$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: fU10uTyiLwLQqlv2SlxPqN13S5WZ8MAMr0qcUAZZmw0= Subject key identifier: 54:48:F7:62:38:3D:7C:FC:82:6B:DB:E4:F3:F2:F2:51:95:4B:17:0B Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: 18 Signing time: Wed 05 Feb 2025 06:25:31 +0000 Manifest this update: Wed 05 Feb 2025 06:25:31 +0000 Manifest next update: Wed 12 Feb 2025 06:25:31 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: RR9KKoXaS1UHcb6iTIz27Of2S3qlZS/fmp/0eiAww7Y=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2 Validity Not Before: Feb 5 06:25:31 2025 GMT Not After : Feb 12 06:25:31 2025 GMT Subject: CN=67a3045b-62db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4f:27:18:26:b4:f7:a6:4d:7a:48:6e:0d:a0: 99:24:85:ad:71:1f:df:76:08:0d:bb:13:ea:af:9a: 93:d3:c3:5b:b0:da:c8:75:a1:9d:5a:9f:9c:ef:cd: 51:aa:bb:83:8c:42:38:2b:70:5f:d1:f8:7a:89:86: f3:50:1e:95:bf:7b:d1:75:ec:56:ec:c7:c8:3a:6c: a1:f6:21:7f:a2:5a:47:21:93:58:13:fc:dd:08:cd: 2c:f3:01:87:a2:68:5e:91:71:6a:59:2d:f6:f2:c8: 81:cb:11:a7:48:85:c6:70:3c:d4:11:6a:19:d8:ef: 84:43:67:65:c9:cc:cd:ff:50:64:c2:f8:a8:ef:a4: 0a:9d:29:ed:30:70:e7:2f:33:3e:69:ce:4b:20:cd: 08:b4:e0:32:37:88:15:60:72:fc:47:1c:36:f9:95: 33:5a:bb:89:d0:15:47:b5:b4:12:84:6a:7e:73:54: eb:4b:77:6f:6b:8d:2a:b7:1d:d9:48:84:78:50:b4: 8d:0d:1d:88:86:3a:26:3f:d2:20:a3:bc:1a:e0:44: ff:95:fb:a3:16:cb:51:f3:65:4b:40:9d:61:b2:1f: a0:7a:7c:f6:9e:a6:47:70:1a:c3:e1:4c:61:f1:3a: c3:9d:f9:7b:71:17:9f:c5:5e:e6:87:f9:f6:54:c8: 37:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:48:F7:62:38:3D:7C:FC:82:6B:DB:E4:F3:F2:F2:51:95:4B:17:0B X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b3:2a:72:33:14:6c:92:05:f5:59:21:a9:30:a8:a3:27:ee: 87:13:1e:1c:7c:b0:b5:a3:51:43:d9:0a:a8:a6:bd:3c:2c:b2: 26:11:c0:8a:d4:49:b0:7d:f5:b8:7d:02:2b:4c:ca:fc:0e:89: da:f4:d9:8a:58:ab:ca:41:ae:f7:de:16:3c:8f:b2:7e:38:ba: 3b:a4:2c:86:b8:33:d1:c3:ca:1f:5c:66:16:34:24:18:1c:0c: 4a:6f:7a:4c:5c:04:99:02:bd:22:59:a8:75:74:62:8a:b4:a3: d7:bb:cf:b5:13:f7:25:5c:2f:4e:1d:dd:17:ad:eb:b8:ff:4f: 18:03:44:32:de:04:1e:15:ea:97:ac:2b:c9:a1:41:3f:17:52: d8:a5:7b:1d:a7:91:dc:b6:e3:66:c3:c3:bf:ec:59:6e:50:07: 04:e0:eb:0f:4b:8b:78:86:b4:4b:6b:39:d7:a5:ce:ce:f1:23: b8:4b:13:b4:3f:5e:be:bd:04:06:5c:2d:99:58:6d:dd:37:95: 7c:17:05:f8:bc:8b:30:3f:a8:fd:38:10:f4:b9:cb:9a:5d:f6: 60:6f:72:63:4e:f9:ab:b0:71:f1:ec:5a:0d:ee:0f:9c:46:80: a6:d7:7d:20:0c:38:1a:70:d0:9b:85:7a:78:b1:11:0f:df:25: 36:b7:b7:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZFMjExMC8GA1UEBRMoNkFBRjNEOUJDM0RGQTNBMTI1MDgyOTY1RDhGRjMzQjgx MjhGMjkxRjAeFw0yNTAyMDUwNjI1MzFaFw0yNTAyMTIwNjI1MzFaMBgxFjAUBgNV BAMTDTY3YTMwNDViLTYyZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnTycYJrT3pk16SG4NoJkkha1xH992CA27E+qvmpPTw1uw2sh1oZ1an5zvzVGq u4OMQjgrcF/R+HqJhvNQHpW/e9F17Fbsx8g6bKH2IX+iWkchk1gT/N0IzSzzAYei aF6RcWpZLfbyyIHLEadIhcZwPNQRahnY74RDZ2XJzM3/UGTC+KjvpAqdKe0wcOcv Mz5pzksgzQi04DI3iBVgcvxHHDb5lTNau4nQFUe1tBKEan5zVOtLd29rjSq3HdlI hHhQtI0NHYiGOiY/0iCjvBrgRP+V+6MWy1HzZUtAnWGyH6B6fPaepkdwGsPhTGHx OsOd+XtxF5/FXuaH+fZUyDfZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVEj3Yjg9 fPyCa9vk8/LyUZVLFwswHwYDVR0jBBgwFoAUaq89m8Pfo6ElCCll2P8zuBKPKR8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkUyLzNCNTQxRjIwQ0Iz RDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtS OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYXE4OW04UGZvNkVsQ0NsbDJQOHp1QktQS1I4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 NkUyLzNCNTQxRjIwQ0IzRDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZF bENDbGwyUDh6dUJLUEtSOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABCzKnIzFGySBfVZIakwqKMn7ocTHhx8sLWjUUPZCqimvTwssiYRwIrU SbB99bh9AitMyvwOidr02YpYq8pBrvfeFjyPsn44ujukLIa4M9HDyh9cZhY0JBgc DEpvekxcBJkCvSJZqHV0Yoq0o9e7z7UT9yVcL04d3Ret67j/TxgDRDLeBB4V6pes K8mhQT8XUtilex2nkdy242bDw7/sWW5QBwTg6w9Li3iGtEtrOdelzs7xI7hLE7Q/ Xr69BAZcLZlYbd03lXwXBfi8izA/qP04EPS5y5pd9mBvcmNO+auwcfHsWg3uD5xG gKbXfSAMOBpw0JuFenixEQ/fJTa3t7o= -----END CERTIFICATE-----Generated at Wed Feb 5 19:51:54 2025 by rpki-client