$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: M2iYu7xxcwncvqH07zoIeyaB0nkSq4SMwIIUDeJ2qBo= Subject key identifier: 4B:81:3B:75:AA:DF:BC:F4:19:00:E8:4A:43:62:AF:02:5D:B0:23:EA Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: 77 Signing time: Sat 15 Feb 2025 07:29:25 +0000 Manifest this update: Sat 15 Feb 2025 07:29:25 +0000 Manifest next update: Sat 22 Feb 2025 07:29:25 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: AyfwSgJEZ4RUSsvU9MFUu4ucLSNBdNMF73MWFw5YS24=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB Validity Not Before: Feb 15 07:29:25 2025 GMT Not After : Feb 22 07:29:25 2025 GMT Subject: CN=67b04255-e258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8e:5d:a3:1c:89:5c:68:1f:af:7f:17:9c:2e: 84:53:df:37:a2:af:13:05:ca:07:32:7c:fd:ca:fe: 6f:01:96:87:f9:60:9f:d4:9c:65:b4:e1:c8:9f:19: 29:2f:9c:d5:64:74:22:c0:bc:c1:69:77:79:91:c9: c1:f4:25:77:54:d6:c6:79:23:50:77:34:ae:f9:aa: 91:b9:1b:41:28:04:3c:6f:a2:1b:27:0e:d2:92:f3: 5d:ba:16:93:c3:0b:54:cb:64:1b:75:d7:5c:89:5f: 86:d7:aa:28:47:1b:cc:54:f3:2b:39:cc:87:a2:a2: 90:25:5a:e9:97:6b:3b:f2:42:8c:c1:bb:7f:03:31: f8:24:4d:f1:95:02:6f:33:63:b5:af:82:4a:fc:9f: 2e:66:3d:0a:c4:28:96:76:44:fa:c6:8b:7f:4f:7f: a3:71:e2:ea:96:9d:ec:2b:c3:84:8e:ee:fb:d7:ea: d3:2a:1a:63:90:9d:87:3a:37:97:29:a9:11:e8:8d: 0f:27:6c:2a:23:e2:47:30:b5:31:c8:36:49:b6:fe: 9b:e2:c7:3e:0a:86:06:92:78:43:74:bd:ef:a4:25: e2:ee:1e:5c:b7:2d:2d:19:2b:cc:fd:b9:93:00:83: 68:da:2c:6e:18:37:8b:79:9f:fb:32:6b:52:1c:47: 35:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:81:3B:75:AA:DF:BC:F4:19:00:E8:4A:43:62:AF:02:5D:B0:23:EA X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:12:39:ac:10:5c:80:3f:4b:9b:de:fc:c6:c1:4d:5c:6d:08: 12:5b:8a:13:30:a3:36:c5:36:2f:62:be:71:fe:b3:5c:ef:e9: fa:1e:af:3c:5e:9c:d7:e0:bf:44:3c:53:6d:99:2c:6c:e7:d9: b2:85:49:09:2e:60:f0:5f:46:21:a5:05:b6:5b:72:2a:8f:ab: c3:0c:4c:be:b1:31:fb:89:be:78:9b:3b:a2:75:80:33:e0:72: 01:32:9e:ef:02:f6:c5:8a:7f:50:30:6f:a2:f2:f2:5d:01:72: 67:f1:e8:f5:33:13:c4:8b:57:d2:4c:12:77:8e:cd:ad:68:71: 4d:fa:a2:06:ee:6c:8e:9f:6d:8d:50:64:23:7f:35:b8:d7:22: f1:9c:21:01:7d:8e:27:ff:44:77:70:79:57:30:c8:23:d4:a1: 36:45:6e:96:a7:69:ad:40:bf:89:2d:40:ee:d3:b1:43:b5:a1: d4:07:25:09:e1:54:c5:55:a2:15:28:7e:74:4b:fc:53:0f:5a: f3:72:85:8f:e8:84:2d:25:d7:20:a8:16:06:3c:c4:6d:e3:6e: 8b:a4:75:8c:e4:41:be:ec:6a:70:27:89:f8:40:62:b3:96:31: 2d:4b:e7:4e:da:c0:de:79:59:b5:14:20:86:9d:26:89:99:de: f7:21:53:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTBGQjExMC8GA1UEBRMoNUYwNEMwMDVGMjhDMjg1NkM3QkJGNDc2QjkxQzYyQTAy RjJGQzUxQzAeFw0yNTAyMTUwNzI5MjVaFw0yNTAyMjIwNzI5MjVaMBgxFjAUBgNV BAMTDTY3YjA0MjU1LWUyNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUjl2jHIlcaB+vfxecLoRT3zeirxMFygcyfP3K/m8Blof5YJ/UnGW04cifGSkv nNVkdCLAvMFpd3mRycH0JXdU1sZ5I1B3NK75qpG5G0EoBDxvohsnDtKS8126FpPD C1TLZBt111yJX4bXqihHG8xU8ys5zIeiopAlWumXazvyQozBu38DMfgkTfGVAm8z Y7Wvgkr8ny5mPQrEKJZ2RPrGi39Pf6Nx4uqWnewrw4SO7vvX6tMqGmOQnYc6N5cp qRHojQ8nbCoj4kcwtTHINkm2/pvixz4KhgaSeEN0ve+kJeLuHly3LS0ZK8z9uZMA g2jaLG4YN4t5n/sya1IcRzU1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS4E7darf vPQZAOhKQ2KvAl2wI+owHwYDVR0jBBgwFoAUXwTABfKMKFbHu/R2uRxioC8vxRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMEZCL0UxNzE5MzYyM0Q4 RDExRUY4NzA1M0IwRkM0RjlBRTAyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHdUQUJmS01LRmJIdV9SMnVSeGlvQzh2eFJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MEZCL0UxNzE5MzYyM0Q4RDExRUY4NzA1M0IwRkM0RjlBRTAyL1h3VEFCZktNS0Zi SHVfUjJ1Unhpb0M4dnhSdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwSOawQXIA/S5ve/MbBTVxtCBJbihMwozbFNi9ivnH+s1zv6foerzxe nNfgv0Q8U22ZLGzn2bKFSQkuYPBfRiGlBbZbciqPq8MMTL6xMfuJvnibO6J1gDPg cgEynu8C9sWKf1Awb6Ly8l0Bcmfx6PUzE8SLV9JMEneOza1ocU36ogbubI6fbY1Q ZCN/NbjXIvGcIQF9jif/RHdweVcwyCPUoTZFbpanaa1Av4ktQO7TsUO1odQHJQnh VMVVohUofnRL/FMPWvNyhY/ohC0l1yCoFgY8xG3jboukdYzkQb7sanAnifhAYrOW MS1L507awN55WbUUIIadJomZ3vchUzc= -----END CERTIFICATE-----Generated at Sun Feb 16 15:42:25 2025 by rpki-client