$ rpki-client -vvf rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft File: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft (raw, json) Hash identifier: qoEaHjlj8Pa+/wZ/O78qqjoMFACkC5adzbJJoQlolDI= Subject key identifier: 53:E0:65:AA:C7:E3:B6:D8:93:8E:01:34:BE:C9:C1:F9:7B:2F:9F:E9 Authority key identifier: EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 Certificate issuer: /CN=A9126A3C/serialNumber=EE819A49B8C8A84413EE8FE8326EF137F5185C66 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft Manifest number: 18 Signing time: Wed 05 Feb 2025 06:23:19 +0000 Manifest this update: Wed 05 Feb 2025 06:23:18 +0000 Manifest next update: Wed 12 Feb 2025 06:23:18 +0000 Files and hashes: 1: 7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl (hash: xPI35ScpDBG/RsR/iLsPBAPveFQPkg3x4blyoNM2leA=) 2: 16E1C8ECC6DB11EFBDDB8A0AC4F9AE02.roa (hash: NFkplWmsMA3dKF672WmukIl9RpnNjHUYN1V/j7l+GN0=) 3: E11BD76CC6D911EF8CC3C849C4F9AE02.roa (hash: FPrJ8rYYz3zXm+ulxONvcKZWR1V8127XQSJ/4rwqktA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126A3C Validity Not Before: Feb 5 06:23:18 2025 GMT Not After : Feb 12 06:23:18 2025 GMT Subject: CN=67a303d7-58c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bc:c8:6b:a4:35:8c:92:3a:d6:95:92:71:85: cd:a4:98:c3:69:4f:bb:9e:ef:c6:e0:a1:49:e3:8a: f1:b3:65:ea:b3:d1:d7:59:36:04:37:d0:ad:32:9f: 15:36:04:14:43:13:8e:a2:6e:42:3c:8a:e6:4e:8a: f1:55:e3:d3:7c:9a:9c:15:8f:d0:bd:f3:5b:12:87: 1b:e8:61:41:af:17:b7:3e:c4:71:c2:16:19:90:9d: fc:4f:53:47:4a:85:67:5b:a2:80:8c:2c:1a:6a:8d: 51:e4:27:97:a2:4b:00:f3:ad:fb:77:1c:04:01:75: c9:cd:2b:d5:66:25:2e:18:ad:1c:67:a7:2a:ba:46: d0:2f:ae:6e:3e:30:d7:38:45:76:60:85:58:93:64: d7:d5:e1:e3:90:c4:95:cd:07:b9:fb:91:fd:e5:f0: 2b:70:bb:6f:60:03:19:b9:d9:f9:ce:3a:67:68:7d: ad:d3:0a:20:c1:f0:c1:51:d5:0e:a9:42:b5:0f:c0: 3f:4d:02:dc:14:ee:58:a7:b8:7b:f6:b1:c1:52:33: a3:8e:af:cd:95:f1:17:95:ed:2e:fe:86:c6:56:db: 97:d1:07:a8:2f:61:e1:81:b5:fc:71:de:f5:9b:c8: 0f:01:62:3d:b1:96:18:36:eb:aa:6e:06:34:aa:82: 13:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E0:65:AA:C7:E3:B6:D8:93:8E:01:34:BE:C9:C1:F9:7B:2F:9F:E9 X509v3 Authority Key Identifier: keyid:EE:81:9A:49:B8:C8:A8:44:13:EE:8F:E8:32:6E:F1:37:F5:18:5C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7oGaSbjIqEQT7o_oMm7xN_UYXGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126A3C/7BFB4CACC6A011EF928B7960C4F9AE02/7oGaSbjIqEQT7o_oMm7xN_UYXGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:1e:f9:e3:42:55:5d:99:b2:e8:66:01:3b:ef:9e:fd:76:ee: 94:63:0a:3a:e8:c6:67:96:d1:41:4c:82:13:e7:97:43:78:f6: e9:11:ba:43:1e:16:3c:73:6f:16:5f:6a:0d:de:a7:71:5b:6d: de:29:2f:d6:03:11:c8:b1:18:08:d8:07:9d:d4:a6:04:40:b0: 76:33:49:af:db:50:e9:c1:cb:7f:85:6a:8e:51:ac:c3:8d:32: 8a:19:d1:c1:29:8b:fa:1e:bb:34:7b:72:55:95:ab:fb:1d:3e: ab:a3:93:e9:ea:ca:f8:41:0f:b0:1a:2d:d3:c7:9d:0e:a5:9c: c8:2a:63:60:58:a7:e7:64:ac:80:c2:7a:6b:96:7a:ad:c4:c3: 16:33:37:70:75:05:a7:f3:b9:c8:6e:bd:8f:81:3e:56:a2:ba: 86:71:83:a2:36:0a:36:56:c9:e7:4e:8a:70:5a:ab:57:f8:fc: b7:2e:6c:7d:42:9c:7c:96:1e:a8:30:a3:92:7c:c7:b3:c8:d1: 15:d0:ed:33:12:53:cb:98:bd:07:46:d9:fe:45:11:ac:b4:2a: 1c:46:d7:c9:5b:6d:72:61:af:9a:45:49:1f:a3:33:ac:35:f0: 38:c1:2a:e1:7f:35:58:77:6d:d2:ea:09:11:80:20:25:d7:6d: a1:30:37:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NkEzQzExMC8GA1UEBRMoRUU4MTlBNDlCOEM4QTg0NDEzRUU4RkU4MzI2RUYxMzdG NTE4NUM2NjAeFw0yNTAyMDUwNjIzMThaFw0yNTAyMTIwNjIzMThaMBgxFjAUBgNV BAMTDTY3YTMwM2Q3LTU4YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjvMhrpDWMkjrWlZJxhc2kmMNpT7ue78bgoUnjivGzZeqz0ddZNgQ30K0ynxU2 BBRDE46ibkI8iuZOivFV49N8mpwVj9C981sShxvoYUGvF7c+xHHCFhmQnfxPU0dK hWdbooCMLBpqjVHkJ5eiSwDzrft3HAQBdcnNK9VmJS4YrRxnpyq6RtAvrm4+MNc4 RXZghViTZNfV4eOQxJXNB7n7kf3l8Ctwu29gAxm52fnOOmdofa3TCiDB8MFR1Q6p QrUPwD9NAtwU7linuHv2scFSM6OOr82V8ReV7S7+hsZW25fRB6gvYeGBtfxx3vWb yA8BYj2xlhg266puBjSqghOLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU+Blqsfj ttiTjgE0vsnB+Xsvn+kwHwYDVR0jBBgwFoAU7oGaSbjIqEQT7o/oMm7xN/UYXGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2QTNDLzdCRkI0Q0FDQzZB MDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVRVDdvX29NbTd4Tl9VWVhH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN29HYVNiaklxRVFUN29fb01tN3hOX1VZWEdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI2 QTNDLzdCRkI0Q0FDQzZBMDExRUY5MjhCNzk2MEM0RjlBRTAyLzdvR2FTYmpJcUVR VDdvX29NbTd4Tl9VWVhHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMAe+eNCVV2ZsuhmATvvnv127pRjCjroxmeW0UFMghPnl0N49ukRukMe FjxzbxZfag3ep3Fbbd4pL9YDEcixGAjYB53UpgRAsHYzSa/bUOnBy3+Fao5RrMON MooZ0cEpi/oeuzR7clWVq/sdPqujk+nqyvhBD7AaLdPHnQ6lnMgqY2BYp+dkrIDC emuWeq3EwxYzN3B1BafzuchuvY+BPlaiuoZxg6I2CjZWyedOinBaq1f4/LcubH1C nHyWHqgwo5J8x7PI0RXQ7TMSU8uYvQdG2f5FEay0KhxG18lbbXJhr5pFSR+jM6w1 8DjBKuF/NVh3bdLqCRGAICXXbaEwN8A= -----END CERTIFICATE-----Generated at Thu Feb 6 05:12:13 2025 by rpki-client