$ rpki-client -vvf rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft File: NjlSt_QXggYJMArokUgSGEuPw9w.mft (raw, json) Hash identifier: UpJCzg3i8MJBq4e2KjaQtOY7OHNp4ct6Mov1SX1wX2c= Subject key identifier: FF:6F:72:3A:23:E2:AF:C0:84:3B:00:B6:6B:3E:F4:CE:7E:CA:C0:C4 Authority key identifier: 36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC Certificate issuer: /CN=A91A70FA/serialNumber=363952B7F417820609300AE8914812184B8FC3DC Certificate serial: 1C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft Manifest number: 1C40 Signing time: Fri 16 May 2025 16:25:01 +0000 Manifest this update: Fri 16 May 2025 16:25:01 +0000 Manifest next update: Fri 23 May 2025 16:25:01 +0000 Files and hashes: 1: NjlSt_QXggYJMArokUgSGEuPw9w.crl (hash: a6CKjd6xGyUu+u9xewFQM/UmRajtmZiw9TIKyjlLhig=) 2: EC1B43EA393111EAA1873746C4F9AE02.roa (hash: 3515yyoHz/OpGxhQJVW0uZ09F4a0FPsq5rPkaEYDZbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 16:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7255 (0x1c57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A70FA, serialNumber=363952B7F417820609300AE8914812184B8FC3DC Validity Not Before: May 16 16:25:01 2025 GMT Not After : May 23 16:25:01 2025 GMT Subject: CN=682766dd-2874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:41:b9:0d:1a:f3:ea:1a:28:57:8a:15:ba: 03:04:c9:12:81:f8:7c:a5:84:01:d5:54:b6:1b:b0: 80:c6:74:71:71:7d:45:31:e5:3f:0d:bd:72:65:cf: 0e:49:df:0c:ba:64:4a:5e:d8:4f:f9:78:fe:97:10: 08:6f:75:be:e2:5a:8c:ad:24:86:22:e8:9c:2a:53: 97:dc:68:39:6d:eb:f4:96:79:81:41:19:04:bd:48: 13:24:9b:3b:ed:bd:75:03:33:82:e0:f7:31:05:d8: 09:58:ef:e1:0e:c4:0c:63:2d:ee:34:01:b4:c0:10: 31:6f:ec:16:72:8c:e1:89:00:ae:a6:b7:23:dc:f5: c4:e2:b8:3d:b9:33:82:54:20:01:79:69:08:a9:8f: 68:c2:c7:5e:92:18:17:4f:05:a3:bf:5e:70:8e:b7: 9c:50:3e:aa:53:93:c9:45:e2:30:30:9e:c9:c4:cb: 85:f6:df:ae:46:af:0c:7b:5c:c3:b9:d7:2e:c2:ac: f9:05:43:57:90:27:df:ce:3b:40:34:c1:ce:60:e9: f1:84:e2:2c:4a:6c:42:00:34:23:10:5f:ad:f4:44: cc:4d:89:fa:b2:b0:49:ae:e8:f6:ba:d9:4e:17:82: e2:13:0a:a9:bb:e8:80:4b:e3:a7:70:ca:87:dc:ce: be:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6F:72:3A:23:E2:AF:C0:84:3B:00:B6:6B:3E:F4:CE:7E:CA:C0:C4 X509v3 Authority Key Identifier: keyid:36:39:52:B7:F4:17:82:06:09:30:0A:E8:91:48:12:18:4B:8F:C3:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NjlSt_QXggYJMArokUgSGEuPw9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A70FA/64FB7E1CE3A711E6A5B20178C4F9AE02/NjlSt_QXggYJMArokUgSGEuPw9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:24:e4:50:a3:31:80:5f:cb:23:5f:b9:37:c9:07:32:6e:ed: 24:c2:60:74:e3:0f:ae:cd:9d:20:d0:60:76:88:86:93:16:7f: 3a:80:cf:72:ce:fd:19:9e:d6:99:a6:8f:1b:69:d0:f2:c1:67: c6:75:cc:5e:b4:72:54:f3:9a:98:80:19:d1:1b:73:a7:d7:ac: 87:0a:fe:6d:55:34:95:c6:04:89:49:8e:e9:c1:fd:c9:da:5a: f6:37:b3:a4:2b:2a:5a:75:0e:d9:2d:85:62:34:d3:a6:80:6b: e2:58:39:45:0b:af:d5:7e:c0:b9:39:fb:9d:77:32:e5:f1:8a: 0e:28:28:7f:93:6e:aa:8e:a1:d4:aa:08:29:63:10:f9:0b:ec: 0e:87:95:e6:0e:11:98:be:6a:32:a0:4f:5c:94:9c:b6:c2:69: f8:5c:3b:18:77:61:37:fb:8b:4b:ea:47:b2:38:d8:d1:7d:49: e1:1e:07:df:7f:5b:28:25:8c:26:94:a9:03:c5:8e:b1:a5:bc: 02:e0:12:2f:75:58:30:f5:de:b6:86:f9:9b:c2:50:78:0c:9b: a7:82:68:39:0c:f8:49:a0:e2:8d:37:d2:35:ea:cf:ea:72:4f: a3:5b:ea:4b:37:ff:8a:93:5c:55:e2:ca:8d:ad:94:ee:ed:50: e5:1c:2d:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcwRkExMTAvBgNVBAUTKDM2Mzk1MkI3RjQxNzgyMDYwOTMwMEFFODkxNDgxMjE4 NEI4RkMzREMwHhcNMjUwNTE2MTYyNTAxWhcNMjUwNTIzMTYyNTAxWjAYMRYwFAYD VQQDEw02ODI3NjZkZC0yODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJRBuQ0a8+oaKFeKFboDBMkSgfh8pYQB1VS2G7CAxnRxcX1FMeU/Db1yZc8O Sd8MumRKXthP+Xj+lxAIb3W+4lqMrSSGIuicKlOX3Gg5bev0lnmBQRkEvUgTJJs7 7b11AzOC4PcxBdgJWO/hDsQMYy3uNAG0wBAxb+wWcozhiQCuprcj3PXE4rg9uTOC VCABeWkIqY9owsdekhgXTwWjv15wjrecUD6qU5PJReIwMJ7JxMuF9t+uRq8Me1zD udcuwqz5BUNXkCffzjtANMHOYOnxhOIsSmxCADQjEF+t9ETMTYn6srBJruj2utlO F4LiEwqpu+iAS+OncMqH3M6+1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9vcjoj 4q/AhDsAtms+9M5+ysDEMB8GA1UdIwQYMBaAFDY5Urf0F4IGCTAK6JFIEhhLj8Pc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzBGQS82NEZCN0UxQ0Uz QTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdnWUpNQXJva1VnU0dFdVB3 OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05qbFN0X1FYZ2dZSk1Bcm9rVWdTR0V1UHc5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzBGQS82NEZCN0UxQ0UzQTcxMUU2QTVCMjAxNzhDNEY5QUUwMi9OamxTdF9RWGdn WUpNQXJva1VnU0dFdVB3OXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0JORQozGAX8sjX7k3yQcybu0kwmB04w+uzZ0g0GB2iIaTFn86gM9y zv0ZntaZpo8badDywWfGdcxetHJU85qYgBnRG3On16yHCv5tVTSVxgSJSY7pwf3J 2lr2N7OkKypadQ7ZLYViNNOmgGviWDlFC6/VfsC5OfuddzLl8YoOKCh/k26qjqHU qggpYxD5C+wOh5XmDhGYvmoyoE9clJy2wmn4XDsYd2E3+4tL6keyONjRfUnhHgff f1soJYwmlKkDxY6xpbwC4BIvdVgw9d62hvmbwlB4DJungmg5DPhJoOKNN9I16s/q ck+jW+pLN/+Kk1xV4sqNrZTu7VDlHC3v -----END CERTIFICATE-----Generated at Sat May 17 06:03:44 2025 by rpki-client