$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft File: oOoqcgysMcg3X1Vs-Uv--NERafY.mft (raw, json) Hash identifier: jYAAeoNJuZRu6+IMhs1sJH75C0gjylirwor28co4+Zw= Subject key identifier: 44:A8:B4:9A:86:CE:11:B2:38:73:57:2F:02:31:9F:31:07:62:A5:74 Authority key identifier: A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 Certificate issuer: /CN=A917C0F3/serialNumber=A0EA2A720CAC31C8375F556CF94BFEF8D11169F6 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft Manifest number: 0F Signing time: Wed 05 Feb 2025 06:29:01 +0000 Manifest this update: Wed 05 Feb 2025 06:29:01 +0000 Manifest next update: Wed 12 Feb 2025 06:29:01 +0000 Files and hashes: 1: oOoqcgysMcg3X1Vs-Uv--NERafY.crl (hash: mRb+y23CPNrv9sONHBmqGqSCut29tQYX3cwm5CeHys8=) 2: 02F0D9DED0BA11EFA8B5A526C4F9AE02.roa (hash: sDB2dzkpvGOMbxnCK5hWZ3ZmmwAVruvEUCtgdzq6VhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3 Validity Not Before: Feb 5 06:29:01 2025 GMT Not After : Feb 12 06:29:01 2025 GMT Subject: CN=67a3052d-482c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1a:5c:1e:a1:21:18:c7:e5:f7:84:da:f2:40: e6:ee:b3:c8:9a:93:36:13:76:48:ec:c6:a3:c7:bd: 99:1a:2e:ca:1d:2f:12:6b:c6:41:a4:e8:c2:c8:c0: 50:07:93:01:ee:92:d9:ac:3d:02:39:cb:67:c0:d9: c8:20:1f:0c:db:cc:59:44:b4:a3:76:da:49:a1:d3: ab:1f:f2:77:f7:2a:c7:ac:34:cd:db:c6:9f:4b:1a: 5f:73:16:ba:09:30:1f:ea:ee:01:ad:ec:db:cd:56: cd:ef:ce:e1:d5:56:8f:5d:77:85:5e:5e:0e:85:b6: a7:73:84:81:5c:1a:b4:29:f3:69:aa:1a:40:ba:70: 9d:0f:a5:e3:76:19:1b:5e:ef:29:89:8f:c4:7a:ee: cb:b8:93:90:e8:a6:2a:c7:f1:17:8e:cd:08:ef:1e: b1:65:9f:a1:17:68:59:f5:ae:1f:26:03:ce:36:fb: f0:66:0f:90:ac:2d:b1:2a:6d:a8:80:eb:1c:eb:e1: 59:ce:ae:71:bc:e6:90:d1:89:90:38:d5:0a:ae:25: 10:58:e8:5a:2a:c3:56:0b:36:9d:d6:58:fa:9b:d9: 73:1f:8e:1c:02:36:e3:bd:8d:38:8e:b6:cd:00:9c: ad:4e:9a:85:21:d4:56:f0:fa:fe:56:d9:71:13:a9: f0:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:A8:B4:9A:86:CE:11:B2:38:73:57:2F:02:31:9F:31:07:62:A5:74 X509v3 Authority Key Identifier: keyid:A0:EA:2A:72:0C:AC:31:C8:37:5F:55:6C:F9:4B:FE:F8:D1:11:69:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oOoqcgysMcg3X1Vs-Uv--NERafY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/60E207BCD0B911EFA0848825C4F9AE02/oOoqcgysMcg3X1Vs-Uv--NERafY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:00:cf:a2:69:a7:10:c5:78:ab:e0:ff:d3:f7:d1:7e:bf:f9: f8:28:6f:cc:e6:60:74:77:dd:82:5f:02:4d:27:ac:45:a6:72: de:df:7c:5f:cb:2b:2c:b7:7a:36:3e:e6:96:dc:0e:cb:a9:84: db:b7:50:e8:09:02:79:98:88:8a:05:7e:dd:98:1d:4a:de:91: b9:a3:2b:cd:07:41:e4:2c:6d:6a:1a:cb:ca:33:71:0f:71:d9: 8a:41:24:44:a7:a5:b2:bc:0e:69:76:ff:f3:7e:0b:c8:cf:bf: b8:7b:1b:d3:fe:e6:9c:69:09:b7:52:19:70:e9:0e:58:9a:c9: 3d:5f:f7:fd:87:17:3b:04:48:8b:9f:65:c3:c3:6b:05:89:c4: ea:d2:2f:a2:7c:c3:b9:bb:c7:99:22:3b:c9:28:b4:90:b5:fe: a8:39:91:a0:68:26:bd:f0:33:51:36:18:67:2c:bf:fb:3c:6b: b3:84:b5:ec:95:b1:a0:71:87:95:95:ed:35:df:99:b4:55:be: 3f:2d:7e:75:56:c7:31:b0:a1:a5:8e:fb:a5:65:02:9f:e9:50: b7:03:24:62:fb:4b:0d:97:ee:f6:f1:da:3f:eb:c5:6e:52:c3: 29:31:c4:e5:e9:a9:ab:f9:93:8d:32:04:ce:95:05:95:ca:8a: 4e:63:8a:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoQTBFQTJBNzIwQ0FDMzFDODM3NUY1NTZDRjk0QkZFRjhE MTExNjlGNjAeFw0yNTAyMDUwNjI5MDFaFw0yNTAyMTIwNjI5MDFaMBgxFjAUBgNV BAMTDTY3YTMwNTJkLTQ4MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwGlweoSEYx+X3hNryQObus8iakzYTdkjsxqPHvZkaLsodLxJrxkGk6MLIwFAH kwHuktmsPQI5y2fA2cggHwzbzFlEtKN22kmh06sf8nf3KsesNM3bxp9LGl9zFroJ MB/q7gGt7NvNVs3vzuHVVo9dd4VeXg6FtqdzhIFcGrQp82mqGkC6cJ0PpeN2GRte 7ymJj8R67su4k5DopirH8ReOzQjvHrFln6EXaFn1rh8mA842+/BmD5CsLbEqbaiA 6xzr4VnOrnG85pDRiZA41QquJRBY6Foqw1YLNp3WWPqb2XMfjhwCNuO9jTiOts0A nK1OmoUh1Fbw+v5W2XETqfBjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURKi0mobO EbI4c1cvAjGfMQdipXQwHwYDVR0jBBgwFoAUoOoqcgysMcg3X1Vs+Uv++NERafYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzYwRTIwN0JDRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNnM1gxVnMtVXYtLU5FUmFm WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb09vcWNneXNNY2czWDFWcy1Vdi0tTkVSYWZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzYwRTIwN0JDRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyL29Pb3FjZ3lzTWNn M1gxVnMtVXYtLU5FUmFmWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALoAz6JppxDFeKvg/9P30X6/+fgob8zmYHR33YJfAk0nrEWmct7ffF/L Kyy3ejY+5pbcDsuphNu3UOgJAnmYiIoFft2YHUrekbmjK80HQeQsbWoay8ozcQ9x 2YpBJESnpbK8Dml2//N+C8jPv7h7G9P+5pxpCbdSGXDpDliayT1f9/2HFzsESIuf ZcPDawWJxOrSL6J8w7m7x5kiO8kotJC1/qg5kaBoJr3wM1E2GGcsv/s8a7OEteyV saBxh5WV7TXfmbRVvj8tfnVWxzGwoaWO+6VlAp/pULcDJGL7Sw2X7vbx2j/rxW5S wykxxOXpqav5k40yBM6VBZXKik5jiiY= -----END CERTIFICATE-----Generated at Thu Feb 6 04:06:43 2025 by rpki-client