$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft File: 2VYp3mJDm7AepHisFcom6ZWpeGQ.mft (raw, json) Hash identifier: hF1jb/WMITxNDbkeaJuoKWyLCMBUTjsDEHATH4M5Zw8= Subject key identifier: DF:DF:5D:C4:03:CF:BF:4D:74:5D:E6:E9:1D:3E:51:C6:0C:15:48:BA Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft Manifest number: 18 Signing time: Wed 05 Feb 2025 06:22:44 +0000 Manifest this update: Wed 05 Feb 2025 06:22:43 +0000 Manifest next update: Wed 12 Feb 2025 06:22:43 +0000 Files and hashes: 1: 2VYp3mJDm7AepHisFcom6ZWpeGQ.crl (hash: a7ppkr+ZHHaMrMj0NJXSM/umqQRdGS0RnfQ7lVPZvf8=) 2: A999E39EC36C11EFAF838D35C4F9AE02.roa (hash: ExkZaSQcYVbQZnYq0oQI5lNxhmBmn7aNpw0QWZM9X5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D Validity Not Before: Feb 5 06:22:43 2025 GMT Not After : Feb 12 06:22:43 2025 GMT Subject: CN=67a303b3-5583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:82:02:95:60:ed:ba:66:54:2a:0c:7d:7d:98: c5:58:8f:0e:38:8d:dc:ed:c1:59:08:99:5c:cb:74: 03:1e:1d:ce:d5:1e:fc:73:f0:66:2d:ac:f7:b2:4f: e2:a1:e2:e8:2b:b5:98:14:0c:16:6f:99:a1:32:7a: 49:d6:8a:8b:16:5b:15:53:ed:1a:0d:04:28:23:4f: bb:3c:ec:60:8a:d2:6f:5b:9a:92:1e:09:cc:60:ae: 50:4d:39:e3:25:7e:5b:99:25:88:38:41:55:f8:f6: 10:07:17:0d:22:36:2a:cb:fc:ed:ac:8d:ac:8c:56: 6b:c1:9e:3a:8a:97:28:a0:cc:1a:c2:64:57:ef:89: a7:de:5b:5c:8a:ac:f7:e0:26:d0:b1:8a:71:4e:56: 1b:7e:3d:95:fa:f2:c7:75:24:0e:65:84:30:d6:81: aa:fc:e1:ec:f9:65:98:19:e5:39:9f:5b:21:41:dd: af:80:1d:e9:a2:aa:fc:9d:41:ca:86:90:46:02:0b: 53:10:ce:49:2d:a4:d4:31:7c:74:1d:90:88:8e:b2: 4c:32:fb:1d:b8:88:3b:0c:ff:58:b9:60:91:d7:6c: 58:ab:a5:13:7a:26:12:1d:61:9f:53:96:bd:ad:c5: 08:73:61:89:3d:ba:c7:a2:b5:bb:97:77:92:81:c8: 36:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DF:5D:C4:03:CF:BF:4D:74:5D:E6:E9:1D:3E:51:C6:0C:15:48:BA X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:40:87:1d:7d:ba:2d:83:e0:52:22:fd:e2:87:49:bb:e0:34: 27:50:4a:64:94:36:bf:03:dc:78:f6:20:21:c1:af:b6:78:73: d6:fb:39:c1:e7:0e:42:50:af:85:58:3e:83:5b:6d:00:57:86: f8:da:dc:da:5c:e9:a9:d4:13:5d:56:89:29:5f:bb:21:e8:d7: e5:ef:4d:5f:e6:ba:4c:7e:e3:15:ca:06:9a:97:8f:8c:77:9c: 3b:47:a2:b7:38:16:6e:f8:7e:29:8d:e7:34:d2:77:f3:2a:4f: fb:6e:56:23:cf:2a:f5:bc:00:ae:59:22:4d:0c:1e:62:ec:44: c7:d8:f7:33:d1:7d:b5:be:86:57:04:d8:24:c9:9e:c6:7e:d4: d6:60:bd:9f:0b:ca:03:34:b8:15:4e:5c:b1:a7:95:f6:00:26: 4e:5d:ea:83:67:fb:2d:eb:97:5a:34:13:a9:6b:66:de:cf:ae: e8:b8:8a:fb:d4:e9:26:d5:17:5d:32:3f:df:9b:34:27:02:2e: ec:11:0a:99:d2:41:25:c7:ef:98:1a:66:32:79:48:80:0f:6c: e4:81:60:d8:c5:cf:6f:f6:41:c0:d2:20:04:da:02:e9:2e:85: c2:2b:25:2e:79:1a:06:65:3f:01:57:a1:70:6f:e9:2c:c4:3d: 2d:36:74:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODU0RDExMC8GA1UEBRMoRDk1NjI5REU2MjQzOUJCMDFFQTQ3OEFDMTVDQTI2RTk5 NUE5Nzg2NDAeFw0yNTAyMDUwNjIyNDNaFw0yNTAyMTIwNjIyNDNaMBgxFjAUBgNV BAMTDTY3YTMwM2IzLTU1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUggKVYO26ZlQqDH19mMVYjw44jdztwVkImVzLdAMeHc7VHvxz8GYtrPeyT+Kh 4ugrtZgUDBZvmaEyeknWiosWWxVT7RoNBCgjT7s87GCK0m9bmpIeCcxgrlBNOeMl fluZJYg4QVX49hAHFw0iNirL/O2sjayMVmvBnjqKlyigzBrCZFfviafeW1yKrPfg JtCxinFOVht+PZX68sd1JA5lhDDWgar84ez5ZZgZ5TmfWyFB3a+AHemiqvydQcqG kEYCC1MQzkktpNQxfHQdkIiOskwy+x24iDsM/1i5YJHXbFirpRN6JhIdYZ9Tlr2t xQhzYYk9useitbuXd5KByDZlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU399dxAPP v010XebpHT5RxgwVSLowHwYDVR0jBBgwFoAU2VYp3mJDm7AepHisFcom6ZWpeGQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4NTREL0U3QzhERDJFQzM2 QjExRUZCQ0JDNUIxNkM0RjlBRTAyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVH US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlZZcDNtSkRtN0FlcEhpc0Zjb202WldwZUdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 NTREL0U3QzhERDJFQzM2QjExRUZCQ0JDNUIxNkM0RjlBRTAyLzJWWXAzbUpEbTdB ZXBIaXNGY29tNlpXcGVHUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFtAhx19ui2D4FIi/eKHSbvgNCdQSmSUNr8D3Hj2ICHBr7Z4c9b7OcHn DkJQr4VYPoNbbQBXhvja3Npc6anUE11WiSlfuyHo1+XvTV/mukx+4xXKBpqXj4x3 nDtHorc4Fm74fimN5zTSd/MqT/tuViPPKvW8AK5ZIk0MHmLsRMfY9zPRfbW+hlcE 2CTJnsZ+1NZgvZ8LygM0uBVOXLGnlfYAJk5d6oNn+y3rl1o0E6lrZt7Prui4ivvU 6SbVF10yP9+bNCcCLuwRCpnSQSXH75gaZjJ5SIAPbOSBYNjFz2/2QcDSIATaAuku hcIrJS55GgZlPwFXoXBv6SzEPS02dCY= -----END CERTIFICATE-----Generated at Thu Feb 6 05:13:26 2025 by rpki-client