$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: rg+NvvQAMWH8bvXXZFlZE0wCGjbeTtWMYPkE937sQ8M= Subject key identifier: 94:A4:EA:F8:68:5B:DC:24:80:02:52:F3:D6:06:00:E1:43:12:D7:BF Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 016B Signing time: Sat 15 Feb 2025 04:57:25 +0000 Manifest this update: Sat 15 Feb 2025 04:57:24 +0000 Manifest next update: Sat 22 Feb 2025 04:57:24 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: 4tg5SiYpEquJB+tmcY/lPKROxr8wzbp4xg8pXn15RQY=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15 Validity Not Before: Feb 15 04:57:24 2025 GMT Not After : Feb 22 04:57:24 2025 GMT Subject: CN=67b01eb5-fd04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:06:c8:04:09:02:da:b2:20:47:e3:07:d3:96: af:2d:8c:80:0a:df:65:8d:e7:2c:ce:b8:bf:db:b5: 4f:39:ff:2e:f4:70:d0:4f:4c:61:cb:4c:38:a7:85: 78:d9:21:c6:ae:cd:f8:00:1d:59:cb:7e:ad:06:30: 77:62:0e:ec:72:c7:c9:12:c2:2d:e1:83:b9:aa:11: 80:d8:62:2b:88:60:31:dd:95:48:86:64:09:9e:fb: 31:33:10:64:09:b1:20:71:28:bd:25:79:0f:fe:03: b0:4e:6f:2a:0f:7e:72:48:4c:ee:9a:0b:42:34:8d: 09:2e:44:ca:3f:e6:b9:d9:1d:44:93:55:7f:78:d5: f3:27:4f:8d:d4:48:cb:5c:1d:e0:74:c9:f5:19:d9: 35:e9:1d:52:21:62:cc:41:19:bd:52:d3:76:3b:ff: 8a:52:a4:84:66:6c:18:e0:b0:97:59:81:88:18:4f: 35:b2:1c:a5:d4:50:0c:b2:b5:aa:c5:a8:7f:38:e1: f0:b3:53:54:be:cd:85:d9:45:ec:68:dd:6f:3a:cc: e3:c3:5c:fd:f9:f4:07:f5:89:98:13:0c:ea:81:2e: 8c:03:92:47:95:21:ed:dc:69:d7:a7:e8:1d:50:6c: 44:9f:ab:0d:e2:f1:6f:8c:f9:31:58:d3:34:f1:a9: 58:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A4:EA:F8:68:5B:DC:24:80:02:52:F3:D6:06:00:E1:43:12:D7:BF X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ba:1c:04:e9:94:cb:4f:c2:e6:1f:6d:dd:99:15:70:82:6e: e3:30:cc:6b:b6:4e:26:f1:71:15:d9:ae:e7:90:79:5c:95:d5: a8:0f:04:5e:96:19:c0:4e:9b:19:8b:39:4d:de:bf:aa:45:04: 67:23:41:51:38:36:9e:34:6d:4c:06:ac:52:31:03:90:91:ee: 2a:cf:ba:23:07:d6:d5:89:7d:fb:6c:85:e4:89:f6:0e:df:0f: a7:23:7b:a7:69:6c:fc:8d:a6:50:37:e3:40:34:67:10:d8:6e: 85:9a:24:38:9b:1f:29:7f:f4:4d:1e:bc:d0:49:96:8a:43:bb: 57:e4:0b:30:a6:c0:01:40:87:8e:73:9e:51:40:c6:8a:ef:45: ff:ac:90:36:d2:20:c0:90:09:54:d7:95:8f:7c:63:db:46:bd: 0a:be:23:d2:35:d8:bc:cf:b6:9f:c7:6e:85:6a:08:5b:ec:06: cc:f4:54:05:03:b6:5b:df:a1:c1:21:e8:f7:59:03:33:01:ea: e7:df:4c:95:2b:69:2c:a5:dd:92:61:bf:fe:85:23:a2:f2:ac: ef:7e:3b:b6:af:93:ed:da:9d:7f:31:b3:69:6f:ed:22:80:ef: ef:a6:18:6c:54:3d:d3:eb:1e:07:5d:ab:d0:4e:a8:82:8c:15: 63:4f:3b:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwMjE1MDQ1NzI0WhcNMjUwMjIyMDQ1NzI0WjAYMRYwFAYD VQQDEw02N2IwMWViNS1mZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQbIBAkC2rIgR+MH05avLYyACt9ljecszri/27VPOf8u9HDQT0xhy0w4p4V4 2SHGrs34AB1Zy36tBjB3Yg7scsfJEsIt4YO5qhGA2GIriGAx3ZVIhmQJnvsxMxBk CbEgcSi9JXkP/gOwTm8qD35ySEzumgtCNI0JLkTKP+a52R1Ek1V/eNXzJ0+N1EjL XB3gdMn1Gdk16R1SIWLMQRm9UtN2O/+KUqSEZmwY4LCXWYGIGE81shyl1FAMsrWq xah/OOHws1NUvs2F2UXsaN1vOszjw1z9+fQH9YmYEwzqgS6MA5JHlSHt3GnXp+gd UGxEn6sN4vFvjPkxWNM08alYKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSk6vho W9wkgAJS89YGAOFDEte/MB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwuhwE6ZTLT8LmH23dmRVwgm7jMMxrtk4m8XEV2a7nkHlcldWoDwRe lhnATpsZizlN3r+qRQRnI0FRODaeNG1MBqxSMQOQke4qz7ojB9bViX37bIXkifYO 3w+nI3unaWz8jaZQN+NANGcQ2G6FmiQ4mx8pf/RNHrzQSZaKQ7tX5AswpsABQIeO c55RQMaK70X/rJA20iDAkAlU15WPfGPbRr0KviPSNdi8z7afx26Faghb7AbM9FQF A7Zb36HBIej3WQMzAern30yVK2kspd2SYb/+hSOi8qzvfju2r5Pt2p1/MbNpb+0i gO/vphhsVD3T6x4HXavQTqiCjBVjTzuG -----END CERTIFICATE-----Generated at Sun Feb 16 15:08:57 2025 by rpki-client