$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: 8XiCqma4xaA1MI5EXV4AV4RPibShx+IqBvZMBEcGmhM= Subject key identifier: 06:A3:4A:46:36:37:78:22:0A:0B:DE:15:90:96:5B:46:9C:F0:DA:E4 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 13E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 13D4 Signing time: Sun 16 Feb 2025 17:16:24 +0000 Manifest this update: Sun 16 Feb 2025 17:16:24 +0000 Manifest next update: Sun 23 Feb 2025 17:16:24 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: K6VEJgGy2O9YGXTjxiUVyvyMxIEjLj8GfuHKeKQFEfQ=) 2: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: 3UDqux2pyFF/Bk7qZfNBKUplKVtNPBgZPpnXk8snk4g=) 3: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: OwQjzjq4z1p3OKHRKYKyS/M55XVWZ+v6tClUy+yiWnc=) 4: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: PdnkTM08eG2sjPAy8+yW/MtnozIOdAkbD6OPtta7i0w=) 5: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: TNsMJFZbcdKegim5sz+iSFbDGvmlLTbjneRhrtC2NlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5095 (0x13e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A Validity Not Before: Feb 16 17:16:24 2025 GMT Not After : Feb 23 17:16:24 2025 GMT Subject: CN=67b21d68-9883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:88:fc:7b:99:f2:af:ce:d6:2b:4c:14:dd:45: d7:db:dd:c4:66:ab:83:09:75:40:da:d9:5a:5f:cc: 74:f4:12:71:2b:f1:58:d6:43:35:f9:40:7a:9d:30: 93:a2:ac:fc:97:18:dc:cb:ff:80:93:62:80:c2:39: 7a:64:98:4c:2e:e9:75:f2:6e:ef:dd:61:b5:33:a0: 32:5a:f7:75:2c:1a:55:09:c1:63:f6:b5:17:7f:ca: b6:1e:40:d2:37:e9:25:98:02:72:93:b1:f0:02:a5: 9d:ab:53:d8:e4:d9:ba:f0:4f:4b:dd:f8:b9:1c:a6: 17:97:a6:74:e8:99:ef:f4:22:aa:11:b2:b5:61:b3: 63:39:c7:f9:9b:08:eb:46:83:2e:77:0e:20:52:2d: f9:75:20:c0:54:78:97:0a:27:7c:b5:4a:4a:a2:22: 98:ce:0c:00:10:90:49:b0:4b:3d:a0:04:97:64:de: b4:ab:71:ec:2d:12:3b:28:64:f0:2b:37:c6:57:4f: de:6e:d4:df:95:00:75:87:1c:e9:1c:95:f5:20:67: 8b:db:a3:87:f4:f7:9e:da:47:b7:a9:8e:a9:37:88: 5c:d4:8c:b4:08:6b:ee:58:ea:fc:f7:a3:b9:ef:03: 2f:a0:c2:c8:4d:66:11:dc:4f:6d:9a:a2:1d:6a:ce: 57:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A3:4A:46:36:37:78:22:0A:0B:DE:15:90:96:5B:46:9C:F0:DA:E4 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:98:62:46:2c:22:ad:f8:7a:7e:df:7f:c9:74:94:be:6e:87: ca:59:19:67:3b:94:80:30:89:d6:71:35:4c:42:f9:65:ec:22: f4:6e:93:4d:0e:fc:c7:a4:ee:b1:17:a5:ae:f4:d0:30:29:2e: 91:67:31:8a:fa:fe:9a:e6:0c:eb:c8:d9:40:72:0c:b6:2f:22: 95:b7:85:df:eb:91:a6:63:5d:8d:d5:f9:9b:92:f3:6b:5e:cc: 84:50:e7:e3:79:93:47:95:c7:29:b0:2f:85:91:05:96:28:8a: 0c:00:a9:67:56:15:d5:b8:27:36:14:06:97:c2:05:f5:ce:c4: 7e:be:fa:cb:f8:7b:a0:11:bc:9f:43:30:bc:c3:0e:71:63:83: 4e:a0:b6:ef:83:b3:e4:b9:f5:ea:96:62:d9:e4:64:60:a9:da: 96:69:e2:10:9b:aa:ad:a6:07:6e:2d:25:89:bc:b3:66:f0:ea: ec:66:4e:a0:5e:90:28:71:15:bf:94:8d:b3:e6:73:f7:3b:ce: 82:14:f7:b4:69:f7:59:7b:56:14:e5:ec:0b:88:f1:ef:89:5b: 43:e8:57:4d:20:d9:b2:ee:d6:ea:8b:e6:23:12:b7:d3:73:39: e3:7b:70:a3:cf:6c:17:4f:4d:ff:34:2e:e1:5e:f3:96:8d:c0: 06:9a:69:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwMjE2MTcxNjI0WhcNMjUwMjIzMTcxNjI0WjAYMRYwFAYD VQQDEw02N2IyMWQ2OC05ODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4j8e5nyr87WK0wU3UXX293EZquDCXVA2tlaX8x09BJxK/FY1kM1+UB6nTCT oqz8lxjcy/+Ak2KAwjl6ZJhMLul18m7v3WG1M6AyWvd1LBpVCcFj9rUXf8q2HkDS N+klmAJyk7HwAqWdq1PY5Nm68E9L3fi5HKYXl6Z06Jnv9CKqEbK1YbNjOcf5mwjr RoMudw4gUi35dSDAVHiXCid8tUpKoiKYzgwAEJBJsEs9oASXZN60q3HsLRI7KGTw KzfGV0/ebtTflQB1hxzpHJX1IGeL26OH9Pee2ke3qY6pN4hc1Iy0CGvuWOr896O5 7wMvoMLITWYR3E9tmqIdas5XmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAajSkY2 N3giCgveFZCWW0ac8NrkMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAumGJGLCKt+Hp+33/JdJS+bofKWRlnO5SAMInWcTVMQvll7CL0bpNN DvzHpO6xF6Wu9NAwKS6RZzGK+v6a5gzryNlAcgy2LyKVt4Xf65GmY12N1fmbkvNr XsyEUOfjeZNHlccpsC+FkQWWKIoMAKlnVhXVuCc2FAaXwgX1zsR+vvrL+HugEbyf QzC8ww5xY4NOoLbvg7PkufXqlmLZ5GRgqdqWaeIQm6qtpgduLSWJvLNm8OrsZk6g XpAocRW/lI2z5nP3O86CFPe0afdZe1YU5ewLiPHviVtD6FdNINmy7tbqi+YjErfT cznje3Cjz2wXT03/NC7hXvOWjcAGmmkD -----END CERTIFICATE-----Generated at Sun Feb 16 20:37:37 2025 by rpki-client