$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: aROwcqB5oYWXeWOZiGl+VdzWaPqp/Rre3vJU5P3DTT8= Subject key identifier: DD:3D:38:2C:24:C1:10:DB:3B:EF:06:A9:C2:A9:9F:B4:61:5B:EB:1C Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 087E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0854 Signing time: Fri 14 Feb 2025 21:47:07 +0000 Manifest this update: Fri 14 Feb 2025 21:47:07 +0000 Manifest next update: Fri 21 Feb 2025 21:47:07 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: WQe4/KpyX0TqYH3BbJ8DmPtK3j1WaMDkL7uTTB0d83c=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B Validity Not Before: Feb 14 21:47:07 2025 GMT Not After : Feb 21 21:47:07 2025 GMT Subject: CN=67afb9db-b016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a7:13:28:5b:e9:5f:33:2e:21:06:47:27:4d: 4f:29:a2:e2:31:fe:0b:4d:38:06:ea:9b:26:38:03: b3:a4:ce:d6:4c:8f:6c:18:65:d9:c0:6b:ed:12:d4: b1:b6:27:f6:53:55:6f:b4:7a:4a:da:2a:46:28:b1: 5d:41:18:ac:39:e4:2d:9b:eb:5e:97:32:f7:e1:bc: 4a:60:22:75:3e:db:ea:41:43:86:f6:7b:7b:a8:75: 8e:19:a9:e4:c4:d9:9d:15:eb:5f:1e:50:0f:77:8b: 8a:ef:8b:ae:6e:d9:4f:a0:d2:26:d7:d5:cb:5a:6c: d1:df:75:06:87:f4:03:d9:d9:98:a3:50:90:4b:90: 27:92:5e:40:1e:17:97:9e:ee:e5:26:08:12:88:ac: a6:65:a5:b9:21:48:7f:99:3a:6a:9f:be:fc:df:e5: 43:5e:c2:06:aa:90:59:be:ac:e9:b0:bb:0f:1d:47: d8:0b:c9:23:f1:70:b6:cc:c4:a6:5d:5b:b3:02:de: 9b:c8:82:99:b4:75:fa:4c:91:d6:5d:fd:f0:76:a7: 98:0f:b6:09:33:5c:92:f5:7c:be:70:de:c1:ff:b4: 44:b9:03:1c:49:45:0a:e4:30:ac:7c:9c:03:60:96: af:03:59:23:3e:04:9e:3a:15:9a:5f:5f:3f:16:b0: 39:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3D:38:2C:24:C1:10:DB:3B:EF:06:A9:C2:A9:9F:B4:61:5B:EB:1C X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:a0:c1:90:0e:62:a5:ee:5d:9b:49:50:98:03:cc:c9:3b:81: 06:f1:4a:2f:6c:7f:22:88:ee:04:1b:9e:4d:8d:88:7c:8a:30: 44:bf:7d:04:99:5d:10:2f:89:f5:9e:27:74:ac:80:46:2f:4e: 2a:cc:5f:a7:5a:c2:66:38:71:74:dc:5a:1c:9a:b5:c4:36:3a: 0b:4b:32:a0:a5:fd:85:fb:b2:58:78:8f:14:9e:51:b2:9b:dd: e6:e6:e4:e7:99:e1:12:75:50:8c:94:82:ad:a7:c2:fb:d2:38: 13:4a:7b:94:a8:b8:da:8a:9a:b1:0f:c1:a9:cf:63:99:68:bc: 2d:e4:64:60:05:64:40:4f:cb:6b:47:79:24:9b:0b:c7:b0:b8: c1:60:91:f6:fa:51:b1:71:84:a5:b9:c7:8c:04:7f:b3:e8:e2: a0:76:41:27:45:7b:42:1b:27:8e:89:fc:26:2d:73:f8:50:14: 39:43:50:23:de:85:3e:da:60:38:85:09:6a:88:2e:8c:e7:f5: fe:5f:e9:ff:f0:df:df:cb:30:52:9c:f9:82:7c:78:95:c0:3e: a9:9f:5a:dd:d6:78:45:d7:cf:8c:de:da:21:50:17:5c:b1:bf: 41:0c:25:5c:c2:98:de:65:81:01:ea:8d:6a:74:a8:da:0b:75: 64:b5:fe:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwMjE0MjE0NzA3WhcNMjUwMjIxMjE0NzA3WjAYMRYwFAYD VQQDEw02N2FmYjlkYi1iMDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKcTKFvpXzMuIQZHJ01PKaLiMf4LTTgG6psmOAOzpM7WTI9sGGXZwGvtEtSx tif2U1VvtHpK2ipGKLFdQRisOeQtm+telzL34bxKYCJ1PtvqQUOG9nt7qHWOGank xNmdFetfHlAPd4uK74uubtlPoNIm19XLWmzR33UGh/QD2dmYo1CQS5Ankl5AHheX nu7lJggSiKymZaW5IUh/mTpqn7783+VDXsIGqpBZvqzpsLsPHUfYC8kj8XC2zMSm XVuzAt6byIKZtHX6TJHWXf3wdqeYD7YJM1yS9Xy+cN7B/7REuQMcSUUK5DCsfJwD YJavA1kjPgSeOhWaX18/FrA54wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN09OCwk wRDbO+8GqcKpn7RhW+scMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxoMGQDmKl7l2bSVCYA8zJO4EG8UovbH8iiO4EG55NjYh8ijBEv30E mV0QL4n1nid0rIBGL04qzF+nWsJmOHF03FocmrXENjoLSzKgpf2F+7JYeI8UnlGy m93m5uTnmeESdVCMlIKtp8L70jgTSnuUqLjaipqxD8Gpz2OZaLwt5GRgBWRAT8tr R3kkmwvHsLjBYJH2+lGxcYSluceMBH+z6OKgdkEnRXtCGyeOifwmLXP4UBQ5Q1Aj 3oU+2mA4hQlqiC6M5/X+X+n/8N/fyzBSnPmCfHiVwD6pn1rd1nhF18+M3tohUBdc sb9BDCVcwpjeZYEB6o1qdKjaC3Vktf5m -----END CERTIFICATE-----Generated at Sun Feb 16 20:16:30 2025 by rpki-client