$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: h1jSarNd/YUUS6QdDTqDEGVUpqXZW2uMdnObjp7WMo0= Subject key identifier: F0:1A:20:D9:D4:B4:2F:15:1F:BC:EC:7F:05:18:C4:63:29:08:05:76 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0B9A Signing time: Fri 14 Feb 2025 19:41:49 +0000 Manifest this update: Fri 14 Feb 2025 19:41:49 +0000 Manifest next update: Fri 21 Feb 2025 19:41:49 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: jMr1uPxOphZj3LQ08Pdaw/3gP77ZjHmJFUJ36PsLzwo=) 2: 2CD5AAF8060311EBBE15EA18C4F9AE02.roa (hash: mW8L1FLDXuwnCDk5B3rFgpB45GljzNSPgwbjM/e2Wu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22 Validity Not Before: Feb 14 19:41:49 2025 GMT Not After : Feb 21 19:41:49 2025 GMT Subject: CN=67af9c7d-9af6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:93:d3:fc:2f:62:bd:46:0f:5c:4f:a5:d0:2d: ea:0f:85:31:10:cb:2c:dc:c4:67:76:d6:00:31:b3: b0:f6:fd:bf:a8:16:18:f5:61:8b:9c:41:f8:77:41: e8:9e:fb:9f:6b:38:29:4a:9e:79:bd:66:71:e4:46: eb:47:07:19:22:14:95:87:1e:c6:cd:70:cb:8f:a5: 9e:6f:3d:d9:b8:5f:50:bc:95:dd:fb:36:0b:b8:65: cb:8c:4a:81:1a:ec:e4:02:f1:b6:d3:26:6d:47:5d: 15:32:10:41:29:ca:5b:14:b3:71:43:2f:80:43:52: 1d:70:23:73:bf:a4:12:6f:1f:6a:60:8d:5b:e2:bc: 16:7e:78:9e:4e:44:a6:04:ed:1d:5f:2e:94:6e:4f: 4a:f7:d5:02:3c:cf:db:3f:3d:9d:17:ec:02:31:07: ad:71:bb:b3:4e:e8:69:4f:d7:1d:96:4a:40:81:fa: c0:2d:f9:5a:cc:27:fa:d3:1f:bc:4a:64:3e:c9:25: 01:4f:9e:27:8d:2c:11:cb:d8:8b:95:92:12:5c:ed: 7d:eb:ed:ec:d2:e1:89:8c:ba:f5:f9:e2:c9:ea:47: c8:8d:9b:a9:5d:ff:aa:ed:e5:75:c9:5e:f4:ec:94: 85:77:a6:9c:c0:b3:67:c7:9f:a6:71:3b:e6:a0:ea: db:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1A:20:D9:D4:B4:2F:15:1F:BC:EC:7F:05:18:C4:63:29:08:05:76 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:88:12:33:d5:56:97:95:83:46:44:52:45:a2:69:e6:16:0d: af:a9:38:b9:3a:ff:09:c6:e6:db:a5:a2:81:f0:c0:ce:43:f2: f3:ab:2c:a1:a3:e8:8d:38:47:37:4f:ef:46:6d:77:7f:6c:2b: 0d:3d:0d:9d:8c:b5:03:51:c8:5e:17:0b:6f:53:19:1b:97:47: 04:00:78:3a:58:7b:37:e2:85:a7:52:d9:f7:e0:4b:60:26:3a: fd:36:cf:af:e3:a1:e2:c9:00:27:99:a2:ca:cf:14:a4:c2:37: 93:b3:7f:94:ed:86:32:1b:51:06:0f:0e:33:05:80:e1:bb:71: 39:96:39:06:c9:74:ac:7e:07:b1:60:84:99:df:a7:a2:f1:cc: 6e:16:b7:24:27:d6:8f:91:b5:68:6d:33:4b:20:8a:f4:f8:88: cd:ad:30:c3:73:7a:dc:9e:06:3f:90:3c:12:32:17:c7:53:00: 10:5d:62:ae:d0:25:c0:6f:ba:25:c1:d7:f1:f1:db:0a:7f:e1: d2:f7:51:40:7e:f3:77:b3:6f:a5:eb:a9:a0:2b:00:b4:00:84: e9:8a:1a:74:7c:b3:42:ad:d3:82:ab:98:1f:60:6c:90:09:44: 9f:84:c3:39:19:48:fa:b4:44:06:83:e5:d9:b7:ac:cc:9a:23: d4:9e:e7:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjUwMjE0MTk0MTQ5WhcNMjUwMjIxMTk0MTQ5WjAYMRYwFAYD VQQDEw02N2FmOWM3ZC05YWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5PT/C9ivUYPXE+l0C3qD4UxEMss3MRndtYAMbOw9v2/qBYY9WGLnEH4d0Ho nvufazgpSp55vWZx5EbrRwcZIhSVhx7GzXDLj6Webz3ZuF9QvJXd+zYLuGXLjEqB GuzkAvG20yZtR10VMhBBKcpbFLNxQy+AQ1IdcCNzv6QSbx9qYI1b4rwWfnieTkSm BO0dXy6Ubk9K99UCPM/bPz2dF+wCMQetcbuzTuhpT9cdlkpAgfrALflazCf60x+8 SmQ+ySUBT54njSwRy9iLlZISXO196+3s0uGJjLr1+eLJ6kfIjZupXf+q7eV1yV70 7JSFd6acwLNnx5+mcTvmoOrbiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAaINnU tC8VH7zsfwUYxGMpCAV2MB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFiBIz1VaXlYNGRFJFomnmFg2vqTi5Ov8JxubbpaKB8MDOQ/Lzqyyh o+iNOEc3T+9GbXd/bCsNPQ2djLUDUcheFwtvUxkbl0cEAHg6WHs34oWnUtn34Etg Jjr9Ns+v46HiyQAnmaLKzxSkwjeTs3+U7YYyG1EGDw4zBYDhu3E5ljkGyXSsfgex YISZ36ei8cxuFrckJ9aPkbVobTNLIIr0+IjNrTDDc3rcngY/kDwSMhfHUwAQXWKu 0CXAb7olwdfx8dsKf+HS91FAfvN3s2+l66mgKwC0AITpihp0fLNCrdOCq5gfYGyQ CUSfhMM5GUj6tEQGg+XZt6zMmiPUnueT -----END CERTIFICATE-----Generated at Sun Feb 16 20:44:58 2025 by rpki-client