$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft File: hA_W9-iR44BKfbMJ0EzoXBr3htE.mft (raw, json) Hash identifier: OJv9aCJMqOuiD2JYZxk2DLY/SXzt2w7mpajGNTMxgyQ= Subject key identifier: 9D:36:E3:39:5B:D7:6F:0E:67:62:B2:EF:9A:C9:4D:27:25:8D:E6:A9 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft Manifest number: 20 Signing time: Tue 04 Feb 2025 19:26:10 +0000 Manifest this update: Tue 04 Feb 2025 19:26:09 +0000 Manifest next update: Tue 11 Feb 2025 19:26:09 +0000 Files and hashes: 1: hA_W9-iR44BKfbMJ0EzoXBr3htE.crl (hash: uXtBn1faXnobEz1FItZS13Lcc2TQE13Mmdo+NCk6ASU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Feb 2025 19:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF Validity Not Before: Feb 4 19:26:09 2025 GMT Not After : Feb 11 19:26:09 2025 GMT Subject: CN=67a269d2-3b25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:11:57:ce:7b:a8:aa:b2:7a:4e:05:86:22:bc: 5d:40:38:77:a0:25:97:6c:2a:5f:8e:dd:42:b8:ab: 68:38:e9:f4:5e:fa:7a:1a:07:64:2a:c7:25:fd:6b: 84:c7:31:7a:b3:37:ad:19:de:13:99:10:61:54:8e: 27:1b:c5:2e:29:2c:d1:9d:39:ab:8e:e9:b3:e3:ae: 35:42:d7:2c:6a:2f:92:87:6d:e7:02:58:5b:48:09: 20:ab:8a:3b:68:5c:c4:fc:39:18:01:d4:cf:f3:18: 60:e8:1a:b5:d2:0b:8f:b5:80:48:6b:a7:d5:06:15: 1f:79:76:b9:ed:e0:21:77:21:fc:4d:86:88:49:55: e3:00:dc:1b:13:4b:40:87:1a:c0:83:cd:76:d4:64: e8:65:fc:59:d8:f6:65:6f:70:69:2e:32:4e:d0:b0: 2d:19:87:69:59:8e:db:9f:dd:b9:9c:f6:7c:db:b4: 45:a5:56:0c:df:c0:8c:71:08:a7:58:f4:f7:f5:5a: 63:2c:f9:32:80:3d:c5:19:ad:08:2e:43:a1:ba:35: fb:06:c0:97:a7:be:76:cd:5c:ac:aa:af:15:72:3b: b9:85:0a:6d:4e:e5:6f:59:e7:b6:7a:e6:dc:1b:fe: 7a:cd:0d:e5:30:e9:88:b2:fd:b2:48:7a:ea:cb:30: 20:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:36:E3:39:5B:D7:6F:0E:67:62:B2:EF:9A:C9:4D:27:25:8D:E6:A9 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:a7:c2:92:78:7e:f2:c5:36:00:2f:3b:7f:84:9a:17:4a:5c: 06:5d:f9:4e:76:7c:9e:90:e3:b5:7d:6a:6b:1b:b8:71:38:b2: a2:77:37:f3:3b:62:0c:db:94:9f:74:05:17:39:b4:03:6c:00: b1:47:aa:f0:3b:98:81:7e:fa:60:e0:6b:22:b0:a3:61:5e:31: cb:8a:34:cf:65:ee:e2:29:99:89:07:74:44:b2:3c:23:26:68: ab:9a:12:06:b1:fb:d7:72:6e:bb:ef:92:a4:45:80:fa:95:d1: 55:cd:65:97:42:54:a8:6f:7f:62:8f:ad:c1:86:8f:85:7e:c5: ac:c8:d6:ff:56:09:9b:e8:37:6d:a5:f5:46:2b:48:ed:9e:4b: 62:60:82:bb:ef:7b:11:7f:9c:03:db:91:c1:39:54:d1:4c:16: 80:cb:8b:ec:84:7e:8f:71:be:91:86:7a:1d:2a:db:3c:af:c8: 26:73:40:98:6d:9f:40:86:47:b4:12:50:d7:3c:6f:ac:c7:8d: f2:f9:f4:70:0f:dd:94:b7:86:7d:35:53:75:80:63:77:b5:65: dc:be:fb:e7:96:f2:84:13:ea:fd:06:30:7a:88:2f:84:a8:50: eb:da:43:26:10:33:c7:4c:3c:85:a0:de:50:ca:b8:55:c4:85: 31:25:ca:2b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QzhBRjExMC8GA1UEBRMoODQwRkQ2RjdFODkxRTM4MDRBN0RCMzA5RDA0Q0U4NUMx QUY3ODZEMTAeFw0yNTAyMDQxOTI2MDlaFw0yNTAyMTExOTI2MDlaMBgxFjAUBgNV BAMTDTY3YTI2OWQyLTNiMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaEVfOe6iqsnpOBYYivF1AOHegJZdsKl+O3UK4q2g46fRe+noaB2QqxyX9a4TH MXqzN60Z3hOZEGFUjicbxS4pLNGdOauO6bPjrjVC1yxqL5KHbecCWFtICSCrijto XMT8ORgB1M/zGGDoGrXSC4+1gEhrp9UGFR95drnt4CF3IfxNhohJVeMA3BsTS0CH GsCDzXbUZOhl/FnY9mVvcGkuMk7QsC0Zh2lZjtuf3bmc9nzbtEWlVgzfwIxxCKdY 9Pf1WmMs+TKAPcUZrQguQ6G6NfsGwJenvnbNXKyqrxVyO7mFCm1O5W9Z57Z65twb /nrNDeUw6Yiy/bJIeurLMCBFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnTbjOVvX bw5nYrLvmslNJyWN5qkwHwYDVR0jBBgwFoAUhA/W9+iR44BKfbMJ0EzoXBr3htEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDOEFGLzE5N0ZGN0EyQjQw OTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaEFfVzktaVI0NEJLZmJNSjBFem9YQnIzaHRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJD OEFGLzE5N0ZGN0EyQjQwOTExRUY5NEU2NzQ1REM0RjlBRTAyL2hBX1c5LWlSNDRC S2ZiTUowRXpvWEJyM2h0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI+nwpJ4fvLFNgAvO3+EmhdKXAZd+U52fJ6Q47V9amsbuHE4sqJ3N/M7 YgzblJ90BRc5tANsALFHqvA7mIF++mDgayKwo2FeMcuKNM9l7uIpmYkHdESyPCMm aKuaEgax+9dybrvvkqRFgPqV0VXNZZdCVKhvf2KPrcGGj4V+xazI1v9WCZvoN22l 9UYrSO2eS2JggrvvexF/nAPbkcE5VNFMFoDLi+yEfo9xvpGGeh0q2zyvyCZzQJht n0CGR7QSUNc8b6zHjfL59HAP3ZS3hn01U3WAY3e1Zdy+++eW8oQT6v0GMHqIL4So UOvaQyYQM8dMPIWg3lDKuFXEhTElyis= -----END CERTIFICATE-----Generated at Wed Feb 5 19:55:32 2025 by rpki-client