$ rpki-client -vvf rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft File: o8s5jsc5UXR2LZMDPnBgnWD03bI.mft (raw, json) Hash identifier: Y5CdUqcflayLHf3FIn8wbBIEeiZt9ei8ZV4X9E/ZU50= Subject key identifier: FB:73:9E:C3:E5:7D:6C:F6:89:58:77:08:D5:EA:97:60:7D:17:39:5B Authority key identifier: A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 Certificate issuer: /CN=A911606A/serialNumber=A3CB398EC7395174762D93033E70609D60F4DDB2 Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft Manifest number: CC Signing time: Sat 15 Feb 2025 07:07:22 +0000 Manifest this update: Sat 15 Feb 2025 07:07:21 +0000 Manifest next update: Sat 22 Feb 2025 07:07:21 +0000 Files and hashes: 1: o8s5jsc5UXR2LZMDPnBgnWD03bI.crl (hash: 0jg7PTbolONcY98qeyMf3R0yOJAdVG5ODyFW+tsAx8I=) 2: EEEC4B6ABD9D11EE9839661CC4F9AE02.roa (hash: MV1F0Q4UL7J+dtgMeHTJ35pvzsiuBXHWMmcfd9HjqkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911606A Validity Not Before: Feb 15 07:07:21 2025 GMT Not After : Feb 22 07:07:21 2025 GMT Subject: CN=67b03d29-c007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2f:5f:4c:c2:bc:84:64:90:96:f8:ae:69:5e: f5:88:a1:8b:55:77:a7:9a:39:d8:5d:bb:94:41:4e: 79:c3:01:a1:1b:cc:90:04:4d:95:58:b4:89:4c:14: 0b:ab:27:02:d3:92:51:e3:7d:f3:77:57:c1:ac:1e: 21:b5:90:86:d9:ff:2f:21:25:a7:e1:b6:89:dd:e9: 52:5d:30:15:90:71:64:7f:41:3e:5e:e7:6a:bf:b3: 95:99:f9:0e:bc:3a:5e:0c:81:86:21:ca:a4:ee:7b: c4:5e:1c:87:4d:7c:ed:68:82:0d:0a:b0:5f:f6:62: b9:29:6f:d7:44:e8:bc:f8:fb:a6:b3:6e:ab:f2:d0: bd:a9:fc:7a:bc:17:31:09:08:ed:cb:e4:5b:4a:01: e7:ad:2c:43:73:8f:b4:58:c2:d7:f1:d7:1a:46:63: c5:33:d7:0b:1e:66:90:f6:82:ff:b0:28:25:95:6c: e1:00:66:dd:f8:00:e9:03:6c:6d:b3:e7:50:ee:89: f6:fa:c7:9c:51:f3:a0:74:be:90:c3:7c:4f:4d:a3: a5:ea:71:ff:4f:68:6f:a8:12:49:83:d2:58:1c:de: 11:51:4d:ff:61:5c:19:04:6b:dc:20:6f:c2:23:98: 08:f5:48:ab:8c:61:48:ee:f3:12:4b:f3:9d:ef:43: 8c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:73:9E:C3:E5:7D:6C:F6:89:58:77:08:D5:EA:97:60:7D:17:39:5B X509v3 Authority Key Identifier: keyid:A3:CB:39:8E:C7:39:51:74:76:2D:93:03:3E:70:60:9D:60:F4:DD:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/o8s5jsc5UXR2LZMDPnBgnWD03bI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911606A/4F2588E4BB4511EE830C985DC4F9AE02/o8s5jsc5UXR2LZMDPnBgnWD03bI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:7f:95:a8:99:03:ca:eb:65:08:df:6e:ad:1a:44:3b:d0:05: 1c:4e:ac:87:12:02:80:36:13:10:70:15:f9:52:fc:13:f5:61: 54:78:32:e6:52:e9:3e:34:b8:fc:9a:0d:2d:9d:43:a1:ab:06: a2:52:32:a4:22:54:a0:6b:9e:71:d8:f2:e4:ea:3f:23:6b:34: 4c:06:ba:ba:9a:e6:0c:e1:9e:6b:1b:9d:6e:c3:e8:6d:42:7e: 21:3b:86:af:28:2e:c3:6a:da:0a:4e:a6:9f:d1:55:fc:e4:e4: e4:23:9f:72:2e:2a:53:e9:e7:d9:5c:65:bf:df:e3:de:45:cc: a4:b6:c8:d3:f9:dc:59:6f:5d:2d:cd:2f:0f:6e:2e:22:09:bb: 0a:49:30:3d:b9:c0:3a:c2:99:74:5b:ea:d1:1b:40:fc:a3:ec: ad:df:50:58:e2:35:f7:39:39:59:13:33:34:e9:b0:43:97:b9: f7:40:f1:8f:16:c2:d7:d9:82:c2:34:50:46:f6:ca:36:11:18: a3:18:5e:b8:d2:ad:85:d2:74:82:d9:f7:01:a4:21:74:5f:94: 91:42:4b:32:d9:65:1f:0f:f7:6c:5a:d6:24:26:06:48:b8:1f: a3:e3:b7:44:99:87:4f:26:06:44:53:7a:96:1e:15:a2:82:89: 77:ca:63:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYwNkExMTAvBgNVBAUTKEEzQ0IzOThFQzczOTUxNzQ3NjJEOTMwMzNFNzA2MDlE NjBGNEREQjIwHhcNMjUwMjE1MDcwNzIxWhcNMjUwMjIyMDcwNzIxWjAYMRYwFAYD VQQDEw02N2IwM2QyOS1jMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmS9fTMK8hGSQlviuaV71iKGLVXenmjnYXbuUQU55wwGhG8yQBE2VWLSJTBQL qycC05JR433zd1fBrB4htZCG2f8vISWn4baJ3elSXTAVkHFkf0E+Xudqv7OVmfkO vDpeDIGGIcqk7nvEXhyHTXztaIINCrBf9mK5KW/XROi8+Pums26r8tC9qfx6vBcx CQjty+RbSgHnrSxDc4+0WMLX8dcaRmPFM9cLHmaQ9oL/sCgllWzhAGbd+ADpA2xt s+dQ7on2+secUfOgdL6Qw3xPTaOl6nH/T2hvqBJJg9JYHN4RUU3/YVwZBGvcIG/C I5gI9UirjGFI7vMSS/Od70OMhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtznsPl fWz2iVh3CNXql2B9FzlbMB8GA1UdIwQYMBaAFKPLOY7HOVF0di2TAz5wYJ1g9N2y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjA2QS80RjI1ODhFNEJC NDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVYUjJMWk1EUG5CZ25XRDAz YkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL284czVqc2M1VVhSMkxaTURQbkJnbldEMDNiSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjA2QS80RjI1ODhFNEJCNDUxMUVFODMwQzk4NURDNEY5QUUwMi9vOHM1anNjNVVY UjJMWk1EUG5CZ25XRDAzYkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdf5WomQPK62UI326tGkQ70AUcTqyHEgKANhMQcBX5UvwT9WFUeDLm Uuk+NLj8mg0tnUOhqwaiUjKkIlSga55x2PLk6j8jazRMBrq6muYM4Z5rG51uw+ht Qn4hO4avKC7DatoKTqaf0VX85OTkI59yLipT6efZXGW/3+PeRcyktsjT+dxZb10t zS8Pbi4iCbsKSTA9ucA6wpl0W+rRG0D8o+yt31BY4jX3OTlZEzM06bBDl7n3QPGP FsLX2YLCNFBG9so2ERijGF640q2F0nSC2fcBpCF0X5SRQksy2WUfD/dsWtYkJgZI uB+j47dEmYdPJgZEU3qWHhWigol3ymO/ -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:28 2025 by rpki-client