$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft File: 64P0iA8jV15XUXhcbgqyvgskm8M.mft (raw, json) Hash identifier: DCPjHOj6eDh6nJD35pQVNvRLZlKuttc4YsYscojoH2A= Subject key identifier: 14:48:AE:40:17:3B:69:94:50:A4:48:59:F1:8E:21:F9:39:A5:0E:4F Authority key identifier: EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3 Certificate issuer: /CN=A917C0F3/serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft Manifest number: 0F Signing time: Wed 05 Feb 2025 06:29:05 +0000 Manifest this update: Wed 05 Feb 2025 06:29:05 +0000 Manifest next update: Wed 12 Feb 2025 06:29:05 +0000 Files and hashes: 1: 64P0iA8jV15XUXhcbgqyvgskm8M.crl (hash: bMhFEhDvQ/zhb6+BmXbJ8wSKOJMbkQ7G3nAirBMOt7U=) 2: 028452F0D0BA11EFA8B5A526C4F9AE02.roa (hash: IREGMcYzyBbo6wcvGexVHMAjLf7W6LD1j2SfUrLribg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:29:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3 Validity Not Before: Feb 5 06:29:05 2025 GMT Not After : Feb 12 06:29:05 2025 GMT Subject: CN=67a30531-3974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:6f:13:e6:98:32:7e:0e:78:ea:1b:6b:e6: 0b:a3:9e:4a:56:e4:d9:75:8e:7d:af:a6:fb:c8:ff: ee:4c:89:6d:6d:88:0d:ad:9e:0d:e1:b2:41:d9:d8: d8:b4:7c:d8:c7:63:22:9d:67:f0:a5:4b:19:9d:d6: 35:a8:1b:d7:ff:36:d1:be:f0:72:c0:dc:c2:27:5f: f7:a2:a6:e1:cb:fb:bb:b1:f2:45:50:a0:d0:4d:17: ec:91:55:47:a5:c5:b2:0c:00:b0:f4:9d:d9:c3:11: 56:17:2a:ba:ad:86:4c:75:49:2a:d1:e4:93:98:68: c8:18:1f:54:3a:d3:4f:ba:72:6a:03:7b:c5:ea:82: 51:4e:b4:e0:a7:87:f9:03:91:50:4f:69:03:d0:ed: 1a:f0:a9:f3:c3:88:f0:7d:1a:08:42:c3:5c:25:20: 4d:d3:1a:64:b7:96:77:8a:90:e1:60:06:52:8a:80: 5a:61:8d:ef:17:fc:09:fb:7f:12:d2:a8:1c:b7:2f: f9:f5:27:19:18:f6:2b:29:7d:b9:7f:99:95:f2:af: 20:18:3e:5e:45:02:5c:f3:c2:e2:78:41:e1:18:8b: 7d:18:ab:60:b8:74:21:e1:79:4c:13:f9:f4:88:29: f7:86:49:f6:5e:2a:e1:82:6a:4c:19:ce:5d:e0:c2: 1a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:48:AE:40:17:3B:69:94:50:A4:48:59:F1:8E:21:F9:39:A5:0E:4F X509v3 Authority Key Identifier: keyid:EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:50:dd:d4:02:74:9d:33:48:20:51:b9:ac:44:c1:d0:38:1a: 58:e9:f8:59:a6:e4:7e:4b:08:c9:43:5b:44:94:c6:3b:a7:36: 55:ae:5a:f7:c4:ec:09:60:db:9d:b9:70:a5:ab:2e:f3:54:72: c1:21:3d:7b:2f:b2:67:4e:aa:74:be:9f:9f:2b:1d:a4:ed:35: 32:86:42:7c:29:77:75:52:2d:90:8f:8e:ad:14:8b:99:b4:04: 08:27:30:db:69:4d:66:23:4e:08:60:eb:40:55:58:32:e3:cd: 70:2e:6d:0b:69:6b:cf:aa:7e:e3:ee:35:3d:ba:98:59:4c:53: 1a:19:4c:13:eb:91:bc:26:a7:50:fb:6b:d6:f2:46:19:af:12: 94:40:08:8e:1f:39:b5:4f:9f:a0:d8:1f:be:28:55:79:76:bf: 6c:10:2c:86:95:bc:6b:b1:a4:3d:22:67:6b:d6:d0:c1:2a:56: d9:83:37:6e:cb:8c:8e:61:3c:99:35:3a:3b:be:0a:6b:40:ee: 09:d9:98:bf:18:95:14:cf:17:43:72:dd:72:eb:73:e6:89:e8: 10:4a:f0:00:d2:af:97:27:f4:51:26:1b:59:a3:f0:33:be:3c: 5f:b5:ed:53:c5:9c:ed:d9:1c:db:1a:d9:f4:0f:d4:43:e3:a1: 09:60:65:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoRUI4M0Y0ODgwRjIzNTc1RTU3NTE3ODVDNkUwQUIyQkUw QjI0OUJDMzAeFw0yNTAyMDUwNjI5MDVaFw0yNTAyMTIwNjI5MDVaMBgxFjAUBgNV BAMTDTY3YTMwNTMxLTM5NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxu28T5pgyfg546htr5gujnkpW5Nl1jn2vpvvI/+5MiW1tiA2tng3hskHZ2Ni0 fNjHYyKdZ/ClSxmd1jWoG9f/NtG+8HLA3MInX/eipuHL+7ux8kVQoNBNF+yRVUel xbIMALD0ndnDEVYXKrqthkx1SSrR5JOYaMgYH1Q600+6cmoDe8XqglFOtOCnh/kD kVBPaQPQ7RrwqfPDiPB9GghCw1wlIE3TGmS3lneKkOFgBlKKgFphje8X/An7fxLS qBy3L/n1JxkY9ispfbl/mZXyryAYPl5FAlzzwuJ4QeEYi30Yq2C4dCHheUwT+fSI KfeGSfZeKuGCakwZzl3gwhoDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFEiuQBc7 aZRQpEhZ8Y4h+TmlDk8wHwYDVR0jBBgwFoAU64P0iA8jV15XUXhcbgqyvgskm8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzU4RkU3NEFFRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyLzY0UDBpQThqVjE1WFVYaGNiZ3F5dmdza204 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjRQMGlBOGpWMTVYVVhoY2JncXl2Z3NrbThNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzU4RkU3NEFFRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyLzY0UDBpQThqVjE1 WFVYaGNiZ3F5dmdza204TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALtQ3dQCdJ0zSCBRuaxEwdA4Gljp+Fmm5H5LCMlDW0SUxjunNlWuWvfE 7Alg2525cKWrLvNUcsEhPXsvsmdOqnS+n58rHaTtNTKGQnwpd3VSLZCPjq0Ui5m0 BAgnMNtpTWYjTghg60BVWDLjzXAubQtpa8+qfuPuNT26mFlMUxoZTBPrkbwmp1D7 a9byRhmvEpRACI4fObVPn6DYH74oVXl2v2wQLIaVvGuxpD0iZ2vW0MEqVtmDN27L jI5hPJk1Oju+CmtA7gnZmL8YlRTPF0Ny3XLrc+aJ6BBK8ADSr5cn9FEmG1mj8DO+ PF+17VPFnO3ZHNsa2fQP1EPjoQlgZcI= -----END CERTIFICATE-----Generated at Wed Feb 5 18:57:03 2025 by rpki-client