0a:a5:4e:07:fd:1e:6b:53: 21:e9:7d:51:f5:bf:3a:2f:ce:fd:4f:5d:37:a8:e6: 7f:59:f3:18:bb:82:a4:9a:26:dc:a5:9f:4d:88:59: fc:2f:ff:a3:62:11:f0:01:2c:b9:78:8f:d0:c6:1e: 20:37:45:29:9d:a7:71:73:d9:81:8e:5e:9d:2a:b1: 68:e7:2b:14:1c:6d:74:69:32:6b:ed:83:0a:0d:f9: 5d:49:e9:a5:bf:c8:23:78:a6:6e:37:32:0f:44:f2: ce:3b:8c:ba:5b:32:00:00:35:36:1c:08:34:07:51: 06:51:8b:26:7a:94:88:63:df:30:f8:6a:4b:f5:cc: fd:07:b4:eb:e6:16:9f:57:19:20:36:40:96:ec:b1: 26:1c:9f:f9:13:40:91:a8:99:44:b4:a4:01:80:ce: 58:f9:ac:2d:ba:35:47:58:b8:b2:ef:c3:30:67:e3: 33:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A2:97:6E:6B:02:80:68:07:D2:46:04:49:FF:55:78:1D:0C:16:1C X509v3 Authority Key Identifier: keyid:9E:C1:21:6D:25:64:16:40:3C:B5:C5:3E:73:45:53:0F:83:27:2C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nsEhbSVkFkA8tcU-c0VTD4MnLN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D34/DBA87858E6A011EAA8544B43C4F9AE02/nsEhbSVkFkA8tcU-c0VTD4MnLN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:46:f3:54:b9:0b:ab:82:03:94:d4:28:4d:bb:c6:ab:dc:8e: 17:62:8a:92:93:c5:33:9c:78:80:bc:51:f1:3a:e7:42:c8:80: c6:0b:f7:f6:07:bf:66:9a:58:76:b8:36:e4:dc:3c:11:99:38: 46:43:d7:1d:5f:ad:2e:0f:69:be:9b:e4:ce:e8:9f:6f:b8:aa: a5:25:37:f7:36:9e:91:4d:a0:f6:ca:92:32:c4:18:82:2d:37: db:a8:59:e8:fa:db:cf:b0:a5:12:60:6d:17:8a:ac:fe:6a:be: 1f:ce:9c:2f:e5:a8:7c:31:bf:2f:f8:1b:79:0f:88:32:5f:ef: 3e:47:11:40:98:73:b9:cd:b4:c7:03:52:80:de:f3:32:2e:9d: a3:1a:c1:73:48:6d:ae:66:87:2b:2c:2d:8c:12:5e:41:37:e2: 27:28:4c:50:e6:25:78:fb:e6:d6:88:74:01:b1:60:9c:4c:b3: 10:99:44:6f:0c:eb:10:ac:37:2e:55:5f:09:4f:bc:71:1f:5f: 52:15:6f:bf:48:47:7a:b2:12:9f:6e:cb:21:95:21:b0:b9:51: a9:40:65:3f:87:dd:85:0d:f6:f5:72:cc:03:fb:80:20:16:4a: 85:93:1a:98:70:3a:df:41:da:5f:a1:b6:1c:5c:76:bb:c8:df: 7d:d9:d6:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVEMzQxMTAvBgNVBAUTKDlFQzEyMTZEMjU2NDE2NDAzQ0I1QzUzRTczNDU1MzBG ODMyNzJDREQwHhcNMjUwNTE0MjEwNDQ0WhcNMjUwNTIxMjEwNDQ0WjAYMRYwFAYD VQQDEw02ODI1MDU2ZC0wMTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApatnADJ6zw/u5W0DoEVZ0TGvqw7cj7uQCj+cIWdMoXBbtlpTSsf92ScLLyUc MXWIyDYA0FWHG5r0M1ZpveseTGAAT6w4JwtgGOPcZunsti8eCqVOB/0ea1Mh6X1R 9b86L879T103qOZ/WfMYu4KkmibcpZ9NiFn8L/+jYhHwASy5eI/Qxh4gN0Upnadx c9mBjl6dKrFo5ysUHG10aTJr7YMKDfldSemlv8gjeKZuNzIPRPLOO4y6WzIAADU2 HAg0B1EGUYsmepSIY98w+GpL9cz9B7Tr5hafVxkgNkCW7LEmHJ/5E0CRqJlEtKQB gM5Y+awtujVHWLiy78MwZ+MzbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKiil25r AoBoB9JGBEn/VXgdDBYcMB8GA1UdIwQYMBaAFJ7BIW0lZBZAPLXFPnNFUw+DJyzd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQzNC9EQkE4Nzg1OEU2 QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0ZrQTh0Y1UtYzBWVEQ0TW5M TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zRWhiU1ZrRmtBOHRjVS1jMFZURDRNbkxOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQzNC9EQkE4Nzg1OEU2QTAxMUVBQTg1NDRCNDNDNEY5QUUwMi9uc0VoYlNWa0Zr QTh0Y1UtYzBWVEQ0TW5MTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmRvNUuQurggOU1ChNu8ar3I4XYoqSk8UznHiAvFHxOudCyIDGC/f2 B79mmlh2uDbk3DwRmThGQ9cdX60uD2m+m+TO6J9vuKqlJTf3Np6RTaD2ypIyxBiC LTfbqFno+tvPsKUSYG0Xiqz+ar4fzpwv5ah8Mb8v+Bt5D4gyX+8+RxFAmHO5zbTH A1KA3vMyLp2jGsFzSG2uZocrLC2MEl5BN+InKExQ5iV4++bWiHQBsWCcTLMQmURv DOsQrDcuVV8JT7xxH19SFW+/SEd6shKfbsshlSGwuVGpQGU/h92FDfb1cswD+4Ag FkqFkxqYcDrfQdpfobYcXHa7yN992daC -----END CERTIFICATE-----Generated at Thu May 15 02:18:54 2025 by rpki-client