$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft File: NpQoPSE6XlZ5WORs29gStcxynXE.mft (raw, json) Hash identifier: ID7KkQTOIN27Joq2ZXDMp2Wa6DA8REcrAk1EZ7lI5aU= Subject key identifier: CA:63:FE:13:DB:AC:F4:28:B8:27:69:8E:A4:AE:FC:31:DE:B3:73:FF Authority key identifier: 36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 Certificate issuer: /CN=A91A2F88/serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Certificate serial: 02E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft Manifest number: 02E3 Signing time: Fri 09 May 2025 01:07:14 +0000 Manifest this update: Fri 09 May 2025 01:07:14 +0000 Manifest next update: Fri 16 May 2025 01:07:13 +0000 Files and hashes: 1: NpQoPSE6XlZ5WORs29gStcxynXE.crl (hash: 8IdJzcuExfQUaX4EKxiibZMoOIqH5ZILovso49uOoQ8=) 2: 54467164E0A711EC8F4D5B5FC4F9AE02.roa (hash: 8iGFuZI4O9j0Gdt93MzFvxSKeiFq7gMt0350fxzYb8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 01:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 743 (0x2e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F88, serialNumber=3694283D213A5E567958E46CDBD812B5CC729D71 Validity Not Before: May 9 01:07:14 2025 GMT Not After : May 16 01:07:13 2025 GMT Subject: CN=681d5542-4842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:45:be:eb:01:90:ad:b6:b9:90:08:94:30:94: fd:06:2c:6d:ac:e7:6c:6b:df:c5:ae:d0:2d:bb:79: c6:81:22:f0:a8:24:3b:ce:cd:ac:fe:bd:12:55:0b: d9:17:03:96:5b:91:1f:cd:dd:f8:68:4b:12:1c:3f: d8:9b:e1:34:b2:15:cb:42:3a:3e:e9:78:f3:43:7c: 04:32:70:b9:ef:b7:24:93:58:8d:40:23:73:69:2f: 48:40:b8:b6:5d:f6:8d:87:d6:6f:22:26:86:77:56: 7f:73:1c:bb:1d:d1:e0:6f:49:c6:65:e0:ba:f1:6d: 6b:07:26:57:76:77:73:a7:5d:b4:e1:bd:a7:da:79: 31:2d:7f:6b:b1:77:13:9e:ac:89:6a:ff:ef:e6:b4: a9:85:e8:f2:28:61:7e:65:9c:e4:2c:2f:49:60:85: 81:47:af:eb:7d:48:b2:65:03:d0:ce:97:35:a4:64: e5:82:8b:a5:ab:b4:97:cf:3f:af:b0:18:49:8d:9c: b6:d5:90:95:26:2d:57:51:06:2e:a9:b7:2b:64:aa: ee:97:ca:65:fe:d7:96:f6:77:df:52:27:70:ef:04: e1:29:c1:d3:ea:7f:6c:84:06:17:cf:c3:bf:20:22: 66:1c:5b:75:5c:27:6e:dc:fe:e2:25:90:c4:67:97: 99:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:63:FE:13:DB:AC:F4:28:B8:27:69:8E:A4:AE:FC:31:DE:B3:73:FF X509v3 Authority Key Identifier: keyid:36:94:28:3D:21:3A:5E:56:79:58:E4:6C:DB:D8:12:B5:CC:72:9D:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpQoPSE6XlZ5WORs29gStcxynXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F88/4C7DA3C0E0A311EC8F9C0E58C4F9AE02/NpQoPSE6XlZ5WORs29gStcxynXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:7f:7e:74:57:60:56:09:e1:ad:1c:b3:7c:00:ce:b3:b4:75: ce:51:94:da:59:9b:2a:c4:5e:a1:87:a0:31:85:00:a0:44:91: 61:9a:e1:58:9e:8e:a3:85:42:45:55:c6:4e:79:25:5f:2c:e0: 78:2e:b0:21:13:64:ff:93:4d:02:e5:5f:bd:0f:7a:51:64:b6: 71:a1:5f:02:90:e9:50:9c:89:24:b8:e3:46:c5:d6:a6:80:67: 4e:9e:59:2a:89:96:c8:db:22:50:4d:4d:3a:81:d1:06:26:e3: 45:94:5f:21:22:f0:39:23:c9:66:30:04:12:af:40:19:8e:a3: e6:c6:96:e8:b5:e2:0c:c3:86:26:72:e4:af:ae:ad:41:22:6a: fb:83:84:4e:f1:7d:18:b0:b8:82:45:8a:09:73:2c:cd:0f:58: 42:3c:2f:ea:34:ad:37:1b:69:2a:73:94:03:a0:fe:27:e8:2c: 8b:86:99:9e:21:da:5b:02:ed:b3:1f:9a:29:5e:01:8c:be:bd: bc:e3:35:87:77:36:7c:f0:25:48:ec:d3:ee:33:bc:41:c4:4e: 11:7c:9c:e4:dc:5e:53:09:a3:81:ce:f7:a2:69:b6:25:d6:58: 94:9e:73:c4:5e:df:72:47:e5:bf:22:81:9e:8d:b6:55:f2:f7: 56:b3:45:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGODgxMTAvBgNVBAUTKDM2OTQyODNEMjEzQTVFNTY3OTU4RTQ2Q0RCRDgxMkI1 Q0M3MjlENzEwHhcNMjUwNTA5MDEwNzE0WhcNMjUwNTE2MDEwNzEzWjAYMRYwFAYD VQQDEw02ODFkNTU0Mi00ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EW+6wGQrba5kAiUMJT9BixtrOdsa9/FrtAtu3nGgSLwqCQ7zs2s/r0SVQvZ FwOWW5Efzd34aEsSHD/Ym+E0shXLQjo+6XjzQ3wEMnC577ckk1iNQCNzaS9IQLi2 XfaNh9ZvIiaGd1Z/cxy7HdHgb0nGZeC68W1rByZXdndzp1204b2n2nkxLX9rsXcT nqyJav/v5rSphejyKGF+ZZzkLC9JYIWBR6/rfUiyZQPQzpc1pGTlgoulq7SXzz+v sBhJjZy21ZCVJi1XUQYuqbcrZKrul8pl/teW9nffUidw7wThKcHT6n9shAYXz8O/ ICJmHFt1XCdu3P7iJZDEZ5eZZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpj/hPb rPQouCdpjqSu/DHes3P/MB8GA1UdIwQYMBaAFDaUKD0hOl5WeVjkbNvYErXMcp1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkY4OC80QzdEQTNDMEUw QTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhsWjVXT1JzMjlnU3RjeHlu WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wUW9QU0U2WGxaNVdPUnMyOWdTdGN4eW5YRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkY4OC80QzdEQTNDMEUwQTMxMUVDOEY5QzBFNThDNEY5QUUwMi9OcFFvUFNFNlhs WjVXT1JzMjlnU3RjeHluWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWf350V2BWCeGtHLN8AM6ztHXOUZTaWZsqxF6hh6AxhQCgRJFhmuFY no6jhUJFVcZOeSVfLOB4LrAhE2T/k00C5V+9D3pRZLZxoV8CkOlQnIkkuONGxdam gGdOnlkqiZbI2yJQTU06gdEGJuNFlF8hIvA5I8lmMAQSr0AZjqPmxpboteIMw4Ym cuSvrq1BImr7g4RO8X0YsLiCRYoJcyzND1hCPC/qNK03G2kqc5QDoP4n6CyLhpme IdpbAu2zH5opXgGMvr284zWHdzZ88CVI7NPuM7xBxE4RfJzk3F5TCaOBzveiabYl 1liUnnPEXt9yR+W/IoGejbZV8vdWs0XH -----END CERTIFICATE-----Generated at Sat May 10 19:20:54 2025 by rpki-client