$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft File: NSwvQv_2bLhqacZ-5hurbhEVTss.mft (raw, json) Hash identifier: 7DXsTxC/xDbXbthRtN1LbNAIF1uLD/M7+QeQbMO0UNI= Subject key identifier: CC:1D:8B:AF:E2:1E:5E:30:B8:98:2D:1A:16:8A:74:62:DF:F3:28:57 Authority key identifier: 35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB Certificate issuer: /CN=A91CCD0C/serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft Manifest number: A8 Signing time: Tue 13 May 2025 05:19:32 +0000 Manifest this update: Tue 13 May 2025 05:19:32 +0000 Manifest next update: Tue 20 May 2025 05:19:32 +0000 Files and hashes: 1: NSwvQv_2bLhqacZ-5hurbhEVTss.crl (hash: FnBqYLKxBlzzK7paC1WbkDz/xn2lg84L0u5wpXGoX3Y=) 2: E5BB4DB260E411EF83727F5CC4F9AE02.roa (hash: sjsLTuWeFwgevoPUUjQqWdyEX8OASo8b7yHbpb8l0pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCD0C, serialNumber=352C2F42FFF66CB86A69C67EE61BAB6E11154ECB Validity Not Before: May 13 05:19:32 2025 GMT Not After : May 20 05:19:32 2025 GMT Subject: CN=6822d664-d75a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0f:06:f9:f9:84:68:7f:f0:39:04:f9:cf:d3: 70:2d:a2:e1:d2:5f:9a:45:aa:a0:61:40:51:be:3e: 43:96:0f:d6:5e:e1:be:ab:04:7c:fc:8e:3f:d2:c0: 68:04:cd:cc:55:1e:b1:24:db:1a:af:00:a4:62:53: f7:33:7a:ae:1a:46:7c:a4:eb:96:f8:a9:57:a1:87: 43:b7:9e:c1:4c:bc:f3:f4:8d:13:54:eb:19:08:ca: d5:dd:5d:f6:ff:e3:09:76:04:7f:6c:d6:83:46:2b: a2:64:87:44:7f:63:b5:ef:24:2c:a2:f3:c3:58:dc: 9f:63:54:df:96:fb:ec:73:33:a8:81:32:65:d0:c0: 80:ce:5c:d6:2e:32:66:4e:70:73:26:3a:84:66:32: 6a:e6:0e:bc:56:53:a5:2a:a4:2a:f5:23:1d:67:af: 8f:f8:f1:d9:7d:c4:a0:40:56:b7:ff:72:8c:d3:bc: 11:d6:2e:af:10:b8:6c:19:0d:ef:03:1d:ad:3d:c2: 60:17:aa:30:54:b3:62:e5:b3:e5:4b:28:ba:9c:1b: fb:25:f5:7c:c0:c3:09:15:27:46:2b:0b:30:1f:dc: 42:aa:d4:ac:dc:7c:96:93:ff:75:5b:8f:5e:28:e1: 42:3e:1a:c7:f9:ae:86:23:ae:77:2c:e7:b4:90:d8: fb:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:1D:8B:AF:E2:1E:5E:30:B8:98:2D:1A:16:8A:74:62:DF:F3:28:57 X509v3 Authority Key Identifier: keyid:35:2C:2F:42:FF:F6:6C:B8:6A:69:C6:7E:E6:1B:AB:6E:11:15:4E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NSwvQv_2bLhqacZ-5hurbhEVTss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCD0C/819A023432CB11EF9EA0C96AC4F9AE02/NSwvQv_2bLhqacZ-5hurbhEVTss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:36:be:47:80:a6:56:85:5e:a2:25:64:18:c5:f0:f3:d2:53: 80:f2:3d:04:0a:f9:c1:d6:ee:10:01:5e:f3:c4:fb:3d:bb:13: e4:9a:05:ca:0e:ba:d8:33:84:49:aa:52:c3:e7:7a:4f:c4:45: c5:82:32:35:bd:c1:3e:3b:38:50:3c:8f:56:1a:84:d0:b5:a8: 39:66:8b:fb:62:12:72:67:f0:a8:36:c4:43:86:76:70:ec:7e: a6:45:b8:bd:03:a6:16:a4:e5:b8:7d:4d:b5:89:ea:db:b6:aa: 66:0a:2a:92:cf:6f:ee:47:66:c8:69:ad:9a:b9:33:99:00:dd: 95:4d:fb:5a:0f:39:83:91:ef:32:99:bb:f9:f5:d9:f9:c5:55: 07:94:88:f6:50:81:90:1e:98:72:80:bf:b1:28:e5:fa:d3:63: c0:1a:45:91:14:98:58:f8:e0:78:ba:eb:a6:bd:e5:90:0b:c9: e4:15:00:b5:46:05:f4:63:fe:f7:ab:0a:b1:91:df:d4:73:2b: 7f:3e:0d:ad:ac:79:b7:a3:59:76:8b:1f:07:35:08:a1:00:62: fe:13:75:6e:ee:5a:87:e6:7e:6f:df:90:1f:61:68:3e:ed:dd: 5a:74:43:57:0b:2a:a5:8f:71:bd:57:83:ea:27:e5:5d:74:2d: ff:61:90:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NEMEMxMTAvBgNVBAUTKDM1MkMyRjQyRkZGNjZDQjg2QTY5QzY3RUU2MUJBQjZF MTExNTRFQ0IwHhcNMjUwNTEzMDUxOTMyWhcNMjUwNTIwMDUxOTMyWjAYMRYwFAYD VQQDEw02ODIyZDY2NC1kNzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzA8G+fmEaH/wOQT5z9NwLaLh0l+aRaqgYUBRvj5Dlg/WXuG+qwR8/I4/0sBo BM3MVR6xJNsarwCkYlP3M3quGkZ8pOuW+KlXoYdDt57BTLzz9I0TVOsZCMrV3V32 /+MJdgR/bNaDRiuiZIdEf2O17yQsovPDWNyfY1TflvvsczOogTJl0MCAzlzWLjJm TnBzJjqEZjJq5g68VlOlKqQq9SMdZ6+P+PHZfcSgQFa3/3KM07wR1i6vELhsGQ3v Ax2tPcJgF6owVLNi5bPlSyi6nBv7JfV8wMMJFSdGKwswH9xCqtSs3HyWk/91W49e KOFCPhrH+a6GI653LOe0kNj7xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwdi6/i Hl4wuJgtGhaKdGLf8yhXMB8GA1UdIwQYMBaAFDUsL0L/9my4amnGfuYbq24RFU7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0QwQy84MTlBMDIzNDMy Q0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJMaHFhY1otNWh1cmJoRVZU c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Td3ZRdl8yYkxocWFjWi01aHVyYmhFVlRzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0QwQy84MTlBMDIzNDMyQ0IxMUVGOUVBMEM5NkFDNEY5QUUwMi9OU3d2UXZfMmJM aHFhY1otNWh1cmJoRVZUc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYNr5HgKZWhV6iJWQYxfDz0lOA8j0ECvnB1u4QAV7zxPs9uxPkmgXK DrrYM4RJqlLD53pPxEXFgjI1vcE+OzhQPI9WGoTQtag5Zov7YhJyZ/CoNsRDhnZw 7H6mRbi9A6YWpOW4fU21ierbtqpmCiqSz2/uR2bIaa2auTOZAN2VTftaDzmDke8y mbv59dn5xVUHlIj2UIGQHphygL+xKOX602PAGkWRFJhY+OB4uuumveWQC8nkFQC1 RgX0Y/73qwqxkd/Ucyt/Pg2trHm3o1l2ix8HNQihAGL+E3Vu7lqH5n5v35AfYWg+ 7d1adENXCyqlj3G9V4PqJ+VddC3/YZC6 -----END CERTIFICATE-----Generated at Wed May 14 11:33:57 2025 by rpki-client