$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft File: Klc5bc5w61bAc94adgtipyKwR44.mft (raw, json) Hash identifier: MMi4l+PMAhsg3uemLWVoZTqoo4SAtuZnIJ0KU1hoJ6Y= Subject key identifier: 6C:15:50:85:24:7A:43:F4:E7:A2:E5:CE:45:13:62:C9:A8:AB:21:22 Authority key identifier: 2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E Certificate issuer: /CN=A9193B94/serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft Manifest number: 1C Signing time: Wed 05 Feb 2025 06:21:16 +0000 Manifest this update: Wed 05 Feb 2025 06:21:15 +0000 Manifest next update: Wed 12 Feb 2025 06:21:15 +0000 Files and hashes: 1: Klc5bc5w61bAc94adgtipyKwR44.crl (hash: 6h/eX+M9xFZII9b6YkpxFULZnmAh9Ce5X/129pxjREs=) 2: 329C17E6BCDA11EFA2D81814C4F9AE02.roa (hash: oBdfX7J4SfTWAha0J5te4TT+MMNp1UK2JxnYA8w+Btw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B94 Validity Not Before: Feb 5 06:21:15 2025 GMT Not After : Feb 12 06:21:15 2025 GMT Subject: CN=67a3035b-8c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a8:80:a5:7c:5c:17:a3:03:07:69:e9:76:86: 90:0c:a7:91:08:36:67:ba:9c:71:76:a5:31:e8:94: 06:68:03:5a:07:e6:6c:ac:0e:8b:43:f0:ff:9f:aa: 23:77:08:55:a1:e8:c8:bf:e8:16:b8:ba:61:a3:65: 20:dd:47:f3:52:4c:30:51:0d:d7:78:c6:ad:36:4c: d9:2c:d2:33:16:be:8d:af:90:67:41:e8:c5:05:da: 94:73:04:37:68:08:f5:f4:0d:3f:e2:cf:5f:a3:5e: d7:bf:55:41:b3:d9:bb:52:78:59:fd:c9:f8:86:ba: e5:cb:0c:b3:85:16:7d:87:a1:44:e2:fb:6e:67:02: 96:b8:ba:0a:55:7c:8e:3e:a6:08:8a:20:5f:e7:43: f9:a7:10:6d:26:dd:4d:91:2b:5b:aa:68:60:bf:f0: e9:b5:69:8d:3b:4d:b3:44:37:84:cf:8a:5b:ca:1b: 1b:b7:d1:5f:a2:99:d3:05:e4:2b:41:52:0a:be:84: d8:a3:ce:52:eb:9e:9d:4d:11:ad:26:c9:c6:a6:ae: 65:f3:ad:fa:ac:6f:5d:3b:05:19:0e:95:1e:70:38: c0:9a:17:82:52:a7:3b:3e:22:78:ad:ea:ca:6d:4c: 80:9c:41:78:42:e9:65:cd:fe:a3:a7:23:68:47:9c: 57:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:15:50:85:24:7A:43:F4:E7:A2:E5:CE:45:13:62:C9:A8:AB:21:22 X509v3 Authority Key Identifier: keyid:2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:97:8b:0c:ad:b8:b4:fd:bc:28:52:1b:08:d8:98:66:1f:83: b5:86:0a:16:fb:65:b9:b3:6e:52:33:21:a9:34:7e:f1:1a:f9: f0:c8:83:7c:a3:02:89:fb:3f:35:da:77:d2:49:b1:5e:4e:3c: 66:8d:de:b3:fc:97:f1:ae:2f:e3:3e:18:dc:a3:43:87:3b:ba: d5:00:64:f2:1b:a4:ca:4c:b5:7c:a2:e2:87:b7:0a:7f:57:63: 3c:bb:97:e4:92:66:df:b4:a2:49:0b:19:b2:32:3d:1a:27:65: 92:73:8b:cb:ee:7c:82:f4:71:ae:09:24:de:0d:ba:bc:bc:27: 32:a8:94:63:36:e8:ff:89:3b:16:37:e6:40:2d:13:08:64:22: be:93:de:95:60:f7:6c:b4:3c:8a:b8:93:c8:a9:25:ad:bf:8b: e2:97:d8:34:2f:47:6d:40:27:99:2c:50:97:eb:a3:58:e7:4b: b9:ab:77:c1:d6:19:e9:be:72:09:27:10:39:36:62:10:3e:3d: 7b:29:6c:93:a8:af:11:f0:61:90:29:fc:11:52:11:b3:be:7c: 58:fe:2f:07:ab:9e:0d:86:87:21:e2:d9:ea:91:c1:fc:fc:66: ba:6a:b1:b5:08:74:99:96:10:0b:e0:68:60:0d:1d:c0:43:e5: a7:33:da:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I5NDExMC8GA1UEBRMoMkE1NzM5NkRDRTcwRUI1NkMwNzNERTFBNzYwQjYyQTcy MkIwNDc4RTAeFw0yNTAyMDUwNjIxMTVaFw0yNTAyMTIwNjIxMTVaMBgxFjAUBgNV BAMTDTY3YTMwMzViLThjM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoqIClfFwXowMHael2hpAMp5EINme6nHF2pTHolAZoA1oH5mysDotD8P+fqiN3 CFWh6Mi/6Ba4umGjZSDdR/NSTDBRDdd4xq02TNks0jMWvo2vkGdB6MUF2pRzBDdo CPX0DT/iz1+jXte/VUGz2btSeFn9yfiGuuXLDLOFFn2HoUTi+25nApa4ugpVfI4+ pgiKIF/nQ/mnEG0m3U2RK1uqaGC/8Om1aY07TbNEN4TPilvKGxu30V+imdMF5CtB Ugq+hNijzlLrnp1NEa0mycamrmXzrfqsb107BRkOlR5wOMCaF4JSpzs+Init6spt TICcQXhC6WXN/qOnI2hHnFedAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbBVQhSR6 Q/TnouXORRNiyairISIwHwYDVR0jBBgwFoAUKlc5bc5w61bAc94adgtipyKwR44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjk0L0FGNDFCRDEwQkNE OTExRUY5MkFCMzMxM0M0RjlBRTAyL0tsYzViYzV3NjFiQWM5NGFkZ3RpcHlLd1I0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xjNWJjNXc2MWJBYzk0YWRndGlweUt3UjQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz Qjk0L0FGNDFCRDEwQkNEOTExRUY5MkFCMzMxM0M0RjlBRTAyL0tsYzViYzV3NjFi QWM5NGFkZ3RpcHlLd1I0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAKXiwytuLT9vChSGwjYmGYfg7WGChb7ZbmzblIzIak0fvEa+fDIg3yj Aon7PzXad9JJsV5OPGaN3rP8l/GuL+M+GNyjQ4c7utUAZPIbpMpMtXyi4oe3Cn9X Yzy7l+SSZt+0okkLGbIyPRonZZJzi8vufIL0ca4JJN4Nury8JzKolGM26P+JOxY3 5kAtEwhkIr6T3pVg92y0PIq4k8ipJa2/i+KX2DQvR21AJ5ksUJfro1jnS7mrd8HW Gem+cgknEDk2YhA+PXspbJOorxHwYZAp/BFSEbO+fFj+Lwerng2GhyHi2eqRwfz8 ZrpqsbUIdJmWEAvgaGANHcBD5acz2uQ= -----END CERTIFICATE-----Generated at Wed Feb 5 19:51:26 2025 by rpki-client