$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft File: NhbgHaMxfwnuypjnvHVMvJkNfWg.mft (raw, json) Hash identifier: glz8ebkofPEEaPO5g4FL8DJDOniSJ81ybWVyMEoTin8= Subject key identifier: FA:D5:1B:08:C3:1F:67:C9:AC:78:0E:5D:2A:11:8B:9A:D0:E9:65:B9 Authority key identifier: 36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 Certificate issuer: /CN=A9192C72/serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft Manifest number: 2D Signing time: Tue 13 May 2025 06:54:46 +0000 Manifest this update: Tue 13 May 2025 06:54:46 +0000 Manifest next update: Tue 20 May 2025 06:54:46 +0000 Files and hashes: 1: NhbgHaMxfwnuypjnvHVMvJkNfWg.crl (hash: muJGcn3Fpcu7dhSyW+gQmooYbuknjd1RAiyup7JwaZw=) 2: C2E1583EECFA11EFA881E216C4F9AE02.roa (hash: Yu5htw9gFwcLd352zvwoy0u2xmOJCVCXwCzZ+nX1BhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C72, serialNumber=3616E01DA3317F09EECA98E7BC754CBC990D7D68 Validity Not Before: May 13 06:54:46 2025 GMT Not After : May 20 06:54:46 2025 GMT Subject: CN=6822ecb6-9054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:92:bd:ca:4f:65:73:03:29:ec:0b:d1:8f: 37:e8:68:ed:aa:f9:25:c6:7d:9a:df:55:f0:03:66: 8e:59:53:81:7c:55:c0:34:a4:48:f2:3f:e0:34:36: eb:12:ce:7e:10:c2:dd:ef:5a:cc:e4:17:01:ae:7d: 1c:4d:2a:e6:a1:01:aa:82:8f:8e:f7:7d:43:10:f0: e1:ee:07:80:0a:05:a2:3e:52:a6:54:92:26:bd:9e: 04:91:23:0a:6b:e4:fa:5a:eb:71:53:e1:85:fe:fa: 44:bf:7b:f3:1a:59:13:92:9b:4f:7f:ad:b0:27:1e: 9f:3a:33:53:f6:6a:36:d4:35:9e:4c:54:de:0e:d4: 07:8a:a6:d0:0d:97:44:88:93:1b:fa:df:92:50:7b: bf:73:e9:bf:e8:01:d8:16:c5:7a:fe:a2:e9:bb:ad: be:5a:82:91:7c:7e:79:07:34:38:72:12:68:0d:c0: 0b:d3:7f:32:af:ca:31:bd:77:60:d0:6b:7b:f4:37: 07:cd:85:86:5e:b0:da:3e:f7:d4:54:03:44:ae:ef: 68:1d:c0:d8:fd:94:87:88:46:1b:47:93:fc:77:b4: 61:b2:08:4d:93:c5:07:3d:3b:c5:03:d0:e1:4d:28: 58:49:50:9d:a4:e7:22:b2:f2:a3:35:a1:18:f4:30: c8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D5:1B:08:C3:1F:67:C9:AC:78:0E:5D:2A:11:8B:9A:D0:E9:65:B9 X509v3 Authority Key Identifier: keyid:36:16:E0:1D:A3:31:7F:09:EE:CA:98:E7:BC:75:4C:BC:99:0D:7D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NhbgHaMxfwnuypjnvHVMvJkNfWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C72/9D5B5156ECF911EF93A2A213C4F9AE02/NhbgHaMxfwnuypjnvHVMvJkNfWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:84:9b:a3:6c:3d:51:35:11:bf:9c:58:ad:60:52:5b:86:82: dc:f6:e5:06:36:47:5c:35:35:1a:ca:14:54:e4:49:ea:59:64: e0:1c:50:78:5c:86:53:77:d9:ed:36:db:0d:61:f1:dc:58:79: 00:2b:45:5a:1a:ef:22:3c:64:e1:0d:b5:cf:57:7b:89:cd:42: 34:a7:76:33:5e:27:b3:9d:9a:5b:c8:9b:f9:fb:9e:d1:4a:7e: 09:a9:c5:02:02:3d:e0:92:23:bd:b6:83:b2:d2:e0:42:83:c4: ff:b1:a6:fa:11:7a:1c:0b:81:43:9e:2e:6d:e0:96:33:83:ef: d3:fa:82:d6:29:ca:20:b6:12:3e:c1:41:77:da:41:d4:1f:65: 98:d0:5b:3b:94:aa:d7:89:7c:51:13:7b:b8:a4:ef:f2:09:de: 88:0c:15:a7:10:53:96:17:d5:08:c7:56:1a:dc:2b:ab:54:75: 9d:cf:b4:5d:f8:ce:52:bd:af:84:d9:63:88:9e:41:91:5e:45: b3:4d:bc:97:9c:1a:6e:7f:f4:46:a3:d4:f3:61:03:08:c9:c7: 28:91:af:78:3a:70:a8:04:52:85:18:e5:4f:d0:b4:4d:e9:cc: e6:19:99:83:db:83:bb:4d:7a:bc:f8:91:ca:dc:02:cf:55:b1: 5f:9a:fb:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkM3MjExMC8GA1UEBRMoMzYxNkUwMURBMzMxN0YwOUVFQ0E5OEU3QkM3NTRDQkM5 OTBEN0Q2ODAeFw0yNTA1MTMwNjU0NDZaFw0yNTA1MjAwNjU0NDZaMBgxFjAUBgNV BAMTDTY4MjJlY2I2LTkwNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEnZK9yk9lcwMp7AvRjzfoaO2q+SXGfZrfVfADZo5ZU4F8VcA0pEjyP+A0NusS zn4Qwt3vWszkFwGufRxNKuahAaqCj473fUMQ8OHuB4AKBaI+UqZUkia9ngSRIwpr 5Ppa63FT4YX++kS/e/MaWROSm09/rbAnHp86M1P2ajbUNZ5MVN4O1AeKptANl0SI kxv635JQe79z6b/oAdgWxXr+oum7rb5agpF8fnkHNDhyEmgNwAvTfzKvyjG9d2DQ a3v0NwfNhYZesNo+99RUA0Su72gdwNj9lIeIRhtHk/x3tGGyCE2TxQc9O8UD0OFN KFhJUJ2k5yKy8qM1oRj0MMhtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+tUbCMMf Z8mseA5dKhGLmtDpZbkwHwYDVR0jBBgwFoAUNhbgHaMxfwnuypjnvHVMvJkNfWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQzcyLzlENUI1MTU2RUNG OTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14ZndudXlwam52SFZNdkprTmZX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmhiZ0hhTXhmd251eXBqbnZIVk12SmtOZldnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky QzcyLzlENUI1MTU2RUNGOTExRUY5M0EyQTIxM0M0RjlBRTAyL05oYmdIYU14Zndu dXlwam52SFZNdkprTmZXZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWEm6NsPVE1Eb+cWK1gUluGgtz25QY2R1w1NRrKFFTkSepZZOAcUHhc hlN32e022w1h8dxYeQArRVoa7yI8ZOENtc9Xe4nNQjSndjNeJ7OdmlvIm/n7ntFK fgmpxQICPeCSI722g7LS4EKDxP+xpvoRehwLgUOeLm3gljOD79P6gtYpyiC2Ej7B QXfaQdQfZZjQWzuUqteJfFETe7ik7/IJ3ogMFacQU5YX1QjHVhrcK6tUdZ3PtF34 zlK9r4TZY4ieQZFeRbNNvJecGm5/9Eaj1PNhAwjJxyiRr3g6cKgEUoUY5U/QtE3p zOYZmYPbg7tNerz4kcrcAs9VsV+a+/I= -----END CERTIFICATE-----Generated at Thu May 15 03:39:53 2025 by rpki-client