$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: m3gfG0R8yy+79dsSY2TePaELEYAUJIUGnTgKJFFYe9U= Subject key identifier: BD:F1:27:35:E7:95:58:70:6B:72:E9:3C:4A:C1:9C:1A:CE:66:8D:04 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0E85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0E78 Signing time: Sun 16 Feb 2025 18:05:51 +0000 Manifest this update: Sun 16 Feb 2025 18:05:50 +0000 Manifest next update: Sun 23 Feb 2025 18:05:50 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: bwbsBBWCe8X5kBS7rDxdBhqVVlBbwba/+jUe8qlyODY=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3717 (0xe85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C Validity Not Before: Feb 16 18:05:50 2025 GMT Not After : Feb 23 18:05:50 2025 GMT Subject: CN=67b228fe-9095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2e:9a:b9:ae:00:dd:3e:e5:d9:be:39:91:e0: 7f:7f:26:b9:d5:70:e7:2f:6c:0d:a7:9c:38:bc:95: cb:d4:63:e9:48:f0:7c:50:56:ab:1c:2f:cb:26:ea: 1a:92:0c:f7:a2:06:c0:cb:b5:f0:a5:48:13:1e:34: 3e:13:c5:a7:4e:39:5c:dd:74:20:ae:1a:f6:c1:86: f8:42:54:b1:f4:13:d3:0d:a9:7a:22:3e:ed:ee:10: c9:0d:f2:62:87:ed:83:b3:08:e5:b0:7a:ea:80:2f: 3f:e6:3e:0e:16:1e:90:5c:7a:1e:fe:a1:35:25:b5: 24:42:af:54:ad:76:8c:6d:6b:57:36:12:f0:f2:55: 39:f5:85:ed:93:5b:9c:79:7b:e7:b7:19:6a:48:6a: b7:12:03:7c:98:e2:66:f9:14:25:4a:9d:18:b2:8d: da:d6:09:1c:97:32:df:49:b6:e3:95:81:91:46:2b: 73:17:3e:4b:90:c5:f6:33:1c:26:41:46:74:4a:e3: e8:05:2d:2c:79:9b:d2:02:59:cd:2f:27:de:4e:b8: 63:bc:34:5a:0f:28:6b:a4:37:4e:9d:6e:09:35:eb: 0b:d1:64:4f:74:d2:fa:e7:64:57:df:0d:4e:fc:2c: 56:24:a9:a9:3d:c6:a0:a8:1e:8e:d8:59:30:c6:62: 73:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F1:27:35:E7:95:58:70:6B:72:E9:3C:4A:C1:9C:1A:CE:66:8D:04 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:df:96:e0:84:cc:64:58:4a:7a:d1:ba:65:cb:52:1c:2b:07: e7:94:cd:78:70:ee:bf:a1:4b:f4:ce:62:17:e8:a3:9f:27:d7: 00:69:11:a7:94:6f:39:d6:75:8d:97:9b:c5:0a:01:3a:4c:39: 55:f3:ce:1c:fc:65:d5:c6:20:7e:46:fb:d4:1c:f4:c7:5c:7b: 00:74:7c:d3:e5:13:62:76:4c:4f:12:d6:30:cb:c9:2c:ad:3c: 9a:63:1f:d6:1b:de:2a:2e:70:5b:f5:67:11:70:cf:db:29:77: 0f:48:12:37:53:6d:0b:98:62:2e:54:2b:d4:9b:11:04:ad:13: 35:12:4d:05:9e:d3:50:b7:9a:80:eb:22:7f:f6:17:6e:8f:c6: a0:2b:4f:41:97:a8:e9:9b:6d:66:8d:de:1b:8c:be:69:90:e0: 91:1f:43:97:84:ec:4a:c2:49:3a:9e:fe:c9:16:20:66:79:c6: f8:66:e3:17:2a:6e:e6:06:17:3e:0b:04:b5:3b:19:d8:3a:5e: 43:23:2d:a3:64:d1:5a:d4:fa:d1:86:bd:ee:e0:d3:50:45:d3: 9c:1a:b6:cd:68:c4:78:32:93:41:4a:6f:06:cb:ce:72:98:2a: 56:7d:b5:34:7e:97:08:e3:68:0c:8d:3c:8b:6d:39:1c:12:3d: d3:81:13:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwMjE2MTgwNTUwWhcNMjUwMjIzMTgwNTUwWjAYMRYwFAYD VQQDEw02N2IyMjhmZS05MDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqS6aua4A3T7l2b45keB/fya51XDnL2wNp5w4vJXL1GPpSPB8UFarHC/LJuoa kgz3ogbAy7XwpUgTHjQ+E8WnTjlc3XQgrhr2wYb4QlSx9BPTDal6Ij7t7hDJDfJi h+2DswjlsHrqgC8/5j4OFh6QXHoe/qE1JbUkQq9UrXaMbWtXNhLw8lU59YXtk1uc eXvntxlqSGq3EgN8mOJm+RQlSp0Yso3a1gkclzLfSbbjlYGRRitzFz5LkMX2Mxwm QUZ0SuPoBS0seZvSAlnNLyfeTrhjvDRaDyhrpDdOnW4JNesL0WRPdNL652RX3w1O /CxWJKmpPcagqB6O2FkwxmJz8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL3xJzXn lVhwa3LpPErBnBrOZo0EMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH35bghMxkWEp60bply1IcKwfnlM14cO6/oUv0zmIX6KOfJ9cAaRGn lG851nWNl5vFCgE6TDlV884c/GXVxiB+RvvUHPTHXHsAdHzT5RNidkxPEtYwy8ks rTyaYx/WG94qLnBb9WcRcM/bKXcPSBI3U20LmGIuVCvUmxEErRM1Ek0FntNQt5qA 6yJ/9hduj8agK09Bl6jpm21mjd4bjL5pkOCRH0OXhOxKwkk6nv7JFiBmecb4ZuMX Km7mBhc+CwS1OxnYOl5DIy2jZNFa1PrRhr3u4NNQRdOcGrbNaMR4MpNBSm8Gy85y mCpWfbU0fpcI42gMjTyLbTkcEj3TgRMH -----END CERTIFICATE-----Generated at Mon Feb 17 08:10:56 2025 by rpki-client