$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft File: OT6njk2TI25QcfuK_61B1iQmql0.mft (raw, json) Hash identifier: P3uIV/WU70LTVhPAE5KTrwgr2I7i6GL8/r3BH0LAgsI= Subject key identifier: 1F:B8:FF:FB:31:44:39:79:35:3B:96:B5:38:AF:E5:19:B2:6F:B9:67 Authority key identifier: 39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D Certificate issuer: /CN=A917B520/serialNumber=393EA78E4D93236E5071FB8AFFAD41D62426AA5D Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft Manifest number: 1F Signing time: Wed 05 Feb 2025 02:47:23 +0000 Manifest this update: Wed 05 Feb 2025 02:47:23 +0000 Manifest next update: Wed 12 Feb 2025 02:47:22 +0000 Files and hashes: 1: OT6njk2TI25QcfuK_61B1iQmql0.crl (hash: DigX4Qpg+COVYS7JgW+i5H7SBZHDBVE09ReHExhlKII=) 2: 3CFE7680BC5C11EFB951FD4FC4F9AE02.roa (hash: NUffLHq82hY3xMoVf55lHNGR19ZjrAZu9OH8lX1bsUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 02:47:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520 Validity Not Before: Feb 5 02:47:23 2025 GMT Not After : Feb 12 02:47:22 2025 GMT Subject: CN=67a2d13b-4246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:29:62:81:f3:ff:0f:0f:04:3b:b5:d2:da:da: 4a:36:81:ae:a6:42:a6:d3:c0:d1:03:94:62:8c:03: b5:73:6a:d8:47:46:41:81:1f:f3:a9:a0:4d:41:fc: 49:be:f2:f8:89:bc:61:58:52:66:53:8c:78:5e:9d: 96:69:ac:fc:36:5b:a0:bb:75:3d:d5:a7:2b:07:1f: 7c:da:41:98:b2:cf:8b:c8:e1:f7:cf:2b:7a:ad:33: c4:a2:a7:94:57:a9:34:52:51:a1:85:d9:e6:4d:a5: 47:4a:49:fa:bd:d9:57:17:e4:43:05:47:1d:02:b9: 4c:1c:f8:73:1b:04:1a:c3:42:f6:68:40:57:82:b8: f3:cf:f9:a0:f1:92:3b:65:10:fd:3b:a8:42:da:47: 5f:28:c6:91:bc:37:ed:c0:ca:10:54:39:ea:22:70: 52:60:10:09:96:08:ff:f6:28:e5:bd:41:98:a1:d5: 15:c1:5e:6d:c2:11:a6:0e:2e:e1:bc:3c:39:d1:bb: 4c:75:c6:90:2f:ca:a1:71:b4:cb:45:cf:2b:49:c8: fc:18:6a:a6:c8:40:bd:e6:88:ab:77:6c:e6:33:e6: e8:59:f1:0a:c0:16:ed:42:88:81:89:48:a5:42:9c: 2f:3f:31:c6:0c:4b:a2:57:82:10:e4:20:ed:3e:2f: ab:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B8:FF:FB:31:44:39:79:35:3B:96:B5:38:AF:E5:19:B2:6F:B9:67 X509v3 Authority Key Identifier: keyid:39:3E:A7:8E:4D:93:23:6E:50:71:FB:8A:FF:AD:41:D6:24:26:AA:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/OT6njk2TI25QcfuK_61B1iQmql0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/4CFC08DAB76C11EFB874276EC4F9AE02/OT6njk2TI25QcfuK_61B1iQmql0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:4b:85:7b:01:4b:6b:16:0b:6e:a6:6a:d3:6b:2c:36:1c:91: dd:3b:1d:59:0e:8f:0c:e1:af:e0:bb:eb:3c:93:10:72:99:4a: d3:56:e9:23:b9:0f:24:92:25:6d:fa:69:e7:05:00:54:41:63: 79:d8:9f:5d:f1:df:7c:5f:85:ff:c1:67:7d:ec:ed:9b:46:35: d3:47:fb:c6:d3:bb:c6:44:1e:90:33:d4:04:35:00:2b:78:84: 58:26:83:77:32:b6:b1:64:fc:47:a9:88:a5:69:45:f7:38:78: f7:c1:45:e7:ab:8a:2c:92:81:8a:ae:be:51:cb:f7:37:91:89: d7:61:d6:75:56:57:a8:bb:fd:dd:a3:63:27:30:13:4c:0b:db: de:f8:94:fd:b6:c3:47:43:3a:cd:86:69:46:58:c9:3f:16:d3: c9:a2:65:3b:3b:d2:60:a0:1e:31:01:b4:39:99:bc:66:2b:19: 9b:eb:af:04:e2:de:df:db:e6:a7:0a:4e:23:9a:98:15:d0:56: 94:e1:d1:d2:98:d1:db:fc:2d:02:b8:1c:1e:99:93:69:5e:b7: df:c3:e2:5c:f4:4a:9a:60:ed:7a:df:fa:89:b4:1b:c3:9c:97: 88:95:de:dc:ef:57:2b:af:4d:38:58:27:03:e7:27:5a:5c:25: f1:74:34:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUyMDExMC8GA1UEBRMoMzkzRUE3OEU0RDkzMjM2RTUwNzFGQjhBRkZBRDQxRDYy NDI2QUE1RDAeFw0yNTAyMDUwMjQ3MjNaFw0yNTAyMTIwMjQ3MjJaMBgxFjAUBgNV BAMTDTY3YTJkMTNiLTQyNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzKWKB8/8PDwQ7tdLa2ko2ga6mQqbTwNEDlGKMA7VzathHRkGBH/OpoE1B/Em+ 8viJvGFYUmZTjHhenZZprPw2W6C7dT3VpysHH3zaQZiyz4vI4ffPK3qtM8Sip5RX qTRSUaGF2eZNpUdKSfq92VcX5EMFRx0CuUwc+HMbBBrDQvZoQFeCuPPP+aDxkjtl EP07qELaR18oxpG8N+3AyhBUOeoicFJgEAmWCP/2KOW9QZih1RXBXm3CEaYOLuG8 PDnRu0x1xpAvyqFxtMtFzytJyPwYaqbIQL3miKt3bOYz5uhZ8QrAFu1CiIGJSKVC nC8/McYMS6JXghDkIO0+L6v5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH7j/+zFE OXk1O5a1OK/lGbJvuWcwHwYDVR0jBBgwFoAUOT6njk2TI25QcfuK/61B1iQmql0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTIwLzRDRkMwOERBQjc2 QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1UWNmdUtfNjFCMWlRbXFs MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvT1Q2bmprMlRJMjVRY2Z1S182MUIxaVFtcWwwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTIwLzRDRkMwOERBQjc2QzExRUZCODc0Mjc2RUM0RjlBRTAyL09UNm5qazJUSTI1 UWNmdUtfNjFCMWlRbXFsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEBLhXsBS2sWC26matNrLDYckd07HVkOjwzhr+C76zyTEHKZStNW6SO5 DySSJW36aecFAFRBY3nYn13x33xfhf/BZ33s7ZtGNdNH+8bTu8ZEHpAz1AQ1ACt4 hFgmg3cytrFk/EepiKVpRfc4ePfBReeriiySgYquvlHL9zeRiddh1nVWV6i7/d2j YycwE0wL2974lP22w0dDOs2GaUZYyT8W08miZTs70mCgHjEBtDmZvGYrGZvrrwTi 3t/b5qcKTiOamBXQVpTh0dKY0dv8LQK4HB6Zk2let9/D4lz0Sppg7Xrf+om0G8Oc l4iV3tzvVyuvTThYJwPnJ1pcJfF0NHw= -----END CERTIFICATE-----Generated at Wed Feb 5 21:43:46 2025 by rpki-client