$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: xG9bZyzljesrI66va7lY8LWTUVZKmt8FvXNXcPhv0Bk= Subject key identifier: EE:58:82:43:20:32:BF:77:B1:1A:3E:E6:C8:5A:D5:2F:0D:9E:E2:3D Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 0E Signing time: Wed 05 Feb 2025 05:50:27 +0000 Manifest this update: Wed 05 Feb 2025 05:50:27 +0000 Manifest next update: Wed 12 Feb 2025 05:50:27 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: s4D41DU9J1QkEhwgxrmbDD8MzZNOxwiVgqBXRkHjNL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 05:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E Validity Not Before: Feb 5 05:50:27 2025 GMT Not After : Feb 12 05:50:27 2025 GMT Subject: CN=67a2fc23-8c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d9:43:be:63:c1:16:78:56:1b:3c:ab:92:6e: 41:e4:f6:f7:03:69:6b:2e:7e:36:72:a3:a7:5c:98: a7:f9:91:c5:3c:1c:87:4b:04:c0:73:1d:c6:cb:a0: 29:b5:de:44:67:2c:20:da:13:af:ed:61:3f:15:9f: 2d:e4:0d:fe:bd:aa:a8:96:c3:57:97:18:76:9e:f2: ec:0f:c7:7c:c4:d5:04:d5:5e:97:ea:14:88:48:27: ad:42:76:61:22:87:af:f9:52:64:5c:fc:d9:61:40: 26:8f:0e:ff:fe:07:52:63:3a:8c:05:ba:90:4d:98: 45:ef:9f:8e:41:a9:47:5a:ac:62:50:b4:42:29:70: cc:34:4b:34:26:49:d8:6e:db:66:0c:d1:b5:81:dc: f6:7e:7e:79:75:e4:9c:b7:64:70:0a:4c:5d:1d:f8: ea:88:70:e4:e5:c6:4a:73:e2:3e:5f:79:86:32:47: a8:ea:63:bf:d1:66:fa:60:bc:24:4b:26:4d:33:67: f8:f0:4e:9d:63:7e:4c:c8:54:bf:49:03:97:c1:9a: 89:bf:49:90:73:26:5c:04:33:b2:87:96:d3:f8:77: d4:e7:b0:fe:3c:24:8e:92:4a:14:cf:4b:22:ac:71: 3a:fc:b9:60:14:d3:1d:3d:d2:b3:b3:ed:ee:fb:c4: 61:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:58:82:43:20:32:BF:77:B1:1A:3E:E6:C8:5A:D5:2F:0D:9E:E2:3D X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:bc:eb:40:72:be:02:dd:7c:3e:d7:18:54:d9:84:c5:4b:28: fc:d9:11:a9:a6:f6:11:be:9a:6e:43:e7:91:1d:bc:fe:fb:a6: 41:19:4a:c9:9c:81:6a:ca:be:e6:84:1e:38:83:b3:ae:3c:20: 5e:65:65:a4:a3:c0:15:c4:ef:11:69:f5:96:1a:a3:d5:ad:3b: 4f:22:b4:aa:c1:a4:ab:98:36:c9:52:84:c1:5c:74:59:78:70: a9:d6:95:58:94:5b:c7:00:8e:46:77:c3:b4:17:94:93:da:46: 64:71:ff:f1:d0:c7:70:59:12:88:40:dc:e6:01:8e:8a:df:30: 91:c4:43:cb:61:3b:db:f5:be:71:ec:8a:35:db:1e:88:1d:36: 2b:c0:19:a3:20:1b:44:3e:6e:b2:ad:1e:0d:09:16:ea:6a:91: 81:0a:e4:28:b9:7e:29:1a:9e:93:de:25:2b:70:3d:53:dd:ec: 67:c0:4e:2b:7c:81:0d:11:b9:c2:d0:16:eb:9a:21:63:84:6c: 81:c0:f3:dd:90:68:de:6b:ec:17:5b:a3:c9:d8:78:43:02:08: 4f:13:48:73:6c:36:81:33:2e:7d:5b:17:6a:8f:21:3b:0a:c1: 6e:c5:05:7b:7a:60:23:76:70:7d:95:16:da:cd:f1:b1:b9:c5: c7:a6:9f:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMjhFREE3Qjk1RDVFOEQ0NTYyQTc1OTc0QzZERDdEQTY0 QzJBMkE4NjAeFw0yNTAyMDUwNTUwMjdaFw0yNTAyMTIwNTUwMjdaMBgxFjAUBgNV BAMTDTY3YTJmYzIzLThjMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe2UO+Y8EWeFYbPKuSbkHk9vcDaWsufjZyo6dcmKf5kcU8HIdLBMBzHcbLoCm1 3kRnLCDaE6/tYT8Vny3kDf69qqiWw1eXGHae8uwPx3zE1QTVXpfqFIhIJ61CdmEi h6/5UmRc/NlhQCaPDv/+B1JjOowFupBNmEXvn45BqUdarGJQtEIpcMw0SzQmSdhu 22YM0bWB3PZ+fnl15Jy3ZHAKTF0d+OqIcOTlxkpz4j5feYYyR6jqY7/RZvpgvCRL Jk0zZ/jwTp1jfkzIVL9JA5fBmom/SZBzJlwEM7KHltP4d9TnsP48JI6SShTPSyKs cTr8uWAU0x090rOz7e77xGEpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7liCQyAy v3exGj7myFrVLw2e4j0wHwYDVR0jBBgwFoAUKO2nuV1ejUVip1l0xt19pkwqKoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFL0Q0MDlGODJBRDE2 OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvS08ybnVWMWVqVVZpcDFsMHh0MTlwa3dxS29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFL0Q0MDlGODJBRDE2OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVW aXAxbDB4dDE5cGt3cUtvWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALG860ByvgLdfD7XGFTZhMVLKPzZEamm9hG+mm5D55EdvP77pkEZSsmc gWrKvuaEHjiDs648IF5lZaSjwBXE7xFp9ZYao9WtO08itKrBpKuYNslShMFcdFl4 cKnWlViUW8cAjkZ3w7QXlJPaRmRx//HQx3BZEohA3OYBjorfMJHEQ8thO9v1vnHs ijXbHogdNivAGaMgG0Q+brKtHg0JFupqkYEK5Ci5fikanpPeJStwPVPd7GfATit8 gQ0RucLQFuuaIWOEbIHA892QaN5r7Bdbo8nYeEMCCE8TSHNsNoEzLn1bF2qPITsK wW7FBXt6YCN2cH2VFtrN8bG5xcemn7s= -----END CERTIFICATE-----Generated at Wed Feb 5 21:55:16 2025 by rpki-client