$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft File: NyCB99vi7xGkQRvU5q-G8yaYyvo.mft (raw, json) Hash identifier: LWw2Cx0WKRzLuBxF9xYGJFza+TEziBBqq3BYAEBRY8Q= Subject key identifier: D3:F6:02:22:32:5F:5B:F5:88:D2:C3:CA:C8:C9:D4:02:22:61:C2:20 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft Manifest number: BB Signing time: Tue 13 May 2025 05:06:11 +0000 Manifest this update: Tue 13 May 2025 05:06:11 +0000 Manifest next update: Tue 20 May 2025 05:06:11 +0000 Files and hashes: 1: NyCB99vi7xGkQRvU5q-G8yaYyvo.crl (hash: QJVswzVyYTq6Pdn21GE4Tay0AEOAvgzYCrWTWKMJDiA=) 2: 680CA022140F11EF99D47F17C4F9AE02.roa (hash: 04UnpmnSMr4KxT7I14Z6Z4RlxSd1PflOoSJyZd1LDaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: May 13 05:06:11 2025 GMT Not After : May 20 05:06:11 2025 GMT Subject: CN=6822d343-f463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ce:a6:0e:89:49:11:4f:3e:72:29:f7:40:f2: 41:a9:3e:06:56:a0:b7:f3:80:70:0d:91:f5:98:5d: e5:2c:07:9a:ca:06:46:51:90:9f:f9:7e:80:80:12: 3b:56:4e:29:30:7e:f0:32:8a:73:53:a1:db:65:51: f5:8c:51:0e:87:6e:80:6c:8c:4f:d5:3b:3a:3f:a6: 16:d6:85:29:ec:36:60:0f:c6:4d:c2:0f:ba:23:4e: 86:1f:da:d2:5c:70:c8:81:ab:80:7d:86:7f:90:4b: 80:ee:cc:e2:ff:87:de:f2:2a:4e:fc:c6:d7:73:ac: ca:be:d1:4a:9f:ff:0b:ee:2b:15:fa:c1:0c:5c:69: e7:00:f7:8c:59:f9:29:b7:36:1d:02:28:c4:3f:05: 44:88:8b:e6:fe:d4:c0:9e:f5:2b:40:44:62:51:a6: 88:04:c0:51:34:35:6a:55:74:b1:4b:07:9c:f7:04: 4f:f2:2c:6f:15:4d:8e:93:87:ae:f8:f4:cf:82:34: e7:be:c2:73:c6:1b:9f:77:6d:ce:43:8b:74:1a:fa: f5:37:e1:c7:89:70:05:6c:f5:87:73:27:66:d3:b1: 65:b3:af:de:93:3e:35:99:a1:a6:f1:2c:29:58:a5: b1:3f:d8:8c:73:a2:76:da:95:8b:dd:6b:ba:1e:1d: 56:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F6:02:22:32:5F:5B:F5:88:D2:C3:CA:C8:C9:D4:02:22:61:C2:20 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:50:4a:83:be:e4:8c:18:1f:d3:a5:bf:ac:94:61:af:7a:7f: 31:97:8c:c5:97:2e:d7:3e:f8:21:90:5a:34:94:d0:07:71:a2: 14:04:23:46:c0:ba:28:df:b7:eb:da:58:99:c3:79:0b:0b:68: 2a:6c:7e:f5:91:d2:83:ae:2a:6b:14:a6:4b:99:3e:70:b3:94: 7b:cd:69:55:57:01:79:3f:de:a7:60:3a:ce:97:f2:c7:e9:b9: af:0f:f9:af:48:a4:e3:f4:dd:63:4e:11:00:0b:cc:1f:52:6c: 25:6e:aa:18:58:cd:fc:56:73:ef:3b:b0:27:2a:40:f4:d2:06: 67:71:d5:77:a0:58:3d:8f:3d:64:2d:66:07:f1:90:61:56:d9: 5e:28:9d:8b:3f:8a:36:90:f6:d6:25:35:b5:d5:97:9a:a6:10: 13:01:46:bf:6b:e4:65:a8:f2:0d:de:1c:15:07:86:04:f3:42: 15:b6:a4:d9:4a:b1:b2:46:0e:b9:20:a3:87:64:48:38:ad:f8: 09:2f:93:86:c5:1e:90:58:cb:41:52:0a:5f:d9:af:9f:a9:4f: 6e:0c:08:11:9b:29:00:40:02:eb:80:da:73:5b:00:13:b6:04: 61:9e:0f:21:e5:00:86:5b:10:cc:49:89:88:fa:90:df:22:c3: 02:cb:47:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwNTEzMDUwNjExWhcNMjUwNTIwMDUwNjExWjAYMRYwFAYD VQQDEw02ODIyZDM0My1mNDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c6mDolJEU8+cin3QPJBqT4GVqC384BwDZH1mF3lLAeaygZGUZCf+X6AgBI7 Vk4pMH7wMopzU6HbZVH1jFEOh26AbIxP1Ts6P6YW1oUp7DZgD8ZNwg+6I06GH9rS XHDIgauAfYZ/kEuA7szi/4fe8ipO/MbXc6zKvtFKn/8L7isV+sEMXGnnAPeMWfkp tzYdAijEPwVEiIvm/tTAnvUrQERiUaaIBMBRNDVqVXSxSwec9wRP8ixvFU2Ok4eu +PTPgjTnvsJzxhufd23OQ4t0Gvr1N+HHiXAFbPWHcydm07Fls6/ekz41maGm8Swp WKWxP9iMc6J22pWL3Wu6Hh1WBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNP2AiIy X1v1iNLDysjJ1AIiYcIgMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUUxOS8xMEM3RjBBQTE0MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4 R2tRUnZVNXEtRzh5YVl5dm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJUEqDvuSMGB/Tpb+slGGven8xl4zFly7XPvghkFo0lNAHcaIUBCNG wLoo37fr2liZw3kLC2gqbH71kdKDriprFKZLmT5ws5R7zWlVVwF5P96nYDrOl/LH 6bmvD/mvSKTj9N1jThEAC8wfUmwlbqoYWM38VnPvO7AnKkD00gZncdV3oFg9jz1k LWYH8ZBhVtleKJ2LP4o2kPbWJTW11ZeaphATAUa/a+RlqPIN3hwVB4YE80IVtqTZ SrGyRg65IKOHZEg4rfgJL5OGxR6QWMtBUgpf2a+fqU9uDAgRmykAQALrgNpzWwAT tgRhng8h5QCGWxDMSYmI+pDfIsMCy0dE -----END CERTIFICATE-----Generated at Tue May 13 12:39:11 2025 by rpki-client