$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft File: NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft (raw, json) Hash identifier: OPQvAtHnkI0/XZwKuCu0Yf0tBA940o8BUuHvZFrAm1k= Subject key identifier: 16:84:FB:05:AB:68:A6:41:EE:E0:F0:7C:D8:70:8A:FA:02:A4:1B:B7 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0703 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft Manifest number: 06DF Signing time: Mon 12 May 2025 21:52:53 +0000 Manifest this update: Mon 12 May 2025 21:52:53 +0000 Manifest next update: Mon 19 May 2025 21:52:53 +0000 Files and hashes: 1: NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl (hash: OfYQhlI+suzJ7eVOFCDT1s0++NIFSwe7C+hxzHe2lsE=) 2: 96FC6944591111EEBFB2384AC4F9AE02.roa (hash: ax+xM3Q8UL+b4tURGtbo2gp+tcgS0j+5JXjNoSNoJus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: May 12 21:52:53 2025 GMT Not After : May 19 21:52:53 2025 GMT Subject: CN=68226db5-8923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b7:ad:74:47:39:75:ad:fd:12:24:1b:01:d9: d4:df:39:2e:e9:47:f4:3c:f2:ec:17:b3:93:52:49: 4a:23:33:9c:6e:41:67:b3:8e:3d:2f:a3:63:57:86: e6:17:a0:b9:40:bf:95:85:c1:c4:70:d4:e1:3c:6e: 17:3d:8c:a3:19:16:dc:79:0c:8a:28:e2:22:c5:df: 2c:f0:10:35:fa:9a:3c:78:e4:91:1c:dd:13:3c:2a: 06:e4:a3:e3:c8:6d:0a:85:a6:7e:08:55:bb:37:27: dd:2f:50:c2:57:78:f0:76:2c:54:6d:d6:bf:bb:52: a5:0d:6d:ce:10:1d:f4:74:57:c8:12:65:57:58:50: ef:f2:c7:ab:5d:b0:01:a1:b3:d6:24:8d:72:ac:b2: 3b:09:1e:e9:18:e8:a9:5f:85:ee:1e:59:08:1e:95: bf:5e:db:f8:d5:18:ad:8d:a3:26:7a:05:d0:47:22: 01:12:70:97:f4:ad:13:d2:b3:45:8d:39:c8:36:9f: 16:67:39:f0:9b:d6:26:5d:c0:06:32:5b:dc:bc:ad: fb:77:63:fb:98:0c:ad:26:a2:68:ef:4e:e7:f0:19: 93:e3:c9:02:24:b1:83:4b:7b:16:a6:7e:0e:12:a3: 5a:fb:cb:51:56:48:47:20:43:d5:eb:e5:7c:fe:03: a4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:84:FB:05:AB:68:A6:41:EE:E0:F0:7C:D8:70:8A:FA:02:A4:1B:B7 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:6b:9f:41:fc:77:e5:63:60:bf:df:4e:f8:66:28:ce:10:fd: 3b:c5:18:a7:58:64:ef:47:83:cf:ff:d1:2f:04:9f:8d:c8:e7: 6f:c8:64:ea:67:e6:ab:43:02:9d:2f:78:59:c7:5c:7d:9c:ac: 9d:b1:42:b4:20:bb:f7:46:1d:d6:48:25:ca:ac:3f:d3:48:a5: b5:5c:79:59:83:16:3a:04:a7:2c:ec:4d:d6:d7:ce:5d:88:58: b5:e5:bb:57:3d:4a:00:fe:ce:87:98:36:58:94:0a:eb:c9:e4: bb:cb:72:95:7d:75:ec:79:7b:cf:1b:53:b3:a7:5a:20:e7:e3: 19:6d:56:69:d4:08:95:e1:0d:08:9f:7e:6d:ce:30:6c:19:9e: fc:30:3b:75:9b:f3:46:2e:e2:b4:20:c6:75:53:12:2d:17:6e: 12:eb:a8:f5:1c:d4:aa:80:47:85:b3:9c:4d:52:d3:1c:f8:71: 2b:0d:7e:11:3e:9f:28:0c:65:13:72:55:b4:19:ad:e4:58:03: 5d:97:56:3f:7a:1a:db:6a:37:97:0c:2a:ed:30:28:bc:93:e9: e6:ed:30:94:c5:e6:44:23:4f:85:75:e1:75:d8:67:42:56:0c: 6e:c0:fd:c0:aa:65:11:56:04:21:6a:50:ce:99:72:4e:80:0e: ec:df:14:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwNTEyMjE1MjUzWhcNMjUwNTE5MjE1MjUzWjAYMRYwFAYD VQQDEw02ODIyNmRiNS04OTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzretdEc5da39EiQbAdnU3zku6Uf0PPLsF7OTUklKIzOcbkFns449L6NjV4bm F6C5QL+VhcHEcNThPG4XPYyjGRbceQyKKOIixd8s8BA1+po8eOSRHN0TPCoG5KPj yG0KhaZ+CFW7NyfdL1DCV3jwdixUbda/u1KlDW3OEB30dFfIEmVXWFDv8serXbAB obPWJI1yrLI7CR7pGOipX4XuHlkIHpW/Xtv41RitjaMmegXQRyIBEnCX9K0T0rNF jTnINp8WZznwm9YmXcAGMlvcvK37d2P7mAytJqJo707n8BmT48kCJLGDS3sWpn4O EqNa+8tRVkhHIEPV6+V8/gOk/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaE+wWr aKZB7uDwfNhwivoCpBu3MB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTlCNC81REU1OTY5NjU5NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJC cXZLTkRzakd4bFpWa2ZMZG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLa59B/HflY2C/3074ZijOEP07xRinWGTvR4PP/9EvBJ+NyOdvyGTq Z+arQwKdL3hZx1x9nKydsUK0ILv3Rh3WSCXKrD/TSKW1XHlZgxY6BKcs7E3W185d iFi15btXPUoA/s6HmDZYlArryeS7y3KVfXXseXvPG1Ozp1og5+MZbVZp1AiV4Q0I n35tzjBsGZ78MDt1m/NGLuK0IMZ1UxItF24S66j1HNSqgEeFs5xNUtMc+HErDX4R Pp8oDGUTclW0Ga3kWANdl1Y/ehrbajeXDCrtMCi8k+nm7TCUxeZEI0+FdeF12GdC VgxuwP3AqmURVgQhalDOmXJOgA7s3xTh -----END CERTIFICATE-----Generated at Tue May 13 19:43:32 2025 by rpki-client