$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json) Hash identifier: MOPDZsxd/LNmLBNcZaQYugBTJ7jVrSxR9yJQ7z5jWO0= Subject key identifier: DE:6B:05:E8:CA:A7:A9:A3:F3:8B:96:82:BE:6B:CE:7C:DE:E1:49:88 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 0682 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft Manifest number: 0670 Signing time: Fri 14 Feb 2025 23:29:35 +0000 Manifest this update: Fri 14 Feb 2025 23:29:35 +0000 Manifest next update: Fri 21 Feb 2025 23:29:35 +0000 Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: ZhAHBk1BP5i3cafSqC8BNclo7si2KWAkRv51Xnu6B9I=) 2: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: CcS2RgyDh/Mt65cyyvz7PDgLBgmPqkXqjVn09wN+d7I=) 3: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: sB2xN+NI3UCkCts4i5bUwtcZvKVfZaogReZtF2ClOtM=) 4: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: Ey7sXMoZK5X/9B/g0P4vb+TT1dBxjAAcErSKVPBVZ8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1666 (0x682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE Validity Not Before: Feb 14 23:29:35 2025 GMT Not After : Feb 21 23:29:35 2025 GMT Subject: CN=67afd1df-c7e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:3c:18:b5:f0:6b:5b:dd:74:1b:cc:4c:12: c4:99:fd:b3:10:27:47:a4:db:60:a6:8c:fa:f7:b5: 7b:77:43:ce:0c:bd:e7:99:19:78:02:5e:ce:94:2b: 77:ed:6c:1a:51:82:ef:16:47:99:75:22:0a:46:c2: 19:40:be:70:8e:ca:b7:a8:83:d9:62:28:ec:bd:b4: 8f:9c:ec:0f:ef:b4:fa:c5:fe:85:dd:59:f0:33:b7: 49:b8:ed:5c:9d:c7:ea:0d:ec:e9:b0:17:05:06:9a: 43:8b:60:42:cd:2b:a1:a8:3c:7e:19:06:99:79:5b: 17:28:1a:07:0e:d1:4a:82:59:b6:b4:0c:51:8d:4e: ed:84:c7:aa:a7:5b:f1:f6:bd:73:4e:69:3e:3c:76: 85:34:17:a6:15:6c:0f:6c:c2:96:9d:1c:31:ad:d0: 67:1f:93:84:65:26:f7:8a:91:15:92:fb:7d:af:f4: fb:58:8e:cf:ee:9f:53:fa:eb:17:e3:a9:cb:3e:10: 37:a1:7c:7c:00:87:ee:39:b1:9d:cd:13:f7:91:a6: ce:54:43:74:62:ee:da:ca:8e:f5:fd:01:da:2d:93: 57:30:24:2d:39:07:25:ec:54:3c:8a:b5:d3:14:c4: 03:43:29:58:3f:70:3a:64:96:41:b5:ce:52:8d:fc: 0c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6B:05:E8:CA:A7:A9:A3:F3:8B:96:82:BE:6B:CE:7C:DE:E1:49:88 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:ec:3c:6b:fd:39:96:89:81:f2:c1:a5:8d:2e:ac:42:ff:a9: 1a:0d:d5:3c:2d:df:5c:76:62:a8:56:38:df:8e:e5:61:90:a1: 6c:14:f2:64:c3:2b:8c:97:c9:7c:c9:23:85:f8:38:35:af:71: 86:fa:26:e4:4a:fb:1d:a2:45:51:18:13:c2:60:c7:3d:7d:ef: 44:7b:30:f9:fe:22:71:37:07:46:53:a3:09:ba:6b:3b:8b:d1: a3:ca:54:80:23:cc:82:4c:c5:6e:c9:73:58:55:dd:ed:e1:fe: 2a:50:f9:94:dc:e3:e5:e8:da:fe:f4:59:6e:30:ed:a3:7d:cc: b0:61:25:05:c0:2b:9e:ea:33:8d:98:fe:8b:10:e2:5b:87:f6: 44:87:00:10:03:a5:ba:80:46:5e:f6:ab:a4:7c:96:d4:84:9d: 8c:64:66:77:e2:9d:a9:84:cd:18:dd:93:37:7c:5e:27:0d:de: a3:2f:ef:59:db:37:7d:41:0c:81:3a:60:54:76:57:8a:ff:0c: c6:89:6b:31:ca:46:88:4f:3f:51:df:a6:79:05:01:b9:18:25: b8:bb:c0:e3:6b:bf:4c:45:8e:a7:89:5d:b5:09:26:a4:d5:dd: 37:38:6d:27:38:7d:b7:55:69:b7:b4:06:ba:54:b1:ad:23:54: b8:ba:aa:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjUwMjE0MjMyOTM1WhcNMjUwMjIxMjMyOTM1WjAYMRYwFAYD VQQDEw02N2FmZDFkZi1jN2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Jc8GLXwa1vddBvMTBLEmf2zECdHpNtgpoz697V7d0PODL3nmRl4Al7OlCt3 7WwaUYLvFkeZdSIKRsIZQL5wjsq3qIPZYijsvbSPnOwP77T6xf6F3VnwM7dJuO1c ncfqDezpsBcFBppDi2BCzSuhqDx+GQaZeVsXKBoHDtFKglm2tAxRjU7thMeqp1vx 9r1zTmk+PHaFNBemFWwPbMKWnRwxrdBnH5OEZSb3ipEVkvt9r/T7WI7P7p9T+usX 46nLPhA3oXx8AIfuObGdzRP3kabOVEN0Yu7ayo71/QHaLZNXMCQtOQcl7FQ8irXT FMQDQylYP3A6ZJZBtc5SjfwMQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5rBejK p6mj84uWgr5rznze4UmIMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zMkMzMDAyODZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZS Vko5bTctZ1JldUZRQUtYZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDs7Dxr/TmWiYHywaWNLqxC/6kaDdU8Ld9cdmKoVjjfjuVhkKFsFPJk wyuMl8l8ySOF+Dg1r3GG+ibkSvsdokVRGBPCYMc9fe9EezD5/iJxNwdGU6MJums7 i9GjylSAI8yCTMVuyXNYVd3t4f4qUPmU3OPl6Nr+9FluMO2jfcywYSUFwCue6jON mP6LEOJbh/ZEhwAQA6W6gEZe9qukfJbUhJ2MZGZ34p2phM0Y3ZM3fF4nDd6jL+9Z 2zd9QQyBOmBUdleK/wzGiWsxykaITz9R36Z5BQG5GCW4u8Dja79MRY6niV21CSak 1d03OG0nOH23VWm3tAa6VLGtI1S4uqq9 -----END CERTIFICATE-----Generated at Sun Feb 16 15:05:40 2025 by rpki-client