$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft File: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft (raw, json) Hash identifier: WDIqrYhFnZNhaglf8hVps5JzjrWOPgyKEQrDXxGFECo= Subject key identifier: E6:88:7D:2A:D1:F0:F5:41:50:8E:72:1B:67:58:CB:FB:57:08:BB:1F Authority key identifier: 9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 Certificate issuer: /CN=A91CEAE0/serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft Manifest number: D1 Signing time: Fri 09 May 2025 05:00:09 +0000 Manifest this update: Fri 09 May 2025 05:00:08 +0000 Manifest next update: Fri 16 May 2025 05:00:08 +0000 Files and hashes: 1: nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl (hash: 8qlyHA62Ocmg0DIK+XS23nlzcrtbeZUvDeMHUh274xk=) 2: FF233C70E62111EFACA87766C4F9AE02.roa (hash: J5BMXPUW8m7K2bOF3471IMNvup3jPF22uZ9URvu627E=) 3: 77E54B78C45111EF9D399128C4F9AE02.roa (hash: kZrd3mAtaTduvChHj54cupYMhDS7pTsrXNeCRQqiQrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAE0, serialNumber=9DF4FEDFF92A9E7F6E02BFC054AD339853D9DD32 Validity Not Before: May 9 05:00:08 2025 GMT Not After : May 16 05:00:08 2025 GMT Subject: CN=681d8bd9-b7a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9e:c0:8b:a4:2c:9b:89:ec:d4:6d:19:b3:2a: 21:c1:6a:f3:c4:13:d5:47:b8:bc:6a:dc:d0:0d:09: 0e:0f:09:c9:f3:b2:8f:aa:a0:06:83:e4:73:ec:80: 92:71:c0:05:6d:1a:43:d3:28:22:06:e4:bd:d5:db: 5b:80:f7:7e:0a:ee:be:a3:06:c8:2b:9b:ac:40:33: 37:ff:12:19:bd:31:c8:90:ad:b5:e0:09:e0:8a:60: 4f:a2:d6:8d:9a:08:b3:be:00:a7:ee:98:c9:79:89: ec:28:ff:cf:52:aa:a4:e5:c8:ac:52:0a:58:c6:e1: 80:39:67:93:a3:87:49:09:f5:98:a7:c1:bb:1a:f0: f7:34:86:ff:22:6c:38:ef:be:d3:d6:65:03:b3:1b: 11:a3:8a:2a:2b:01:11:df:20:39:ac:58:0d:3d:f6: c7:d2:1e:46:8b:e9:ba:04:6d:e7:ad:0a:3d:80:57: a6:8a:b4:55:ae:9c:8e:5e:b1:f7:1a:48:ae:a1:3e: d1:02:a4:b8:e5:0e:be:63:ab:5b:37:b2:85:5d:a1: 01:af:bc:7a:89:d3:4f:8e:a2:ea:1f:a5:63:01:6a: 79:fd:87:25:9e:15:bc:e7:d6:30:9c:7e:14:de:52: 7f:99:55:1a:21:3e:7a:7e:80:5b:5c:9d:55:71:4f: c1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:88:7D:2A:D1:F0:F5:41:50:8E:72:1B:67:58:CB:FB:57:08:BB:1F X509v3 Authority Key Identifier: keyid:9D:F4:FE:DF:F9:2A:9E:7F:6E:02:BF:C0:54:AD:33:98:53:D9:DD:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAE0/AEF63760196811EF8FF7BE6FC4F9AE02/nfT-3_kqnn9uAr_AVK0zmFPZ3TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:2e:88:10:98:10:40:0d:04:a7:f8:21:53:12:2e:eb:0d:4f: 58:d3:9d:d6:9c:e7:54:69:d5:d1:b0:58:21:07:52:01:0c:81: ca:57:fd:16:79:c5:28:b2:ee:40:bb:6a:d7:71:6f:8f:37:59: ef:39:d2:69:c5:32:e2:79:46:25:5b:7f:4e:db:8a:b2:79:77: ba:7f:a8:0b:ba:a4:ff:23:ee:17:d6:80:b9:6a:6e:90:7a:ca: b5:ac:26:be:ab:e8:c7:cc:99:7c:a8:88:45:29:6e:81:ff:47: c0:23:27:74:d0:98:85:62:be:2b:06:b9:68:9c:fe:a0:ba:10: f5:31:0b:ef:3b:1c:e5:58:84:41:0a:36:74:3b:cd:65:b1:ec: 69:dc:26:16:a5:23:1d:3a:09:11:55:0e:fe:31:30:72:77:5f: 7c:82:75:da:c2:05:ff:91:04:c7:99:6c:5d:0e:cd:ff:10:dc: bb:0e:3a:e1:9b:6b:30:2a:55:8e:74:2b:ea:3d:45:15:6d:e4: 8c:7b:b5:61:ab:80:d6:45:d9:76:94:4f:32:47:30:02:eb:19: 58:17:e8:6c:7f:75:14:13:2c:de:3e:22:b5:b6:9f:fd:35:77: 98:10:d2:8c:4c:5d:03:a9:04:d3:16:ca:e0:a0:1d:80:d2:62: c1:20:2e:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBRTAxMTAvBgNVBAUTKDlERjRGRURGRjkyQTlFN0Y2RTAyQkZDMDU0QUQzMzk4 NTNEOUREMzIwHhcNMjUwNTA5MDUwMDA4WhcNMjUwNTE2MDUwMDA4WjAYMRYwFAYD VQQDEw02ODFkOGJkOS1iN2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwp7Ai6Qsm4ns1G0ZsyohwWrzxBPVR7i8atzQDQkODwnJ87KPqqAGg+Rz7ICS ccAFbRpD0ygiBuS91dtbgPd+Cu6+owbIK5usQDM3/xIZvTHIkK214AngimBPotaN mgizvgCn7pjJeYnsKP/PUqqk5cisUgpYxuGAOWeTo4dJCfWYp8G7GvD3NIb/Imw4 777T1mUDsxsRo4oqKwER3yA5rFgNPfbH0h5Gi+m6BG3nrQo9gFemirRVrpyOXrH3 GkiuoT7RAqS45Q6+Y6tbN7KFXaEBr7x6idNPjqLqH6VjAWp5/YclnhW859YwnH4U 3lJ/mVUaIT56foBbXJ1VcU/ByQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaIfSrR 8PVBUI5yG2dYy/tXCLsfMB8GA1UdIwQYMBaAFJ30/t/5Kp5/bgK/wFStM5hT2d0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFFMC9BRUY2Mzc2MDE5 NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5uOXVBcl9BVkswem1GUFoz VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25mVC0zX2txbm45dUFyX0FWSzB6bUZQWjNUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUFFMC9BRUY2Mzc2MDE5NjgxMUVGOEZGN0JFNkZDNEY5QUUwMi9uZlQtM19rcW5u OXVBcl9BVkswem1GUFozVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVLogQmBBADQSn+CFTEi7rDU9Y053WnOdUadXRsFghB1IBDIHKV/0W ecUosu5Au2rXcW+PN1nvOdJpxTLieUYlW39O24qyeXe6f6gLuqT/I+4X1oC5am6Q esq1rCa+q+jHzJl8qIhFKW6B/0fAIyd00JiFYr4rBrlonP6guhD1MQvvOxzlWIRB CjZ0O81lsexp3CYWpSMdOgkRVQ7+MTByd198gnXawgX/kQTHmWxdDs3/ENy7Djrh m2swKlWOdCvqPUUVbeSMe7Vhq4DWRdl2lE8yRzAC6xlYF+hsf3UUEyzePiK1tp/9 NXeYENKMTF0DqQTTFsrgoB2A0mLBIC7I -----END CERTIFICATE-----Generated at Sun May 11 01:33:02 2025 by rpki-client