$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft File: Y04osQAuVW6OsU-VPq1jttZ3WAk.mft (raw, json) Hash identifier: wI/BLvCDDUZYjk8PrFv8jD2IEMQoiyqdzQVRVHQu7Ic= Subject key identifier: C6:E5:8D:D3:89:3F:71:05:7F:C8:3E:B6:2F:4D:BA:BF:88:40:8F:F6 Authority key identifier: 63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 Certificate issuer: /CN=A9194C0D/serialNumber=634E28B1002E556E8EB14F953EAD63B6D6775809 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft Manifest number: 0126 Signing time: Sat 15 Feb 2025 06:00:37 +0000 Manifest this update: Sat 15 Feb 2025 06:00:37 +0000 Manifest next update: Sat 22 Feb 2025 06:00:37 +0000 Files and hashes: 1: Y04osQAuVW6OsU-VPq1jttZ3WAk.crl (hash: UkklDTxBmQwqLsN0muTgc3Xa22tOUYQd2Rzj3VBM69A=) 2: F6FAEC5CCB0411EEAB05F93CC4F9AE02.roa (hash: iEq1aNRP/IljFzwgZtZtkJCpzqh+TTJ3bhmSxew1yxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D Validity Not Before: Feb 15 06:00:37 2025 GMT Not After : Feb 22 06:00:37 2025 GMT Subject: CN=67b02d85-7886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:dd:1d:2f:d3:f6:9f:d0:da:e6:7b:cc:e6:6a: 7d:b1:15:ee:9d:f7:a5:0a:17:55:d6:0a:e6:7a:57: ae:a4:27:95:73:7b:bd:18:c9:96:42:bf:05:92:6d: ee:dc:ec:18:34:40:5c:ce:e6:21:f8:b2:76:4d:5b: b1:87:e6:a4:e9:46:b7:bf:dc:a7:0c:18:3f:f9:20: 8b:4b:d9:bf:02:7c:0b:c9:9d:d5:ac:96:b6:92:c6: aa:3c:03:03:52:e6:40:06:a6:9b:c6:fc:27:05:88: 9e:2e:73:b9:4a:f5:7a:29:ff:f2:ce:45:34:5a:c3: ca:16:f0:35:be:2b:31:44:5b:c6:0f:90:0a:9c:63: 46:ce:a6:ef:7a:3d:26:3d:cf:b3:7b:a1:3d:82:8a: e0:b0:3e:65:80:a2:3d:6f:0c:7e:06:81:13:cd:be: 01:12:fd:ed:7a:31:76:43:cd:02:b9:56:44:c7:01: d2:d1:63:a3:3a:f4:b7:a1:25:a4:fe:0d:6b:52:6b: 49:3d:d8:5d:18:8f:32:7e:2a:69:68:41:be:60:7e: b7:63:76:e6:9c:dd:39:b0:25:42:35:33:49:ea:0c: 7e:fa:7d:09:5a:4b:13:23:ce:94:57:da:ea:c1:94: df:ee:7a:60:fc:68:dd:eb:13:87:09:2b:3b:eb:22: e9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:E5:8D:D3:89:3F:71:05:7F:C8:3E:B6:2F:4D:BA:BF:88:40:8F:F6 X509v3 Authority Key Identifier: keyid:63:4E:28:B1:00:2E:55:6E:8E:B1:4F:95:3E:AD:63:B6:D6:77:58:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y04osQAuVW6OsU-VPq1jttZ3WAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/AD258890575411EE940CD954C4F9AE02/Y04osQAuVW6OsU-VPq1jttZ3WAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:d3:38:59:64:f1:6a:93:40:86:44:2e:b7:32:28:d1:d3:02: a2:69:c6:29:d6:e0:c1:29:36:5e:e6:fa:c6:6a:02:3e:b4:9b: 69:b5:13:2a:40:d7:ed:5f:a7:1c:7e:98:a3:05:b5:9c:ee:66: 3b:6d:92:72:42:18:e8:c8:cd:1b:09:9b:73:2f:a4:ff:30:c0: 2a:83:2a:75:1a:7c:b9:27:e1:40:81:0a:ed:94:d1:1b:e2:af: 2f:09:ac:38:4c:25:2b:38:46:42:1d:cd:72:dc:c9:6e:cc:4d: 8b:dc:98:65:a9:58:bc:40:f0:94:60:d6:c0:14:27:61:ca:5d: 99:4a:de:4d:d1:1b:49:2a:dd:31:13:ba:70:d1:6e:a8:6b:4f: bf:2f:73:3b:1a:f1:ca:f9:36:23:b0:a9:e2:6c:ce:85:7e:b5: a4:e9:6c:ea:7f:8e:88:4e:b5:82:29:47:aa:65:62:a7:38:4f: 7e:65:bc:51:f6:b5:5c:c4:ba:d6:ce:f9:3c:f9:3d:f6:2c:02: 32:f6:17:99:c4:54:97:bb:47:64:10:24:fa:88:78:8a:17:7e: 3f:02:ce:f9:88:3a:ff:a2:37:2e:e3:f7:65:7f:16:9c:af:f4: 9b:97:28:e9:13:8c:10:c2:7e:84:54:da:75:ec:52:8e:25:03: c5:e5:10:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKDYzNEUyOEIxMDAyRTU1NkU4RUIxNEY5NTNFQUQ2M0I2 RDY3NzU4MDkwHhcNMjUwMjE1MDYwMDM3WhcNMjUwMjIyMDYwMDM3WjAYMRYwFAYD VQQDEw02N2IwMmQ4NS03ODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d0dL9P2n9Da5nvM5mp9sRXunfelChdV1grmeleupCeVc3u9GMmWQr8Fkm3u 3OwYNEBczuYh+LJ2TVuxh+ak6Ua3v9ynDBg/+SCLS9m/AnwLyZ3VrJa2ksaqPAMD UuZABqabxvwnBYieLnO5SvV6Kf/yzkU0WsPKFvA1visxRFvGD5AKnGNGzqbvej0m Pc+ze6E9gorgsD5lgKI9bwx+BoETzb4BEv3tejF2Q80CuVZExwHS0WOjOvS3oSWk /g1rUmtJPdhdGI8yfippaEG+YH63Y3bmnN05sCVCNTNJ6gx++n0JWksTI86UV9rq wZTf7npg/Gjd6xOHCSs76yLpqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbljdOJ P3EFf8g+ti9Nur+IQI/2MB8GA1UdIwQYMBaAFGNOKLEALlVujrFPlT6tY7bWd1gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BRDI1ODg5MDU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZXNk9zVS1WUHExanR0WjNX QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwNG9zUUF1Vlc2T3NVLVZQcTFqdHRaM1dBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BRDI1ODg5MDU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9ZMDRvc1FBdVZX Nk9zVS1WUHExanR0WjNXQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB0zhZZPFqk0CGRC63MijR0wKiacYp1uDBKTZe5vrGagI+tJtptRMq QNftX6ccfpijBbWc7mY7bZJyQhjoyM0bCZtzL6T/MMAqgyp1Gny5J+FAgQrtlNEb 4q8vCaw4TCUrOEZCHc1y3MluzE2L3JhlqVi8QPCUYNbAFCdhyl2ZSt5N0RtJKt0x E7pw0W6oa0+/L3M7GvHK+TYjsKnibM6FfrWk6Wzqf46ITrWCKUeqZWKnOE9+ZbxR 9rVcxLrWzvk8+T32LAIy9heZxFSXu0dkECT6iHiKF34/As75iDr/ojcu4/dlfxac r/SblyjpE4wQwn6EVNp17FKOJQPF5RDR -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:25 2025 by rpki-client