$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft File: aAYK77v8wH1z211yeLyPJJxX9RU.mft (raw, json) Hash identifier: I6mF7fJU+kC1tq2b7Wy+Oy4VFuuRW5+PUZJxbBINic4= Subject key identifier: A9:CC:1F:26:7B:A5:F1:F6:7D:38:E0:5D:1A:82:B8:53:E6:46:35:B5 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 0366 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft Manifest number: 035F Signing time: Sat 15 Feb 2025 02:29:21 +0000 Manifest this update: Sat 15 Feb 2025 02:29:20 +0000 Manifest next update: Sat 22 Feb 2025 02:29:20 +0000 Files and hashes: 1: aAYK77v8wH1z211yeLyPJJxX9RU.crl (hash: s5H4E+asM+aYzw3+t6G8M0gltqsbWMa87pKEdTY2sc8=) 2: 5B639C667CEB11EDA3D10364C4F9AE02.roa (hash: hlLA7G3gFRFclavtLC4AtgAOjrl5PBGQnMSlvQ5iLZk=) 3: ADBB651E043411ED9F02B325C4F9AE02.roa (hash: cddNE6Chf1nZGt0cOcCcSrNF4VTM1nV8tD0C7wKaK+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A Validity Not Before: Feb 15 02:29:20 2025 GMT Not After : Feb 22 02:29:20 2025 GMT Subject: CN=67affc00-9358 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:35:05:ee:8b:5a:d8:5d:04:67:be:a7:3f: 6e:ef:5b:dd:d3:cc:9f:1c:8d:ee:7f:6d:0d:15:33: a9:ec:d2:c9:61:67:66:fd:03:74:ee:96:9f:00:04: b6:e9:64:ca:03:f2:0a:93:ce:39:01:be:bf:61:15: cd:fd:9f:24:ed:f3:aa:d2:44:e4:54:91:ae:52:6f: bd:c6:7c:19:d7:fe:e6:18:08:60:18:ee:6a:4c:0b: 93:d3:e9:6a:78:3f:c2:19:f6:cf:5e:ae:12:be:a5: 59:03:19:f4:c1:c6:32:dd:95:ca:7b:c1:d1:43:51: 1f:07:86:fd:aa:58:c5:06:02:05:c7:0e:6a:ec:be: c6:71:84:11:e9:92:29:88:1b:a0:ab:62:7a:39:c2: c8:87:71:26:22:be:5a:93:bb:7f:47:a6:41:bd:e5: c2:f6:d1:41:60:20:d6:f8:e9:19:87:09:9f:3a:46: 9a:fd:ef:e1:9d:f5:ea:02:51:ca:05:4a:30:d0:44: c9:6a:f6:3f:e3:8a:f7:5b:d9:b0:6b:05:c5:7c:7b: 6c:f9:bc:36:f1:2d:da:4b:17:3a:c1:02:73:ea:18: 89:b9:69:92:6f:55:a0:57:f7:71:36:b2:61:49:33: f4:b6:a6:f5:a1:47:3d:7b:eb:7d:c9:3e:47:bc:f9: f7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CC:1F:26:7B:A5:F1:F6:7D:38:E0:5D:1A:82:B8:53:E6:46:35:B5 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:8c:5c:2d:6b:83:98:2d:dc:28:4a:49:f3:f4:72:27:a0:8c: 8c:74:74:13:ad:d5:6f:6a:14:01:c8:8f:b7:db:d2:18:1c:51: ba:08:1a:d4:21:af:d7:76:3a:e5:aa:0a:bf:c4:48:26:bd:ba: a0:f0:85:c2:a8:b2:3a:68:d9:25:3a:f4:9f:77:2d:cc:c3:4a: 87:57:88:33:80:3c:48:47:8a:41:5a:ba:8a:c9:e9:d7:6a:33: 17:49:e3:e4:cd:42:f1:bf:ed:c7:67:fd:bb:22:ff:b0:b7:7d: 7c:43:a4:73:96:f1:66:12:5d:9c:fe:ab:97:a8:64:15:15:58: 95:45:6d:ff:fd:d0:8f:64:82:6b:65:04:28:6d:a6:1c:cb:f3: 7c:da:3d:02:b2:0e:00:7d:40:88:e4:58:4f:66:0a:2a:9e:17: 91:f6:42:4d:6a:c4:9f:89:52:25:af:24:7d:15:f6:80:88:96: 3d:2b:e2:cd:67:1e:ae:05:31:d3:ae:6d:36:03:d1:b2:c6:da: 93:c4:be:6e:b4:f1:f4:2d:75:ec:d5:ec:88:77:f7:00:63:82: 49:5f:da:c4:07:e2:bd:72:0d:fe:b0:45:0b:fb:d6:bb:33:d3: 32:9b:38:e4:35:5e:97:d7:ab:f0:f1:cd:f4:17:c0:07:84:ac: b9:66:26:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjUwMjE1MDIyOTIwWhcNMjUwMjIyMDIyOTIwWjAYMRYwFAYD VQQDEw02N2FmZmMwMC05MzU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoY1Be6LWthdBGe+pz9u71vd08yfHI3uf20NFTOp7NLJYWdm/QN07pafAAS2 6WTKA/IKk845Ab6/YRXN/Z8k7fOq0kTkVJGuUm+9xnwZ1/7mGAhgGO5qTAuT0+lq eD/CGfbPXq4SvqVZAxn0wcYy3ZXKe8HRQ1EfB4b9qljFBgIFxw5q7L7GcYQR6ZIp iBugq2J6OcLIh3EmIr5ak7t/R6ZBveXC9tFBYCDW+OkZhwmfOkaa/e/hnfXqAlHK BUow0ETJavY/44r3W9mwawXFfHts+bw28S3aSxc6wQJz6hiJuWmSb1WgV/dxNrJh STP0tqb1oUc9e+t9yT5HvPn3rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnMHyZ7 pfH2fTjgXRqCuFPmRjW1MB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU5QS9CQUNBQjdFQzlERkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdI MXoyMTF5ZUx5UEpKeFg5UlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCljFwta4OYLdwoSknz9HInoIyMdHQTrdVvahQByI+329IYHFG6CBrU Ia/Xdjrlqgq/xEgmvbqg8IXCqLI6aNklOvSfdy3Mw0qHV4gzgDxIR4pBWrqKyenX ajMXSePkzULxv+3HZ/27Iv+wt318Q6RzlvFmEl2c/quXqGQVFViVRW3//dCPZIJr ZQQobaYcy/N82j0Csg4AfUCI5FhPZgoqnheR9kJNasSfiVIlryR9FfaAiJY9K+LN Zx6uBTHTrm02A9GyxtqTxL5utPH0LXXs1eyId/cAY4JJX9rEB+K9cg3+sEUL+9a7 M9MymzjkNV6X16vw8c30F8AHhKy5ZiZ8 -----END CERTIFICATE-----Generated at Sun Feb 16 20:27:13 2025 by rpki-client