$ rpki-client -vvf rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft File: -YvpQtnreFakMNG8KUc7xN1nf-o.mft (raw, json) Hash identifier: a724DYv+RctuUDfdsqvtpFtuyZHg5gjVw1XEC80I3Qg= Subject key identifier: 23:1A:77:F1:C3:77:B3:B3:52:EA:46:92:BC:BE:02:D2:66:58:A3:5B Authority key identifier: F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA Certificate issuer: /CN=A91949C1/serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft Manifest number: 7C Signing time: Sat 15 Feb 2025 07:49:56 +0000 Manifest this update: Sat 15 Feb 2025 07:49:56 +0000 Manifest next update: Sat 22 Feb 2025 07:49:56 +0000 Files and hashes: 1: -YvpQtnreFakMNG8KUc7xN1nf-o.crl (hash: HpVpd8e55ae4hbMXSg4TfQQYvnSEqRyZDxDHQGX6BXQ=) 2: 5E1227E22DD511EF9AFE395EC4F9AE02.roa (hash: Etmj0xt/W0SmV0Orr2NUt8hTe4pIwfnUtLKYwnR9+RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91949C1 Validity Not Before: Feb 15 07:49:56 2025 GMT Not After : Feb 22 07:49:56 2025 GMT Subject: CN=67b04724-6a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0b:59:08:5d:1c:77:da:6b:ef:b0:de:e4:88: 1b:ce:8f:0c:d4:52:d4:f4:41:8b:fc:99:a1:ec:e0: 3e:27:f2:4a:31:39:f3:a4:b4:37:47:8c:67:2c:d7: e8:19:28:38:13:e9:48:59:52:00:6f:11:d3:94:ae: 09:7c:79:39:30:23:f9:4b:73:e8:b7:d3:3c:31:b3: 6c:9a:d0:5b:6e:9d:83:51:29:05:6a:fe:b6:25:fc: 9c:df:4a:c4:a5:5e:b0:fb:5d:85:db:e3:da:a5:8e: ed:c2:c1:19:54:4f:73:f0:60:4a:e9:2d:78:78:23: 8a:37:90:07:27:0f:72:91:50:db:42:f0:87:23:81: 09:b0:c5:06:dc:76:34:18:a4:10:44:95:df:74:ac: 9b:a4:b2:59:05:4f:2a:ad:7b:39:8e:f1:ea:57:be: a4:82:38:db:b5:66:11:bb:78:09:d2:8a:70:63:37: 54:e8:ab:c4:f0:6c:2c:a3:2c:43:70:2c:02:84:47: d0:31:44:4d:9e:39:d6:a1:33:65:4e:f7:ba:3a:fa: 35:da:1b:d3:bf:81:fd:ed:e8:ab:27:5d:71:cc:38: c3:f7:ab:c7:22:13:f6:ad:34:a0:76:c4:7b:e2:40: 5e:bc:3a:9d:eb:27:e0:41:71:b3:7f:d1:1a:5e:96: e9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1A:77:F1:C3:77:B3:B3:52:EA:46:92:BC:BE:02:D2:66:58:A3:5B X509v3 Authority Key Identifier: keyid:F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ac:5d:62:40:10:35:c4:07:ce:d0:6d:fc:2a:5d:03:44:73: 8e:43:fc:0d:5f:61:bc:be:81:45:56:99:7a:bd:a1:1c:e4:98: 86:c0:11:1d:f9:ff:2d:55:39:0e:1a:dc:34:4c:88:fc:d3:0e: 01:83:18:6f:dd:da:de:12:71:5c:1f:d8:69:30:88:9f:78:20: 4e:27:35:99:fa:3e:fa:82:9c:a9:51:14:4d:ba:35:58:3a:21: 66:ec:34:85:de:50:6a:0d:44:9b:65:24:17:46:76:8d:a7:6e: 0d:cf:11:4a:bd:62:89:9f:c9:8a:08:22:77:33:67:13:c0:70: ac:32:74:5e:3f:65:31:a2:4d:13:83:17:9e:f8:59:01:ae:c5: fa:8e:b8:c6:1a:64:b7:eb:d9:46:36:d1:48:4c:a2:c7:2c:9a: 02:de:0f:e4:96:20:7d:1d:b3:9e:5d:ad:87:a6:9b:1c:bf:19: 8c:66:3b:08:8f:6f:81:96:b4:16:ae:0b:47:5e:4e:84:aa:0c: c3:a9:81:96:08:46:d0:38:40:9d:6c:b5:6b:3e:12:bf:11:3e: 8f:93:53:1a:1a:6f:33:a7:ec:ab:ea:3f:f0:fe:e2:8e:39:80: be:70:e6:15:fb:20:c6:2b:39:25:8f:4b:32:09:d0:b6:f7:63: 35:e5:6f:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NDlDMTExMC8GA1UEBRMoRjk4QkU5NDJEOUVCNzg1NkE0MzBEMUJDMjk0NzNCQzRE RDY3N0ZFQTAeFw0yNTAyMTUwNzQ5NTZaFw0yNTAyMjIwNzQ5NTZaMBgxFjAUBgNV BAMTDTY3YjA0NzI0LTZhODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUC1kIXRx32mvvsN7kiBvOjwzUUtT0QYv8maHs4D4n8koxOfOktDdHjGcs1+gZ KDgT6UhZUgBvEdOUrgl8eTkwI/lLc+i30zwxs2ya0FtunYNRKQVq/rYl/JzfSsSl XrD7XYXb49qlju3CwRlUT3PwYErpLXh4I4o3kAcnD3KRUNtC8IcjgQmwxQbcdjQY pBBEld90rJukslkFTyqtezmO8epXvqSCONu1ZhG7eAnSinBjN1Toq8TwbCyjLENw LAKER9AxRE2eOdahM2VO97o6+jXaG9O/gf3t6KsnXXHMOMP3q8ciE/atNKB2xHvi QF68Op3rJ+BBcbN/0Rpelum/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIxp38cN3 s7NS6kaSvL4C0mZYo1swHwYDVR0jBBgwFoAU+YvpQtnreFakMNG8KUc7xN1nf+ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0OUMxLzA5RjUyQjE0MkRE NTExRUY5RTUwNUU1REM0RjlBRTAyLy1ZdnBRdG5yZUZha01ORzhLVWM3eE4xbmYt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLVl2cFF0bnJlRmFrTU5HOEtVYzd4TjFuZi1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0 OUMxLzA5RjUyQjE0MkRENTExRUY5RTUwNUU1REM0RjlBRTAyLy1ZdnBRdG5yZUZh a01ORzhLVWM3eE4xbmYtby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADysXWJAEDXEB87QbfwqXQNEc45D/A1fYby+gUVWmXq9oRzkmIbAER35 /y1VOQ4a3DRMiPzTDgGDGG/d2t4ScVwf2GkwiJ94IE4nNZn6PvqCnKlRFE26NVg6 IWbsNIXeUGoNRJtlJBdGdo2nbg3PEUq9YomfyYoIInczZxPAcKwydF4/ZTGiTROD F574WQGuxfqOuMYaZLfr2UY20UhMoscsmgLeD+SWIH0ds55drYemmxy/GYxmOwiP b4GWtBauC0deToSqDMOpgZYIRtA4QJ1stWs+Er8RPo+TUxoabzOn7KvqP/D+4o45 gL5w5hX7IMYrOSWPSzIJ0Lb3YzXlb5E= -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:59 2025 by rpki-client