$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: sz48EQkKO337cQFSv9YcXc34qWs+u6P68Gz3y7gLl6I= Subject key identifier: FB:DF:2C:28:1D:0E:19:07:BB:EF:11:65:0A:67:B7:6A:7D:C9:38:79 Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 12 Signing time: Wed 05 Feb 2025 06:26:44 +0000 Manifest this update: Wed 05 Feb 2025 06:26:44 +0000 Manifest next update: Wed 12 Feb 2025 06:26:44 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: F0Qup/I0Q19sYVHTGrQax5twHK8HW7NlC6El7tXJhu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125 Validity Not Before: Feb 5 06:26:44 2025 GMT Not After : Feb 12 06:26:44 2025 GMT Subject: CN=67a304a4-47fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b7:c0:05:a3:0e:af:e9:96:7d:05:db:60:e1: d7:a5:20:98:8a:dd:aa:c2:86:94:da:37:c8:0c:d8: 72:ec:ee:e6:9c:6d:39:55:4f:1e:4e:51:bd:ec:79: 90:7e:fc:f5:2b:b7:79:4d:9d:53:6e:a7:52:e9:09: 45:05:b4:54:41:d7:a1:69:27:3f:c6:ff:1e:9a:a1: 86:0c:67:18:00:5c:de:96:72:5c:2c:96:da:4b:88: 84:15:e5:0a:74:0b:47:34:88:e5:94:5c:5c:96:93: 0f:73:00:9a:a9:78:0e:34:4d:c1:92:a4:7f:2b:75: e9:fa:e8:86:af:61:31:13:54:f8:b3:1d:a1:3f:bf: 5e:16:f2:32:06:74:36:da:a5:ca:7e:85:2d:a8:c5: 46:7b:f1:09:0a:e3:a2:0b:35:ae:dd:09:94:3e:aa: 7b:00:4a:8e:6d:76:d9:fa:6a:3a:66:ec:aa:49:38: 07:e4:0b:5d:fb:2c:28:35:de:b0:b0:59:ab:4d:59: 3c:9f:48:a2:e6:2f:e2:1d:45:15:02:61:52:7f:a6: 8b:a2:05:84:bb:cb:04:95:76:b5:30:1a:a1:4c:38: 2d:72:dc:aa:d9:e5:b4:f8:21:57:42:e7:a7:ef:09: be:e2:95:34:b7:fd:4d:61:fc:17:56:54:09:bd:01: ed:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:DF:2C:28:1D:0E:19:07:BB:EF:11:65:0A:67:B7:6A:7D:C9:38:79 X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:7c:36:39:6d:ba:11:91:25:5b:96:fc:8d:9c:46:69:68:93: 74:10:d7:c2:b7:90:6f:78:77:77:e6:91:66:83:81:58:c0:db: 4d:1c:44:3b:26:d0:70:2f:82:6d:55:9d:d1:b9:8e:b8:c0:d0: 69:59:86:cf:3d:17:f6:31:27:e5:0e:0c:5a:66:a2:3c:8b:d3: e6:eb:e9:14:39:da:23:74:dd:24:53:76:41:8f:bc:9d:fa:37: a1:af:b2:09:ad:f7:b8:07:aa:e3:fb:de:d6:fc:4b:2c:3a:82: 16:b9:94:8c:b5:13:b1:e2:22:4d:fc:b4:fc:77:3c:6a:d4:9c: 6f:aa:3e:69:f6:5e:aa:85:c1:d0:d4:f7:aa:39:9b:d1:13:28: 40:69:89:5b:94:57:1e:66:fe:e5:bd:3f:62:2a:43:af:8e:d3: 2b:8d:16:38:0f:48:6b:e2:50:0d:ea:27:35:91:91:05:7c:5f: d7:ad:37:a5:0a:80:49:e4:5a:1b:d7:10:77:20:cd:23:f7:a4: 76:93:30:02:0f:77:23:78:13:df:1f:57:da:60:81:ca:20:ed: 04:5c:15:4f:7b:57:6b:34:ed:f6:e9:39:3d:a2:19:17:9a:1e: 4b:90:aa:b7:8e:cc:df:9e:a1:e1:a9:62:a8:e2:f8:b6:95:da: 33:58:ee:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoMDFFRDg0MUZCOTUxQUFGQTI1OTE4MEVGOTI5OUU0RDM2 RkRGN0MzRDAeFw0yNTAyMDUwNjI2NDRaFw0yNTAyMTIwNjI2NDRaMBgxFjAUBgNV BAMTDTY3YTMwNGE0LTQ3ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNt8AFow6v6ZZ9Bdtg4delIJiK3arChpTaN8gM2HLs7uacbTlVTx5OUb3seZB+ /PUrt3lNnVNup1LpCUUFtFRB16FpJz/G/x6aoYYMZxgAXN6WclwsltpLiIQV5Qp0 C0c0iOWUXFyWkw9zAJqpeA40TcGSpH8rden66IavYTETVPizHaE/v14W8jIGdDba pcp+hS2oxUZ78QkK46ILNa7dCZQ+qnsASo5tdtn6ajpm7KpJOAfkC137LCg13rCw WatNWTyfSKLmL+IdRRUCYVJ/pouiBYS7ywSVdrUwGqFMOC1y3KrZ5bT4IVdC56fv Cb7ilTS3/U1h/BdWVAm9Ae2fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+98sKB0O GQe77xFlCme3an3JOHkwHwYDVR0jBBgwFoAUAe2EH7lRqvolkYDvkpnk02/ffD0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0ZFNzc4RUM4Q0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZE MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWUyRUg3bFJxdm9sa1lEdmtwbmswMl9mZkQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MTI1L0ZFNzc4RUM4Q0MxMDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZv bGtZRHZrcG5rMDJfZmZEMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ18NjltuhGRJVuW/I2cRmlok3QQ18K3kG94d3fmkWaDgVjA200cRDsm 0HAvgm1VndG5jrjA0GlZhs89F/YxJ+UODFpmojyL0+br6RQ52iN03SRTdkGPvJ36 N6Gvsgmt97gHquP73tb8Syw6gha5lIy1E7HiIk38tPx3PGrUnG+qPmn2XqqFwdDU 96o5m9ETKEBpiVuUVx5m/uW9P2IqQ6+O0yuNFjgPSGviUA3qJzWRkQV8X9etN6UK gEnkWhvXEHcgzSP3pHaTMAIPdyN4E98fV9pggcog7QRcFU97V2s07fbpOT2iGRea HkuQqreOzN+eoeGpYqji+LaV2jNY7sc= -----END CERTIFICATE-----Generated at Thu Feb 6 04:55:56 2025 by rpki-client