$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft File: rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft (raw, json) Hash identifier: Bbua9dqO5I+f6AXssUp3HTPSzgAfUIeHeCio0v/2sJk= Subject key identifier: DF:DE:90:00:2D:07:9B:E0:8A:77:2C:A4:52:E6:C3:08:9D:CA:E9:EB Authority key identifier: AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A Certificate issuer: /CN=A9196DCA/serialNumber=AE73B70548FF422ED02D59D1CA25793A05E9E42A Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft Manifest number: 15 Signing time: Wed 05 Feb 2025 06:25:08 +0000 Manifest this update: Wed 05 Feb 2025 06:25:07 +0000 Manifest next update: Wed 12 Feb 2025 06:25:07 +0000 Files and hashes: 1: rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl (hash: 5ADjCEADY3KPlqyYjhXrh3CYvXwCVhxaXB9TCCpDXj4=) 2: E39AF9C6CB3611EFAE3C1A10C4F9AE02.roa (hash: HaAP7uUg1XzzgFWY/CdSRARMCuA2gGNyuumYnBvV1lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA Validity Not Before: Feb 5 06:25:07 2025 GMT Not After : Feb 12 06:25:07 2025 GMT Subject: CN=67a30444-f46c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8b:9b:a5:12:d4:7f:6c:60:4c:ea:e4:c8:76: 25:6e:9d:b8:04:c8:30:8e:87:b4:0a:6c:19:d4:fb: ce:04:d5:a5:47:02:f3:3a:2e:3c:37:8f:4a:dc:6f: 00:c1:6c:85:af:94:2c:1f:f6:cf:58:5a:73:83:5b: 1a:a6:e8:18:69:4d:31:82:07:da:81:d6:b4:90:66: b9:17:8f:1f:1f:a0:38:f8:c7:f7:76:f8:4f:ec:a3: d9:fb:31:69:df:14:5b:1d:d5:49:bf:7a:b8:ed:75: ff:48:35:ca:17:da:2c:f5:34:1b:1d:d2:b5:d8:e8: 95:74:bf:44:3c:1f:43:c5:77:39:31:84:ac:8c:18: 23:26:44:1f:90:fb:f4:2c:3f:83:ab:b8:54:98:84: 82:77:07:a6:a6:90:94:83:09:2c:5a:31:fe:b6:f9: 9c:e1:c3:e7:32:aa:e2:de:08:78:32:80:49:3d:38: 0a:e7:f1:f8:14:78:16:23:6e:52:03:e6:f8:20:be: 26:86:d6:25:d2:7f:af:f7:47:22:ef:53:bb:6a:65: bf:80:79:53:37:44:e6:3e:79:9a:f7:ec:80:61:ab: 9f:74:03:6e:94:39:39:ed:71:11:18:68:b4:fb:cf: e0:c1:3d:05:d0:d0:16:5e:ab:35:d4:9d:0f:b2:d4: 4e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DE:90:00:2D:07:9B:E0:8A:77:2C:A4:52:E6:C3:08:9D:CA:E9:EB X509v3 Authority Key Identifier: keyid:AE:73:B7:05:48:FF:42:2E:D0:2D:59:D1:CA:25:79:3A:05:E9:E4:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/50109876CB1F11EFB7AC2786C4F9AE02/rnO3BUj_Qi7QLVnRyiV5OgXp5Co.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:0e:d6:ba:2a:ee:d6:8c:24:5e:45:6a:38:bd:d4:be:40:2c: 24:e7:89:f1:54:10:6b:ab:83:c6:24:dd:d7:81:bb:8c:16:bf: 13:32:61:dc:b4:c3:7d:cf:04:88:9c:1a:be:4a:3f:a2:15:fe: f2:7b:7c:47:1e:a5:e1:1d:23:a5:8d:39:d0:0d:65:65:26:cd: 39:a8:1b:15:c5:6b:1e:e4:c9:4f:fd:bd:71:db:4e:70:15:f7: ca:83:b9:cd:08:3d:c7:2d:f8:9f:0a:6e:12:26:aa:f1:41:0c: a4:a0:ba:12:56:4e:cc:41:5e:4a:3b:f2:b6:95:1e:c8:aa:7e: c6:f7:01:5f:66:70:4b:f4:07:66:fd:82:28:54:5d:a8:65:33: e1:02:aa:9d:3f:2a:36:18:01:26:6a:fa:c4:35:67:d9:96:7f: f8:01:97:f9:bc:14:59:4b:05:9e:ad:58:1e:2f:f3:fe:08:4f: 2d:db:a9:26:82:be:e6:1e:42:2a:88:0a:46:a5:41:71:e6:93: 0b:2f:16:dc:44:b1:f6:ab:80:51:b9:01:7a:0f:70:88:6c:cf: c8:80:1a:ca:8c:c0:d1:fe:ca:ac:26:1e:78:aa:7a:d3:d1:b4: 81:03:18:eb:c8:19:ea:52:ce:63:51:f3:56:54:8e:52:72:50: 0a:5a:85:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoQUU3M0I3MDU0OEZGNDIyRUQwMkQ1OUQxQ0EyNTc5M0Ew NUU5RTQyQTAeFw0yNTAyMDUwNjI1MDdaFw0yNTAyMTIwNjI1MDdaMBgxFjAUBgNV BAMTDTY3YTMwNDQ0LWY0NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCli5ulEtR/bGBM6uTIdiVunbgEyDCOh7QKbBnU+84E1aVHAvM6Ljw3j0rcbwDB bIWvlCwf9s9YWnODWxqm6BhpTTGCB9qB1rSQZrkXjx8foDj4x/d2+E/so9n7MWnf FFsd1Um/erjtdf9INcoX2iz1NBsd0rXY6JV0v0Q8H0PFdzkxhKyMGCMmRB+Q+/Qs P4OruFSYhIJ3B6amkJSDCSxaMf62+Zzhw+cyquLeCHgygEk9OArn8fgUeBYjblID 5vggviaG1iXSf6/3RyLvU7tqZb+AeVM3ROY+eZr37IBhq590A26UOTntcREYaLT7 z+DBPQXQ0BZeqzXUnQ+y1E4TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU396QAC0H m+CKdyykUubDCJ3K6eswHwYDVR0jBBgwFoAUrnO3BUj/Qi7QLVnRyiV5OgXp5Cow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzUwMTA5ODc2Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL3JuTzNCVWpfUWk3UUxWblJ5aVY1T2dYcDVD by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcm5PM0JVal9RaTdRTFZuUnlpVjVPZ1hwNUNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RENBLzUwMTA5ODc2Q0IxRjExRUZCN0FDMjc4NkM0RjlBRTAyL3JuTzNCVWpfUWk3 UUxWblJ5aVY1T2dYcDVDby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADIO1roq7taMJF5Faji91L5ALCTnifFUEGurg8Yk3deBu4wWvxMyYdy0 w33PBIicGr5KP6IV/vJ7fEcepeEdI6WNOdANZWUmzTmoGxXFax7kyU/9vXHbTnAV 98qDuc0IPcct+J8KbhImqvFBDKSguhJWTsxBXko78raVHsiqfsb3AV9mcEv0B2b9 gihUXahlM+ECqp0/KjYYASZq+sQ1Z9mWf/gBl/m8FFlLBZ6tWB4v8/4ITy3bqSaC vuYeQiqICkalQXHmkwsvFtxEsfargFG5AXoPcIhsz8iAGsqMwNH+yqwmHniqetPR tIEDGOvIGepSzmNR81ZUjlJyUApahWo= -----END CERTIFICATE-----Generated at Wed Feb 5 20:12:43 2025 by rpki-client