$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft File: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft (raw, json) Hash identifier: l/SyUsL4qLAIICwoaeXhajHn90s1gXBMBhKX7sm55wQ= Subject key identifier: D0:49:F6:D5:88:14:C7:09:41:A3:61:E9:82:B6:4F:F2:42:F9:5D:B1 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft Manifest number: 067E Signing time: Fri 14 Feb 2025 23:28:03 +0000 Manifest this update: Fri 14 Feb 2025 23:28:02 +0000 Manifest next update: Fri 21 Feb 2025 23:28:02 +0000 Files and hashes: 1: 70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl (hash: yR0i+UioIXrfLRnf1N//G2h7/f0ttRinJo9lGiDFQbY=) 2: 05F05106586011EE9399A92EC4F9AE02.roa (hash: ZoyzDGshP3Xcoohd0LXUFxcHdBCls9Mtr+7VfTCfHng=) 3: 3524F8BCD75511EF80E68A39C4F9AE02.roa (hash: atNvogMajVgrPoutiUYnbQeZE/aQ+6Wia9GfoJ31M8o=) 4: 34956990D75511EF80E68A39C4F9AE02.roa (hash: h81pLQ3f9taD4ZqBYBRt4RndKbd9f7ld0NnWuyDorBE=) 5: 35A4EFE0D75511EF80E68A39C4F9AE02.roa (hash: Ugt+4UcuNweFOll74GevcYAxRnvyyr25SWxXtIDRBOs=) 6: 5997C4D0719A11EEBBA64415C4F9AE02.roa (hash: Hp/eOFNkR2xgWHtgC9ufiwjj3RXaiKIv6Ds84jBh4w8=) 7: C0681BF2CF4911EF8531B085C4F9AE02.roa (hash: 1+LvjWYI9J8a4Eg8H2uslKbRbyLwQqWNXS1h5+rfIco=) 8: 58EBEC82719A11EEBBA64415C4F9AE02.roa (hash: KBvqkQdj5OAEkzL6ogJ3+9HoBsBkMOAMwsqEyeP/iq8=) 9: 364089B4D75511EF80E68A39C4F9AE02.roa (hash: +GfFG8a92/6/e1SPONilMIvPHcJ1t193OnonNOBg/KI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D Validity Not Before: Feb 14 23:28:02 2025 GMT Not After : Feb 21 23:28:02 2025 GMT Subject: CN=67afd183-71bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:22:42:53:bf:6b:6e:49:6d:b0:68:cf:50:bd: 75:11:4e:a5:88:ac:29:32:55:ca:2c:9b:4a:dd:33: e1:36:53:66:a0:17:54:db:a2:e7:d8:fd:eb:4a:05: 07:98:ba:f2:6d:5f:0f:b0:3b:7b:1a:91:1d:72:79: d1:4c:3b:36:ec:7c:e2:f2:3f:36:79:34:38:9a:5a: 8c:5c:07:91:d6:06:49:73:7c:e7:cb:49:76:de:e9: 26:7c:1b:6d:ff:72:fc:69:2a:92:3f:52:80:b3:02: f8:6f:6a:76:b3:87:12:72:5d:f8:25:f0:05:94:9b: f9:3b:5d:0b:fb:31:d0:6b:d7:20:92:4c:b3:28:79: 01:1e:4e:1d:25:e5:52:f6:55:25:a4:69:42:f0:20: 0d:07:13:3c:ad:8d:c3:c4:30:69:b6:63:c4:aa:f2: 3b:0d:0b:83:5c:c4:b7:38:86:48:7a:1f:71:a8:a2: 6b:fa:2b:ac:37:15:07:4e:20:42:99:ad:a8:bb:e1: 8f:fa:cd:5e:61:91:98:d3:65:d8:66:a3:96:21:a0: 04:a1:b0:6a:01:35:e0:04:0a:e7:7a:af:bb:0b:82: b6:1f:5c:0b:62:c9:47:f0:7b:fa:54:c1:4b:9c:2c: eb:2a:74:0b:fc:d5:0b:2a:d8:14:7c:b1:e4:cc:cd: af:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:49:F6:D5:88:14:C7:09:41:A3:61:E9:82:B6:4F:F2:42:F9:5D:B1 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:ef:c0:da:21:6f:f9:d8:ea:cc:af:8f:80:3b:94:6a:8f:6b: 69:d4:73:06:c5:2e:71:5f:6e:b3:8d:62:1a:43:22:4f:d4:5b: 11:96:cd:19:f8:4d:bb:29:53:e1:41:83:36:a1:b4:23:4d:c6: 70:76:cf:80:47:20:07:ba:c4:f3:ed:65:7e:f3:89:bc:53:09: b7:23:7e:3a:f3:2f:07:ab:d7:42:51:43:66:7f:b1:e8:85:74: 06:8c:8c:81:1e:1b:25:2e:7d:3e:b0:92:de:36:3b:b9:46:9c: 16:e6:3f:28:12:4d:b3:1a:f0:63:80:54:3b:64:f6:62:db:20: eb:67:18:27:30:54:24:9f:8f:24:ac:74:4b:78:9f:03:e0:eb: 10:39:49:3f:14:12:2c:ab:44:38:e9:63:44:3e:62:bb:02:60: 85:f6:79:91:f2:40:2e:c2:9c:51:0d:65:28:03:56:3d:96:4d: 8c:93:60:96:ef:81:4d:e5:35:08:7b:c8:8c:cf:6d:dc:15:68: 0b:c6:5b:9f:31:2f:6d:d2:8b:e5:e6:aa:11:26:67:93:17:65: c3:10:ee:4d:79:ed:0c:ec:de:c1:e1:22:bd:32:e6:f4:7e:17: f3:6b:22:d7:b8:e8:6c:03:29:20:34:91:fa:46:d0:1e:35:c2: e3:35:f3:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwMjE0MjMyODAyWhcNMjUwMjIxMjMyODAyWjAYMRYwFAYD VQQDEw02N2FmZDE4My03MWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SJCU79rbkltsGjPUL11EU6liKwpMlXKLJtK3TPhNlNmoBdU26Ln2P3rSgUH mLrybV8PsDt7GpEdcnnRTDs27Hzi8j82eTQ4mlqMXAeR1gZJc3zny0l23ukmfBtt /3L8aSqSP1KAswL4b2p2s4cScl34JfAFlJv5O10L+zHQa9cgkkyzKHkBHk4dJeVS 9lUlpGlC8CANBxM8rY3DxDBptmPEqvI7DQuDXMS3OIZIeh9xqKJr+iusNxUHTiBC ma2ou+GP+s1eYZGY02XYZqOWIaAEobBqATXgBArneq+7C4K2H1wLYslH8Hv6VMFL nCzrKnQL/NULKtgUfLHkzM2vcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBJ9tWI FMcJQaNh6YK2T/JC+V2xMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkI0RC9DQTU2M0JFODY1MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlL NXRuV0l2bXVfWHBNa1ZUeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ78DaIW/52OrMr4+AO5Rqj2tp1HMGxS5xX26zjWIaQyJP1FsRls0Z +E27KVPhQYM2obQjTcZwds+ARyAHusTz7WV+84m8Uwm3I3468y8Hq9dCUUNmf7Ho hXQGjIyBHhslLn0+sJLeNju5RpwW5j8oEk2zGvBjgFQ7ZPZi2yDrZxgnMFQkn48k rHRLeJ8D4OsQOUk/FBIsq0Q46WNEPmK7AmCF9nmR8kAuwpxRDWUoA1Y9lk2Mk2CW 74FN5TUIe8iMz23cFWgLxlufMS9t0ovl5qoRJmeTF2XDEO5Nee0M7N7B4SK9Mub0 fhfzayLXuOhsAykgNJH6RtAeNcLjNfPQ -----END CERTIFICATE-----Generated at Sun Feb 16 20:13:47 2025 by rpki-client