$ rpki-client -vvf rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.mft File: g5Veubsl3DOnjslssIEXQZxkulw.mft (raw, json) Hash identifier: b2mqCpSshVdoi60FV4SBHJL6gajdlcyEqLRPUBbqYiw= Subject key identifier: A9:45:48:8C:A5:2C:07:5C:48:04:47:F7:E1:FB:D1:45:B7:BF:C0:43 Authority key identifier: 83:95:5E:B9:BB:25:DC:33:A7:8E:C9:6C:B0:81:17:41:9C:64:BA:5C Certificate issuer: /CN=A9155810/serialNumber=83955EB9BB25DC33A78EC96CB08117419C64BA5C Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g5Veubsl3DOnjslssIEXQZxkulw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.mft Manifest number: 19 Signing time: Wed 05 Feb 2025 06:23:55 +0000 Manifest this update: Wed 05 Feb 2025 06:23:55 +0000 Manifest next update: Wed 12 Feb 2025 06:23:55 +0000 Files and hashes: 1: g5Veubsl3DOnjslssIEXQZxkulw.crl (hash: VcFu9v2TKgPtxouiqagoH659F9rbKdN7tZ+LZzIBrjY=) 2: A9D891D4C82B11EF8409A474C4F9AE02.roa (hash: 9VTnLi5T+YYltF+k17fA4MmiG8WRs/lt6DHBJeHF2Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.crl rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g5Veubsl3DOnjslssIEXQZxkulw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155810 Validity Not Before: Feb 5 06:23:55 2025 GMT Not After : Feb 12 06:23:55 2025 GMT Subject: CN=67a303fb-64a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:7e:f6:ed:d1:b3:9c:63:15:73:b1:bd:bf: fd:c7:11:f4:19:23:96:6e:a9:18:67:d4:06:44:a0: a7:62:46:6a:94:2b:17:6b:f8:76:68:05:d0:5c:8f: 71:fd:3b:95:99:ab:7c:c1:9c:b0:a7:93:16:52:00: 85:39:25:67:af:f6:1d:aa:56:e7:83:4e:ac:a5:e8: 11:6d:fa:57:9f:f1:cd:f1:c9:e5:5f:61:ef:4e:14: be:f1:a5:ee:8b:e1:a1:49:7c:cf:9d:e8:1c:c0:b2: 57:af:5a:34:3d:db:a3:0b:55:5a:44:3c:b5:0e:98: 02:44:cc:b4:dc:22:2c:bf:7c:0c:62:64:27:5b:76: 2c:3f:73:0a:63:37:0e:af:c7:e7:9d:58:c5:90:7a: 6c:0d:88:d8:cd:bb:1d:1f:6b:17:b1:b3:ac:6a:df: 48:10:e1:94:c3:be:98:d7:e9:af:a3:83:e1:51:80: a6:38:59:35:c8:4a:34:9c:a7:fd:77:1c:ab:e8:a4: c6:7e:6b:d8:de:fe:3a:94:fe:ee:25:37:03:d0:cf: 1c:f2:40:1b:1f:c8:e3:43:1d:d9:13:4b:b6:c1:68: 4e:60:39:d8:d6:3c:14:12:08:b3:88:d3:74:c2:16: e9:2e:c1:85:4c:e3:90:56:47:e7:6d:ca:f0:71:ff: bf:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:45:48:8C:A5:2C:07:5C:48:04:47:F7:E1:FB:D1:45:B7:BF:C0:43 X509v3 Authority Key Identifier: keyid:83:95:5E:B9:BB:25:DC:33:A7:8E:C9:6C:B0:81:17:41:9C:64:BA:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g5Veubsl3DOnjslssIEXQZxkulw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155810/739788E2C70811EFA89B0C5FC4F9AE02/g5Veubsl3DOnjslssIEXQZxkulw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:2b:95:78:ad:a5:be:0f:05:ad:82:5d:6c:92:3e:6c:60:13: b1:91:f0:40:94:dd:46:61:0a:4c:21:ab:ff:5d:7c:7e:7e:81: cc:78:6f:48:81:9f:1b:23:dc:52:f4:c7:67:64:4e:f0:c2:1d: ec:82:ad:52:54:3c:92:05:eb:ff:d6:fc:b5:e9:ce:71:ca:b0: cc:22:4c:f8:21:38:09:b0:5c:9a:1c:8b:86:da:39:e5:c9:4a: b2:8f:be:84:77:cc:73:7b:a6:95:15:a2:90:8c:69:6f:3b:27: 18:d6:8e:8b:bb:10:2a:97:8a:9d:6d:40:fa:51:e4:95:14:87: f2:30:ac:82:c9:00:26:30:bb:3f:64:e2:13:c0:f2:a1:76:15: ee:f9:df:43:5c:b8:d5:7f:cd:1c:04:e0:80:3d:d4:0e:f8:c1: 62:b1:e2:30:7e:65:bb:3a:94:61:39:70:41:f2:96:32:86:52: 79:bb:d9:66:52:9c:a6:ff:2b:17:7a:ee:58:fc:87:23:84:32: 0f:34:2e:02:1a:40:2f:63:a7:cd:36:04:d5:5e:72:12:7c:d8: 41:36:15:fa:0f:89:48:58:db:c4:ac:a2:12:26:d9:c1:0c:6d: 01:b7:07:51:55:d0:b0:0b:d4:f4:ad:fa:9f:bf:05:f3:b1:e9: 89:e8:1a:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgxMDExMC8GA1UEBRMoODM5NTVFQjlCQjI1REMzM0E3OEVDOTZDQjA4MTE3NDE5 QzY0QkE1QzAeFw0yNTAyMDUwNjIzNTVaFw0yNTAyMTIwNjIzNTVaMBgxFjAUBgNV BAMTDTY3YTMwM2ZiLTY0YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8U3727dGznGMVc7G9v/3HEfQZI5ZuqRhn1AZEoKdiRmqUKxdr+HZoBdBcj3H9 O5WZq3zBnLCnkxZSAIU5JWev9h2qVueDTqyl6BFt+lef8c3xyeVfYe9OFL7xpe6L 4aFJfM+d6BzAslevWjQ926MLVVpEPLUOmAJEzLTcIiy/fAxiZCdbdiw/cwpjNw6v x+edWMWQemwNiNjNux0faxexs6xq30gQ4ZTDvpjX6a+jg+FRgKY4WTXISjScp/13 HKvopMZ+a9je/jqU/u4lNwPQzxzyQBsfyONDHdkTS7bBaE5gOdjWPBQSCLOI03TC FukuwYVM45BWR+dtyvBx/7+lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqUVIjKUs B1xIBEf34fvRRbe/wEMwHwYDVR0jBBgwFoAUg5Veubsl3DOnjslssIEXQZxkulww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODEwLzczOTc4OEUyQzcw ODExRUZBODlCMEM1RkM0RjlBRTAyL2c1VmV1YnNsM0RPbmpzbHNzSUVYUVp4a3Vs dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzVWZXVic2wzRE9uanNsc3NJRVhRWnhrdWx3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 ODEwLzczOTc4OEUyQzcwODExRUZBODlCMEM1RkM0RjlBRTAyL2c1VmV1YnNsM0RP bmpzbHNzSUVYUVp4a3Vsdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALErlXitpb4PBa2CXWySPmxgE7GR8ECU3UZhCkwhq/9dfH5+gcx4b0iB nxsj3FL0x2dkTvDCHeyCrVJUPJIF6//W/LXpznHKsMwiTPghOAmwXJoci4baOeXJ SrKPvoR3zHN7ppUVopCMaW87JxjWjou7ECqXip1tQPpR5JUUh/IwrILJACYwuz9k 4hPA8qF2Fe7530NcuNV/zRwE4IA91A74wWKx4jB+Zbs6lGE5cEHyljKGUnm72WZS nKb/Kxd67lj8hyOEMg80LgIaQC9jp802BNVechJ82EE2FfoPiUhY28SsohIm2cEM bQG3B1FV0LAL1PSt+p+/BfOx6YnoGvI= -----END CERTIFICATE-----Generated at Wed Feb 5 19:57:11 2025 by rpki-client