$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: Mhw7XF/C1xzpqVCyrizVo+Mv+SzxoD7Gha2yyDjmTuc= Subject key identifier: DE:9A:2A:0A:8D:5D:FD:C0:B3:A8:DD:DF:FB:53:23:5F:15:B5:93:F1 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0102 Signing time: Fri 14 Feb 2025 20:14:38 +0000 Manifest this update: Fri 14 Feb 2025 20:14:38 +0000 Manifest next update: Fri 21 Feb 2025 20:14:38 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: +Wsp8J7JkXSBi0Kf60IPkSrP0hP02AE80s5mH3m9DGY=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF Validity Not Before: Feb 14 20:14:38 2025 GMT Not After : Feb 21 20:14:38 2025 GMT Subject: CN=67afa42e-90e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d5:3c:01:5d:47:fc:16:07:81:6f:6a:4c:c8: fc:49:af:95:c2:b5:ca:e9:d2:69:32:03:43:e7:49: 15:f9:0d:c4:79:dd:d0:db:97:26:f3:66:64:43:58: 3a:ee:d1:5a:dd:67:df:90:2d:1a:52:db:a2:6b:34: 52:86:2b:ec:2d:7d:bb:16:85:88:47:4a:40:5b:09: e6:a8:73:42:1c:5a:57:29:5d:b1:31:2d:3a:4a:dc: 8a:5d:09:53:24:5d:55:b5:2b:f5:24:8c:4d:d4:2e: a5:45:32:d4:e6:3f:90:86:fc:8c:16:52:6c:6c:c0: 9a:1c:a4:a3:2d:36:e5:70:5f:65:f4:90:65:fc:fe: 56:16:1e:3c:7b:cc:33:60:f2:e6:80:43:08:98:30: 52:07:09:76:6e:1a:ce:98:df:1b:38:71:01:14:ae: dd:d3:cd:e7:17:c5:a2:d2:40:73:1c:83:4d:ff:12: ea:40:4a:da:fe:4a:67:e7:e4:b8:cb:58:af:87:70: ee:18:6f:06:4e:18:53:c0:08:4d:d2:3c:be:96:7d: 5e:2f:e3:ed:8e:54:55:9d:d9:b7:19:b6:51:21:6c: 7c:ab:02:0e:e9:1d:77:16:d1:aa:23:3b:dd:a1:b7: b2:ef:bf:da:c1:44:7a:6f:a4:57:bd:be:88:f9:b5: cf:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:9A:2A:0A:8D:5D:FD:C0:B3:A8:DD:DF:FB:53:23:5F:15:B5:93:F1 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:23:23:24:1e:9a:4c:2b:a9:e4:18:6a:99:4e:1d:84:61:75: f0:64:bd:5c:34:ba:bc:1f:4d:ae:34:4b:f6:19:65:a7:59:f3: d5:9b:5a:fc:46:f2:32:9e:61:42:e1:16:bd:38:73:ce:59:52: 34:06:d7:fa:b3:96:87:d3:20:3d:63:54:29:bf:dd:85:88:5e: 53:f4:25:79:4c:12:ae:5b:f5:f5:15:3b:5d:5b:b3:7d:c1:ec: 01:01:e7:88:d4:13:18:15:40:c3:74:4b:02:7c:b2:f0:0c:9a: 08:4d:bc:35:28:2d:a6:88:ff:4e:a8:a5:0b:24:86:07:65:83: 45:4e:c7:77:cc:f4:47:e0:da:ef:de:f3:f6:ab:c8:90:e5:93: 42:24:e6:12:87:65:69:8c:e6:ef:1d:5f:7a:6c:29:9e:87:8a: 57:b8:f3:0f:ca:1c:e1:66:01:3a:1f:9b:e8:0e:ad:a7:05:51: f7:f1:17:f0:76:a2:2e:07:07:03:bb:37:7f:f8:7a:a7:54:d2: fd:7a:c6:88:04:e5:ad:4c:91:da:85:c2:82:72:87:f4:f0:8f: eb:d9:b5:cc:04:69:26:82:ed:b7:b7:af:f4:8b:b7:71:e0:06: 00:16:74:ac:52:b1:17:6f:7c:00:f4:69:82:ca:cf:d9:51:1d: de:28:b1:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwMjE0MjAxNDM4WhcNMjUwMjIxMjAxNDM4WjAYMRYwFAYD VQQDEw02N2FmYTQyZS05MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdU8AV1H/BYHgW9qTMj8Sa+VwrXK6dJpMgND50kV+Q3Eed3Q25cm82ZkQ1g6 7tFa3WffkC0aUtuiazRShivsLX27FoWIR0pAWwnmqHNCHFpXKV2xMS06StyKXQlT JF1VtSv1JIxN1C6lRTLU5j+QhvyMFlJsbMCaHKSjLTblcF9l9JBl/P5WFh48e8wz YPLmgEMImDBSBwl2bhrOmN8bOHEBFK7d083nF8Wi0kBzHINN/xLqQEra/kpn5+S4 y1ivh3DuGG8GThhTwAhN0jy+ln1eL+PtjlRVndm3GbZRIWx8qwIO6R13FtGqIzvd obey77/awUR6b6RXvb6I+bXPhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6aKgqN Xf3As6jd3/tTI18VtZPxMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoIyMkHppMK6nkGGqZTh2EYXXwZL1cNLq8H02uNEv2GWWnWfPVm1r8 RvIynmFC4Ra9OHPOWVI0Btf6s5aH0yA9Y1Qpv92FiF5T9CV5TBKuW/X1FTtdW7N9 wewBAeeI1BMYFUDDdEsCfLLwDJoITbw1KC2miP9OqKULJIYHZYNFTsd3zPRH4Nrv 3vP2q8iQ5ZNCJOYSh2VpjObvHV96bCmeh4pXuPMPyhzhZgE6H5voDq2nBVH38Rfw dqIuBwcDuzd/+HqnVNL9esaIBOWtTJHahcKCcof08I/r2bXMBGkmgu23t6/0i7dx 4AYAFnSsUrEXb3wA9GmCys/ZUR3eKLF6 -----END CERTIFICATE-----Generated at Sun Feb 16 15:14:26 2025 by rpki-client