$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft File: tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft (raw, json) Hash identifier: XMVZo29tbP/0cs1W80rVque9U3yj9JKIk7fg0S6RGdc= Subject key identifier: E7:5A:B8:E8:46:DC:55:6A:B9:75:63:48:D3:D0:CD:BA:DC:4F:5D:CE Authority key identifier: B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD Certificate issuer: /CN=A9150CF3/serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Certificate serial: E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft Manifest number: 02D4 Signing time: Sat 15 Feb 2025 03:49:13 +0000 Manifest this update: Sat 15 Feb 2025 03:49:12 +0000 Manifest next update: Sat 22 Feb 2025 03:49:12 +0000 Files and hashes: 1: tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl (hash: tevUqdlmdWG1P1pFVZ8jFNKQIfsJP4M1fzgXVOig3kA=) 2: FDB4B8B4E85211EE83F9ED4BC4F9AE02.roa (hash: SCTf0mwZLUHqFVPegVRVJr7Eh8lVpCyL1GKCV+U6N7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF3 Validity Not Before: Feb 15 03:49:12 2025 GMT Not After : Feb 22 03:49:12 2025 GMT Subject: CN=67b00eb8-7df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a9:af:33:c5:c7:22:b4:43:71:93:a3:ff:e0: da:77:31:f3:eb:c6:bb:a3:50:2f:e5:f6:7d:a1:2a: 8a:55:85:93:72:54:68:36:dd:7b:95:87:8c:80:d8: fc:0e:91:fe:76:27:39:ba:67:8a:7e:8b:21:0a:a6: 1a:cb:4f:b1:90:2e:e2:52:59:6d:cc:11:68:b3:45: c1:f6:a7:72:26:e9:c8:5d:53:5c:82:dc:b5:2f:a6: 9c:54:08:0b:bb:02:fc:7b:72:36:2c:ba:22:a8:97: 00:67:31:e2:c5:d0:98:3d:e9:b1:02:a9:8d:58:c3: 12:94:08:c1:a8:d1:97:46:f7:b3:e9:46:ca:b1:85: e5:d4:ce:4d:45:98:ea:9a:3d:11:5a:4c:eb:28:99: 2e:52:81:92:8b:51:21:05:61:8e:66:33:8a:2f:6f: 76:a3:9c:2c:a5:38:6d:78:24:4d:3c:8f:7f:c6:29: eb:bd:ba:06:c7:72:3b:e4:64:92:07:f5:b2:b2:32: 85:21:df:93:5f:de:7c:e4:fa:88:bd:e7:56:ec:59: fa:cc:8d:86:0d:f2:e7:ae:50:73:ad:1a:db:cc:14: ff:0c:79:eb:ba:d1:8a:97:d2:2b:a3:67:b9:d0:cc: e0:48:f6:eb:15:45:22:0d:36:24:2e:82:67:48:a8: 3b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5A:B8:E8:46:DC:55:6A:B9:75:63:48:D3:D0:CD:BA:DC:4F:5D:CE X509v3 Authority Key Identifier: keyid:B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:e4:64:57:6d:06:93:b2:0d:c1:25:e6:f9:4b:9f:d2:f4:bd: be:b8:9e:46:ac:19:46:32:bc:2c:e3:4b:d9:05:10:fc:7f:b4: a3:c1:71:4a:0d:08:b8:da:30:63:62:d1:bf:fc:f7:70:f4:1b: a9:cb:29:07:3d:9a:0e:50:04:1f:e3:6c:1c:ed:76:06:3c:3c: ab:09:cf:e6:05:5d:17:6e:aa:99:3a:eb:12:56:31:88:b4:ab: be:46:2b:1e:4d:be:c1:03:48:18:b3:12:68:0d:6b:2e:72:dc: 7b:bb:4e:4c:82:c3:b7:e3:b7:05:43:d4:18:4f:5f:49:e7:0b: f0:37:a1:61:6d:07:4e:72:25:43:11:a3:d6:99:44:d1:d8:36: 0c:92:a7:48:fb:7f:7f:49:3c:1f:57:5d:61:27:68:fc:89:1f: 3b:b9:1b:5c:7e:26:f3:e9:86:7f:f9:d2:c3:ee:42:9e:90:31: 6f:d8:c2:0d:9b:b7:7f:e4:fa:37:90:30:a3:38:2f:ac:0b:8d: e2:a8:56:f2:54:f5:3f:9a:6e:79:f0:56:89:ef:27:cd:4d:aa: 75:af:7f:85:8b:a7:9c:75:3b:c8:81:71:fb:f2:27:f7:f4:d0: 29:f8:98:23:80:45:21:9a:69:ed:58:a6:f7:3e:03:08:73:72: b4:e5:1e:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjMxMTAvBgNVBAUTKEI0OENCMTgwODI2MkI4MDk5Qjg3MjcyQTU3NkZGRURD MTlBMzk2QkQwHhcNMjUwMjE1MDM0OTEyWhcNMjUwMjIyMDM0OTEyWjAYMRYwFAYD VQQDEw02N2IwMGViOC03ZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKmvM8XHIrRDcZOj/+DadzHz68a7o1Av5fZ9oSqKVYWTclRoNt17lYeMgNj8 DpH+dic5umeKfoshCqYay0+xkC7iUlltzBFos0XB9qdyJunIXVNcgty1L6acVAgL uwL8e3I2LLoiqJcAZzHixdCYPemxAqmNWMMSlAjBqNGXRvez6UbKsYXl1M5NRZjq mj0RWkzrKJkuUoGSi1EhBWGOZjOKL292o5wspThteCRNPI9/xinrvboGx3I75GSS B/WysjKFId+TX9585PqIvedW7Fn6zI2GDfLnrlBzrRrbzBT/DHnrutGKl9Iro2e5 0MzgSPbrFUUiDTYkLoJnSKg75wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdauOhG 3FVquXVjSNPQzbrcT13OMB8GA1UdIwQYMBaAFLSMsYCCYrgJm4cnKldv/twZo5a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMy8wMjhGOUVGRTJF ODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVBbWJoeWNxVjJfLTNCbWps cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJeXhnSUppdUFtYmh5Y3FWMl8tM0JtamxyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MENGMy8wMjhGOUVGRTJFODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVB bWJoeWNxVjJfLTNCbWpscjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT5GRXbQaTsg3BJeb5S5/S9L2+uJ5GrBlGMrws40vZBRD8f7SjwXFK DQi42jBjYtG//Pdw9BupyykHPZoOUAQf42wc7XYGPDyrCc/mBV0XbqqZOusSVjGI tKu+RiseTb7BA0gYsxJoDWsuctx7u05MgsO347cFQ9QYT19J5wvwN6FhbQdOciVD EaPWmUTR2DYMkqdI+39/STwfV11hJ2j8iR87uRtcfibz6YZ/+dLD7kKekDFv2MIN m7d/5Po3kDCjOC+sC43iqFbyVPU/mm558FaJ7yfNTap1r3+Fi6ecdTvIgXH78if3 9NAp+JgjgEUhmmntWKb3PgMIc3K05R4H -----END CERTIFICATE-----Generated at Sun Feb 16 22:30:04 2025 by rpki-client