$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json) Hash identifier: kh7qe8Vb5eYNXuFK6sInviMYnyy+OqZLYtvccKbGFXQ= Subject key identifier: BC:24:DF:AC:03:33:C1:1F:AE:B9:1F:ED:0E:11:8D:D3:5D:E3:86:A8 Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft Manifest number: C2 Signing time: Sat 15 Feb 2025 06:58:36 +0000 Manifest this update: Sat 15 Feb 2025 06:58:36 +0000 Manifest next update: Sat 22 Feb 2025 06:58:36 +0000 Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: mLmV/a4PnendCDdDifUfH5z7mW1ZLQdfoP2IyIv3BUY=) 2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: V1EudKad5ciqiLAx0vFe4QNo4i7JkuqWv1jedSoHcts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9 Validity Not Before: Feb 15 06:58:36 2025 GMT Not After : Feb 22 06:58:36 2025 GMT Subject: CN=67b03b1c-33d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:21:35:44:43:44:1b:0d:c6:4d:7d:56:34:ce: 33:2b:c3:95:e3:00:5a:17:aa:f9:c6:f8:37:aa:0e: 5a:90:84:7c:54:c0:ab:7b:ac:79:00:92:45:de:a1: 35:83:a3:1b:6b:57:5b:24:61:4b:5e:29:d2:ff:a3: 95:bb:eb:b8:60:9e:57:67:3c:9b:c5:f0:4d:1b:46: 60:98:ca:4c:c1:35:9f:06:04:4e:69:12:2c:c0:0c: b2:81:b6:06:e1:63:6f:9a:68:de:44:bd:bb:a4:b0: d7:96:4a:dd:90:d5:d4:8e:2b:c7:28:ff:a3:3a:25: 26:fc:f7:de:a9:d6:c3:c0:f9:4d:ed:d7:0d:ec:98: 8f:d5:b4:f3:c9:dd:19:15:ee:0f:01:18:9a:25:d1: e2:6e:88:1a:c8:fe:4e:cd:bf:ef:f1:48:a7:2e:5e: 1e:5f:f7:ce:58:c6:5e:3f:d6:7f:b9:1c:06:04:bb: a7:09:59:ec:87:6e:16:26:34:61:34:66:ca:de:43: 44:40:c6:d3:df:58:4d:34:a8:01:83:8d:76:51:21: 2d:4a:30:59:05:d0:0f:3e:61:75:2b:86:d7:f3:41: 14:a1:17:d7:16:0e:c3:56:ed:b0:42:a4:ee:9d:b7: 37:cb:fc:02:0b:22:4d:70:28:bb:43:71:11:d6:93: 68:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:24:DF:AC:03:33:C1:1F:AE:B9:1F:ED:0E:11:8D:D3:5D:E3:86:A8 X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:24:01:00:18:8c:7f:02:f9:1a:c9:99:53:d2:4f:ab:20:3a: ba:10:e1:8c:dc:d6:51:a6:f3:64:46:fe:b5:0e:92:81:2f:95: e3:60:73:df:ab:ac:dc:2e:ba:27:7f:61:f3:4a:f8:07:6e:16: 53:00:a2:6b:d0:0c:97:8b:82:63:c5:e1:bd:ff:a4:d4:e0:f2: 8e:47:1d:fa:4b:c2:b7:6e:6a:c1:6b:33:c6:73:8d:29:d1:a8: 8f:35:d5:c7:86:ad:b6:d0:b6:53:d6:08:55:1a:9b:fd:d2:02: fd:b7:df:48:a3:b3:e9:bf:41:22:02:f3:54:45:b9:d3:77:f9: 6b:b6:52:be:0a:2f:ce:61:b6:4e:d4:f4:86:5e:f6:7a:00:90: 22:a5:57:f3:56:7f:56:4e:be:87:0f:d2:47:65:2c:30:88:b4: 6f:b8:3f:df:7c:47:e8:4f:33:8e:ce:d1:69:e4:63:fa:02:49: 87:c6:07:68:76:05:5c:75:2f:42:ab:48:77:38:24:65:42:58: 9a:3d:19:5d:66:39:b6:20:00:d8:9d:3f:79:00:ce:63:d7:73: 3c:3f:d0:b1:01:b1:bd:ce:5b:ed:09:0a:86:c9:c1:d1:e0:7c: db:12:cb:c5:da:d9:a0:a0:8f:1c:ed:ac:50:97:06:34:32:30: a7:c2:c2:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjUwMjE1MDY1ODM2WhcNMjUwMjIyMDY1ODM2WjAYMRYwFAYD VQQDEw02N2IwM2IxYy0zM2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyE1RENEGw3GTX1WNM4zK8OV4wBaF6r5xvg3qg5akIR8VMCre6x5AJJF3qE1 g6Mba1dbJGFLXinS/6OVu+u4YJ5XZzybxfBNG0ZgmMpMwTWfBgROaRIswAyygbYG 4WNvmmjeRL27pLDXlkrdkNXUjivHKP+jOiUm/PfeqdbDwPlN7dcN7JiP1bTzyd0Z Fe4PARiaJdHibogayP5Ozb/v8UinLl4eX/fOWMZeP9Z/uRwGBLunCVnsh24WJjRh NGbK3kNEQMbT31hNNKgBg412USEtSjBZBdAPPmF1K4bX80EUoRfXFg7DVu2wQqTu nbc3y/wCCyJNcCi7Q3ER1pNo4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwk36wD M8Efrrkf7Q4RjdNd44aoMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzJCOS8zMDY2OTlDQUMyQTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hN NWVsY3hoMFJDbWNqLVF5Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqJAEAGIx/AvkayZlT0k+rIDq6EOGM3NZRpvNkRv61DpKBL5XjYHPf q6zcLronf2HzSvgHbhZTAKJr0AyXi4JjxeG9/6TU4PKORx36S8K3bmrBazPGc40p 0aiPNdXHhq220LZT1ghVGpv90gL9t99Io7Ppv0EiAvNURbnTd/lrtlK+Ci/OYbZO 1PSGXvZ6AJAipVfzVn9WTr6HD9JHZSwwiLRvuD/ffEfoTzOOztFp5GP6AkmHxgdo dgVcdS9Cq0h3OCRlQliaPRldZjm2IADYnT95AM5j13M8P9CxAbG9zlvtCQqGycHR 4HzbEsvF2tmgoI8c7axQlwY0MjCnwsLs -----END CERTIFICATE-----Generated at Sun Feb 16 15:40:03 2025 by rpki-client