$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: yKZpNy+UdUvt0pNLrgsiy2r+PbSiG8izBv3foiXa0W0= Subject key identifier: 71:EA:15:E2:65:E1:50:F2:70:D9:52:AB:E3:8C:0E:44:2C:37:AD:27 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 0718 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 0711 Signing time: Fri 14 Feb 2025 22:56:14 +0000 Manifest this update: Fri 14 Feb 2025 22:56:13 +0000 Manifest next update: Fri 21 Feb 2025 22:56:13 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: e3ile4iqpjhiyj1NzEBGcdmhA0PzWEzj44HUxepRspo=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683 Validity Not Before: Feb 14 22:56:13 2025 GMT Not After : Feb 21 22:56:13 2025 GMT Subject: CN=67afca0d-5cbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dc:88:1d:35:a2:42:8a:79:2f:94:ed:0b:2e: b0:07:8d:61:8a:b8:b6:93:11:1f:8f:95:57:88:c5: d6:59:5c:79:a5:7f:40:7e:b1:e4:9a:cd:cc:af:04: f1:39:61:5e:f5:fd:bd:71:7f:d6:3d:77:4b:bb:19: 09:19:97:5a:4a:c4:e9:fd:13:25:3e:30:9f:94:f8: af:ac:69:36:0c:d4:d8:dd:a5:cc:19:5c:68:bd:87: 79:17:06:e3:63:bd:9b:34:1d:f4:c2:02:38:7d:71: bb:05:7b:52:90:a8:0e:d2:95:9c:23:44:d5:80:2e: 34:d5:53:ef:57:1b:a9:ae:32:f3:f3:69:83:61:bb: db:4d:bf:8b:71:1f:cb:58:c0:67:ab:ea:c7:cc:85: 4a:1a:d0:42:5b:19:6b:26:52:ec:24:2a:9f:f2:aa: 95:39:14:c3:cd:dd:e3:a2:da:0f:89:c3:e7:2a:2f: c3:d8:06:5d:7c:d8:14:6a:37:14:91:b2:51:08:4e: 2c:a3:3c:5e:d8:35:d6:e6:6e:6b:da:ff:0a:4f:8b: 40:83:b7:d0:41:cb:cc:63:a5:30:3c:fe:f3:ee:97: d9:26:dd:58:d8:fe:8b:e6:47:97:dc:dd:11:95:e9: 28:0c:12:38:dc:0b:6b:c2:e4:91:43:fe:66:a1:ba: ff:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:EA:15:E2:65:E1:50:F2:70:D9:52:AB:E3:8C:0E:44:2C:37:AD:27 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:ed:25:4b:1b:99:41:07:7a:51:ca:eb:a4:1c:2f:d6:61:da: 5c:bc:24:3f:c2:43:c9:bf:a6:d5:2c:de:e1:ff:03:e5:b4:c0: da:7b:78:c4:5a:87:e0:62:59:38:3a:5e:78:d5:11:37:87:39: 14:ca:b7:50:24:5a:0c:f8:82:09:7a:87:f0:cb:2a:55:41:34: 7b:fb:9e:80:4e:14:bc:af:73:7b:82:11:e3:2b:8f:85:ba:4f: d4:fc:35:98:5d:14:4d:dc:31:f6:67:eb:22:dd:c7:56:0b:3f: 73:68:fa:56:cc:f3:6a:0c:16:40:9f:7b:40:4b:14:ac:4c:62: 26:f0:df:c5:db:39:9a:d8:40:5c:1d:4b:2f:19:ef:39:f2:0c: 04:fe:0c:19:91:38:a3:66:59:7f:3c:5e:3e:00:42:07:83:cb: ec:1b:02:6c:44:fa:af:ce:bd:11:2c:5e:0c:b5:45:41:83:3b: 0f:c1:72:20:70:0d:56:8e:34:75:2a:19:7b:cf:50:c0:c6:59: 69:88:f8:6a:ad:10:3e:e2:0f:45:c7:99:48:14:58:ed:6c:9e: 6e:27:a8:b9:ba:d1:98:6a:c3:f2:87:b2:d9:e7:da:36:28:80: 29:2b:54:49:a0:22:04:9b:1d:dd:94:df:eb:a9:72:e9:ab:7e: 5f:40:22:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwMjE0MjI1NjEzWhcNMjUwMjIxMjI1NjEzWjAYMRYwFAYD VQQDEw02N2FmY2EwZC01Y2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutyIHTWiQop5L5TtCy6wB41hiri2kxEfj5VXiMXWWVx5pX9AfrHkms3MrwTx OWFe9f29cX/WPXdLuxkJGZdaSsTp/RMlPjCflPivrGk2DNTY3aXMGVxovYd5Fwbj Y72bNB30wgI4fXG7BXtSkKgO0pWcI0TVgC401VPvVxuprjLz82mDYbvbTb+LcR/L WMBnq+rHzIVKGtBCWxlrJlLsJCqf8qqVORTDzd3jotoPicPnKi/D2AZdfNgUajcU kbJRCE4sozxe2DXW5m5r2v8KT4tAg7fQQcvMY6UwPP7z7pfZJt1Y2P6L5keX3N0R lekoDBI43AtrwuSRQ/5mobr/8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHqFeJl 4VDycNlSq+OMDkQsN60nMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn7SVLG5lBB3pRyuukHC/WYdpcvCQ/wkPJv6bVLN7h/wPltMDae3jE WofgYlk4Ol541RE3hzkUyrdQJFoM+IIJeofwyypVQTR7+56AThS8r3N7ghHjK4+F uk/U/DWYXRRN3DH2Z+si3cdWCz9zaPpWzPNqDBZAn3tASxSsTGIm8N/F2zma2EBc HUsvGe858gwE/gwZkTijZll/PF4+AEIHg8vsGwJsRPqvzr0RLF4MtUVBgzsPwXIg cA1WjjR1Khl7z1DAxllpiPhqrRA+4g9Fx5lIFFjtbJ5uJ6i5utGYasPyh7LZ59o2 KIApK1RJoCIEmx3dlN/rqXLpq35fQCLK -----END CERTIFICATE-----Generated at Sun Feb 16 20:15:23 2025 by rpki-client