$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json) Hash identifier: DNyjkgrab7mskvHNPpLuE9Sw/NunB7r+ml0lALkPcRQ= Subject key identifier: D9:14:7C:E7:96:96:2C:B7:CE:95:19:35:2E:47:2A:F4:E5:AC:A8:B1 Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft Manifest number: D1 Signing time: Thu 13 Mar 2025 03:48:38 +0000 Manifest this update: Thu 13 Mar 2025 03:48:37 +0000 Manifest next update: Thu 20 Mar 2025 03:48:37 +0000 Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: h9HddbkSSg3eygk8CpUHIs1BvrLE/XXsdAh4MyU5Y3Q=) 2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: 1zjPjAAMi/TzSsloil5toyL9PUAMXEmH20tRK4X3XV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:48:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9 Validity Not Before: Mar 13 03:48:37 2025 GMT Not After : Mar 20 03:48:37 2025 GMT Subject: CN=67d25595-2b15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:36:62:79:a9:bb:55:f1:94:fa:35:ea:fc:1e: af:9a:ab:52:f8:31:52:bb:eb:96:61:0d:52:50:ca: 5d:34:60:86:51:4e:ec:56:32:e8:49:2a:4f:16:88: b9:04:3a:7f:3e:40:b0:c8:16:40:b1:19:09:1f:9c: 16:f8:f1:33:5a:87:64:1e:f4:fc:5b:35:b4:11:1e: 7b:34:7a:fa:b6:de:ab:11:90:e2:56:81:54:f9:61: 1a:30:7c:0b:dd:11:81:2b:dd:9a:5a:bf:a8:a4:25: 07:74:43:d1:ba:1c:b5:05:2d:78:c5:60:c8:54:e1: 2e:9a:02:65:dc:ae:cd:55:c7:57:5d:80:ac:ba:c0: b3:3f:f5:9c:ba:5e:31:ca:4f:65:bf:42:68:ca:5e: 68:fb:b6:15:44:9e:b7:e8:07:d4:e2:34:6e:0c:a6: 0c:d4:1b:04:b9:ec:0c:41:18:62:2d:43:84:5d:e7: 79:48:17:29:f9:0e:46:d4:9d:ca:20:32:b0:e2:1f: eb:5d:ac:8b:c4:aa:25:1e:dc:0b:ad:90:85:4f:c5: a8:a5:58:76:83:e3:8e:fb:50:b4:b7:0a:cd:f5:69: df:5f:3f:f4:d2:cd:46:dc:05:84:f9:c5:98:44:ff: 32:1e:c6:ae:a2:fd:b7:e1:77:68:3b:96:b6:fe:65: 76:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:14:7C:E7:96:96:2C:B7:CE:95:19:35:2E:47:2A:F4:E5:AC:A8:B1 X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:d8:1e:00:c0:b9:8a:52:f3:0b:20:bc:83:25:02:92:52:e7: 14:95:92:d7:f9:c5:9b:fc:f7:e7:92:e2:92:08:ce:3f:1c:56: c7:9c:45:07:66:92:cf:1e:8f:e8:25:21:eb:72:59:05:7f:4a: 01:44:c9:24:e7:a1:31:f4:dc:a6:7b:c3:74:c5:3d:76:3b:b0: b6:c1:a6:c3:76:40:3e:79:e0:65:2d:e3:15:12:86:09:5d:8e: fb:b4:f0:8c:11:f2:91:eb:7b:a2:6a:f4:cf:fc:43:d2:c1:ee: e4:83:69:87:d7:a2:5d:e2:eb:8b:44:1e:02:a6:0b:82:29:4e: 93:00:13:d0:16:a3:9c:b5:5f:89:28:d2:71:83:ff:43:f6:17: 2e:8f:e1:93:0d:02:9b:0f:c3:0d:62:eb:d0:fb:6b:4b:eb:0e: 07:66:14:77:e0:d7:34:67:c9:f5:bd:27:43:4b:cd:b3:07:f9: 17:23:21:f2:62:ac:d6:11:bf:a5:6f:49:07:22:f0:7f:5f:f5: 0e:93:d3:84:9e:c1:d8:04:e3:7d:bc:2d:85:e5:fc:8e:42:f5: 9e:d6:39:a4:b1:2a:b0:80:21:fd:17:30:6c:1e:11:3a:30:28: 52:0d:08:b5:15:91:ac:df:a8:a2:f5:5f:ed:43:66:75:5f:69: 44:78:69:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjUwMzEzMDM0ODM3WhcNMjUwMzIwMDM0ODM3WjAYMRYwFAYD VQQDEw02N2QyNTU5NS0yYjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjZieam7VfGU+jXq/B6vmqtS+DFSu+uWYQ1SUMpdNGCGUU7sVjLoSSpPFoi5 BDp/PkCwyBZAsRkJH5wW+PEzWodkHvT8WzW0ER57NHr6tt6rEZDiVoFU+WEaMHwL 3RGBK92aWr+opCUHdEPRuhy1BS14xWDIVOEumgJl3K7NVcdXXYCsusCzP/Wcul4x yk9lv0Joyl5o+7YVRJ636AfU4jRuDKYM1BsEuewMQRhiLUOEXed5SBcp+Q5G1J3K IDKw4h/rXayLxKolHtwLrZCFT8WopVh2g+OO+1C0twrN9WnfXz/00s1G3AWE+cWY RP8yHsauov234XdoO5a2/mV2sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkUfOeW liy3zpUZNS5HKvTlrKixMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzJCOS8zMDY2OTlDQUMyQTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hN NWVsY3hoMFJDbWNqLVF5Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU2B4AwLmKUvMLILyDJQKSUucUlZLX+cWb/PfnkuKSCM4/HFbHnEUH ZpLPHo/oJSHrclkFf0oBRMkk56Ex9Nyme8N0xT12O7C2wabDdkA+eeBlLeMVEoYJ XY77tPCMEfKR63uiavTP/EPSwe7kg2mH16Jd4uuLRB4CpguCKU6TABPQFqOctV+J KNJxg/9D9hcuj+GTDQKbD8MNYuvQ+2tL6w4HZhR34Nc0Z8n1vSdDS82zB/kXIyHy YqzWEb+lb0kHIvB/X/UOk9OEnsHYBON9vC2F5fyOQvWe1jmksSqwgCH9FzBsHhE6 MChSDQi1FZGs36ii9V/tQ2Z1X2lEeGlG -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:04 2025 by rpki-client