$ rpki-client -vvf rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft File: 9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft (raw, json) Hash identifier: jaJiF/3P+psks1XLdXpjqv/6gGHZxFy7RUq93c8wT/c= Subject key identifier: 3D:57:C5:DE:BB:E8:44:4C:D7:5C:D2:F5:22:9B:47:6B:7E:45:7A:D6 Authority key identifier: F6:D3:79:30:27:75:1C:62:F8:AB:B9:08:86:EA:93:F4:9B:33:F6:4C Certificate issuer: /CN=A91921AE/serialNumber=F6D3793027751C62F8ABB90886EA93F49B33F64C Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft Manifest number: 27 Signing time: Wed 05 Feb 2025 06:13:17 +0000 Manifest this update: Wed 05 Feb 2025 06:13:16 +0000 Manifest next update: Wed 12 Feb 2025 06:13:16 +0000 Files and hashes: 1: 9tN5MCd1HGL4q7kIhuqT9Jsz9kw.crl (hash: gGt/sVmEdeCeW8X2sUTKBijVucXglvqoR7w/AIln4r0=) 2: 91D2F686B4BE11EFA41A5C26C4F9AE02.roa (hash: VBbYvdSPEXDGyhr5av84OPEQoUDRZ/zJhjsbvOI6K7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.crl rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91921AE Validity Not Before: Feb 5 06:13:16 2025 GMT Not After : Feb 12 06:13:16 2025 GMT Subject: CN=67a3017c-b160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8c:6f:12:08:5c:24:4b:d2:8b:26:be:99:b1: 0d:d4:bc:6d:d0:39:10:17:47:9e:a4:b7:47:2c:19: 1a:e8:7e:60:08:2d:49:59:17:fe:cc:4d:5a:9e:f8: 87:d4:99:44:72:7e:b0:e3:bc:c8:52:d6:b8:47:61: ac:f4:be:f1:3b:cd:9e:ad:19:e0:73:9c:49:d7:bb: 80:70:4d:9c:1e:4b:25:db:07:48:45:c9:50:d2:d0: 85:11:7e:c6:0d:c1:04:95:91:af:bd:71:85:fc:01: 82:55:84:e9:0c:db:9a:cb:1b:a2:9a:51:f4:d9:35: a8:ae:87:58:31:6b:25:fc:08:7b:be:b1:2b:a5:e8: cd:60:75:6a:52:48:38:4b:26:93:ab:f7:1c:38:65: ed:0c:be:ca:36:dd:41:99:a0:d0:ad:e2:36:52:7c: 15:53:37:b6:cf:a1:2e:9d:0a:b6:9b:ad:e4:3c:78: b7:22:9a:e0:41:13:ef:a5:8b:5f:99:73:98:31:28: 45:bc:c8:53:21:93:7f:73:a6:ff:87:7f:d6:ac:f1: 93:36:ec:88:16:f4:8a:39:f9:1f:36:9b:a3:c8:0d: 2b:b3:c2:2c:96:11:40:99:0b:b4:a8:40:42:9e:59: 2f:0a:63:75:66:ff:be:85:c6:de:5d:eb:b5:f7:5d: f1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:57:C5:DE:BB:E8:44:4C:D7:5C:D2:F5:22:9B:47:6B:7E:45:7A:D6 X509v3 Authority Key Identifier: keyid:F6:D3:79:30:27:75:1C:62:F8:AB:B9:08:86:EA:93:F4:9B:33:F6:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91921AE/6C7048A6AC7311EFA3CBD14AC4F9AE02/9tN5MCd1HGL4q7kIhuqT9Jsz9kw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:bf:aa:2c:91:ff:ea:1e:a8:a8:51:cd:bd:ef:6a:7d:61:76: 40:9e:b4:13:a2:4c:e6:fe:da:5e:da:bb:ec:0d:5a:23:82:93: 91:0e:26:97:97:b5:20:cc:38:4b:cc:67:7b:89:43:c5:70:d2: 5e:da:19:78:bc:3a:db:7c:a6:e5:97:52:78:84:ef:ab:3c:e7: 56:b1:ff:65:58:e0:41:36:96:e4:bd:ee:a7:9c:a9:91:af:40: 4e:5a:f7:60:5a:93:4f:85:b3:23:60:a5:62:22:76:7c:83:92: 68:5f:0d:cb:47:1d:27:91:31:45:aa:47:ee:b4:32:57:8c:35: 06:65:bb:ce:49:11:28:d4:e9:9f:d6:71:c0:dd:ac:64:35:35: 55:53:92:0e:00:5f:01:99:76:0e:0e:80:73:12:09:ed:42:4f: de:4f:b8:b8:be:8f:89:2c:1b:16:04:77:06:21:8b:dc:4c:8b: 4e:de:33:4f:a8:71:2d:f9:7e:1b:98:9d:9c:9d:3b:c4:26:0f: c1:e6:8c:0c:48:8e:e5:a2:cc:dc:46:c8:2b:a7:7d:f5:ef:c9: 63:c7:3d:3d:26:ca:af:d1:e9:f8:b8:bb:91:f8:22:7a:95:1f: 30:68:22:14:5a:b1:fb:29:45:f0:59:8e:bd:af:f1:36:6e:78: 7d:a9:d3:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MjFBRTExMC8GA1UEBRMoRjZEMzc5MzAyNzc1MUM2MkY4QUJCOTA4ODZFQTkzRjQ5 QjMzRjY0QzAeFw0yNTAyMDUwNjEzMTZaFw0yNTAyMTIwNjEzMTZaMBgxFjAUBgNV BAMTDTY3YTMwMTdjLWIxNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1jG8SCFwkS9KLJr6ZsQ3UvG3QORAXR56kt0csGRrofmAILUlZF/7MTVqe+IfU mURyfrDjvMhS1rhHYaz0vvE7zZ6tGeBznEnXu4BwTZweSyXbB0hFyVDS0IURfsYN wQSVka+9cYX8AYJVhOkM25rLG6KaUfTZNaiuh1gxayX8CHu+sSul6M1gdWpSSDhL JpOr9xw4Ze0Mvso23UGZoNCt4jZSfBVTN7bPoS6dCrabreQ8eLcimuBBE++li1+Z c5gxKEW8yFMhk39zpv+Hf9as8ZM27IgW9Io5+R82m6PIDSuzwiyWEUCZC7SoQEKe WS8KY3Vm/76Fxt5d67X3XfFVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPVfF3rvo REzXXNL1IptHa35FetYwHwYDVR0jBBgwFoAU9tN5MCd1HGL4q7kIhuqT9Jsz9kww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyMUFFLzZDNzA0OEE2QUM3 MzExRUZBM0NCRDE0QUM0RjlBRTAyLzl0TjVNQ2QxSEdMNHE3a0lodXFUOUpzejlr dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOXRONU1DZDFIR0w0cTdrSWh1cVQ5SnN6OWt3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTky MUFFLzZDNzA0OEE2QUM3MzExRUZBM0NCRDE0QUM0RjlBRTAyLzl0TjVNQ2QxSEdM NHE3a0lodXFUOUpzejlrdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAO/qiyR/+oeqKhRzb3van1hdkCetBOiTOb+2l7au+wNWiOCk5EOJpeX tSDMOEvMZ3uJQ8Vw0l7aGXi8Ott8puWXUniE76s851ax/2VY4EE2luS97qecqZGv QE5a92Bak0+FsyNgpWIidnyDkmhfDctHHSeRMUWqR+60MleMNQZlu85JESjU6Z/W ccDdrGQ1NVVTkg4AXwGZdg4OgHMSCe1CT95PuLi+j4ksGxYEdwYhi9xMi07eM0+o cS35fhuYnZydO8QmD8HmjAxIjuWizNxGyCunffXvyWPHPT0myq/R6fi4u5H4InqV HzBoIhRasfspRfBZjr2v8TZueH2p0zs= -----END CERTIFICATE-----Generated at Wed Feb 5 20:13:03 2025 by rpki-client