$ rpki-client -vvf rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft File: NAcoRkbqh4WDwlsPqefW7aCRMpg.mft (raw, json) Hash identifier: bUccPemAc9WuBqCfduAmGpGG7kV8PKm99FRTNsEyibA= Subject key identifier: B9:86:7C:AC:54:D0:F4:CD:D8:9C:83:C2:3F:C4:7E:7A:80:B7:3C:7B Authority key identifier: 34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 Certificate issuer: /CN=A919C318/serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Certificate serial: 08FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft Manifest number: 08F4 Signing time: Mon 12 May 2025 20:11:46 +0000 Manifest this update: Mon 12 May 2025 20:11:46 +0000 Manifest next update: Mon 19 May 2025 20:11:46 +0000 Files and hashes: 1: NAcoRkbqh4WDwlsPqefW7aCRMpg.crl (hash: /qXfkAulfrb+qTFhfZCwj2LiYyxt2Y5dyOdN6cPTDoE=) 2: 9AA539E6A82411EA996D5F41C4F9AE02.roa (hash: pMMXr/lqWr+5GcVstLkkyd8gkDTgGy1DHQolAjMLixQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2299 (0x8fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C318, serialNumber=3407284646EA878583C25B0FA9E7D6EDA0913298 Validity Not Before: May 12 20:11:46 2025 GMT Not After : May 19 20:11:46 2025 GMT Subject: CN=68225602-0280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:50:03:06:e6:f1:9d:9b:c5:f7:0b:8e:7b:00: 27:b4:09:a6:da:cc:7f:40:98:3f:2f:ad:99:d7:14: 2b:be:0d:a2:f5:d4:64:68:c3:54:d8:42:dd:21:c7: d1:46:49:a8:8f:90:dc:e1:7a:a9:98:e8:81:59:8f: cd:86:4f:93:5e:1a:a7:66:ff:6a:84:8f:e8:58:b0: 85:32:bc:f4:2d:d3:b0:1e:f6:09:c0:fa:af:e0:0e: b8:a9:18:d0:56:88:30:c1:e9:a8:f9:a7:c7:a6:65: 7b:34:54:7d:a4:e7:02:3b:02:05:f8:69:f8:0b:ac: 7c:f2:6d:06:ab:2a:c4:24:84:60:2b:c4:fe:57:61: 10:cc:c5:27:49:17:39:07:b7:65:12:13:40:c9:0e: ee:96:0b:75:52:3a:11:ab:c0:41:8d:75:e9:ae:32: bf:66:c8:57:00:56:b3:44:94:5e:86:e7:10:8c:6e: 4c:81:6c:04:eb:d4:02:5b:61:83:65:cc:d3:be:0d: 2d:d9:00:0e:25:de:6c:b8:59:61:df:a8:38:bb:be: 14:bf:56:b3:70:cf:51:4a:69:7c:31:ae:be:cc:c5: b3:70:e7:2f:90:ce:8d:ec:00:c4:4b:b3:44:72:43: 78:38:19:3d:2c:a5:55:a4:58:06:32:77:22:f8:d9: c4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:86:7C:AC:54:D0:F4:CD:D8:9C:83:C2:3F:C4:7E:7A:80:B7:3C:7B X509v3 Authority Key Identifier: keyid:34:07:28:46:46:EA:87:85:83:C2:5B:0F:A9:E7:D6:ED:A0:91:32:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcoRkbqh4WDwlsPqefW7aCRMpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C318/65B671B6A82211EAABAA2F19C4F9AE02/NAcoRkbqh4WDwlsPqefW7aCRMpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:8e:b5:dd:cc:93:4c:3a:90:1b:ac:e7:36:db:d8:8c:cc:62: 5d:21:a7:78:0b:62:6f:c1:7c:86:49:16:1e:0b:00:7c:c9:5a: d2:ef:a6:81:47:b1:60:7f:2d:42:f5:20:66:65:26:d4:4c:80: 31:3a:ce:c3:d1:d3:1e:39:b8:1b:38:11:46:79:c8:81:b1:14: ac:19:d7:05:a8:13:7a:12:2c:ee:69:3e:bc:b3:6c:59:d1:88: 72:62:8d:2e:71:5c:ff:85:9c:62:bd:85:ee:07:37:cc:2d:21: bd:0c:72:48:2f:06:77:04:64:4f:79:b7:a2:a0:50:8d:38:bb: c3:e2:7d:a1:1c:c0:60:eb:f5:2f:b8:7f:d1:66:a4:c0:4f:89: e1:3f:af:06:1b:bd:8b:c3:e7:6a:97:2e:3b:56:32:91:a9:5b: 5b:49:b4:34:1d:eb:ac:fb:29:4c:b4:ff:75:0a:cf:91:b7:45: bf:c9:90:b7:64:9a:a8:fd:bb:2f:50:05:39:77:48:92:75:c4: 80:07:4f:84:93:90:c9:49:b0:4b:7d:1b:9b:28:4a:f0:4f:22: e9:bc:b4:e5:d7:fb:bd:dc:49:a1:37:4d:02:14:da:e6:d1:96: 3e:ed:17:e8:b4:27:b3:97:33:cd:c4:81:8b:29:12:39:35:ba: 19:00:2e:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMzMTgxMTAvBgNVBAUTKDM0MDcyODQ2NDZFQTg3ODU4M0MyNUIwRkE5RTdENkVE QTA5MTMyOTgwHhcNMjUwNTEyMjAxMTQ2WhcNMjUwNTE5MjAxMTQ2WjAYMRYwFAYD VQQDEw02ODIyNTYwMi0wMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41ADBubxnZvF9wuOewAntAmm2sx/QJg/L62Z1xQrvg2i9dRkaMNU2ELdIcfR Rkmoj5Dc4XqpmOiBWY/Nhk+TXhqnZv9qhI/oWLCFMrz0LdOwHvYJwPqv4A64qRjQ Vogwwemo+afHpmV7NFR9pOcCOwIF+Gn4C6x88m0GqyrEJIRgK8T+V2EQzMUnSRc5 B7dlEhNAyQ7ulgt1UjoRq8BBjXXprjK/ZshXAFazRJRehucQjG5MgWwE69QCW2GD ZczTvg0t2QAOJd5suFlh36g4u74Uv1azcM9RSml8Ma6+zMWzcOcvkM6N7ADES7NE ckN4OBk9LKVVpFgGMnci+NnEuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmGfKxU 0PTN2JyDwj/EfnqAtzx7MB8GA1UdIwQYMBaAFDQHKEZG6oeFg8JbD6nn1u2gkTKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzMxOC82NUI2NzFCNkE4 MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0V0R3bHNQcWVmVzdhQ1JN cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BY29Sa2JxaDRXRHdsc1BxZWZXN2FDUk1wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzMxOC82NUI2NzFCNkE4MjIxMUVBQUJBQTJGMTlDNEY5QUUwMi9OQWNvUmticWg0 V0R3bHNQcWVmVzdhQ1JNcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAjrXdzJNMOpAbrOc229iMzGJdIad4C2JvwXyGSRYeCwB8yVrS76aB R7Fgfy1C9SBmZSbUTIAxOs7D0dMeObgbOBFGeciBsRSsGdcFqBN6EizuaT68s2xZ 0YhyYo0ucVz/hZxivYXuBzfMLSG9DHJILwZ3BGRPebeioFCNOLvD4n2hHMBg6/Uv uH/RZqTAT4nhP68GG72Lw+dqly47VjKRqVtbSbQ0Heus+ylMtP91Cs+Rt0W/yZC3 ZJqo/bsvUAU5d0iSdcSAB0+Ek5DJSbBLfRubKErwTyLpvLTl1/u93EmhN00CFNrm 0ZY+7RfotCezlzPNxIGLKRI5NboZAC6O -----END CERTIFICATE-----Generated at Tue May 13 05:19:47 2025 by rpki-client