$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json) Hash identifier: xsEqISQZsd4GAoMH/XCAF0MjsqqkLyggUfe++5Y4RHE= Subject key identifier: 2E:DE:FC:F9:4A:88:94:AF:DE:1C:99:9F:7B:6A:26:31:09:3A:E7:22 Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft Manifest number: 4E Signing time: Sat 15 Feb 2025 08:37:13 +0000 Manifest this update: Sat 15 Feb 2025 08:37:12 +0000 Manifest next update: Sat 22 Feb 2025 08:37:12 +0000 Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: fvB+I5GfX8xokmKlfF+AXW+hvzx27QjaACCXIsRDU7I=) 2: 2F7418BE7C8B11EFAD8D8E0AC4F9AE02.roa (hash: TjvglryUwoGiYospx2nlKVOC+Gwjr/Tq/eiQ+4++Xqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05 Validity Not Before: Feb 15 08:37:12 2025 GMT Not After : Feb 22 08:37:12 2025 GMT Subject: CN=67b05239-31dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6a:f1:e8:8d:37:5a:38:b9:eb:09:bb:fd:3c: 7b:e3:32:42:0b:a4:fc:b7:c5:7e:83:33:58:8a:48: 89:b9:68:12:f2:13:2b:28:77:d3:98:41:84:4f:9b: 6a:f6:4c:53:4e:d6:d6:de:b9:5f:d7:9e:c2:8c:d9: bf:d3:ca:8f:8a:f1:75:82:09:c2:a9:2d:78:17:93: eb:8e:32:af:bb:7c:67:b9:77:82:dc:83:bb:1a:28: 46:54:91:84:ed:8e:10:cc:dc:b1:cc:59:81:8f:d3: 71:0a:25:25:44:27:76:b4:2b:3c:fd:a2:64:d5:c2: fd:79:86:4f:5e:17:1f:aa:7a:22:b0:42:e4:0a:33: eb:ec:35:1b:01:6f:55:aa:d7:69:dd:b5:84:6a:12: 9f:20:dd:30:4d:49:52:8f:42:8f:62:85:1d:13:35: 60:ec:6e:f8:c6:6c:0e:07:14:f7:0e:2a:85:60:4a: 41:61:61:7b:a0:62:91:da:7c:d8:15:7d:2a:e2:ff: 0d:dc:25:19:c5:55:ef:75:ff:a0:de:d8:8e:75:d8: 62:59:21:fa:1a:3a:b7:16:38:00:68:34:d3:85:4f: a7:55:c9:86:6b:95:4f:33:a8:2a:f2:5b:21:7f:bd: 59:63:51:53:66:57:e3:2a:d4:34:d7:b0:7b:8f:7a: 59:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:DE:FC:F9:4A:88:94:AF:DE:1C:99:9F:7B:6A:26:31:09:3A:E7:22 X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:25:96:1b:c5:ce:b6:68:98:7e:4e:81:c4:45:7a:04:97:9e: 54:37:c4:03:23:3b:35:3c:88:4e:5a:6c:85:76:6a:e5:48:9e: fc:19:7a:ff:1f:68:4f:48:00:75:25:bc:af:ee:35:30:35:4d: f5:09:1d:d6:2d:f4:45:0d:cb:20:d1:f8:c6:f5:f9:69:2e:92: c7:aa:1b:f0:c1:36:ec:eb:42:a2:ae:4d:b3:e1:f7:bb:f3:2f: fd:98:39:16:12:3e:06:28:34:90:6e:7d:fe:26:57:38:2c:e9: 4c:65:0c:bc:1c:7a:6d:ae:1b:7d:70:07:65:ea:89:93:23:12: 12:5f:05:e3:72:c6:8f:8b:47:1c:dc:cc:0e:f2:de:a5:0a:b4: dc:f7:78:d7:bc:4d:ff:c5:c2:31:1e:93:f8:63:91:72:7f:44: 52:25:a6:18:38:7d:96:d7:71:cb:11:53:19:4e:9e:a5:f2:14: 70:9e:14:cc:2a:3b:2e:e0:d3:7c:6b:4b:e3:91:b8:99:76:87: e3:b9:da:93:a9:5d:cf:1b:3a:c2:c3:90:58:46:4b:24:34:37: d7:b7:e4:2e:e0:2c:9a:dd:4c:5b:b7:c5:68:4c:32:29:88:ab: 57:a4:9a:32:c8:9b:05:d1:8c:ff:6a:28:2e:f4:60:c1:8b:33: 2c:e7:59:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEEwNTExMC8GA1UEBRMoMTRERDg2ODQyOTRGMUIzM0EzMTNBRkI4RjBFQkExQzhB MDAzNzgwOTAeFw0yNTAyMTUwODM3MTJaFw0yNTAyMjIwODM3MTJaMBgxFjAUBgNV BAMTDTY3YjA1MjM5LTMxZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMavHojTdaOLnrCbv9PHvjMkILpPy3xX6DM1iKSIm5aBLyEysod9OYQYRPm2r2 TFNO1tbeuV/XnsKM2b/Tyo+K8XWCCcKpLXgXk+uOMq+7fGe5d4Lcg7saKEZUkYTt jhDM3LHMWYGP03EKJSVEJ3a0Kzz9omTVwv15hk9eFx+qeiKwQuQKM+vsNRsBb1Wq 12ndtYRqEp8g3TBNSVKPQo9ihR0TNWDsbvjGbA4HFPcOKoVgSkFhYXugYpHafNgV fSri/w3cJRnFVe91/6De2I512GJZIfoaOrcWOABoNNOFT6dVyYZrlU8zqCryWyF/ vVljUVNmV+Mq1DTXsHuPelkTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULt78+UqI lK/eHJmfe2omMQk65yIwHwYDVR0jBBgwFoAUFN2GhClPGzOjE6+48OuhyKADeAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQTA1L0QxN0M4ODY4N0M4 QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRk4yR2hDbFBHek9qRTYtNDhPdWh5S0FEZUFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw QTA1L0QxN0M4ODY4N0M4QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pP akU2LTQ4T3VoeUtBRGVBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF8llhvFzrZomH5OgcRFegSXnlQ3xAMjOzU8iE5abIV2auVInvwZev8f aE9IAHUlvK/uNTA1TfUJHdYt9EUNyyDR+Mb1+WkukseqG/DBNuzrQqKuTbPh97vz L/2YORYSPgYoNJBuff4mVzgs6UxlDLwcem2uG31wB2XqiZMjEhJfBeNyxo+LRxzc zA7y3qUKtNz3eNe8Tf/FwjEek/hjkXJ/RFIlphg4fZbXccsRUxlOnqXyFHCeFMwq Oy7g03xrS+ORuJl2h+O52pOpXc8bOsLDkFhGSyQ0N9e35C7gLJrdTFu3xWhMMimI q1ekmjLImwXRjP9qKC70YMGLMyznWdY= -----END CERTIFICATE-----Generated at Sun Feb 16 15:06:15 2025 by rpki-client