$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: 7ubhow+aFRzsFn8/gE7s9qif4Cb+5didVnChy3XmDio= Subject key identifier: 1C:9F:BB:A5:CB:48:10:3F:B5:67:A8:95:01:5C:2F:49:8E:83:25:2E Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0BD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0BCA Signing time: Sun 16 Feb 2025 19:14:51 +0000 Manifest this update: Sun 16 Feb 2025 19:14:50 +0000 Manifest next update: Sun 23 Feb 2025 19:14:50 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: yUMNAnjkEds/QfWEtIwjfA2b79uBc75gFIV1LKLZ6Qs=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: NRU2JvNS0M4Uvg4ongqQQlvewCogQuS6b+iIncMfjxY=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: a70AVC/m10a0kuUK6//xk3h87UGpBHiNP4PJz3XNpfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3030 (0xbd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3 Validity Not Before: Feb 16 19:14:50 2025 GMT Not After : Feb 23 19:14:50 2025 GMT Subject: CN=67b2392a-0b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1a:ff:f1:3b:92:cc:e2:7d:18:2a:61:0c:db: 98:41:68:f0:c5:73:b8:59:a1:29:59:85:e9:5a:73: 05:56:46:b6:09:93:72:58:c0:e0:47:aa:19:2a:ec: 55:cf:d2:66:25:97:89:29:de:a4:e4:4c:5c:ec:54: e6:71:bb:88:48:66:eb:a2:98:dc:cc:97:24:da:e6: 84:12:c2:08:5a:e6:47:21:fa:25:7e:5b:c0:cb:a0: 39:0c:71:cd:0b:c0:3d:23:ed:50:d7:f6:a3:ca:76: 17:89:c9:f1:ee:6d:64:11:ab:59:f2:47:29:9b:0c: 46:f4:38:b2:2b:78:ba:f0:75:15:ae:95:57:fb:7b: 84:67:8e:51:5b:38:2d:24:8e:76:23:c3:82:bc:be: 46:4a:e5:8d:1c:11:3e:ab:83:83:63:52:3d:0c:79: 7a:c7:e6:5b:65:6a:c0:22:35:e3:b3:7f:64:51:9e: b6:f2:39:0f:60:0e:bf:99:b6:04:46:d6:95:4c:32: 6a:37:4b:75:66:aa:35:ee:a4:d3:06:90:5d:e5:ff: e5:fe:84:ef:e5:a8:51:68:5b:43:7a:5f:3b:c4:2d: 8d:1c:8d:85:f2:ce:ab:6c:fc:02:a2:53:d1:fc:5e: e2:95:f3:6a:4c:cd:38:0a:d6:a8:ce:36:0b:8d:b6: a8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:9F:BB:A5:CB:48:10:3F:B5:67:A8:95:01:5C:2F:49:8E:83:25:2E X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f8:94:fd:ce:3e:53:8c:ad:8a:85:60:9e:5a:a5:fd:94:71: 11:8d:4e:c1:85:7a:76:e5:da:16:a6:06:0c:7f:c7:59:9b:59: 4e:b2:f6:97:45:44:0b:b0:35:15:25:a9:0f:8f:dd:17:3c:cd: 84:d5:f0:8b:f2:47:38:4f:89:9f:5b:2a:cc:b3:19:07:40:40: 5d:5a:66:28:72:c3:de:e8:96:29:1e:a3:aa:b0:11:d8:4f:87: 0b:a3:7b:05:9c:83:7b:8c:74:cb:5f:ee:1e:fc:18:af:17:05: fd:be:f5:6d:20:b5:57:09:b9:e6:6d:f8:ac:78:19:5c:ab:a0: 7b:7b:f4:0f:a3:5a:f2:38:a3:66:a1:da:f7:45:49:59:00:ea: cf:0e:7f:cb:30:5d:81:d4:e5:0f:f3:92:35:66:d5:47:73:d7: 9f:63:04:00:4f:f4:5e:f8:51:d2:2c:78:a7:37:da:8b:d3:9f: 31:db:cf:ee:69:d4:e0:81:a7:ca:8a:21:a5:1c:d7:a8:06:6f: e7:b6:a5:4e:ba:fa:d3:e4:d8:8e:9e:eb:dc:27:d5:ea:a3:3d: fe:98:3d:e7:93:ac:dd:21:5e:b6:57:de:5b:94:f7:08:4f:6a: 83:4a:f1:74:5f:3b:48:17:d9:d7:85:85:b9:a8:15:2e:0d:6d: c6:b4:c5:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwMjE2MTkxNDUwWhcNMjUwMjIzMTkxNDUwWjAYMRYwFAYD VQQDEw02N2IyMzkyYS0wYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxr/8TuSzOJ9GCphDNuYQWjwxXO4WaEpWYXpWnMFVka2CZNyWMDgR6oZKuxV z9JmJZeJKd6k5Exc7FTmcbuISGbropjczJck2uaEEsIIWuZHIfolflvAy6A5DHHN C8A9I+1Q1/ajynYXicnx7m1kEatZ8kcpmwxG9DiyK3i68HUVrpVX+3uEZ45RWzgt JI52I8OCvL5GSuWNHBE+q4ODY1I9DHl6x+ZbZWrAIjXjs39kUZ628jkPYA6/mbYE RtaVTDJqN0t1Zqo17qTTBpBd5f/l/oTv5ahRaFtDel87xC2NHI2F8s6rbPwColPR /F7ilfNqTM04CtaozjYLjbaoDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByfu6XL SBA/tWeolQFcL0mOgyUuMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm+JT9zj5TjK2KhWCeWqX9lHERjU7BhXp25doWpgYMf8dZm1lOsvaX RUQLsDUVJakPj90XPM2E1fCL8kc4T4mfWyrMsxkHQEBdWmYocsPe6JYpHqOqsBHY T4cLo3sFnIN7jHTLX+4e/BivFwX9vvVtILVXCbnmbfiseBlcq6B7e/QPo1ryOKNm odr3RUlZAOrPDn/LMF2B1OUP85I1ZtVHc9efYwQAT/Re+FHSLHinN9qL058x28/u adTggafKiiGlHNeoBm/ntqVOuvrT5NiOnuvcJ9Xqoz3+mD3nk6zdIV62V95blPcI T2qDSvF0XztIF9nXhYW5qBUuDW3GtMWv -----END CERTIFICATE-----Generated at Mon Feb 17 08:12:56 2025 by rpki-client