$ rpki-client -vvf rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft File: jGz7q86HuhmiCnuH8oZS21tKfVI.mft (raw, json) Hash identifier: EIqXRerH2Y6HVYglwRh8GzEsPiaHEsZO4szmFZU3ffE= Subject key identifier: D3:62:39:ED:7D:74:0E:2D:85:E7:FA:6D:90:A3:BD:FC:12:27:29:57 Authority key identifier: 8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 Certificate issuer: /CN=A912A39C/serialNumber=8C6CFBABCE87BA19A20A7B87F28652DB5B4A7D52 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft Manifest number: AC Signing time: Sat 15 Feb 2025 07:14:29 +0000 Manifest this update: Sat 15 Feb 2025 07:14:28 +0000 Manifest next update: Sat 22 Feb 2025 07:14:28 +0000 Files and hashes: 1: jGz7q86HuhmiCnuH8oZS21tKfVI.crl (hash: NXYXEQh8n1XiJGIm4xiTiIzm7f5H9xer6kyD0DpZUXw=) 2: F2F9933AE1FF11EE9A5D8C25C4F9AE02.roa (hash: xbHnwlsEfntbRIZRWTOcVT7U6zL7m6x1cvw0eilA3qU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A39C Validity Not Before: Feb 15 07:14:28 2025 GMT Not After : Feb 22 07:14:28 2025 GMT Subject: CN=67b03ed4-5dfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:5e:fa:d6:f9:fa:d3:31:5f:58:44:15:06: fe:17:99:65:8c:60:12:5d:ff:66:bb:a7:a0:e8:bc: 27:17:1c:ca:c4:93:14:17:c0:19:45:32:ba:06:ed: a3:73:a3:7f:98:b0:47:f6:45:05:6b:2e:84:d8:01: a6:4d:3f:ce:22:f1:c5:0e:23:17:22:fb:5a:75:2e: 1a:ed:9b:8b:bc:32:a0:c1:98:c9:42:63:e1:eb:4a: 53:ac:7e:04:af:2a:14:ba:3e:f3:78:3f:5a:18:fe: da:14:23:f3:73:f7:21:37:cb:ec:ec:e5:5d:dd:23: 0c:64:97:ab:cc:14:0c:df:0a:4b:55:80:16:e2:d8: c0:0e:72:fa:98:ac:70:4f:4b:a3:b1:df:a2:42:22: da:82:61:b2:84:ea:fe:d7:9e:85:ab:17:02:fb:ec: 3d:44:e0:8e:aa:e5:8a:40:1f:a9:74:0f:a4:2e:39: cc:4b:e4:5b:3a:51:41:75:78:61:16:82:46:10:b2: 17:f2:42:78:a0:77:bd:c2:f1:a1:8a:e0:0e:fb:6b: 2b:8a:38:8e:ea:2e:c9:7d:c3:4d:05:bf:ae:ef:3d: 4a:9f:c1:0e:7c:03:d7:b0:61:8b:8d:f9:d8:ba:f7: 8f:0c:fd:e8:d7:23:3c:3b:1d:fe:ba:ef:94:d4:28: 8d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:62:39:ED:7D:74:0E:2D:85:E7:FA:6D:90:A3:BD:FC:12:27:29:57 X509v3 Authority Key Identifier: keyid:8C:6C:FB:AB:CE:87:BA:19:A2:0A:7B:87:F2:86:52:DB:5B:4A:7D:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGz7q86HuhmiCnuH8oZS21tKfVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A39C/9D584D68E1FF11EEB2A1CE24C4F9AE02/jGz7q86HuhmiCnuH8oZS21tKfVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:da:9d:2b:5b:63:2c:b3:eb:98:6d:38:ef:01:10:ea:a9:3c: 6d:f0:a4:4b:ce:02:1b:6a:02:d8:51:bb:0c:44:4c:e4:7b:77: dd:2b:96:e6:f4:e0:46:4e:91:14:fe:55:09:a4:8c:a4:03:6f: 12:59:5b:7b:c4:45:d0:14:af:e2:6e:45:b1:77:9b:dd:70:ba: 56:fd:3b:98:9f:47:3c:75:80:ad:d9:5e:24:60:e4:0a:7e:62: b5:22:3f:1f:e6:fa:c4:35:37:43:2a:7d:ae:cb:15:9d:9c:66: a2:be:83:67:c8:c0:c7:51:7e:98:91:1f:99:15:b3:57:93:3c: 62:3a:1f:95:eb:aa:56:6f:28:e5:81:d0:75:bd:f3:4b:28:f2: 47:42:23:f4:99:13:a4:01:48:99:07:ca:2e:e9:af:42:e7:d4: 67:c3:ea:59:c3:87:f8:08:13:28:fa:a3:2b:b4:33:ad:fc:40: 8d:e6:fa:f0:66:99:1e:4e:51:55:18:de:81:83:17:a6:2a:bf: d2:48:6c:9a:17:71:88:27:29:14:76:e7:5b:1e:fc:15:56:95: 52:c2:54:6f:b7:97:1a:2c:3e:73:99:df:36:e7:9b:e4:44:99: 2c:5f:4d:6c:8a:97:6a:f4:71:ff:b1:85:c0:d6:58:15:bf:56: 06:59:a3:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzOUMxMTAvBgNVBAUTKDhDNkNGQkFCQ0U4N0JBMTlBMjBBN0I4N0YyODY1MkRC NUI0QTdENTIwHhcNMjUwMjE1MDcxNDI4WhcNMjUwMjIyMDcxNDI4WjAYMRYwFAYD VQQDEw02N2IwM2VkNC01ZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2le+tb5+tMxX1hEFQb+F5lljGASXf9mu6eg6LwnFxzKxJMUF8AZRTK6Bu2j c6N/mLBH9kUFay6E2AGmTT/OIvHFDiMXIvtadS4a7ZuLvDKgwZjJQmPh60pTrH4E ryoUuj7zeD9aGP7aFCPzc/chN8vs7OVd3SMMZJerzBQM3wpLVYAW4tjADnL6mKxw T0ujsd+iQiLagmGyhOr+156FqxcC++w9ROCOquWKQB+pdA+kLjnMS+RbOlFBdXhh FoJGELIX8kJ4oHe9wvGhiuAO+2srijiO6i7JfcNNBb+u7z1Kn8EOfAPXsGGLjfnY uvePDP3o1yM8Ox3+uu+U1CiNjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNiOe19 dA4thef6bZCjvfwSJylXMB8GA1UdIwQYMBaAFIxs+6vOh7oZogp7h/KGUttbSn1S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTM5Qy85RDU4NEQ2OEUx RkYxMUVFQjJBMUNFMjRDNEY5QUUwMi9qR3o3cTg2SHVobWlDbnVIOG9aUzIxdEtm VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHejdxODZIdWhtaUNudUg4b1pTMjF0S2ZWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTM5Qy85RDU4NEQ2OEUxRkYxMUVFQjJBMUNFMjRDNEY5QUUwMi9qR3o3cTg2SHVo bWlDbnVIOG9aUzIxdEtmVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy2p0rW2Mss+uYbTjvARDqqTxt8KRLzgIbagLYUbsMREzke3fdK5bm 9OBGTpEU/lUJpIykA28SWVt7xEXQFK/ibkWxd5vdcLpW/TuYn0c8dYCt2V4kYOQK fmK1Ij8f5vrENTdDKn2uyxWdnGaivoNnyMDHUX6YkR+ZFbNXkzxiOh+V66pWbyjl gdB1vfNLKPJHQiP0mROkAUiZB8ou6a9C59Rnw+pZw4f4CBMo+qMrtDOt/ECN5vrw ZpkeTlFVGN6BgxemKr/SSGyaF3GIJykUdudbHvwVVpVSwlRvt5caLD5zmd8255vk RJksX01sipdq9HH/sYXA1lgVv1YGWaOl -----END CERTIFICATE-----Generated at Sun Feb 16 20:23:52 2025 by rpki-client