$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft File: nssirN4JZ6BYN-WPxzHTV-N2N_g.mft (raw, json) Hash identifier: rh1X+tGOgZ8CJ1SKsAxohHOCGS5ql8isxFDTNN2ueWg= Subject key identifier: 71:8B:A0:EC:43:4A:28:AB:EB:35:2A:82:89:76:AC:43:A9:5E:C1:3B Authority key identifier: 9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 Certificate issuer: /CN=A91C6B27/serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft Manifest number: 0B59 Signing time: Sat 10 May 2025 18:51:47 +0000 Manifest this update: Sat 10 May 2025 18:51:47 +0000 Manifest next update: Sat 17 May 2025 18:51:47 +0000 Files and hashes: 1: nssirN4JZ6BYN-WPxzHTV-N2N_g.crl (hash: tg1/WZub22SaQhjtYSzquzdwksBfIoJf9Dbxbnh0Yhw=) 2: 2B1D3BB2305811EA8D5B6479C4F9AE02.roa (hash: y28rLGPdPmm2RMeTHn7TROIYxoMrptjo0yzzyCvWoMs=) 3: E4BB99E2336E11EA94623E18C4F9AE02.roa (hash: dDWf0aYmxu05SE8QIKzfCcmUhn7e971nZnRqmk+LmCo=) 4: E5675F48336E11EA94623E18C4F9AE02.roa (hash: iPbzGQb+v1UtoJ+/xdLJYlI0s4JJe78IGCPidttsEfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6B27, serialNumber=9ECB22ACDE0967A05837E58FC731D357E37637F8 Validity Not Before: May 10 18:51:47 2025 GMT Not After : May 17 18:51:47 2025 GMT Subject: CN=681fa043-cdf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:18:86:84:1c:91:2b:2c:7e:dd:1a:e7:3a: f7:6d:d8:71:f0:5c:88:e5:b4:28:e9:7e:73:58:13: e1:43:75:8b:6d:67:11:7a:a0:92:d0:80:27:76:18: 5f:57:b5:2e:58:5d:c8:ff:2e:9a:78:68:54:63:a4: ec:90:5b:59:94:07:04:fe:52:ac:1c:33:da:74:86: b9:1a:8e:a1:a9:a4:a0:c5:97:69:d7:97:8c:bc:d6: f3:1e:a6:bd:f1:a1:39:d5:ca:3a:c0:74:a4:22:d2: 43:76:4c:7d:2d:ec:43:de:74:73:13:16:bb:82:fb: 11:eb:8d:4c:05:e4:30:4f:2d:a0:4c:8a:80:18:75: 5a:73:d7:b3:60:25:af:7f:e9:25:63:ec:ff:0e:06: 1f:87:dd:25:77:21:b7:56:d6:b7:cc:85:5d:36:06: ce:9c:45:13:e7:b9:4d:00:af:ff:82:6c:aa:11:83: 92:38:db:bc:ab:0e:68:54:1b:d4:11:c5:b2:c1:10: 23:95:26:e2:6e:e9:d8:23:3b:50:eb:14:00:94:51: c9:de:9a:de:c0:38:42:40:77:f8:cf:af:1b:2a:2e: f3:de:0b:5b:36:fd:5e:39:9a:f6:7d:2f:91:d0:e2: 94:88:8c:46:0f:b3:9b:6a:53:5f:64:45:77:89:33: 0f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8B:A0:EC:43:4A:28:AB:EB:35:2A:82:89:76:AC:43:A9:5E:C1:3B X509v3 Authority Key Identifier: keyid:9E:CB:22:AC:DE:09:67:A0:58:37:E5:8F:C7:31:D3:57:E3:76:37:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nssirN4JZ6BYN-WPxzHTV-N2N_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6B27/82BF2BF4305411EAAFC9116EC4F9AE02/nssirN4JZ6BYN-WPxzHTV-N2N_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:33:cd:c7:51:c1:b8:9a:9c:e7:6d:d8:6c:f2:6f:86:da:b8: 1b:5b:7e:c1:4c:b2:d4:9b:e8:15:32:0c:4c:bf:20:c8:2b:47: 9a:c1:2f:48:70:a6:a0:5b:a8:6b:aa:0f:af:f3:ce:c8:66:d2: 65:7a:5f:c6:77:f2:ca:1c:55:33:70:a5:5a:69:f4:2b:df:24: 98:97:b7:15:d0:a3:65:ba:99:fd:a2:1f:03:8b:84:74:fe:d0: e4:68:34:0a:61:af:d5:68:17:b9:31:b5:09:c5:35:e8:7f:ca: 88:2c:d9:5c:7a:25:8b:94:f6:a7:85:15:78:7a:4b:18:1c:84: 4f:f6:9d:e9:4d:38:9d:36:56:56:34:c9:9d:d2:a8:13:d6:1a: b9:47:d9:25:f5:9b:14:25:00:fe:b3:8d:eb:7b:f7:4b:1b:f8: d9:0e:12:84:4a:00:80:62:2b:75:5d:6a:32:c8:61:3a:e6:cc: ed:9c:b3:1c:4f:a1:af:1b:95:da:e5:2c:2f:e3:93:f7:03:79: ee:20:20:6a:c5:95:c0:64:95:56:38:8b:a5:54:48:9c:22:4d: 7a:55:c3:34:88:e5:47:c2:cc:96:57:75:19:99:bc:f7:3e:d7: 47:c0:72:e5:36:04:6a:9b:b0:7f:d8:44:05:05:73:7b:69:04: b7:eb:af:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCMjcxMTAvBgNVBAUTKDlFQ0IyMkFDREUwOTY3QTA1ODM3RTU4RkM3MzFEMzU3 RTM3NjM3RjgwHhcNMjUwNTEwMTg1MTQ3WhcNMjUwNTE3MTg1MTQ3WjAYMRYwFAYD VQQDEw02ODFmYTA0My1jZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7wYhoQckSssft0a5zr3bdhx8FyI5bQo6X5zWBPhQ3WLbWcReqCS0IAndhhf V7UuWF3I/y6aeGhUY6TskFtZlAcE/lKsHDPadIa5Go6hqaSgxZdp15eMvNbzHqa9 8aE51co6wHSkItJDdkx9LexD3nRzExa7gvsR641MBeQwTy2gTIqAGHVac9ezYCWv f+klY+z/DgYfh90ldyG3Vta3zIVdNgbOnEUT57lNAK//gmyqEYOSONu8qw5oVBvU EcWywRAjlSbibunYIztQ6xQAlFHJ3prewDhCQHf4z68bKi7z3gtbNv1eOZr2fS+R 0OKUiIxGD7ObalNfZEV3iTMPpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGLoOxD Siir6zUqgol2rEOpXsE7MB8GA1UdIwQYMBaAFJ7LIqzeCWegWDflj8cx01fjdjf4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkIyNy84MkJGMkJGNDMw NTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2QllOLVdQeHpIVFYtTjJO X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25zc2lyTjRKWjZCWU4tV1B4ekhUVi1OMk5fZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkIyNy84MkJGMkJGNDMwNTQxMUVBQUZDOTExNkVDNEY5QUUwMi9uc3Npck40Slo2 QllOLVdQeHpIVFYtTjJOX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRM83HUcG4mpznbdhs8m+G2rgbW37BTLLUm+gVMgxMvyDIK0eawS9I cKagW6hrqg+v887IZtJlel/Gd/LKHFUzcKVaafQr3ySYl7cV0KNlupn9oh8Di4R0 /tDkaDQKYa/VaBe5MbUJxTXof8qILNlceiWLlPanhRV4eksYHIRP9p3pTTidNlZW NMmd0qgT1hq5R9kl9ZsUJQD+s43re/dLG/jZDhKESgCAYit1XWoyyGE65sztnLMc T6GvG5Xa5Swv45P3A3nuICBqxZXAZJVWOIulVEicIk16VcM0iOVHwsyWV3UZmbz3 PtdHwHLlNgRqm7B/2EQFBXN7aQS3668O -----END CERTIFICATE-----Generated at Sun May 11 09:41:04 2025 by rpki-client