$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: j0U/EUI3Dj7u7udkHgUB8XxaFDpq5MS1W93PEWi9QVQ= Subject key identifier: CA:3D:49:9F:CF:AA:95:46:AF:5B:9A:FE:C2:26:FC:31:1E:D7:3A:D6 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: 62 Signing time: Sat 15 Feb 2025 08:14:34 +0000 Manifest this update: Sat 15 Feb 2025 08:14:33 +0000 Manifest next update: Sat 22 Feb 2025 08:14:33 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: XCZ6mLtGnQsirE8YBerXlYJJNDgM1tJRtCxzh3Ebxpw=) 2: BBC65AEC5AE511EFBC1FAA45C4F9AE02.roa (hash: Gqrui0OpB1CczHELSAaN90W0H5eLSv922/lG6tauLOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E Validity Not Before: Feb 15 08:14:33 2025 GMT Not After : Feb 22 08:14:33 2025 GMT Subject: CN=67b04cea-b789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:63:68:be:60:90:7b:4b:cb:03:74:1c:4f: ec:6f:87:c6:c1:97:4b:b3:76:f8:4d:d3:35:51:7f: 85:14:b8:f8:69:fc:6d:5b:8c:ec:bb:09:ce:f1:7c: 59:dc:6b:72:d6:0f:23:80:bd:84:52:49:7c:ce:7c: a9:76:1a:1c:21:8b:19:07:42:68:b5:22:56:34:30: 7f:a2:13:69:2b:91:e3:0b:f5:e3:0b:a4:89:bf:18: 29:c1:91:42:a8:77:34:44:83:91:eb:94:ac:2a:dc: 2d:ca:20:dc:cf:4e:de:76:d4:42:6b:ed:97:e6:65: 83:87:43:b4:93:c4:a9:f5:a3:9b:36:dd:30:19:91: 7a:5b:58:9e:cf:b0:58:2f:6a:fa:02:1f:37:f3:07: 2d:9a:43:f6:82:c2:72:30:d8:d7:e1:5e:7b:c3:ee: 32:b6:74:6d:aa:85:c3:8f:7c:f5:bc:0c:68:f5:fb: a1:f8:0b:2e:2a:40:d0:dc:be:39:2f:29:43:85:72: 28:40:41:f5:81:42:1c:4f:0e:31:a6:15:57:90:a3: 85:52:46:7d:ba:e7:3d:a7:9a:46:28:29:c1:84:72: 13:41:1e:80:da:69:2d:f7:bd:5e:0e:d3:09:f3:3b: 52:ad:65:94:d8:ea:a5:c4:74:8e:e7:69:7b:72:b9: 9b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3D:49:9F:CF:AA:95:46:AF:5B:9A:FE:C2:26:FC:31:1E:D7:3A:D6 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:29:cd:96:f9:18:dd:a1:46:50:25:02:97:04:39:d6:a2:47: 7a:cb:fc:e1:b8:5a:13:38:75:db:0f:fd:7b:4b:e0:c2:13:15: fc:71:1b:9c:73:4c:7f:01:49:05:5c:03:20:8b:f5:bf:8e:54: d9:ca:3f:1a:07:8a:83:3f:a8:3a:20:41:1f:69:69:4b:19:0c: 9a:3e:32:88:d4:7f:b2:ea:aa:54:c9:76:3d:b9:d8:a9:80:f5: 97:a6:6a:fc:22:b2:44:bc:cd:4b:86:03:77:81:0c:3a:33:c7: e6:12:20:e1:20:da:d5:b2:a6:0c:76:6f:0d:cb:66:78:fd:ae: 31:74:d8:29:0e:6d:67:85:76:f7:62:84:96:6a:7c:10:bc:1e: fa:9d:7f:f1:87:5f:90:7c:5c:5b:3e:bc:62:93:6c:86:78:bb: 1e:1c:5f:c5:c0:1e:93:c8:01:3d:ea:f5:da:c8:c2:5b:5e:9e: e7:c0:63:e7:46:f7:e0:46:42:9f:20:e6:1d:dc:19:71:b9:18: 72:6a:7e:f3:90:40:d7:00:28:8b:2f:2a:00:e6:9a:8f:86:fa: e9:bd:d7:45:6d:5e:fe:f3:68:86:db:12:d3:fb:70:b6:8d:ac: 90:cc:12:0b:6a:6a:4d:f9:39:04:39:6d:12:e6:86:41:b0:b2: 52:9c:de:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QUEyRTExMC8GA1UEBRMoRjU4MDJEOTAzREExMENEMDNGQ0YzRThFMTY1NUY1MjFD MUQ4NTc4MzAeFw0yNTAyMTUwODE0MzNaFw0yNTAyMjIwODE0MzNaMBgxFjAUBgNV BAMTDTY3YjA0Y2VhLWI3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0l2NovmCQe0vLA3QcT+xvh8bBl0uzdvhN0zVRf4UUuPhp/G1bjOy7Cc7xfFnc a3LWDyOAvYRSSXzOfKl2GhwhixkHQmi1IlY0MH+iE2krkeML9eMLpIm/GCnBkUKo dzREg5HrlKwq3C3KINzPTt521EJr7ZfmZYOHQ7STxKn1o5s23TAZkXpbWJ7PsFgv avoCHzfzBy2aQ/aCwnIw2NfhXnvD7jK2dG2qhcOPfPW8DGj1+6H4Cy4qQNDcvjkv KUOFcihAQfWBQhxPDjGmFVeQo4VSRn265z2nmkYoKcGEchNBHoDaaS33vV4O0wnz O1KtZZTY6qXEdI7naXtyuZsPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyj1Jn8+q lUavW5r+wib8MR7XOtYwHwYDVR0jBBgwFoAU9YAtkD2hDNA/zz6OFlX1IcHYV4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBQTJFLzdBRkM5REYwNUFF NTExRUZCMTFDNDk0NUM0RjlBRTAyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOVlBdGtEMmhETkFfeno2T0ZsWDFJY0hZVjRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB QTJFLzdBRkM5REYwNUFFNTExRUZCMTFDNDk0NUM0RjlBRTAyLzlZQXRrRDJoRE5B X3p6Nk9GbFgxSWNIWVY0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJcpzZb5GN2hRlAlApcEOdaiR3rL/OG4WhM4ddsP/XtL4MITFfxxG5xz TH8BSQVcAyCL9b+OVNnKPxoHioM/qDogQR9paUsZDJo+MojUf7LqqlTJdj252KmA 9ZemavwiskS8zUuGA3eBDDozx+YSIOEg2tWypgx2bw3LZnj9rjF02CkObWeFdvdi hJZqfBC8Hvqdf/GHX5B8XFs+vGKTbIZ4ux4cX8XAHpPIAT3q9drIwltenufAY+dG 9+BGQp8g5h3cGXG5GHJqfvOQQNcAKIsvKgDmmo+G+um910VtXv7zaIbbEtP7cLaN rJDMEgtqak35OQQ5bRLmhkGwslKc3sM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:37:49 2025 by rpki-client