$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft File: NctCHFV3F3WBziSzai9syTGEYFI.mft (raw, json) Hash identifier: cklMnI3zOrFfxJ1/jhGb//XIzaLmJtyRu0ostBjdffY= Subject key identifier: 98:6B:5C:9D:5B:F8:2A:44:5D:FB:9E:3F:AC:94:44:54:5F:D7:3A:A4 Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft Manifest number: 0114 Signing time: Thu 15 May 2025 04:15:51 +0000 Manifest this update: Thu 15 May 2025 04:15:51 +0000 Manifest next update: Thu 22 May 2025 04:15:50 +0000 Files and hashes: 1: NctCHFV3F3WBziSzai9syTGEYFI.crl (hash: DUWEmKt3qfhAt+5lTLkCwOUGH2m/xY10rWitmjhS3dk=) 2: F5121FB090CF11EE8036815AC4F9AE02.roa (hash: cuDY334MkIVtRBq3o3ujGRQ6jR/z000CC0KgPqw5K+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD, serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: May 15 04:15:51 2025 GMT Not After : May 22 04:15:50 2025 GMT Subject: CN=68256a77-b505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a4:b0:f5:d5:16:71:3b:7f:ab:11:14:9b:46: 3d:da:02:da:90:6f:bf:f1:b7:5b:cf:6e:7a:46:76: 51:6a:9e:73:94:f7:2a:96:f6:bb:28:26:5c:e1:54: 6f:29:0c:0b:12:6d:ae:b1:c6:82:76:e2:8d:a3:13: 7a:f6:1b:2c:56:97:82:99:4a:ad:10:36:57:d0:fc: 4e:08:e8:76:84:9e:dd:59:62:87:27:63:d5:52:68: 23:83:b2:f2:32:e4:18:95:ad:ff:7a:3a:8c:1b:eb: d5:a4:85:11:b0:23:66:d5:0f:2d:2b:eb:70:c5:92: 86:83:d2:14:44:ff:50:89:8a:58:62:a0:49:5a:b0: 94:b9:49:0b:bd:26:6b:4c:49:38:1d:1a:b5:9e:11: 98:90:a2:0b:10:d9:38:b6:eb:1a:d4:bd:14:6c:6f: be:ea:df:b9:3e:cf:8c:6e:37:84:c3:01:c7:9d:e5: 3d:fc:01:b2:d2:72:97:a5:fa:f7:dd:52:b1:aa:da: 47:ce:10:69:80:45:6e:4b:f8:44:fa:ae:52:d1:57: 9b:16:4c:95:e8:15:b5:a7:78:de:70:39:f6:b7:50: 07:52:de:9a:59:86:0e:a4:92:e8:75:31:2e:66:05: 7a:03:ef:99:91:bf:0f:2b:2f:bc:58:90:c9:5d:45: 88:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6B:5C:9D:5B:F8:2A:44:5D:FB:9E:3F:AC:94:44:54:5F:D7:3A:A4 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:31:d6:ee:03:38:2f:89:5d:93:72:eb:95:bb:c2:62:3c:70: e9:d5:6e:8b:28:63:5e:57:b7:0c:73:3b:e1:15:fc:95:ae:a0: 15:f4:5a:9e:87:fe:de:22:eb:70:a7:0c:c0:d5:84:d7:5f:de: 09:af:f8:00:93:b1:01:a7:33:4d:b2:2f:d2:48:63:42:9c:43: 4b:4f:29:e1:c2:3b:5f:dd:5d:31:4b:cf:53:8a:cc:0a:62:ba: 84:73:46:27:b0:fb:32:6c:fa:06:f2:05:b6:0c:07:de:8d:57: de:d9:6e:0c:01:6d:91:d9:a1:9e:bb:2f:85:df:15:c8:7c:5b: 7e:04:79:14:58:99:43:d3:90:9b:54:d4:d3:db:75:86:c3:31: 6c:b4:cc:56:1c:8d:bd:46:74:75:02:5a:da:4a:d2:c0:d2:17: 34:4a:6e:f0:31:94:ed:77:2b:b3:f1:a7:3d:ac:4b:6f:67:cf: ff:d7:61:b9:7b:fb:02:8f:c8:73:01:a9:78:b9:e5:fc:b1:3e: df:97:53:50:4c:dd:57:fe:48:a9:a5:fd:8e:74:78:4a:6d:29: ef:ea:62:97:8d:9a:1e:9e:05:dd:e6:18:52:00:ff:78:d6:0b: ad:aa:59:ee:d9:44:df:1a:f4:d5:e3:8d:91:de:d3:a2:89:b5: 21:51:19:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EzQ0QxMTAvBgNVBAUTKDM1Q0I0MjFDNTU3NzE3NzU4MUNFMjRCMzZBMkY2Q0M5 MzE4NDYwNTIwHhcNMjUwNTE1MDQxNTUxWhcNMjUwNTIyMDQxNTUwWjAYMRYwFAYD VQQDEw02ODI1NmE3Ny1iNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6Sw9dUWcTt/qxEUm0Y92gLakG+/8bdbz256RnZRap5zlPcqlva7KCZc4VRv KQwLEm2uscaCduKNoxN69hssVpeCmUqtEDZX0PxOCOh2hJ7dWWKHJ2PVUmgjg7Ly MuQYla3/ejqMG+vVpIURsCNm1Q8tK+twxZKGg9IURP9QiYpYYqBJWrCUuUkLvSZr TEk4HRq1nhGYkKILENk4tusa1L0UbG++6t+5Ps+MbjeEwwHHneU9/AGy0nKXpfr3 3VKxqtpHzhBpgEVuS/hE+q5S0VebFkyV6BW1p3jecDn2t1AHUt6aWYYOpJLodTEu ZgV6A++Zkb8PKy+8WJDJXUWIOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhrXJ1b +CpEXfueP6yURFRf1zqkMB8GA1UdIwQYMBaAFDXLQhxVdxd1gc4ks2ovbMkxhGBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTNDRC8yNjQ1M0ZBMDkw NTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0YzV0J6aVN6YWk5c3lUR0VZ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9OY3RDSEZWM0Yz V0J6aVN6YWk5c3lUR0VZRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdMdbuAzgviV2TcuuVu8JiPHDp1W6LKGNeV7cMczvhFfyVrqAV9Fqe h/7eIutwpwzA1YTXX94Jr/gAk7EBpzNNsi/SSGNCnENLTynhwjtf3V0xS89TiswK YrqEc0YnsPsybPoG8gW2DAfejVfe2W4MAW2R2aGeuy+F3xXIfFt+BHkUWJlD05Cb VNTT23WGwzFstMxWHI29RnR1AlraStLA0hc0Sm7wMZTtdyuz8ac9rEtvZ8//12G5 e/sCj8hzAal4ueX8sT7fl1NQTN1X/kippf2OdHhKbSnv6mKXjZoengXd5hhSAP94 1gutqlnu2UTfGvTV442R3tOiibUhURn6 -----END CERTIFICATE-----Generated at Fri May 16 21:03:03 2025 by rpki-client