$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft File: YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft (raw, json) Hash identifier: k8D7RbatKeAeQcRhJI+8JX47JgLx7QiTjMAQMeXVB+E= Subject key identifier: FB:13:7D:73:61:35:86:18:63:13:D7:EA:48:40:F9:F5:E7:96:FA:A1 Authority key identifier: 62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC Certificate issuer: /CN=A91685E9/serialNumber=624B96E1D665ED78E78DFAF6C220191073DB66CC Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft Manifest number: 29 Signing time: Wed 05 Feb 2025 06:29:36 +0000 Manifest this update: Wed 05 Feb 2025 06:29:36 +0000 Manifest next update: Wed 12 Feb 2025 06:29:36 +0000 Files and hashes: 1: YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl (hash: t75VHZmrg8pVcbt3F5/OgzZb8avgcdtyVOcfI9E3BT0=) 2: E3239FCAD48C11EFA27EEC37C4F9AE02.roa (hash: fYzwGdwCqYZskymy95U02CPM2CRp+XXOXIkMFaQRIIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9 Validity Not Before: Feb 5 06:29:36 2025 GMT Not After : Feb 12 06:29:36 2025 GMT Subject: CN=67a30550-f9ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dc:a8:04:67:aa:ba:d7:43:e3:ca:ea:fd:90: 7a:c5:f1:e8:9b:6d:21:11:21:fb:6b:a3:3e:d2:06: ac:4c:ea:94:63:a2:96:3a:67:87:af:9b:67:d9:6f: 23:f9:68:ca:0f:3b:34:2d:bb:9e:43:69:4c:f8:b9: 3b:e7:27:2e:d6:29:d2:52:e4:5a:a4:d3:5b:2f:06: a2:01:51:87:0c:2b:6f:13:fb:51:58:c9:c2:59:ea: e5:b0:28:85:95:da:0e:99:43:86:1a:a3:bd:49:62: 6b:34:30:63:21:a3:e8:73:5c:72:30:3c:b0:f2:e6: f6:28:9d:de:82:6c:4e:f7:d0:2c:e1:70:36:81:f4: f9:13:57:92:4a:1e:ef:52:d1:91:cc:51:11:2a:2e: 8b:12:23:1f:2f:cd:05:07:63:37:21:ae:fb:f8:ac: b6:e3:8b:97:31:18:19:92:c9:39:7f:d5:2b:aa:61: 42:77:40:ec:d7:cc:14:57:8b:15:06:f0:cd:e2:de: 78:08:63:8f:d3:15:96:12:cc:c7:4f:e4:eb:c9:b7: 6a:cb:57:df:ed:b3:6e:b0:bd:5d:e7:f2:c3:ba:15: bb:ea:1c:71:29:50:d0:24:47:54:38:3b:f2:b4:95: d4:7f:86:15:e2:d7:1f:2e:df:3d:b5:30:84:8c:6f: 7d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:13:7D:73:61:35:86:18:63:13:D7:EA:48:40:F9:F5:E7:96:FA:A1 X509v3 Authority Key Identifier: keyid:62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:44:4e:00:49:11:a5:e0:78:1d:c3:75:b8:77:1c:65:61:a6: 85:4f:38:3d:e3:3c:b7:7b:99:c1:e3:54:0c:75:10:37:d1:59: a2:e4:63:9e:2e:6b:d3:88:e0:49:de:12:ac:38:04:7a:23:c1: a9:77:2d:c3:2c:18:f1:02:53:fd:e1:3d:dd:b5:28:31:67:c7: e3:44:24:f2:3a:a0:49:62:0c:d2:07:e8:11:85:4d:e5:8e:9d: e0:ff:7d:7e:b5:81:19:74:a4:e2:9b:d9:b0:a9:d6:0b:a2:02: e1:56:19:eb:02:3e:f7:8f:7f:10:2a:e2:55:78:b2:0a:a4:02: ba:df:ca:50:67:9e:6b:cc:23:7a:ec:12:0a:59:14:19:74:64: c0:7c:0b:1e:03:07:d0:52:16:02:c6:46:d1:a5:d4:74:d9:95: b5:76:b9:86:1c:f7:d0:f4:af:c1:9c:cc:61:8c:41:54:0e:f7: 46:25:27:a2:44:04:45:bd:c2:e9:ed:35:b1:d9:92:99:54:87: 48:f9:7c:10:f5:51:fa:b2:a6:d6:70:dd:2f:52:5a:75:5f:cd: f0:1f:36:3d:22:7b:a9:59:39:b3:9c:df:a9:c9:81:12:4a:18: 4c:38:88:c5:62:17:3c:37:1c:0f:a2:eb:09:1c:e2:b9:d6:af: e3:0f:8b:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODVFOTExMC8GA1UEBRMoNjI0Qjk2RTFENjY1RUQ3OEU3OERGQUY2QzIyMDE5MTA3 M0RCNjZDQzAeFw0yNTAyMDUwNjI5MzZaFw0yNTAyMTIwNjI5MzZaMBgxFjAUBgNV BAMTDTY3YTMwNTUwLWY5Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj3KgEZ6q610Pjyur9kHrF8eibbSERIftroz7SBqxM6pRjopY6Z4evm2fZbyP5 aMoPOzQtu55DaUz4uTvnJy7WKdJS5Fqk01svBqIBUYcMK28T+1FYycJZ6uWwKIWV 2g6ZQ4Yao71JYms0MGMho+hzXHIwPLDy5vYond6CbE730CzhcDaB9PkTV5JKHu9S 0ZHMUREqLosSIx8vzQUHYzchrvv4rLbji5cxGBmSyTl/1SuqYUJ3QOzXzBRXixUG 8M3i3ngIY4/TFZYSzMdP5OvJt2rLV9/ts26wvV3n8sO6FbvqHHEpUNAkR1Q4O/K0 ldR/hhXi1x8u3z21MISMb30xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+xN9c2E1 hhhjE9fqSED59eeW+qEwHwYDVR0jBBgwFoAUYkuW4dZl7Xjnjfr2wiAZEHPbZsww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NUU5L0MxMTJGNTVDRDE3 NjExRUY5NUM1REU1QUM0RjlBRTAyL1lrdVc0ZFpsN1hqbmpmcjJ3aUFaRUhQYlpz dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWWt1VzRkWmw3WGpuamZyMndpQVpFSFBiWnN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 NUU5L0MxMTJGNTVDRDE3NjExRUY5NUM1REU1QUM0RjlBRTAyL1lrdVc0ZFpsN1hq bmpmcjJ3aUFaRUhQYlpzdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFtETgBJEaXgeB3Ddbh3HGVhpoVPOD3jPLd7mcHjVAx1EDfRWaLkY54u a9OI4EneEqw4BHojwal3LcMsGPECU/3hPd21KDFnx+NEJPI6oEliDNIH6BGFTeWO neD/fX61gRl0pOKb2bCp1guiAuFWGesCPvePfxAq4lV4sgqkArrfylBnnmvMI3rs EgpZFBl0ZMB8Cx4DB9BSFgLGRtGl1HTZlbV2uYYc99D0r8GczGGMQVQO90YlJ6JE BEW9wuntNbHZkplUh0j5fBD1UfqyptZw3S9SWnVfzfAfNj0ie6lZObOc36nJgRJK GEw4iMViFzw3HA+i6wkc4rnWr+MPi10= -----END CERTIFICATE-----Generated at Wed Feb 5 20:04:28 2025 by rpki-client