$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft File: nC3RgnBi24kuOEZaEK_kkWg1wCc.mft (raw, json) Hash identifier: tiWT+qByXTZJYFMpeRnLzt1xm8LSntL0ne56xAhsHVE= Subject key identifier: 73:85:38:50:14:27:D8:1C:0C:3F:CE:8C:57:9D:3C:0A:62:C3:85:34 Authority key identifier: 9C:2D:D1:82:70:62:DB:89:2E:38:46:5A:10:AF:E4:91:68:35:C0:27 Certificate issuer: /CN=A91B1F27/serialNumber=9C2DD1827062DB892E38465A10AFE4916835C027 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft Manifest number: 0170 Signing time: Sun 11 May 2025 02:44:44 +0000 Manifest this update: Sun 11 May 2025 02:44:44 +0000 Manifest next update: Sun 18 May 2025 02:44:44 +0000 Files and hashes: 1: nC3RgnBi24kuOEZaEK_kkWg1wCc.crl (hash: LPetkuzsx97+Bu22UXKWfu+ghO6w749Nd++RxnfA0rA=) 2: ED31BA0AFBAE11ED977DEA10C4F9AE02.roa (hash: sZ1Qc0QixkblDQbEZ18gwDagCIypsTqT+SHpNFgumsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.crl rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1F27, serialNumber=9C2DD1827062DB892E38465A10AFE4916835C027 Validity Not Before: May 11 02:44:44 2025 GMT Not After : May 18 02:44:44 2025 GMT Subject: CN=68200f1c-9b21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:27:73:3d:ab:61:f4:0f:a8:fc:a1:32:56:5f: a6:f9:86:68:0f:70:4f:81:8c:4a:9f:6e:56:e7:93: 38:5d:04:f2:da:a0:cc:dd:58:32:57:a0:40:d9:1a: e5:d2:e8:9f:e9:f2:fe:62:7b:61:57:b5:f1:cb:67: 30:b2:51:cf:df:59:89:65:50:f9:cc:e8:ff:d1:c5: 7f:f5:d8:e1:e0:6a:1c:5f:25:f6:54:30:c2:ed:4e: 37:8d:d7:4f:b5:4b:8f:e0:04:a0:e1:df:35:39:0d: 01:87:59:7f:27:f0:55:d8:30:f0:20:66:ea:13:1e: 5a:c0:f5:10:ac:44:8f:46:b8:31:d6:23:6e:e4:63: ab:b4:e2:92:52:61:23:7f:25:f8:67:01:1f:1d:f9: b2:f9:ef:81:26:41:b1:cc:fb:00:f5:ec:77:93:9e: 5e:5b:66:97:36:96:7f:f7:54:ad:18:9e:b8:f8:f7: 41:ac:7e:76:09:e6:25:b1:20:0c:48:c8:96:31:d2: de:d3:28:1b:3f:18:d2:b3:72:1f:61:ef:98:a4:fa: ae:55:34:cd:dc:70:5b:a3:77:d6:08:67:1a:52:d3: 50:de:40:2d:fe:07:c2:b3:c1:25:91:e1:6d:2d:42: 63:d3:ea:11:bd:0a:6b:68:e2:29:21:7b:5e:8f:c2: 5e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:85:38:50:14:27:D8:1C:0C:3F:CE:8C:57:9D:3C:0A:62:C3:85:34 X509v3 Authority Key Identifier: keyid:9C:2D:D1:82:70:62:DB:89:2E:38:46:5A:10:AF:E4:91:68:35:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nC3RgnBi24kuOEZaEK_kkWg1wCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1F27/F77C109AFBA511ED88D0C96DC4F9AE02/nC3RgnBi24kuOEZaEK_kkWg1wCc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:45:00:91:e5:3c:4d:6b:15:0a:ad:a1:27:86:66:88:cc:4b: a4:a6:8c:b4:5e:15:07:5f:5a:ed:f1:2f:83:fb:10:d7:65:b4: 9f:65:b5:d0:ae:0e:f2:7c:b9:cf:fd:8f:36:13:84:47:07:a4: cd:cb:4e:94:7a:5d:49:bb:59:1b:41:a3:48:ed:f9:97:0f:96: 57:6f:78:d6:17:7e:6b:08:14:06:6a:05:b1:50:27:06:02:28: 06:93:17:f2:5e:2e:8d:db:54:19:36:77:11:e3:37:49:17:0e: 18:e2:15:3c:5e:bc:01:16:3c:b3:ca:87:1b:56:80:14:3c:aa: 0e:0f:40:b5:0c:d9:ca:33:e1:af:91:02:de:02:07:2c:63:a3: 4e:62:e8:b2:ba:ef:a5:39:e6:a6:fa:28:89:68:1d:a8:d3:84: a9:fd:b7:78:fa:aa:06:55:d3:48:71:9a:a9:99:9e:99:91:0a: 8d:9f:10:55:b2:ad:f0:17:91:52:4a:b4:6d:35:4f:27:b3:35: af:e3:9d:d7:90:da:a6:b0:dc:fb:ba:c9:13:4d:37:0b:03:5e: 3e:28:54:b2:6c:51:d5:78:1e:a2:30:14:ac:f0:17:49:1a:ba: fd:2e:e5:a3:09:b4:46:87:f0:7f:15:55:1f:70:9f:1d:9b:d4: 82:af:2c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGMjcxMTAvBgNVBAUTKDlDMkREMTgyNzA2MkRCODkyRTM4NDY1QTEwQUZFNDkx NjgzNUMwMjcwHhcNMjUwNTExMDI0NDQ0WhcNMjUwNTE4MDI0NDQ0WjAYMRYwFAYD VQQDEw02ODIwMGYxYy05YjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxidzPath9A+o/KEyVl+m+YZoD3BPgYxKn25W55M4XQTy2qDM3VgyV6BA2Rrl 0uif6fL+YnthV7Xxy2cwslHP31mJZVD5zOj/0cV/9djh4GocXyX2VDDC7U43jddP tUuP4ASg4d81OQ0Bh1l/J/BV2DDwIGbqEx5awPUQrESPRrgx1iNu5GOrtOKSUmEj fyX4ZwEfHfmy+e+BJkGxzPsA9ex3k55eW2aXNpZ/91StGJ64+PdBrH52CeYlsSAM SMiWMdLe0ygbPxjSs3IfYe+YpPquVTTN3HBbo3fWCGcaUtNQ3kAt/gfCs8ElkeFt LUJj0+oRvQpraOIpIXtej8Je0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOFOFAU J9gcDD/OjFedPApiw4U0MB8GA1UdIwQYMBaAFJwt0YJwYtuJLjhGWhCv5JFoNcAn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUYyNy9GNzdDMTA5QUZC QTUxMUVEODhEMEM5NkRDNEY5QUUwMi9uQzNSZ25CaTI0a3VPRVphRUtfa2tXZzF3 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25DM1JnbkJpMjRrdU9FWmFFS19ra1dnMXdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUYyNy9GNzdDMTA5QUZCQTUxMUVEODhEMEM5NkRDNEY5QUUwMi9uQzNSZ25CaTI0 a3VPRVphRUtfa2tXZzF3Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7RQCR5TxNaxUKraEnhmaIzEukpoy0XhUHX1rt8S+D+xDXZbSfZbXQ rg7yfLnP/Y82E4RHB6TNy06Uel1Ju1kbQaNI7fmXD5ZXb3jWF35rCBQGagWxUCcG AigGkxfyXi6N21QZNncR4zdJFw4Y4hU8XrwBFjyzyocbVoAUPKoOD0C1DNnKM+Gv kQLeAgcsY6NOYuiyuu+lOeam+iiJaB2o04Sp/bd4+qoGVdNIcZqpmZ6ZkQqNnxBV sq3wF5FSSrRtNU8nszWv453XkNqmsNz7uskTTTcLA14+KFSybFHVeB6iMBSs8BdJ Grr9LuWjCbRGh/B/FVUfcJ8dm9SCryy2 -----END CERTIFICATE-----Generated at Sun May 11 06:55:27 2025 by rpki-client