$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: tKEjsKeXttg1ijE/sP6xCICXc+rwl+gbj8if3oVlCWQ= Subject key identifier: 83:15:B7:C7:15:DC:AC:09:53:34:43:62:23:1B:78:2F:58:B5:8E:24 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 3E Signing time: Sat 15 Feb 2025 08:49:16 +0000 Manifest this update: Sat 15 Feb 2025 08:49:16 +0000 Manifest next update: Sat 22 Feb 2025 08:49:16 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: VGA6OQcrhLXLi04IgioKmWIbzq8ucE7grbAE9UZ1t4M=) 2: B45D344C8F7911EF90F6941FC4F9AE02.roa (hash: IwG41/v32DGnAzEUwm2fWrp5jpFSCenIV1xWWix510E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787 Validity Not Before: Feb 15 08:49:16 2025 GMT Not After : Feb 22 08:49:16 2025 GMT Subject: CN=67b0550c-76b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4e:51:e6:23:6c:11:ec:06:a5:86:36:7c:10: 30:62:38:71:0e:1b:01:ec:b2:56:60:43:2c:c2:cd: 45:51:13:64:1d:bf:4b:0c:ac:06:76:4f:ed:dc:c1: ab:e4:15:9e:e0:36:70:aa:2f:ab:6c:5b:4c:b9:b8: 29:ad:e1:e5:59:10:cb:d6:cf:0c:48:8c:0c:f4:ac: 19:30:de:d1:12:3f:f1:b7:ee:b2:02:cf:1d:ac:bf: 57:76:61:af:d1:8b:6d:7f:7d:0f:4d:c7:bc:28:a3: c2:23:fb:94:98:ca:c8:f6:b5:28:4f:ae:0f:d3:1b: 84:6c:54:f7:04:32:36:58:72:80:61:1f:fe:ea:47: c9:cd:a4:76:7f:ee:90:70:d7:6d:16:4d:52:0e:dc: 20:3b:f5:95:fe:de:66:d4:c6:36:69:49:51:3a:11: aa:2a:20:bb:03:96:ec:d1:d3:a0:a1:b3:b2:ae:6b: f3:ed:43:13:b0:dd:a4:0d:b0:15:96:65:8b:a6:6c: 7f:f6:18:48:72:7d:90:0b:e9:c9:ef:f8:f9:61:42: e3:7a:2f:84:04:f0:d6:33:4f:b4:34:23:8e:15:88: 0f:87:b0:4a:2c:e1:4b:54:b6:2b:23:60:f0:4e:06: 1e:1c:52:c4:1e:8d:8f:66:a0:c8:87:29:64:bf:63: 30:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:15:B7:C7:15:DC:AC:09:53:34:43:62:23:1B:78:2F:58:B5:8E:24 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:d3:3f:a8:b1:73:76:97:b6:c5:85:08:7a:49:fd:f9:4b:3f: f9:89:58:80:d8:5d:30:e9:e0:19:07:c0:04:32:18:be:44:27: 20:8b:b3:40:17:b3:32:e2:31:42:30:fd:7f:87:b7:73:cd:22: ce:9b:5e:a2:1f:c0:07:7b:06:da:54:24:a0:90:7f:59:b8:d0: 20:a4:1e:5b:ef:3b:3c:be:65:83:3e:fe:79:13:c9:de:2f:9a: cd:23:d7:ae:5f:41:2c:29:31:23:92:05:27:7c:68:d5:37:05: 83:30:02:ca:10:df:e0:77:a9:cd:d7:6d:e0:96:7f:ea:ed:df: 32:89:8e:77:3c:95:e2:b6:5a:95:75:e3:4c:64:4b:76:83:6d: f2:ce:96:20:b8:c0:a4:1d:14:fc:83:1e:20:f2:2c:fc:dd:48: c6:56:bf:e6:fb:14:5b:fd:ef:22:9d:2e:48:24:a6:58:90:e4: be:42:44:25:08:b9:c2:d5:44:97:57:a3:25:91:c1:e2:ff:cf: 4b:da:c3:c4:fe:00:14:f6:88:5e:bc:b7:93:24:34:96:cc:ec: cd:7f:8f:fc:51:33:b7:52:f9:ba:0c:7d:c4:40:8b:e4:b9:50: 43:6e:56:fb:d3:a0:5b:cc:59:de:95:3a:1a:fd:68:79:a4:94: 22:13:43:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNTAyMTUwODQ5MTZaFw0yNTAyMjIwODQ5MTZaMBgxFjAUBgNV BAMTDTY3YjA1NTBjLTc2YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9TlHmI2wR7AalhjZ8EDBiOHEOGwHsslZgQyzCzUVRE2Qdv0sMrAZ2T+3cwavk FZ7gNnCqL6tsW0y5uCmt4eVZEMvWzwxIjAz0rBkw3tESP/G37rICzx2sv1d2Ya/R i21/fQ9Nx7woo8Ij+5SYysj2tShPrg/TG4RsVPcEMjZYcoBhH/7qR8nNpHZ/7pBw 120WTVIO3CA79ZX+3mbUxjZpSVE6EaoqILsDluzR06Chs7Kua/PtQxOw3aQNsBWW ZYumbH/2GEhyfZAL6cnv+PlhQuN6L4QE8NYzT7Q0I44ViA+HsEos4UtUtisjYPBO Bh4cUsQejY9moMiHKWS/YzA5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgxW3xxXc rAlTNENiIxt4L1i1jiQwHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKzTP6ixc3aXtsWFCHpJ/flLP/mJWIDYXTDp4BkHwAQyGL5EJyCLs0AX szLiMUIw/X+Ht3PNIs6bXqIfwAd7BtpUJKCQf1m40CCkHlvvOzy+ZYM+/nkTyd4v ms0j165fQSwpMSOSBSd8aNU3BYMwAsoQ3+B3qc3XbeCWf+rt3zKJjnc8leK2WpV1 40xkS3aDbfLOliC4wKQdFPyDHiDyLPzdSMZWv+b7FFv97yKdLkgkpliQ5L5CRCUI ucLVRJdXoyWRweL/z0vaw8T+ABT2iF68t5MkNJbM7M1/j/xRM7dS+boMfcRAi+S5 UENuVvvToFvMWd6VOhr9aHmklCITQ2I= -----END CERTIFICATE-----Generated at Sun Feb 16 15:54:49 2025 by rpki-client