$ rpki-client -vvf rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft File: SztaAaiVL7VkLSSEt_AgWufcx2E.mft (raw, json) Hash identifier: Xsqo1LI26ckK4bgtyEhvbp4qC9ItMwol9wPk2lSxGZQ= Subject key identifier: 95:52:48:D8:DD:70:B3:6C:6A:47:28:EC:3E:55:D4:64:E4:11:28:F3 Authority key identifier: 4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 Certificate issuer: /CN=A917748E/serialNumber=4B3B5A01A8952FB5642D2484B7F0205AE7DCC761 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft Manifest number: 01BA Signing time: Sat 15 Feb 2025 04:02:44 +0000 Manifest this update: Sat 15 Feb 2025 04:02:43 +0000 Manifest next update: Sat 22 Feb 2025 04:02:43 +0000 Files and hashes: 1: SztaAaiVL7VkLSSEt_AgWufcx2E.crl (hash: rmTvbE5QNxidpOwpj3i5BuUv9KxrLEPEUYO/iVJ0KKA=) 2: 2434E2E24FAD11EDA19F8316C4F9AE02.roa (hash: 88kWEiY/06EoXdAjoPmCFzf4ibe9Kqek376AzBNc9lE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917748E Validity Not Before: Feb 15 04:02:43 2025 GMT Not After : Feb 22 04:02:43 2025 GMT Subject: CN=67b011e3-911c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:4b:25:c3:fe:28:08:d4:8b:db:78:3e:7a:be: 02:f1:ab:3e:c5:2b:09:cf:40:50:e9:c3:52:66:32: 5f:a4:4d:2f:23:a8:da:4d:29:6a:5f:c1:2c:9f:a9: ef:fe:69:b4:98:16:d4:90:77:6f:dc:7a:15:8e:02: e3:00:23:67:36:68:a7:3d:df:c8:61:d8:8f:b4:85: ee:f8:f5:ad:e4:12:01:7b:35:e5:de:02:bc:1c:e1: 7e:36:26:3f:71:0a:f7:6a:7e:13:5b:4f:1b:8b:ae: cf:e7:84:61:8c:8e:f6:20:46:6a:2e:88:c3:cd:ca: 2f:dc:e2:d5:08:d6:89:67:41:a1:99:60:81:ab:52: 2a:d8:72:d7:2e:ed:36:fb:0c:3d:0c:81:65:50:a5: 42:75:a2:e5:2d:bf:18:00:70:a1:ee:1d:5c:ac:d6: 8d:48:ee:d1:3d:d4:64:f7:72:a4:cc:08:84:08:c7: 21:d0:40:92:ea:3c:2a:23:17:83:a9:e0:4a:ff:9f: 32:ad:62:eb:4a:05:9e:5a:c3:0b:da:a7:9e:45:40: 72:4d:36:ca:11:3c:38:94:34:63:4d:a7:92:e9:46: 54:ca:9b:20:25:4c:b4:42:b3:94:d8:2a:1c:01:0d: 9f:3e:4c:e8:b4:6e:91:db:0a:12:6f:65:52:a6:ea: 3b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:52:48:D8:DD:70:B3:6C:6A:47:28:EC:3E:55:D4:64:E4:11:28:F3 X509v3 Authority Key Identifier: keyid:4B:3B:5A:01:A8:95:2F:B5:64:2D:24:84:B7:F0:20:5A:E7:DC:C7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SztaAaiVL7VkLSSEt_AgWufcx2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917748E/4D78926A4FA911EDADE5157CC4F9AE02/SztaAaiVL7VkLSSEt_AgWufcx2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:97:9f:78:db:a4:af:c8:57:52:dc:36:95:8b:1d:a9:0d:30: 0c:2c:e4:47:2b:e5:aa:b2:95:ec:6c:dd:04:91:3b:6c:42:f0: 5c:ad:db:40:be:94:96:a6:d9:cf:1e:87:dd:a2:13:66:a1:41: 23:47:6e:68:6d:54:c9:6a:ee:4d:1a:e7:16:d4:72:23:da:80: 6e:63:5e:68:12:48:74:18:a8:fc:3e:0f:55:1b:f3:68:97:2a: 0c:10:58:e0:fc:0e:ba:ab:5d:5e:c2:a7:58:9a:35:82:cc:22: e9:c8:10:a9:91:03:cf:99:a2:76:7d:ea:df:39:8c:67:7a:34: c6:fc:29:1a:bd:aa:bf:f4:25:a7:bd:56:3d:55:40:4c:1f:cb: 86:b3:61:db:07:64:86:b8:9d:6e:51:93:40:4d:db:57:c0:6b: a5:d6:83:1f:65:d0:74:d4:6c:81:ff:64:78:dd:f6:ff:e8:e2: 35:55:af:68:88:54:6f:1d:80:de:19:e4:5d:be:29:0f:b8:7d: 44:ab:f3:b6:8e:ae:d0:e9:63:7b:32:44:82:82:8d:21:03:d5: 91:39:98:b0:eb:e2:bb:04:ea:19:5a:dd:31:d2:2d:0a:0b:a2: 46:09:89:f3:6f:9a:f4:8e:c6:5f:6e:70:b2:6f:2e:02:97:85: b8:c4:9d:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0OEUxMTAvBgNVBAUTKDRCM0I1QTAxQTg5NTJGQjU2NDJEMjQ4NEI3RjAyMDVB RTdEQ0M3NjEwHhcNMjUwMjE1MDQwMjQzWhcNMjUwMjIyMDQwMjQzWjAYMRYwFAYD VQQDEw02N2IwMTFlMy05MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkkslw/4oCNSL23g+er4C8as+xSsJz0BQ6cNSZjJfpE0vI6jaTSlqX8Esn6nv /mm0mBbUkHdv3HoVjgLjACNnNminPd/IYdiPtIXu+PWt5BIBezXl3gK8HOF+NiY/ cQr3an4TW08bi67P54RhjI72IEZqLojDzcov3OLVCNaJZ0GhmWCBq1Iq2HLXLu02 +ww9DIFlUKVCdaLlLb8YAHCh7h1crNaNSO7RPdRk93KkzAiECMch0ECS6jwqIxeD qeBK/58yrWLrSgWeWsML2qeeRUByTTbKETw4lDRjTaeS6UZUypsgJUy0QrOU2Coc AQ2fPkzotG6R2woSb2VSpuo7BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVSSNjd cLNsakco7D5V1GTkESjzMB8GA1UdIwQYMBaAFEs7WgGolS+1ZC0khLfwIFrn3Mdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzQ4RS80RDc4OTI2QTRG QTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3VmtMU1NFdF9BZ1d1ZmN4 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6dGFBYWlWTDdWa0xTU0V0X0FnV3VmY3gyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzQ4RS80RDc4OTI2QTRGQTkxMUVEQURFNTE1N0NDNEY5QUUwMi9TenRhQWFpVkw3 VmtMU1NFdF9BZ1d1ZmN4MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAl59426SvyFdS3DaVix2pDTAMLORHK+WqspXsbN0EkTtsQvBcrdtA vpSWptnPHofdohNmoUEjR25obVTJau5NGucW1HIj2oBuY15oEkh0GKj8Pg9VG/No lyoMEFjg/A66q11ewqdYmjWCzCLpyBCpkQPPmaJ2ferfOYxnejTG/Ckavaq/9CWn vVY9VUBMH8uGs2HbB2SGuJ1uUZNATdtXwGul1oMfZdB01GyB/2R43fb/6OI1Va9o iFRvHYDeGeRdvikPuH1Eq/O2jq7Q6WN7MkSCgo0hA9WROZiw6+K7BOoZWt0x0i0K C6JGCYnzb5r0jsZfbnCyby4Cl4W4xJ0Q -----END CERTIFICATE-----Generated at Sun Feb 16 15:52:47 2025 by rpki-client