$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft File: nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft (raw, json) Hash identifier: S+J7evh7bTINrNc17g3fRJAfUAKF5DRXFJZFdHXRaKE= Subject key identifier: BF:54:9B:60:FA:A3:57:9A:A7:82:27:09:98:C1:5C:6C:53:AD:FF:49 Authority key identifier: 9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A Certificate issuer: /CN=A91EF19E/serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Certificate serial: 29FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft Manifest number: 29F4 Signing time: Mon 12 May 2025 14:23:14 +0000 Manifest this update: Mon 12 May 2025 14:23:14 +0000 Manifest next update: Mon 19 May 2025 14:23:14 +0000 Files and hashes: 1: nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl (hash: ldbnNoUOkMuMHNXYcrPAHuhhIPM32x2A2tZOIZxjPxY=) 2: F9722F8255C411E9A0FEF781C4F9AE02.roa (hash: 7nXeTuR6Lk+Z8nTiU9kBUgYIuWYLSQwBB8CP9oDRsnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 14:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10750 (0x29fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=9E1F19A7E18D8BCED23EF2EDAB19E85438E7F08A Validity Not Before: May 12 14:23:14 2025 GMT Not After : May 19 14:23:14 2025 GMT Subject: CN=68220452-3dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:be:9f:5c:e6:49:b3:e5:ab:19:8e:5b:b7:4f: 6f:1c:31:03:d4:b3:a9:e0:bd:30:72:6b:a5:25:6c: 34:06:16:96:49:db:43:5f:20:f7:fd:95:66:f6:c3: f8:16:68:90:b4:62:37:67:6f:34:be:d4:73:59:d0: d7:81:1e:fb:c2:1d:1e:2c:f2:32:b3:12:e8:62:12: 19:5c:6a:53:40:45:78:dd:9d:43:41:91:14:ad:6b: ff:cf:8d:13:7d:24:f1:a9:5c:07:fe:cc:8d:5e:e8: 79:92:1a:34:41:e2:2b:10:46:74:e8:45:d5:aa:b1: a2:e1:a0:1e:80:56:d5:fc:94:ea:bb:cf:0c:d4:ab: 20:cb:26:81:97:81:38:62:92:0a:f5:69:48:cc:cc: ee:df:57:7b:c5:18:f2:c0:cc:52:2b:46:08:a6:7c: b2:6d:8e:c3:94:f9:69:da:65:61:77:a8:57:1d:94: fe:15:8e:d7:ab:0f:ad:89:d6:7d:71:5d:e0:85:43: 60:5b:1d:0a:e5:18:2d:53:bc:55:f3:25:79:7a:8f: 76:72:b2:de:8d:b6:97:a4:d9:f3:4d:7a:60:50:d5: 48:c7:8e:f9:be:d2:7c:fb:1b:6b:6f:a8:0a:94:f5: a9:5f:a0:2d:d0:7f:f1:82:4d:07:51:65:f5:96:cf: a3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:54:9B:60:FA:A3:57:9A:A7:82:27:09:98:C1:5C:6C:53:AD:FF:49 X509v3 Authority Key Identifier: keyid:9E:1F:19:A7:E1:8D:8B:CE:D2:3E:F2:ED:AB:19:E8:54:38:E7:F0:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nh8Zp-GNi87SPvLtqxnoVDjn8Io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/A93E993E340D11E49EC98163C4F9AE02/nh8Zp-GNi87SPvLtqxnoVDjn8Io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:6d:a1:f5:f4:38:28:ac:69:02:55:aa:ed:94:c9:2b:2b:41: 19:ef:96:cb:39:7e:5b:b7:de:f7:ef:89:6a:ea:bd:dd:b1:5a: 53:2a:76:a2:3b:fc:6d:35:a8:ea:4a:9b:cb:8a:e8:9d:04:09: aa:56:1e:08:81:cf:b1:f2:40:ff:18:ec:a3:39:c6:b3:74:4f: 3c:e9:11:22:87:2f:72:f2:90:bd:04:76:43:ef:82:23:4b:76: 3e:f0:dc:16:ff:3d:98:1b:f4:0c:94:6f:34:45:1b:15:ac:a5: ac:07:61:04:af:75:29:df:68:f3:35:31:94:5d:1d:d7:ad:c7: 7f:8c:6c:79:bd:5d:5f:a6:08:8d:21:14:32:3a:fe:a1:76:86: 9e:09:13:76:57:a7:0e:78:a0:87:32:c3:f7:b9:14:e1:63:fb: 41:84:6d:18:89:1a:b4:6a:d8:1d:9c:79:be:41:af:54:61:5d: 6c:f8:87:eb:07:07:66:9b:9f:b7:77:11:5e:af:52:71:5b:4d: 23:cd:8b:83:a9:46:3a:18:11:48:d2:f2:67:be:c9:a5:88:95: a4:c7:bf:5e:5f:c6:e9:45:d6:d1:82:ce:40:7c:12:2d:f4:a1: 6e:fc:77:75:f6:f7:d1:ea:44:d0:ff:86:37:c1:13:0b:ec:d3: c3:78:43:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDlFMUYxOUE3RTE4RDhCQ0VEMjNFRjJFREFCMTlFODU0 MzhFN0YwOEEwHhcNMjUwNTEyMTQyMzE0WhcNMjUwNTE5MTQyMzE0WjAYMRYwFAYD VQQDEw02ODIyMDQ1Mi0zZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4r6fXOZJs+WrGY5bt09vHDED1LOp4L0wcmulJWw0BhaWSdtDXyD3/ZVm9sP4 FmiQtGI3Z280vtRzWdDXgR77wh0eLPIysxLoYhIZXGpTQEV43Z1DQZEUrWv/z40T fSTxqVwH/syNXuh5kho0QeIrEEZ06EXVqrGi4aAegFbV/JTqu88M1KsgyyaBl4E4 YpIK9WlIzMzu31d7xRjywMxSK0YIpnyybY7DlPlp2mVhd6hXHZT+FY7Xqw+tidZ9 cV3ghUNgWx0K5RgtU7xV8yV5eo92crLejbaXpNnzTXpgUNVIx475vtJ8+xtrb6gK lPWpX6At0H/xgk0HUWX1ls+jcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9Um2D6 o1eap4InCZjBXGxTrf9JMB8GA1UdIwQYMBaAFJ4fGafhjYvO0j7y7asZ6FQ45/CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS9BOTNFOTkzRTM0 MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4N1NQdkx0cXhub1ZEam44 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25oOFpwLUdOaTg3U1B2THRxeG5vVkRqbjhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS9BOTNFOTkzRTM0MEQxMUU0OUVDOTgxNjNDNEY5QUUwMi9uaDhacC1HTmk4 N1NQdkx0cXhub1ZEam44SW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCObaH19DgorGkCVartlMkrK0EZ75bLOX5bt97374lq6r3dsVpTKnai O/xtNajqSpvLiuidBAmqVh4Igc+x8kD/GOyjOcazdE886REihy9y8pC9BHZD74Ij S3Y+8NwW/z2YG/QMlG80RRsVrKWsB2EEr3Up32jzNTGUXR3Xrcd/jGx5vV1fpgiN IRQyOv6hdoaeCRN2V6cOeKCHMsP3uRThY/tBhG0YiRq0atgdnHm+Qa9UYV1s+Ifr Bwdmm5+3dxFer1JxW00jzYuDqUY6GBFI0vJnvsmliJWkx79eX8bpRdbRgs5AfBIt 9KFu/Hd19vfR6kTQ/4Y3wRML7NPDeEN3 -----END CERTIFICATE-----Generated at Wed May 14 14:58:16 2025 by rpki-client