$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: zIzUUmU1oTzOZOVeIXK9ppSTxHYhfXmrMsC4qJessDA= Subject key identifier: 3E:C3:BE:B4:09:3D:35:1E:9E:06:27:38:E4:35:6F:23:D7:B7:9F:02 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D15 Signing time: Sat 10 May 2025 17:53:46 +0000 Manifest this update: Sat 10 May 2025 17:53:46 +0000 Manifest next update: Sat 17 May 2025 17:53:46 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: nLrgIvW/rQw8ocNCXjG5owNLPlJkMu64bKJ8Vi0k84Q=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: 6Rm16lqV7D8ogEdcWjZlICaxyf3FBMg+FZuEOmrvZ+E=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: Kvq9xzCrVcc/vYKOgXHbGDUWHenbRQHuJZ7CogmXIPc=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: 7Q5TQ0GutKyzM0PazgyPbgCiIYVuSp/HifdYRSL6/UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 17:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: May 10 17:53:46 2025 GMT Not After : May 17 17:53:46 2025 GMT Subject: CN=681f92aa-1e3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:82:40:14:da:ae:76:aa:c7:fc:0b:94:eb:11: 6f:98:7e:3a:7f:ae:36:5d:51:07:f3:74:89:82:ec: b2:3e:a7:fe:59:6e:43:5c:61:68:85:3d:f3:d9:1b: fe:1f:aa:d4:cc:20:bf:8a:c0:aa:ba:45:1d:5e:e2: e0:27:d5:3e:37:fc:4a:5d:df:f9:20:d7:d5:fe:74: d6:a4:25:85:ac:0f:96:8c:8d:6e:9f:8f:8d:2f:ef: 30:b2:c1:dd:f4:49:31:89:fb:a8:2c:be:a9:b7:85: fd:a4:e1:ed:94:a5:ca:20:aa:e2:04:8d:ed:44:7f: 3b:d6:bc:6e:cf:b7:b9:cf:f4:64:58:70:80:b8:0c: 30:f1:e2:93:71:a9:b1:e5:39:87:b2:69:90:5c:9e: 18:4a:a6:02:7a:35:be:4e:d4:4f:3c:de:82:bd:4c: d8:a4:7d:e6:b7:c6:4a:21:02:b4:ff:67:a6:95:a2: 63:ee:5e:b9:86:eb:15:71:fa:c4:c7:3a:7a:d5:ac: 64:2e:be:b5:d1:1d:a2:4e:62:8e:5e:fe:0f:82:0f: b6:1b:cf:20:27:2b:fc:04:95:88:83:0b:f8:3d:4d: 3a:8c:d7:cc:6b:a3:c6:ab:81:8a:70:94:09:c1:cc: c0:37:12:02:45:a7:38:4e:6a:1c:d2:95:b1:74:6e: 46:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C3:BE:B4:09:3D:35:1E:9E:06:27:38:E4:35:6F:23:D7:B7:9F:02 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:b1:c4:39:f9:66:c8:6f:bd:d2:b1:ab:f8:13:db:ec:cb:44: 12:1a:c6:b2:c9:14:a0:1f:43:58:a7:d2:8e:7f:1e:88:9a:b0: c9:82:f3:39:60:34:90:b5:b6:0d:3c:f7:c7:90:40:01:67:e3: e2:78:cb:2d:fd:ad:11:c4:f7:2c:ec:c2:de:f7:d4:39:4f:94: 05:77:8c:38:c9:0c:ec:d7:f9:5b:04:ab:71:87:2a:3b:64:64: 0c:33:72:90:9a:9e:88:ec:3d:ab:79:be:a4:ba:0d:be:54:ea: 5c:b1:c8:86:93:4a:a1:93:49:a2:33:84:73:9d:2a:19:8d:99: 9c:4c:14:93:83:26:81:48:7e:59:01:3c:57:86:39:3f:86:b7: 0d:18:ae:75:49:a1:89:08:70:7b:e8:90:b4:01:29:6c:7b:ce: e3:83:7e:4d:11:90:28:4f:c4:f8:bd:0c:08:1b:db:63:fc:45: 36:a3:c7:79:43:62:4b:5b:77:93:c7:03:36:0a:0e:ae:9f:56: ad:4b:af:c1:bb:00:fc:65:ee:61:e3:27:2d:15:78:02:a7:55: 3b:00:34:fd:7b:d7:ce:14:47:8f:b0:9f:e4:a3:dc:d0:b7:9f: 3b:2f:3d:55:23:1d:0c:2b:41:38:ec:32:93:81:70:07:8f:0c: b1:3c:82:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNTEwMTc1MzQ2WhcNMjUwNTE3MTc1MzQ2WjAYMRYwFAYD VQQDEw02ODFmOTJhYS0xZTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYJAFNqudqrH/AuU6xFvmH46f642XVEH83SJguyyPqf+WW5DXGFohT3z2Rv+ H6rUzCC/isCqukUdXuLgJ9U+N/xKXd/5INfV/nTWpCWFrA+WjI1un4+NL+8wssHd 9EkxifuoLL6pt4X9pOHtlKXKIKriBI3tRH871rxuz7e5z/RkWHCAuAww8eKTcamx 5TmHsmmQXJ4YSqYCejW+TtRPPN6CvUzYpH3mt8ZKIQK0/2emlaJj7l65husVcfrE xzp61axkLr610R2iTmKOXv4Pgg+2G88gJyv8BJWIgwv4PU06jNfMa6PGq4GKcJQJ wczANxICRac4Tmoc0pWxdG5GcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7DvrQJ PTUengYnOOQ1byPXt58CMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3scQ5+WbIb73Ssav4E9vsy0QSGsayyRSgH0NYp9KOfx6ImrDJgvM5 YDSQtbYNPPfHkEABZ+PieMst/a0RxPcs7MLe99Q5T5QFd4w4yQzs1/lbBKtxhyo7 ZGQMM3KQmp6I7D2reb6kug2+VOpcsciGk0qhk0miM4RznSoZjZmcTBSTgyaBSH5Z ATxXhjk/hrcNGK51SaGJCHB76JC0ASlse87jg35NEZAoT8T4vQwIG9tj/EU2o8d5 Q2JLW3eTxwM2Cg6un1atS6/BuwD8Ze5h4yctFXgCp1U7ADT9e9fOFEePsJ/ko9zQ t587Lz1VIx0MK0E47DKTgXAHjwyxPIJX -----END CERTIFICATE-----Generated at Sun May 11 15:34:33 2025 by rpki-client