$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft File: NPs4YMs0-seCIJnB-5kfzfY8hs0.mft (raw, json) Hash identifier: mGjZvUyBlCZM3fZlZovN9YCE1v87CB+fMIt4pdlZc9I= Subject key identifier: E2:3F:AD:1C:55:9D:11:3C:78:C0:52:5E:0D:05:E7:2B:11:6C:66:9C Authority key identifier: 34:FB:38:60:CB:34:FA:C7:82:20:99:C1:FB:99:1F:CD:F6:3C:86:CD Certificate issuer: /CN=A91C1710/serialNumber=34FB3860CB34FAC7822099C1FB991FCDF63C86CD Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft Manifest number: 0710 Signing time: Mon 05 May 2025 00:12:45 +0000 Manifest this update: Mon 05 May 2025 00:12:45 +0000 Manifest next update: Mon 12 May 2025 00:12:45 +0000 Files and hashes: 1: NPs4YMs0-seCIJnB-5kfzfY8hs0.crl (hash: /yaFduK58AiMDwN7UEGDXne+NRhxv7h8cvaN+S2J1Qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710, serialNumber=34FB3860CB34FAC7822099C1FB991FCDF63C86CD Validity Not Before: May 5 00:12:45 2025 GMT Not After : May 12 00:12:45 2025 GMT Subject: CN=6818027d-99eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:83:53:98:20:23:b4:b5:19:f6:2f:2e:dc:98: 87:cc:68:7f:45:5d:51:f8:a0:df:86:df:36:b9:1f: b7:a4:80:10:19:90:c2:1e:16:52:4a:c7:ad:c2:f6: 2c:14:69:90:9d:b1:73:93:db:ce:28:6f:9e:4b:43: a5:4d:32:5b:91:ab:ab:a8:a5:b3:bb:cb:97:f7:2b: 1b:47:9c:43:47:29:1c:e0:76:ac:a9:37:1b:1a:43: a9:1c:0e:32:7c:ac:97:7f:24:3c:5e:29:7e:dc:9e: 51:8f:d8:51:67:95:25:d1:bb:f6:f4:0a:2d:8d:1c: eb:c5:b8:13:24:c9:0a:1d:f0:af:a1:58:0c:3a:96: b9:47:a0:c4:d8:98:ff:66:01:ef:98:c0:ff:66:d7: 5b:e9:bf:ce:e7:12:e1:4f:9e:c1:7f:11:46:b9:52: 5a:f3:70:8a:bb:db:c1:3d:d1:b1:a7:39:c0:c0:44: ff:b5:e0:65:70:53:39:41:76:38:50:57:8c:02:0e: 85:52:75:50:15:65:2c:e9:ea:1e:89:bc:99:ef:d0: c1:24:47:67:bd:cf:81:16:7c:92:63:08:fb:58:6d: 6f:d8:3b:5e:ce:0a:be:e8:da:8c:50:91:09:7c:9f: 41:70:ee:eb:27:4c:23:bc:c1:0a:9b:fe:42:ae:84: 35:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3F:AD:1C:55:9D:11:3C:78:C0:52:5E:0D:05:E7:2B:11:6C:66:9C X509v3 Authority Key Identifier: keyid:34:FB:38:60:CB:34:FA:C7:82:20:99:C1:FB:99:1F:CD:F6:3C:86:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPs4YMs0-seCIJnB-5kfzfY8hs0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/NPs4YMs0-seCIJnB-5kfzfY8hs0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:43:7d:14:6f:28:a7:77:ed:56:5e:4c:de:a0:0e:4d:b3:69: 7f:de:3c:df:8a:ec:0b:10:f0:10:f2:2a:07:bd:a2:5f:7d:b5: b3:0a:16:4b:93:c6:9a:e0:ae:ed:fd:7c:df:7f:e3:69:8d:bf: 44:b1:32:e2:b8:90:d7:7f:a6:bf:fd:34:83:57:f1:95:47:11: 27:ae:93:91:79:7d:42:fb:5c:f3:a2:a7:ee:5f:65:8e:71:12: a4:05:f1:6a:74:ba:07:e1:53:4e:5b:7e:6a:48:72:5a:c7:c0: 9c:09:a5:8f:c5:ea:bb:07:ed:35:f1:b7:f8:ff:16:75:18:72: 58:7f:fa:7b:4a:78:c3:8d:01:03:2a:9a:71:14:6f:68:cd:b3: d5:98:34:0a:cc:d0:52:66:d6:65:67:76:fb:7a:e8:2b:1b:58: 14:18:21:dd:e3:f8:ac:9b:5c:e5:28:e8:38:d0:49:44:c5:14: 1f:ae:fb:44:fe:75:02:01:17:2d:8d:cf:aa:d5:11:01:9c:5b: ab:d0:29:a1:86:1b:69:fb:0b:60:d0:6c:a6:fa:49:00:08:ce: 7d:8a:ce:5f:ba:d6:4c:b8:cf:c8:21:05:16:a9:5b:3d:a5:fe: c6:c5:42:d0:30:ab:3a:31:fd:57:23:79:72:7c:65:ff:01:30: 52:53:23:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3MTAxMTAvBgNVBAUTKDM0RkIzODYwQ0IzNEZBQzc4MjIwOTlDMUZCOTkxRkNE RjYzQzg2Q0QwHhcNMjUwNTA1MDAxMjQ1WhcNMjUwNTEyMDAxMjQ1WjAYMRYwFAYD VQQDEw02ODE4MDI3ZC05OWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuINTmCAjtLUZ9i8u3JiHzGh/RV1R+KDfht82uR+3pIAQGZDCHhZSSsetwvYs FGmQnbFzk9vOKG+eS0OlTTJbkaurqKWzu8uX9ysbR5xDRykc4HasqTcbGkOpHA4y fKyXfyQ8Xil+3J5Rj9hRZ5Ul0bv29AotjRzrxbgTJMkKHfCvoVgMOpa5R6DE2Jj/ ZgHvmMD/Ztdb6b/O5xLhT57BfxFGuVJa83CKu9vBPdGxpznAwET/teBlcFM5QXY4 UFeMAg6FUnVQFWUs6eoeibyZ79DBJEdnvc+BFnySYwj7WG1v2Dtezgq+6NqMUJEJ fJ9BcO7rJ0wjvMEKm/5CroQ1qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOI/rRxV nRE8eMBSXg0F5ysRbGacMB8GA1UdIwQYMBaAFDT7OGDLNPrHgiCZwfuZH832PIbN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTcxMC8xODIyOUE4Njgy NkIxMUVDQTExQkE1MkJDNEY5QUUwMi9OUHM0WU1zMC1zZUNJSm5CLTVrZnpmWTho czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05QczRZTXMwLXNlQ0lKbkItNWtmemZZOGhzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTcxMC8xODIyOUE4NjgyNkIxMUVDQTExQkE1MkJDNEY5QUUwMi9OUHM0WU1zMC1z ZUNJSm5CLTVrZnpmWThoczAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCQ30Ubyind+1WXkzeoA5Ns2l/3jzfiuwLEPAQ8ioHvaJffbWzChZL k8aa4K7t/Xzff+Npjb9EsTLiuJDXf6a//TSDV/GVRxEnrpOReX1C+1zzoqfuX2WO cRKkBfFqdLoH4VNOW35qSHJax8CcCaWPxeq7B+018bf4/xZ1GHJYf/p7SnjDjQED KppxFG9ozbPVmDQKzNBSZtZlZ3b7eugrG1gUGCHd4/ism1zlKOg40ElExRQfrvtE /nUCARctjc+q1REBnFur0Cmhhhtp+wtg0Gym+kkACM59is5futZMuM/IIQUWqVs9 pf7GxULQMKs6Mf1XI3lyfGX/ATBSUyP1 -----END CERTIFICATE-----Generated at Mon May 5 02:09:15 2025 by rpki-client