$ rpki-client -vvf rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft File: GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft (raw, json) Hash identifier: f+g/xR87In42QLw3msaZau8SnieMjyXocmoZcvgKSxM= Subject key identifier: C3:E7:D6:D3:BC:9E:B2:BF:49:BA:8E:5D:51:B7:F5:00:07:D2:99:C5 Authority key identifier: 18:ED:AB:B2:82:0C:E2:5F:90:E8:63:5C:13:B7:F0:D4:5F:04:63:76 Certificate issuer: /CN=A9155810/serialNumber=18EDABB2820CE25F90E8635C13B7F0D45F046376 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft Manifest number: 1C Signing time: Wed 05 Feb 2025 06:23:58 +0000 Manifest this update: Wed 05 Feb 2025 06:23:57 +0000 Manifest next update: Wed 12 Feb 2025 06:23:57 +0000 Files and hashes: 1: GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl (hash: KwWOPA29IchI+jK5+LXXdplrhJS7h+WvonVLToAwYj8=) 2: 1BC9B310C88E11EF8E789228C4F9AE02.roa (hash: S0OXmYbNImJgx4uOC0U7mhQnmuYrYNwVWM5SzyT3w3g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155810 Validity Not Before: Feb 5 06:23:57 2025 GMT Not After : Feb 12 06:23:57 2025 GMT Subject: CN=67a303fd-fedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0e:0d:61:7b:6c:f7:3a:34:23:d9:b9:91:c8: a0:e6:32:fc:d4:86:ca:25:1e:95:a5:9f:07:6f:e1: f1:53:ab:c9:74:4d:21:6b:93:ec:47:22:94:78:b1: d6:80:e6:ae:39:83:21:24:82:13:54:ea:13:63:7b: 5f:a3:8f:f8:a9:ec:b2:00:43:0c:05:11:cd:25:31: 2e:78:98:30:23:96:e1:34:b2:90:b2:32:37:b6:2b: 19:c7:9a:99:71:f9:bb:bf:af:33:cb:62:b2:42:5a: a9:f8:b4:13:f5:8e:ee:de:4d:71:ce:aa:fc:78:99: 87:91:27:a3:6a:9d:48:5f:61:f5:e6:4b:74:8d:92: 89:50:46:f1:5a:cc:2b:cf:0c:7a:61:03:67:d8:cb: 33:9f:80:3c:78:c1:71:30:79:28:4f:e2:97:fd:6e: bf:29:6f:1c:db:3e:fd:bc:60:24:31:83:ca:45:33: b2:8e:ac:6d:1b:22:12:fd:a3:71:4f:3c:a9:1e:d4: 66:80:64:58:f3:b2:f5:d4:30:66:12:c7:59:bd:a1: dd:37:d6:ae:d2:6e:63:c6:64:22:c1:d3:dc:6f:9b: 89:77:79:07:5d:27:91:1d:8d:0e:2a:e0:9a:99:21: c2:d1:aa:51:0a:98:4c:61:1e:73:de:6b:89:a0:ac: 8e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E7:D6:D3:BC:9E:B2:BF:49:BA:8E:5D:51:B7:F5:00:07:D2:99:C5 X509v3 Authority Key Identifier: keyid:18:ED:AB:B2:82:0C:E2:5F:90:E8:63:5C:13:B7:F0:D4:5F:04:63:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155810/7BA8D39CC70811EFA89B0C5FC4F9AE02/GO2rsoIM4l-Q6GNcE7fw1F8EY3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3a:97:66:ab:10:be:b9:60:87:3e:9a:6b:74:6b:6f:16:4e: 0f:f1:4d:cb:5f:92:90:2f:11:33:f5:7f:11:6f:e9:1c:20:6b: f3:44:ff:9d:6a:3e:ed:4e:70:e1:a8:83:47:7a:16:d4:9b:77: a4:f6:3a:99:9f:a7:45:1a:e0:78:ca:56:b0:64:30:3d:cf:46: 92:16:8c:27:d6:fa:82:b6:dd:8d:81:6d:0e:a9:86:92:00:ad: 9a:ac:16:43:08:17:b7:1c:62:37:a6:53:b1:8a:91:8e:65:a1: 3d:b4:76:19:76:d5:3a:88:ed:23:36:8d:d4:0f:3e:ba:6d:c8: 95:b7:26:c6:b9:fd:1e:4e:a4:c9:8d:bb:b9:f9:a6:8f:0c:e2: 5b:50:46:18:72:43:e1:b5:0a:6f:b6:27:8d:b2:71:0b:0f:57: 11:59:7b:0b:c8:d0:af:00:72:48:78:91:a5:cd:ef:95:73:91: df:29:0e:f5:6e:42:d3:a8:6d:63:b6:26:22:a1:bc:b5:16:dc: 76:5d:70:0e:13:e7:10:ef:34:80:ca:c0:11:d5:f3:97:a9:89: e8:be:e3:c1:3e:43:1b:b4:5c:67:bf:1d:ab:22:32:ef:34:34: 53:2b:e1:ce:58:75:98:48:55:ba:e6:b5:3a:7f:84:dd:53:77: d0:29:b0:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgxMDExMC8GA1UEBRMoMThFREFCQjI4MjBDRTI1RjkwRTg2MzVDMTNCN0YwRDQ1 RjA0NjM3NjAeFw0yNTAyMDUwNjIzNTdaFw0yNTAyMTIwNjIzNTdaMBgxFjAUBgNV BAMTDTY3YTMwM2ZkLWZlZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Dg1he2z3OjQj2bmRyKDmMvzUhsolHpWlnwdv4fFTq8l0TSFrk+xHIpR4sdaA 5q45gyEkghNU6hNje1+jj/ip7LIAQwwFEc0lMS54mDAjluE0spCyMje2KxnHmplx +bu/rzPLYrJCWqn4tBP1ju7eTXHOqvx4mYeRJ6NqnUhfYfXmS3SNkolQRvFazCvP DHphA2fYyzOfgDx4wXEweShP4pf9br8pbxzbPv28YCQxg8pFM7KOrG0bIhL9o3FP PKke1GaAZFjzsvXUMGYSx1m9od031q7SbmPGZCLB09xvm4l3eQddJ5EdjQ4q4JqZ IcLRqlEKmExhHnPea4mgrI6zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUw+fW07ye sr9Juo5dUbf1AAfSmcUwHwYDVR0jBBgwFoAUGO2rsoIM4l+Q6GNcE7fw1F8EY3Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODEwLzdCQThEMzlDQzcw ODExRUZBODlCMEM1RkM0RjlBRTAyL0dPMnJzb0lNNGwtUTZHTmNFN2Z3MUY4RVkz WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR08ycnNvSU00bC1RNkdOY0U3ZncxRjhFWTNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 ODEwLzdCQThEMzlDQzcwODExRUZBODlCMEM1RkM0RjlBRTAyL0dPMnJzb0lNNGwt UTZHTmNFN2Z3MUY4RVkzWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKU6l2arEL65YIc+mmt0a28WTg/xTctfkpAvETP1fxFv6Rwga/NE/51q Pu1OcOGog0d6FtSbd6T2Opmfp0Ua4HjKVrBkMD3PRpIWjCfW+oK23Y2BbQ6phpIA rZqsFkMIF7ccYjemU7GKkY5loT20dhl21TqI7SM2jdQPPrptyJW3Jsa5/R5OpMmN u7n5po8M4ltQRhhyQ+G1Cm+2J42ycQsPVxFZewvI0K8Ackh4kaXN75Vzkd8pDvVu QtOobWO2JiKhvLUW3HZdcA4T5xDvNIDKwBHV85epiei+48E+Qxu0XGe/HasiMu80 NFMr4c5YdZhIVbrmtTp/hN1Td9ApsBk= -----END CERTIFICATE-----Generated at Thu Feb 6 03:58:40 2025 by rpki-client