$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: ojVu3YFi/hwEFVVm0SeDLj5Fuq+p1ZowfgXLK5OcjKE= Subject key identifier: BB:DF:7B:A1:79:F6:DD:AC:F7:32:B4:3C:F5:E6:F2:22:D9:75:FA:42 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 03BD Signing time: Sat 15 Feb 2025 02:09:00 +0000 Manifest this update: Sat 15 Feb 2025 02:08:59 +0000 Manifest next update: Sat 22 Feb 2025 02:08:59 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: F+k6HcQONeOHYz3bcWUaWKd8YZElSNuNHsZoZ+B0JAs=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: q3e8py5/C6+zKkUP8OOrbssys+IzckfYmM1B63yGsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA Validity Not Before: Feb 15 02:08:59 2025 GMT Not After : Feb 22 02:08:59 2025 GMT Subject: CN=67aff73c-f7ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:22:54:9e:bd:68:c5:04:0c:2d:4b:e7:3f:66: 4d:c7:70:55:00:8e:a7:38:d1:41:77:7c:47:56:3b: 36:15:ac:d1:11:bb:5e:fc:5c:7c:09:3a:f1:85:1e: fc:67:f9:f7:1d:6c:db:73:0f:a0:4b:73:f0:42:c6: c5:72:17:71:c8:39:d3:bb:e6:2d:3b:a1:c7:0e:a8: 66:76:2d:05:8c:9d:00:a8:94:ee:67:96:bb:22:9a: 6c:b3:69:cd:eb:fe:53:cb:02:d3:e2:55:20:4e:0f: 7f:a8:64:43:c7:4e:af:37:01:c3:05:67:ce:9f:c5: 8e:9f:0b:28:f6:14:43:ec:d3:df:ac:ec:81:dd:98: db:e4:0c:64:1d:c0:16:1f:22:1a:c9:dd:d5:1d:9a: 65:dd:d1:02:f8:b8:9e:b5:c5:76:75:0c:db:49:0e: 6f:fc:3d:ae:90:99:eb:09:6c:8a:cd:95:79:45:d8: f3:66:c1:1d:40:76:96:6a:a6:d9:9e:96:ee:83:84: b7:6d:f9:18:f0:62:3f:be:a4:48:03:3b:96:ff:b0: 0c:06:a7:fa:86:47:4e:22:64:33:f3:6d:2c:73:61: e5:f3:5b:b2:3f:1b:cc:48:93:bb:e8:28:89:ea:95: 85:c2:9c:d9:67:4e:08:91:30:00:f0:4b:f5:f3:b9: 7c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:DF:7B:A1:79:F6:DD:AC:F7:32:B4:3C:F5:E6:F2:22:D9:75:FA:42 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:95:6e:bb:c6:a4:97:f5:3e:fb:5b:4c:87:f1:39:b4:5c:a1: 98:b6:65:85:7c:c4:82:11:eb:9d:e7:e7:22:74:9f:10:f6:87: 77:bf:ad:22:ce:62:2f:7d:ad:17:9f:b4:2f:21:bf:44:8b:9e: ce:02:3d:8c:d6:38:e8:3f:70:b2:05:52:d5:0a:fb:c1:e0:ac: 97:10:94:d2:6d:74:bb:ae:48:c7:e3:7c:51:a1:73:e1:8d:a1: d6:f0:35:7a:19:4b:f7:b0:90:8e:13:6a:b9:8c:7a:88:e0:99: 4e:28:9b:d7:63:6d:1a:c1:d9:a1:8d:1c:06:2d:44:aa:42:67: 62:3f:8f:74:2d:8d:fb:13:fd:45:0b:0a:98:07:9b:a8:b8:1d: 37:9c:ef:26:3e:d0:b6:c5:b7:8c:25:93:26:a6:03:44:d6:c5: 6e:18:53:50:46:90:2b:f6:6d:35:df:f0:ae:20:9b:1a:5f:13: 95:0f:99:ba:e1:c3:55:fa:f5:06:99:b8:f2:38:5b:46:44:8f: c1:79:93:b3:42:d7:aa:b1:ef:ec:b8:ff:f2:9d:d8:fd:8f:0d: 12:c9:8e:db:79:80:0c:36:fd:a3:3b:7b:2b:ad:ab:d0:63:31: 58:69:c5:83:bd:de:ce:e8:db:59:50:b9:00:2e:a0:2f:14:78: 5a:90:8b:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjUwMjE1MDIwODU5WhcNMjUwMjIyMDIwODU5WjAYMRYwFAYD VQQDEw02N2FmZjczYy1mN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryJUnr1oxQQMLUvnP2ZNx3BVAI6nONFBd3xHVjs2FazREbte/Fx8CTrxhR78 Z/n3HWzbcw+gS3PwQsbFchdxyDnTu+YtO6HHDqhmdi0FjJ0AqJTuZ5a7Ippss2nN 6/5TywLT4lUgTg9/qGRDx06vNwHDBWfOn8WOnwso9hRD7NPfrOyB3Zjb5AxkHcAW HyIayd3VHZpl3dEC+LietcV2dQzbSQ5v/D2ukJnrCWyKzZV5RdjzZsEdQHaWaqbZ npbug4S3bfkY8GI/vqRIAzuW/7AMBqf6hkdOImQz820sc2Hl81uyPxvMSJO76CiJ 6pWFwpzZZ04IkTAA8Ev187l8VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLvfe6F5 9t2s9zK0PPXm8iLZdfpCMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBlW67xqSX9T77W0yH8Tm0XKGYtmWFfMSCEeud5+cidJ8Q9od3v60i zmIvfa0Xn7QvIb9Ei57OAj2M1jjoP3CyBVLVCvvB4KyXEJTSbXS7rkjH43xRoXPh jaHW8DV6GUv3sJCOE2q5jHqI4JlOKJvXY20awdmhjRwGLUSqQmdiP490LY37E/1F CwqYB5uouB03nO8mPtC2xbeMJZMmpgNE1sVuGFNQRpAr9m013/CuIJsaXxOVD5m6 4cNV+vUGmbjyOFtGRI/BeZOzQteqse/suP/yndj9jw0SyY7beYAMNv2jO3srravQ YzFYacWDvd7O6NtZULkALqAvFHhakIs2 -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:33 2025 by rpki-client