$ rpki-client -vvf rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft File: C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft (raw, json) Hash identifier: 2YONtA9LgR7thexPWDkL7lJZkrfGiIo1w9DorUwh/7o= Subject key identifier: CB:78:68:DB:47:17:9E:2E:55:98:A5:29:01:41:BE:13:18:FB:12:27 Authority key identifier: 0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 Certificate issuer: /CN=A91892EB/serialNumber=0B6CDF3FACC680B786926DE139F1E0F674440654 Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft Manifest number: 0594 Signing time: Mon 17 Feb 2025 00:08:52 +0000 Manifest this update: Mon 17 Feb 2025 00:08:51 +0000 Manifest next update: Mon 24 Feb 2025 00:08:51 +0000 Files and hashes: 1: C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl (hash: ewXagHs9m/PSDFh+3D2MrBPWTzfo1krNW0PRLNmdR/s=) 2: 387532CEE46D11EE8DBC2937C4F9AE02.roa (hash: ruwggHNoAUFm9Chx4UGeH2/Ms9/ktBjyMv9b4cEeu5E=) 3: F4DC3C2AC59211EBAA9C5B7BC4F9AE02.roa (hash: Ofg177dT9U9TbFcWrgETTbW4rQYxs3ewgMOUkLe9Rug=) 4: F5BE1E346FFD11EE83D3D154C4F9AE02.roa (hash: zkvJXsg6ZbaTEwK193SUdCnoyTyMt79mUaZuDwnshuE=) 5: D4413B92007C11EE99460918C4F9AE02.roa (hash: bEBpIBlAOueDVvlaTSK/ST40bTuOmwGNh/38eLyftkg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91892EB Validity Not Before: Feb 17 00:08:51 2025 GMT Not After : Feb 24 00:08:51 2025 GMT Subject: CN=67b27e13-681f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d5:36:83:4e:96:d3:83:21:97:02:91:a5:02: d1:74:7c:e6:32:01:81:92:de:a8:38:ca:e4:f5:72: bf:ff:7c:13:a6:ac:81:f9:f5:c6:e4:3d:3c:e1:74: 96:87:97:7a:66:78:e9:0d:f3:85:fc:37:a8:82:15: 03:4a:a8:7d:a2:dc:02:29:d2:9f:1a:fc:00:f2:fa: 94:99:b8:fa:a2:c1:bc:c5:a1:cd:6c:8b:48:51:2c: 11:24:1d:b2:8c:0e:83:99:59:9d:eb:35:e6:42:4e: 38:57:eb:aa:de:82:9c:3b:ed:d5:8b:92:27:f1:f2: 91:34:8e:e2:2c:a2:df:23:fc:b6:2c:eb:a8:c5:47: 08:57:7b:2d:10:6f:9a:c0:cb:76:22:85:97:e6:5c: 82:d1:72:dd:a9:8b:95:eb:9b:4f:d9:67:51:ff:c7: 68:21:90:79:42:b3:79:24:bf:f2:62:2f:4e:78:13: 5b:33:06:9a:76:c1:20:45:81:ea:fb:93:98:96:c1: 5a:0d:78:6b:eb:18:ed:bf:e7:e4:9e:b3:dd:a1:b5: 86:e0:bf:44:65:53:11:ed:60:e5:55:fc:4f:71:3a: 50:91:e4:c5:ec:0a:8d:23:2a:27:3c:84:7b:e3:2d: 39:63:80:37:a0:10:26:58:57:ad:fe:a5:22:d2:a9: 5c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:78:68:DB:47:17:9E:2E:55:98:A5:29:01:41:BE:13:18:FB:12:27 X509v3 Authority Key Identifier: keyid:0B:6C:DF:3F:AC:C6:80:B7:86:92:6D:E1:39:F1:E0:F6:74:44:06:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2zfP6zGgLeGkm3hOfHg9nREBlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91892EB/FD0081DEC56711EBAFEA602BC4F9AE02/C2zfP6zGgLeGkm3hOfHg9nREBlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:94:16:38:62:ae:f7:4d:3a:44:a6:f6:75:0f:29:d0:79:71: 4c:79:59:c7:1f:a9:c1:f2:81:42:fc:ae:6a:ad:ed:d1:6e:ee: 10:8e:bb:65:57:73:cd:dd:43:7a:9d:d0:81:d4:94:4c:f6:f2: c4:0a:31:97:39:06:a7:4d:7f:05:f2:1e:d6:23:1d:8d:df:be: e7:98:d4:1b:8c:f0:ed:7a:05:1a:d3:2c:a5:2d:94:1f:7c:93: b6:c5:c7:ea:bd:f5:9f:44:1d:50:b4:e4:9f:9c:c2:67:7c:23: d9:08:a5:73:41:a2:02:4e:74:5f:66:be:2b:4d:c0:9f:8e:ec: 34:37:0a:b8:9d:1f:ed:f7:4d:d3:18:bd:7c:36:b3:1b:40:24: 2d:11:e7:e0:7c:27:90:d5:9f:9a:fb:81:89:d1:33:73:17:f0: 8b:49:27:f1:ee:cb:d1:46:6f:cc:fb:67:c4:54:b1:46:76:13: 66:51:09:86:e1:54:94:03:96:99:c7:cd:fa:61:12:64:32:bb: bf:c3:37:aa:5f:78:0f:12:6d:32:83:fe:e2:d6:62:ec:0b:ed: 39:fa:cf:51:c7:7e:63:91:54:8d:af:3e:07:f1:60:b8:d7:1b: 1a:89:f1:14:b6:c9:13:d9:b6:d4:ff:6d:3c:1b:43:2a:c7:c9: e1:cd:53:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyRUIxMTAvBgNVBAUTKDBCNkNERjNGQUNDNjgwQjc4NjkyNkRFMTM5RjFFMEY2 NzQ0NDA2NTQwHhcNMjUwMjE3MDAwODUxWhcNMjUwMjI0MDAwODUxWjAYMRYwFAYD VQQDEw02N2IyN2UxMy02ODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNU2g06W04MhlwKRpQLRdHzmMgGBkt6oOMrk9XK//3wTpqyB+fXG5D084XSW h5d6ZnjpDfOF/DeoghUDSqh9otwCKdKfGvwA8vqUmbj6osG8xaHNbItIUSwRJB2y jA6DmVmd6zXmQk44V+uq3oKcO+3Vi5In8fKRNI7iLKLfI/y2LOuoxUcIV3stEG+a wMt2IoWX5lyC0XLdqYuV65tP2WdR/8doIZB5QrN5JL/yYi9OeBNbMwaadsEgRYHq +5OYlsFaDXhr6xjtv+fknrPdobWG4L9EZVMR7WDlVfxPcTpQkeTF7AqNIyonPIR7 4y05Y4A3oBAmWFet/qUi0qlcPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMt4aNtH F54uVZilKQFBvhMY+xInMB8GA1UdIwQYMBaAFAts3z+sxoC3hpJt4Tnx4PZ0RAZU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTJFQi9GRDAwODFERUM1 NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dMZUdrbTNoT2ZIZzluUkVC bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyemZQNnpHZ0xlR2ttM2hPZkhnOW5SRUJsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTJFQi9GRDAwODFERUM1NjcxMUVCQUZFQTYwMkJDNEY5QUUwMi9DMnpmUDZ6R2dM ZUdrbTNoT2ZIZzluUkVCbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4lBY4Yq73TTpEpvZ1DynQeXFMeVnHH6nB8oFC/K5qre3Rbu4Qjrtl V3PN3UN6ndCB1JRM9vLECjGXOQanTX8F8h7WIx2N377nmNQbjPDtegUa0yylLZQf fJO2xcfqvfWfRB1QtOSfnMJnfCPZCKVzQaICTnRfZr4rTcCfjuw0Nwq4nR/t903T GL18NrMbQCQtEefgfCeQ1Z+a+4GJ0TNzF/CLSSfx7svRRm/M+2fEVLFGdhNmUQmG 4VSUA5aZx836YRJkMru/wzeqX3gPEm0yg/7i1mLsC+05+s9Rx35jkVSNrz4H8WC4 1xsaifEUtskT2bbU/208G0Mqx8nhzVMY -----END CERTIFICATE-----Generated at Mon Feb 17 07:54:05 2025 by rpki-client