$ rpki-client -vvf rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft File: M3tFD93J_HAiHaXKCXhYhbHRt8w.mft (raw, json) Hash identifier: 77UIiNjGSZyxKBMsFWI5WbXD85Q7Kh2NeRiUoBO8Ohc= Subject key identifier: 7F:1F:36:4B:E0:75:ED:5A:29:CF:14:C1:F2:EC:FA:31:80:F5:FB:3D Authority key identifier: 33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC Certificate issuer: /CN=A912981B/serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft Manifest number: C5 Signing time: Sat 15 Feb 2025 07:03:00 +0000 Manifest this update: Sat 15 Feb 2025 07:02:59 +0000 Manifest next update: Sat 22 Feb 2025 07:02:59 +0000 Files and hashes: 1: M3tFD93J_HAiHaXKCXhYhbHRt8w.crl (hash: D0VAzI6tDkbKg4HWgS376MuOoAc3r+Dp3WBnR2gux1c=) 2: 35969588CA9211EE833EF985C4F9AE02.roa (hash: hAX7VR993CmhhsaA1nmPwPNSS2+Tuw+X9CTSJbnnlDM=) 3: 177BA4D0D82911EFB38EBD74C4F9AE02.roa (hash: Q8OdlDaFnosmHt5H93AztLasX85K3jbcjvHEtqM6LOY=) 4: A5C5EEAED82811EFA115FC73C4F9AE02.roa (hash: 9WyjUSklqG6DodL5wdjOBR7FdbGo1ISw6Z8AS27HcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912981B Validity Not Before: Feb 15 07:02:59 2025 GMT Not After : Feb 22 07:02:59 2025 GMT Subject: CN=67b03c23-f33c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:08:b1:a8:05:ca:7a:72:3f:56:45:cc:8b:f5: 82:ef:0a:60:ba:0d:d8:c7:45:9f:ac:33:7e:f1:a5: d1:0a:43:37:25:1a:36:9d:d3:ed:a5:8b:68:36:c4: fd:13:e1:b9:d5:58:ad:5c:a8:23:41:ff:c4:b5:76: d3:87:a2:66:0a:cd:bb:dc:06:10:c3:59:67:c4:ae: 76:ce:76:23:ab:ce:75:9d:f1:c4:80:ed:fc:2b:b5: 5d:2e:ae:f9:4c:5c:05:64:af:74:3c:97:a0:9e:26: b6:0c:4c:7d:09:19:7f:bd:7b:fb:72:a1:16:2c:2b: 25:db:4e:1b:d5:80:93:9c:a5:39:19:de:f8:d3:b6: 4f:cc:f8:5d:ef:02:06:91:b0:ff:53:b3:72:80:dd: 5f:48:97:aa:9f:7a:ca:6c:06:0e:9b:e7:08:04:00: d8:25:9e:e0:d1:3c:a0:c1:4f:6b:b1:70:c8:d6:a5: 9b:02:9f:ff:60:00:6b:d7:34:bf:f8:5d:64:26:f4: 24:d6:a3:c3:bb:37:c6:d9:5b:0f:bf:33:f0:06:f8: f4:14:ee:c8:00:50:41:1b:21:a6:7e:23:65:9d:fb: 73:1c:00:70:ca:6a:1c:75:29:17:11:63:6c:ac:f3: b7:56:5e:7b:b1:f8:91:44:22:5f:5f:2d:a4:3d:71: 9a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:1F:36:4B:E0:75:ED:5A:29:CF:14:C1:F2:EC:FA:31:80:F5:FB:3D X509v3 Authority Key Identifier: keyid:33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:7c:2e:b6:5e:0d:2e:2a:15:25:cd:88:a7:cd:54:86:28:46: 56:ac:0d:0f:e6:b0:f7:b0:32:c5:3e:da:1e:66:23:e9:8c:4f: 11:cf:b5:c1:5c:67:79:47:9b:7d:75:00:0c:b4:46:d3:78:90: c1:10:c7:d7:3e:4e:f1:e1:5d:a2:fa:6d:e9:36:3a:71:fd:d0: d6:0c:bc:33:17:69:49:eb:3a:08:9a:07:bd:c1:7c:f9:88:27: 1b:3d:f4:1f:68:92:14:a3:92:af:47:d1:ae:a3:a8:5f:99:58: ec:fb:d6:47:68:08:0e:10:95:f4:16:3e:99:d3:7c:cc:b6:d6: b8:64:4c:03:0e:a2:f5:09:ff:b3:2d:6d:24:c2:cf:30:8a:21: 38:8d:c4:a0:fc:cd:1c:8b:24:21:3e:bd:19:eb:68:82:1a:ab: c4:ba:7f:f5:91:df:ef:71:97:a0:56:f5:bb:b2:8b:c3:ca:1e: 64:b4:23:bf:ad:02:0f:56:82:63:43:2f:cf:4a:87:46:14:38: ec:5d:b2:af:77:8c:b5:9d:83:db:53:58:53:b3:0c:d2:ea:9c: 03:dd:1f:a8:e8:75:1b:73:c8:2a:fd:39:f0:68:45:17:50:e8: 42:e3:98:84:da:05:53:97:a8:f8:1e:ad:58:e7:fe:d1:d4:ae: 5d:d4:37:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4MUIxMTAvBgNVBAUTKDMzN0I0NTBGRERDOUZDNzAyMjFEQTVDQTA5Nzg1ODg1 QjFEMUI3Q0MwHhcNMjUwMjE1MDcwMjU5WhcNMjUwMjIyMDcwMjU5WjAYMRYwFAYD VQQDEw02N2IwM2MyMy1mMzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQixqAXKenI/VkXMi/WC7wpgug3Yx0WfrDN+8aXRCkM3JRo2ndPtpYtoNsT9 E+G51VitXKgjQf/EtXbTh6JmCs273AYQw1lnxK52znYjq851nfHEgO38K7VdLq75 TFwFZK90PJegnia2DEx9CRl/vXv7cqEWLCsl204b1YCTnKU5Gd7407ZPzPhd7wIG kbD/U7NygN1fSJeqn3rKbAYOm+cIBADYJZ7g0TygwU9rsXDI1qWbAp//YABr1zS/ +F1kJvQk1qPDuzfG2VsPvzPwBvj0FO7IAFBBGyGmfiNlnftzHABwymocdSkXEWNs rPO3Vl57sfiRRCJfXy2kPXGaSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8fNkvg de1aKc8UwfLs+jGA9fs9MB8GA1UdIwQYMBaAFDN7RQ/dyfxwIh2lygl4WIWx0bfM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTgxQi9CQzVDRUFCNkNB OEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9IQWlIYVhLQ1hoWWhiSFJ0 OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00zdEZEOTNKX0hBaUhhWEtDWGhZaGJIUnQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTgxQi9CQzVDRUFCNkNBOEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9I QWlIYVhLQ1hoWWhiSFJ0OHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOfC62Xg0uKhUlzYinzVSGKEZWrA0P5rD3sDLFPtoeZiPpjE8Rz7XB XGd5R5t9dQAMtEbTeJDBEMfXPk7x4V2i+m3pNjpx/dDWDLwzF2lJ6zoImge9wXz5 iCcbPfQfaJIUo5KvR9Guo6hfmVjs+9ZHaAgOEJX0Fj6Z03zMtta4ZEwDDqL1Cf+z LW0kws8wiiE4jcSg/M0ciyQhPr0Z62iCGqvEun/1kd/vcZegVvW7sovDyh5ktCO/ rQIPVoJjQy/PSodGFDjsXbKvd4y1nYPbU1hTswzS6pwD3R+o6HUbc8gq/TnwaEUX UOhC45iE2gVTl6j4Hq1Y5/7R1K5d1De9 -----END CERTIFICATE-----Generated at Sun Feb 16 15:49:54 2025 by rpki-client