$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft File: nbJYwXCyMilNhj9g0twBI82q54k.mft (raw, json) Hash identifier: qfHlRJaf06i7BUkNme8uQvRo6tUA4oJW7adD5ukZLOM= Subject key identifier: 5E:B2:A4:AB:E4:B5:17:5A:83:36:84:9E:89:D4:C9:74:E6:81:14:D2 Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft Manifest number: 0E Signing time: Fri 09 May 2025 07:06:15 +0000 Manifest this update: Fri 09 May 2025 07:06:15 +0000 Manifest next update: Fri 16 May 2025 07:06:15 +0000 Files and hashes: 1: nbJYwXCyMilNhj9g0twBI82q54k.crl (hash: YOskXV1O266XiBwD4Gx8WEcYod6L5fsDVvDIENxWexw=) 2: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (hash: iKgDiBxh8hSyzd66755SfVRSPJ3sBmQyaloJnZ/1JF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 07:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: May 9 07:06:15 2025 GMT Not After : May 16 07:06:15 2025 GMT Subject: CN=681da967-b64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:96:44:64:35:d6:a3:10:28:72:78:8a:5c:2d: 1a:dc:4a:f6:c0:cd:ea:85:ce:cb:b5:d4:63:8f:2d: fb:9b:ba:90:9a:6c:06:a8:a1:98:2e:9d:82:bf:60: 48:b2:40:af:99:97:a9:55:7a:33:38:9d:df:d4:a9: 8d:3d:81:94:28:05:df:9c:72:94:8d:ee:05:13:46: 65:1b:64:7f:82:ab:5f:be:06:8c:1e:f0:3a:19:9e: 4d:e8:7b:1b:3e:1f:56:41:db:cf:b3:02:a5:99:6d: 99:c7:a2:29:63:be:58:ca:28:35:53:72:ec:a2:50: 88:90:95:02:66:0d:a4:94:64:77:c7:35:e0:11:dd: 8f:47:d7:be:6b:61:cc:c9:3b:5a:2f:62:b6:19:ec: a2:53:ce:9b:52:1e:3e:13:67:8f:43:46:15:fe:f1: 5f:33:09:1c:85:32:87:40:51:0a:ad:35:4a:6d:81: 8c:94:d0:a2:fb:61:9c:1d:04:08:57:c5:2a:44:46: 5b:99:02:bf:06:87:53:1f:c7:9e:34:ac:4c:a0:c9: 22:f7:7e:6d:f9:71:25:90:da:ce:d0:97:0c:bc:76: d5:e5:7c:02:6b:95:a0:14:53:cc:a1:11:ce:f2:07: ef:ec:2f:97:1a:16:9a:01:76:26:25:dc:f3:a8:c3: 6a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B2:A4:AB:E4:B5:17:5A:83:36:84:9E:89:D4:C9:74:E6:81:14:D2 X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:5a:51:0b:0a:3e:47:3f:74:f7:b1:d9:5c:ff:ad:de:b6:51: ac:b1:47:d3:32:59:95:8d:4c:0a:39:06:62:1e:55:4d:ce:7d: 76:b5:a0:c6:da:a7:07:b5:0c:b8:2f:ec:38:42:85:46:f3:18: 0b:ee:82:2b:41:4f:df:56:f1:60:73:5b:c8:89:94:02:3c:f1: 0c:9b:c7:2b:98:b6:ab:fc:4f:02:83:e4:13:fd:1f:8f:6f:4f: 45:34:60:4c:33:85:1c:88:11:32:40:34:e4:fa:0d:a1:a5:7b: 58:9d:4e:a5:92:d8:57:a5:87:89:a4:57:19:b7:3c:35:ec:d4: ec:ec:af:eb:1a:5f:fe:7a:d8:d0:e7:32:47:e8:ea:16:7b:37: b2:5b:7d:8d:57:0c:ac:88:b0:08:88:64:20:97:de:6c:84:4d: a0:05:5f:b0:07:5f:4b:43:42:57:2e:f9:90:7a:49:11:67:aa: 05:15:48:70:49:13:4a:98:29:40:de:b4:61:ae:76:b1:66:b0: 2a:98:c3:60:9f:d2:da:4b:74:b6:89:15:fa:51:a0:71:00:65: 21:d1:cd:68:fe:23:43:8f:5e:d7:8d:e8:29:e5:61:7b:72:00: 7c:2c:0d:5f:57:9f:75:ed:3e:e9:2a:83:25:e1:13:82:77:54: 30:d3:53:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA1MDkwNzA2MTVaFw0yNTA1MTYwNzA2MTVaMBgxFjAUBgNV BAMTDTY4MWRhOTY3LWI2NGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvlkRkNdajEChyeIpcLRrcSvbAzeqFzsu11GOPLfubupCabAaooZgunYK/YEiy QK+Zl6lVejM4nd/UqY09gZQoBd+ccpSN7gUTRmUbZH+Cq1++Bowe8DoZnk3oexs+ H1ZB28+zAqWZbZnHoiljvljKKDVTcuyiUIiQlQJmDaSUZHfHNeAR3Y9H175rYczJ O1ovYrYZ7KJTzptSHj4TZ49DRhX+8V8zCRyFModAUQqtNUptgYyU0KL7YZwdBAhX xSpERluZAr8Gh1Mfx540rEygySL3fm35cSWQ2s7Qlwy8dtXlfAJrlaAUU8yhEc7y B+/sL5caFpoBdiYl3POow2r9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXrKkq+S1 F1qDNoSeidTJdOaBFNIwHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy RURFLzU1Q0IyRTA0MUFCNDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWls TmhqOWcwdHdCSTgycTU0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADlaUQsKPkc/dPex2Vz/rd62UayxR9MyWZWNTAo5BmIeVU3OfXa1oMba pwe1DLgv7DhChUbzGAvugitBT99W8WBzW8iJlAI88QybxyuYtqv8TwKD5BP9H49v T0U0YEwzhRyIETJANOT6DaGle1idTqWS2Felh4mkVxm3PDXs1Ozsr+saX/562NDn Mkfo6hZ7N7JbfY1XDKyIsAiIZCCX3myETaAFX7AHX0tDQlcu+ZB6SRFnqgUVSHBJ E0qYKUDetGGudrFmsCqYw2Cf0tpLdLaJFfpRoHEAZSHRzWj+I0OPXteN6CnlYXty AHwsDV9Xn3XtPukqgyXhE4J3VDDTU60= -----END CERTIFICATE-----Generated at Sun May 11 01:08:37 2025 by rpki-client