$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft File: nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft (raw, json) Hash identifier: Uv1CXclVrkPXi7YNE/7b8aV8MzuJJHVVF1XnNsk9lN4= Subject key identifier: D8:70:38:65:63:C9:E5:65:35:6A:28:40:B7:78:7E:6D:3A:15:4E:76 Authority key identifier: 9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 Certificate issuer: /CN=A9172CE3/serialNumber=9E29B0F51BBB6D6033C0EF00623CC4BBACEA5841 Certificate serial: 044C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft Manifest number: 044C Signing time: Mon 17 Feb 2025 01:13:08 +0000 Manifest this update: Mon 17 Feb 2025 01:13:07 +0000 Manifest next update: Mon 24 Feb 2025 01:13:07 +0000 Files and hashes: 1: nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl (hash: 3aAy3N0PqBPHm/52NwdNojLg5zS68fzWdVbuplTFQCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3 Validity Not Before: Feb 17 01:13:07 2025 GMT Not After : Feb 24 01:13:07 2025 GMT Subject: CN=67b28d24-4b63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:85:46:9d:5f:e0:79:e4:1e:08:dc:6b:5b:d3: 53:9b:d3:4d:fe:5f:9c:cc:1d:5e:1a:8e:b7:e4:c5: 35:5f:d0:ff:dc:ae:e1:0a:07:ff:54:39:0e:3e:a8: 41:73:01:76:f5:f8:0d:19:e1:b1:ae:52:15:5d:cb: ea:f1:a0:fc:d7:02:22:71:fe:0e:d7:b9:0b:70:b9: 46:d1:c8:6b:a8:26:d3:29:a2:6b:0d:62:7e:e4:c8: d5:6f:64:87:26:93:cb:f9:c2:52:ca:17:18:d0:5f: c2:df:e3:f5:c0:c1:b0:d9:64:5b:d1:54:7b:ca:ee: 78:ed:a8:33:32:0b:d7:63:22:db:26:df:75:c8:c7: 45:42:b6:49:9f:f6:b6:47:c7:90:4d:b7:f8:3a:21: fb:24:68:73:c6:e2:e7:60:ec:9f:f5:b1:af:c0:9e: de:d7:e9:5b:00:10:35:40:3d:60:00:e0:91:bb:49: 4e:91:8f:45:f2:2b:f8:6b:a2:d5:90:8c:7e:31:62: 1c:01:53:d7:32:9d:fd:29:fb:be:8d:de:d4:c6:e5: 42:e5:9b:f7:53:88:b7:87:2f:62:97:be:8b:94:5a: b2:fe:33:ea:d0:10:0b:8a:f5:09:97:f4:04:e2:71: 1b:26:ce:a3:57:9b:48:d7:c4:0b:c7:8a:39:d0:71: 89:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:70:38:65:63:C9:E5:65:35:6A:28:40:B7:78:7E:6D:3A:15:4E:76 X509v3 Authority Key Identifier: keyid:9E:29:B0:F5:1B:BB:6D:60:33:C0:EF:00:62:3C:C4:BB:AC:EA:58:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nimw9Ru7bWAzwO8AYjzEu6zqWEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/6728C4C4405911ECA0AFAA4DC4F9AE02/nimw9Ru7bWAzwO8AYjzEu6zqWEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:a0:f6:d4:c4:0c:7d:6f:ec:61:6b:7f:99:2f:b8:fe:5a:d1: e2:fe:d1:17:c0:74:f6:e5:5c:c5:79:3c:55:39:89:0c:e8:46: d8:6d:08:3c:bc:7d:75:5e:ed:c5:83:00:44:91:a9:fb:da:b2: 83:20:fc:1b:30:88:35:eb:0b:e8:9b:af:27:6a:93:b2:b9:99: da:cc:79:fd:05:6f:f9:ec:59:3c:4a:fa:5e:28:a9:0f:7c:cf: ae:1a:fe:19:78:b0:94:02:70:94:2e:76:b3:c6:b6:58:5c:5f: ed:22:41:39:d9:2c:2d:ec:d4:56:4f:e6:01:bb:e8:a9:f9:61: f8:7b:92:78:e6:a7:96:7b:24:10:a5:b0:d2:0d:b7:79:c5:83: 38:d7:f3:d9:bb:bc:dd:f6:5b:bb:93:f8:16:4f:86:5f:83:ca: 9e:13:e1:a5:e1:72:43:ac:13:6c:ac:46:c9:07:7c:a1:62:ab: dd:91:cc:14:2a:6c:fd:48:0b:4e:2a:d0:dd:cd:fc:db:fd:9c: 4a:34:84:60:94:fc:86:88:49:e8:f7:7d:50:76:08:c3:74:2a: d1:e3:f4:37:5c:5e:93:cc:0d:b3:2d:d6:ed:9c:b7:2b:cb:fa: 70:c5:21:49:56:ce:f4:ce:6a:a6:98:aa:38:3c:de:42:ee:9a: f3:83:49:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKDlFMjlCMEY1MUJCQjZENjAzM0MwRUYwMDYyM0NDNEJC QUNFQTU4NDEwHhcNMjUwMjE3MDExMzA3WhcNMjUwMjI0MDExMzA3WjAYMRYwFAYD VQQDEw02N2IyOGQyNC00YjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34VGnV/geeQeCNxrW9NTm9NN/l+czB1eGo635MU1X9D/3K7hCgf/VDkOPqhB cwF29fgNGeGxrlIVXcvq8aD81wIicf4O17kLcLlG0chrqCbTKaJrDWJ+5MjVb2SH JpPL+cJSyhcY0F/C3+P1wMGw2WRb0VR7yu547agzMgvXYyLbJt91yMdFQrZJn/a2 R8eQTbf4OiH7JGhzxuLnYOyf9bGvwJ7e1+lbABA1QD1gAOCRu0lOkY9F8iv4a6LV kIx+MWIcAVPXMp39Kfu+jd7UxuVC5Zv3U4i3hy9il76LlFqy/jPq0BALivUJl/QE 4nEbJs6jV5tI18QLx4o50HGJsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhwOGVj yeVlNWooQLd4fm06FU52MB8GA1UdIwQYMBaAFJ4psPUbu21gM8DvAGI8xLus6lhB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy82NzI4QzRDNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JXQXp3TzhBWWp6RXU2enFX RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25pbXc5UnU3YldBendPOEFZanpFdTZ6cVdFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy82NzI4QzRDNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9uaW13OVJ1N2JX QXp3TzhBWWp6RXU2enFXRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyoPbUxAx9b+xha3+ZL7j+WtHi/tEXwHT25VzFeTxVOYkM6EbYbQg8 vH11Xu3FgwBEkan72rKDIPwbMIg16wvom68napOyuZnazHn9BW/57Fk8SvpeKKkP fM+uGv4ZeLCUAnCULnazxrZYXF/tIkE52Swt7NRWT+YBu+ip+WH4e5J45qeWeyQQ pbDSDbd5xYM41/PZu7zd9lu7k/gWT4Zfg8qeE+Gl4XJDrBNsrEbJB3yhYqvdkcwU Kmz9SAtOKtDdzfzb/ZxKNIRglPyGiEno931QdgjDdCrR4/Q3XF6TzA2zLdbtnLcr y/pwxSFJVs70zmqmmKo4PN5C7przg0kO -----END CERTIFICATE-----Generated at Thu Feb 20 02:56:08 2025 by rpki-client