$ rpki-client -vvf rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.mft File: vbEpSPLgeJsV8C1ROboGsjBqKOc.mft (raw, json) Hash identifier: I53lhNl7k+dEL/QM8ps+7Y2mmyro8Smy5/RVTopwwqE= Subject key identifier: B2:8E:EF:64:F6:66:26:A4:AB:39:0D:38:7B:05:4D:9E:5D:AF:B1:67 Authority key identifier: BD:B1:29:48:F2:E0:78:9B:15:F0:2D:51:39:BA:06:B2:30:6A:28:E7 Certificate issuer: /CN=A91649F9/serialNumber=BDB12948F2E0789B15F02D5139BA06B2306A28E7 Certificate serial: 04C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.mft Manifest number: 04BA Signing time: Sat 15 Feb 2025 01:15:07 +0000 Manifest this update: Sat 15 Feb 2025 01:15:06 +0000 Manifest next update: Sat 22 Feb 2025 01:15:06 +0000 Files and hashes: 1: vbEpSPLgeJsV8C1ROboGsjBqKOc.crl (hash: x9DBGTzRXjvuXCs4bT9rZ5ZHo5TTA3cxfbnE6AWM/7E=) 2: 9CC8124414FB11EC89900016C4F9AE02.roa (hash: gWhjyEMqWUAxPMY1zAfvuV7x9xBFM4K3zu0o2snNnwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.crl rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1216 (0x4c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91649F9 Validity Not Before: Feb 15 01:15:06 2025 GMT Not After : Feb 22 01:15:06 2025 GMT Subject: CN=67afea9a-32c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:87:29:83:df:34:c7:b0:5d:7e:18:2c:0e:ff: 1d:db:e2:53:57:73:cd:1f:6c:59:58:85:8c:33:ae: d2:5d:1d:2c:3b:ad:a8:11:11:57:b3:60:e3:cd:9e: 00:04:10:b9:51:7b:e7:93:9e:24:c4:5b:6f:a6:7d: fe:06:33:5a:b9:3f:14:5a:cb:05:77:4b:25:bf:24: 2a:86:2c:1c:85:32:46:0c:a0:94:e6:f2:64:29:cd: 29:5f:03:47:aa:62:1d:16:ca:36:7d:7d:e7:27:8a: ab:0b:33:a4:db:33:54:ba:b3:8a:2e:fa:74:64:a7: 55:da:63:1e:6d:dc:92:a8:b9:79:a9:47:f9:52:46: 73:44:18:98:21:91:19:c6:e8:b3:a5:cd:56:cc:21: 66:57:0b:b0:be:1b:34:cd:f4:7a:44:6c:21:aa:da: 26:2a:7f:dd:18:20:ae:48:1b:c3:d5:47:f3:eb:01: cd:8b:bd:27:03:a5:af:fa:b6:85:fe:b3:0a:95:8a: 69:82:29:62:0a:8a:fa:ee:2a:56:b2:c3:5b:82:9d: 85:6a:39:32:05:4a:67:92:9f:6b:4b:8f:0d:d8:ca: f9:0a:91:ba:8b:f1:52:ef:42:66:71:4b:d3:16:2b: 87:6a:bf:a1:1f:9e:48:8b:f4:95:24:df:3b:a7:ad: cd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8E:EF:64:F6:66:26:A4:AB:39:0D:38:7B:05:4D:9E:5D:AF:B1:67 X509v3 Authority Key Identifier: keyid:BD:B1:29:48:F2:E0:78:9B:15:F0:2D:51:39:BA:06:B2:30:6A:28:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbEpSPLgeJsV8C1ROboGsjBqKOc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91649F9/6C692AF414F911EC89435514C4F9AE02/vbEpSPLgeJsV8C1ROboGsjBqKOc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:e6:10:a1:6f:3f:3c:da:e6:f5:08:b3:10:b1:f7:7a:55:79: d0:df:51:35:86:b9:a4:dd:61:9e:5e:d1:84:80:88:c3:26:d3: ca:eb:d8:5a:ea:ed:0c:66:11:b7:28:07:c1:87:eb:48:93:23: 77:67:54:9c:e0:e2:95:b6:a3:d1:f7:c5:7f:be:a1:88:57:6a: 81:25:3f:58:bc:c0:7d:57:62:4c:40:41:a6:16:1b:2a:b2:01: 0b:e8:f4:ba:17:14:2e:34:3e:e0:0e:ef:fc:e3:3e:13:e1:f4: cf:a6:c8:d9:b7:a3:73:6e:c9:18:75:06:3d:7f:0a:90:85:49: c7:87:9a:da:ec:d4:23:04:41:1e:ad:db:22:d4:d8:17:22:94: 29:09:4e:e3:cc:7c:9c:7a:5a:9b:70:b4:5c:44:e3:a1:a0:55: fe:66:0a:fe:7d:ee:06:a4:4b:c8:3c:d2:e0:e3:aa:de:28:aa: 43:a7:c4:81:c3:f8:de:b6:2f:a5:a8:b1:08:bb:00:28:27:7f: b9:f2:fc:5e:57:30:b1:80:6d:78:20:6d:84:95:51:79:5b:28: cc:0f:4b:59:f7:b1:32:36:ff:68:5b:57:aa:4c:e9:ba:d8:5e: 5f:0f:02:4e:32:20:f2:d0:d8:a1:70:77:4d:91:c0:34:af:75: 0c:ce:15:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ5RjkxMTAvBgNVBAUTKEJEQjEyOTQ4RjJFMDc4OUIxNUYwMkQ1MTM5QkEwNkIy MzA2QTI4RTcwHhcNMjUwMjE1MDExNTA2WhcNMjUwMjIyMDExNTA2WjAYMRYwFAYD VQQDEw02N2FmZWE5YS0zMmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04cpg980x7BdfhgsDv8d2+JTV3PNH2xZWIWMM67SXR0sO62oERFXs2DjzZ4A BBC5UXvnk54kxFtvpn3+BjNauT8UWssFd0slvyQqhiwchTJGDKCU5vJkKc0pXwNH qmIdFso2fX3nJ4qrCzOk2zNUurOKLvp0ZKdV2mMebdySqLl5qUf5UkZzRBiYIZEZ xuizpc1WzCFmVwuwvhs0zfR6RGwhqtomKn/dGCCuSBvD1Ufz6wHNi70nA6Wv+raF /rMKlYppgiliCor67ipWssNbgp2FajkyBUpnkp9rS48N2Mr5CpG6i/FS70JmcUvT FiuHar+hH55Ii/SVJN87p63NqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKO72T2 ZiakqzkNOHsFTZ5dr7FnMB8GA1UdIwQYMBaAFL2xKUjy4HibFfAtUTm6BrIwaijn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDlGOS82QzY5MkFGNDE0 RjkxMUVDODk0MzU1MTRDNEY5QUUwMi92YkVwU1BMZ2VKc1Y4QzFST2JvR3NqQnFL T2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiRXBTUExnZUpzVjhDMVJPYm9Hc2pCcUtPYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDlGOS82QzY5MkFGNDE0RjkxMUVDODk0MzU1MTRDNEY5QUUwMi92YkVwU1BMZ2VK c1Y4QzFST2JvR3NqQnFLT2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm5hChbz882ub1CLMQsfd6VXnQ31E1hrmk3WGeXtGEgIjDJtPK69ha 6u0MZhG3KAfBh+tIkyN3Z1Sc4OKVtqPR98V/vqGIV2qBJT9YvMB9V2JMQEGmFhsq sgEL6PS6FxQuND7gDu/84z4T4fTPpsjZt6NzbskYdQY9fwqQhUnHh5ra7NQjBEEe rdsi1NgXIpQpCU7jzHycelqbcLRcROOhoFX+Zgr+fe4GpEvIPNLg46reKKpDp8SB w/jeti+lqLEIuwAoJ3+58vxeVzCxgG14IG2ElVF5WyjMD0tZ97EyNv9oW1eqTOm6 2F5fDwJOMiDy0NihcHdNkcA0r3UMzhX9 -----END CERTIFICATE-----Generated at Sun Feb 16 20:38:37 2025 by rpki-client