$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft File: CO_XGTj3-dyHpp9cs_hMektyoAo.mft (raw, json) Hash identifier: xLDPWbU1BiZex1ZvNpW5SXdJoT4qWjBQIuYsYoVd4Cc= Subject key identifier: 00:BE:85:82:BD:D0:13:63:B8:98:8A:B9:9F:3C:CF:B5:5D:9E:67:BC Authority key identifier: 08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A Certificate issuer: /CN=A91218BB/serialNumber=08EFD71938F7F9DC87A69F5CB3F84C7A4B72A00A Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft Manifest number: 14 Signing time: Wed 05 Feb 2025 06:24:20 +0000 Manifest this update: Wed 05 Feb 2025 06:24:19 +0000 Manifest next update: Wed 12 Feb 2025 06:24:19 +0000 Files and hashes: 1: CO_XGTj3-dyHpp9cs_hMektyoAo.crl (hash: IQXQNpHR4GxlInlAZNm3VStF22TrHRNmT8Y6WXPRXPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB Validity Not Before: Feb 5 06:24:19 2025 GMT Not After : Feb 12 06:24:19 2025 GMT Subject: CN=67a30413-c0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f7:11:ac:b9:f5:d4:f0:2e:e2:62:83:d8:c5: 33:f0:c0:29:d0:34:c5:6f:7b:cb:d8:f3:ba:10:21: a3:07:d3:89:42:fd:5f:f2:15:fb:5e:d5:23:b4:85: 88:a2:5f:e8:e9:cc:55:11:92:6c:7d:0f:d2:e6:4e: 28:1d:ca:86:38:a0:0b:20:1d:67:aa:88:fe:10:2c: 44:2d:ff:f8:48:40:49:21:b2:81:6c:bc:58:f4:82: 4e:3e:59:27:48:7d:ce:da:3f:71:0b:06:3b:46:52: 66:31:68:fc:04:9f:df:82:f6:3d:b5:c0:7c:59:7e: 43:38:63:bd:dc:f3:95:ed:00:63:af:e0:4f:c9:ea: cc:b1:b3:80:bc:23:16:21:27:1a:ea:22:1d:6b:81: fb:e9:8a:0a:6c:27:eb:72:98:14:f3:28:a9:9a:9c: 4c:c7:fa:29:71:1a:d5:54:08:ab:e6:37:b9:7c:ea: 4a:06:e2:2d:2b:26:a5:24:85:16:a4:02:3c:8d:fc: 71:ae:fe:90:60:53:79:36:95:89:2e:5c:be:7c:15: 7c:c8:c5:5f:9f:af:7b:eb:09:94:53:39:d9:1c:2f: 4b:cd:06:c5:ec:35:36:ef:55:04:72:6a:9b:be:f3: d7:b7:2e:3f:16:cf:db:2e:15:17:64:7a:ee:45:cb: 95:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BE:85:82:BD:D0:13:63:B8:98:8A:B9:9F:3C:CF:B5:5D:9E:67:BC X509v3 Authority Key Identifier: keyid:08:EF:D7:19:38:F7:F9:DC:87:A6:9F:5C:B3:F8:4C:7A:4B:72:A0:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CO_XGTj3-dyHpp9cs_hMektyoAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/71D5062EC8C511EF8EC55565C4F9AE02/CO_XGTj3-dyHpp9cs_hMektyoAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:aa:81:49:34:f9:47:b6:d1:97:3d:bc:41:1a:81:36:74:b6: 60:b6:7e:a1:19:95:37:a0:b1:e1:40:b6:0c:3a:2c:88:5e:85: e3:b8:f8:bf:32:6a:8e:9b:49:97:24:57:b3:41:95:a7:67:c4: ca:b2:52:d7:18:1b:78:5d:06:40:cf:d5:58:af:74:11:c7:bb: ac:d8:a3:5a:67:76:17:c9:82:b4:7a:73:3d:4a:13:bb:95:1c: e7:c4:1b:56:d4:52:73:7f:e6:ca:f3:fb:4a:36:fd:62:77:1a: d5:af:ca:86:8f:44:a4:5c:56:35:b4:4d:cc:9b:ad:6d:7a:e4: ca:df:35:81:0a:a5:3e:d0:f1:c0:ee:62:84:5e:76:5e:51:78: 9a:77:a5:88:9a:e6:ef:f5:6b:de:15:e3:8d:dd:83:0e:00:d6: a9:c9:17:04:68:c9:83:93:4f:11:b0:f1:65:e9:96:12:d5:bd: d0:84:f8:35:67:22:ab:6c:b6:7f:69:b2:b1:df:64:72:ed:26: 2e:ed:65:68:2f:a6:05:57:e3:ad:db:23:6e:76:97:10:db:f6: 42:ed:f0:7c:67:24:61:77:72:69:78:df:7f:06:aa:ba:ca:a4: 64:75:43:df:49:d0:ff:cc:6a:db:3f:3f:5e:27:1a:d2:47:81: ea:b2:a5:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMDhFRkQ3MTkzOEY3RjlEQzg3QTY5RjVDQjNGODRDN0E0 QjcyQTAwQTAeFw0yNTAyMDUwNjI0MTlaFw0yNTAyMTIwNjI0MTlaMBgxFjAUBgNV BAMTDTY3YTMwNDEzLWMwZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN9xGsufXU8C7iYoPYxTPwwCnQNMVve8vY87oQIaMH04lC/V/yFfte1SO0hYii X+jpzFURkmx9D9LmTigdyoY4oAsgHWeqiP4QLEQt//hIQEkhsoFsvFj0gk4+WSdI fc7aP3ELBjtGUmYxaPwEn9+C9j21wHxZfkM4Y73c85XtAGOv4E/J6syxs4C8IxYh JxrqIh1rgfvpigpsJ+tymBTzKKmanEzH+ilxGtVUCKvmN7l86koG4i0rJqUkhRak AjyN/HGu/pBgU3k2lYkuXL58FXzIxV+fr3vrCZRTOdkcL0vNBsXsNTbvVQRyapu+ 89e3Lj8Wz9suFRdkeu5Fy5WhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAL6Fgr3Q E2O4mIq5nzzPtV2eZ7wwHwYDVR0jBBgwFoAUCO/XGTj3+dyHpp9cs/hMektyoAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzcxRDUwNjJFQzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5SHBwOWNzX2hNZWt0eW9B by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ09fWEdUajMtZHlIcHA5Y3NfaE1la3R5b0FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx OEJCLzcxRDUwNjJFQzhDNTExRUY4RUM1NTU2NUM0RjlBRTAyL0NPX1hHVGozLWR5 SHBwOWNzX2hNZWt0eW9Bby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABCqgUk0+Ue20Zc9vEEagTZ0tmC2fqEZlTegseFAtgw6LIheheO4+L8y ao6bSZckV7NBladnxMqyUtcYG3hdBkDP1VivdBHHu6zYo1pndhfJgrR6cz1KE7uV HOfEG1bUUnN/5srz+0o2/WJ3GtWvyoaPRKRcVjW0TcybrW165MrfNYEKpT7Q8cDu YoRedl5ReJp3pYia5u/1a94V443dgw4A1qnJFwRoyYOTTxGw8WXplhLVvdCE+DVn Iqtstn9psrHfZHLtJi7tZWgvpgVX463bI252lxDb9kLt8HxnJGF3cml4338GqrrK pGR1Q99J0P/Mats/P14nGtJHgeqypWw= -----END CERTIFICATE-----Generated at Thu Feb 6 04:46:11 2025 by rpki-client