$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft File: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft (raw, json) Hash identifier: HTamF63MFPbYvbCfM/fitiCszqeILedkz1hysD6jgWU= Subject key identifier: 2C:1F:18:6C:4D:B0:1F:D5:82:B0:4C:76:E5:A3:DC:D9:5A:C6:3C:D8 Authority key identifier: 7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F Certificate issuer: /CN=A91971CB/serialNumber=7D045165B29A68AFCB8BA81599CE30674544FD8F Certificate serial: 0B47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft Manifest number: 0B42 Signing time: Fri 14 Feb 2025 15:25:28 +0000 Manifest this update: Fri 14 Feb 2025 15:25:27 +0000 Manifest next update: Fri 21 Feb 2025 15:25:27 +0000 Files and hashes: 1: fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl (hash: kTmu9lHzBG4J8IFi+kVMTksBDI8+Fm6IICZ4oAEwrR4=) 2: 99D18D463C0211EAA729693AC4F9AE02.roa (hash: tLtn7CFG0HbQ9XWzYKgOAxAROG1jTzb9mpWP5oMuzzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2887 (0xb47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB Validity Not Before: Feb 14 15:25:27 2025 GMT Not After : Feb 21 15:25:27 2025 GMT Subject: CN=67af6068-d39e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:67:5c:40:8e:4d:72:c2:f0:3f:31:a8:fe:4c: f1:bb:c2:67:3d:35:ba:56:ba:ff:da:92:20:d1:06: c1:45:c3:fc:05:83:a4:85:73:6e:87:d0:1c:0b:fc: 24:79:e5:ae:6d:15:24:3c:6c:f3:71:87:76:98:00: a6:c3:57:a5:9c:88:fa:00:d9:3a:9d:e7:96:bc:f9: 12:42:cc:dd:d4:52:87:c5:d4:14:88:cb:85:38:c1: eb:cd:17:d0:9e:f1:f3:85:71:a4:52:83:b1:ba:72: 7a:d0:09:3d:ad:93:a9:eb:0a:18:e5:71:ab:10:4f: ca:2b:6e:15:6e:bc:dd:81:dc:e0:5b:84:17:0b:a3: 1d:74:cd:48:a2:84:ca:ad:6a:87:bb:62:e8:9f:d5: fb:92:fa:21:e5:fe:6e:a1:68:c2:09:2e:81:dd:b7: 91:fa:63:75:1b:7a:2b:fc:51:6e:14:35:cb:0f:bc: 2e:ce:55:ed:8d:69:00:f0:d4:83:d0:08:79:92:85: 60:a5:39:a7:82:a8:a4:a3:d5:f7:dc:35:82:48:00: da:fd:a3:ac:e2:42:3c:b5:b8:29:cb:d0:d5:eb:52: 12:61:81:a6:b1:3c:84:a5:76:9e:cd:a3:89:bd:5e: b7:5b:b1:a8:6e:60:6b:1b:4d:72:5d:99:cc:11:7d: 37:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:1F:18:6C:4D:B0:1F:D5:82:B0:4C:76:E5:A3:DC:D9:5A:C6:3C:D8 X509v3 Authority Key Identifier: keyid:7D:04:51:65:B2:9A:68:AF:CB:8B:A8:15:99:CE:30:67:45:44:FD:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/7A750A0A2DD811EA9C35205DC4F9AE02/fQRRZbKaaK_Li6gVmc4wZ0VE_Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d5:d7:0e:2b:4e:24:b3:b9:a1:66:3a:a2:61:e2:3c:34:6e: 40:4f:06:1d:39:39:31:22:c9:30:cb:d4:d4:27:a3:46:61:b4: fb:d7:ea:7c:89:57:14:3c:fe:5a:68:9c:cd:9c:be:c8:9b:0a: eb:b2:73:46:de:94:0e:c7:cd:3b:cf:e7:27:2d:12:af:b1:05: 35:e3:e2:17:08:63:d4:61:ee:47:37:44:c5:cc:7a:bb:6c:17: 7d:0b:87:b0:0a:2f:e8:c8:b7:16:42:28:ab:de:2d:dd:48:8c: 4c:d6:59:b9:04:1d:c0:f7:08:2f:c7:9e:a1:5d:98:e9:ab:32: de:87:ce:b6:04:e1:34:c5:b2:6c:ff:7f:54:a8:c2:57:95:58: f0:fe:73:8c:06:50:ad:e9:47:39:50:c0:50:c6:0a:6e:0f:eb: 07:38:12:95:43:e6:ae:80:22:2d:c3:84:ae:4c:87:fa:18:8f: 10:65:c8:20:f7:5d:bb:82:98:ad:d1:35:25:11:d1:19:8b:22: 75:02:b8:aa:ad:6e:be:33:37:bf:2d:d7:86:4c:10:56:18:52: be:cb:6b:5e:bb:4f:db:12:be:68:88:96:1b:76:5b:6c:70:f6: ad:20:73:7b:d0:b1:cf:e3:e9:8d:e3:f2:dc:42:08:58:b6:e2: 5b:18:bd:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDdEMDQ1MTY1QjI5QTY4QUZDQjhCQTgxNTk5Q0UzMDY3 NDU0NEZEOEYwHhcNMjUwMjE0MTUyNTI3WhcNMjUwMjIxMTUyNTI3WjAYMRYwFAYD VQQDEw02N2FmNjA2OC1kMzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GdcQI5NcsLwPzGo/kzxu8JnPTW6Vrr/2pIg0QbBRcP8BYOkhXNuh9AcC/wk eeWubRUkPGzzcYd2mACmw1elnIj6ANk6neeWvPkSQszd1FKHxdQUiMuFOMHrzRfQ nvHzhXGkUoOxunJ60Ak9rZOp6woY5XGrEE/KK24VbrzdgdzgW4QXC6MddM1IooTK rWqHu2Lon9X7kvoh5f5uoWjCCS6B3beR+mN1G3or/FFuFDXLD7wuzlXtjWkA8NSD 0Ah5koVgpTmngqiko9X33DWCSADa/aOs4kI8tbgpy9DV61ISYYGmsTyEpXaezaOJ vV63W7GobmBrG01yXZnMEX03AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwfGGxN sB/VgrBMduWj3NlaxjzYMB8GA1UdIwQYMBaAFH0EUWWymmivy4uoFZnOMGdFRP2P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi83QTc1MEEwQTJE RDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFLX0xpNmdWbWM0d1owVkVf WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZRUlJaYkthYUtfTGk2Z1ZtYzR3WjBWRV9ZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi83QTc1MEEwQTJERDgxMUVBOUMzNTIwNURDNEY5QUUwMi9mUVJSWmJLYWFL X0xpNmdWbWM0d1owVkVfWTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE1dcOK04ks7mhZjqiYeI8NG5ATwYdOTkxIskwy9TUJ6NGYbT71+p8 iVcUPP5aaJzNnL7ImwrrsnNG3pQOx807z+cnLRKvsQU14+IXCGPUYe5HN0TFzHq7 bBd9C4ewCi/oyLcWQiir3i3dSIxM1lm5BB3A9wgvx56hXZjpqzLeh862BOE0xbJs /39UqMJXlVjw/nOMBlCt6Uc5UMBQxgpuD+sHOBKVQ+augCItw4SuTIf6GI8QZcgg 9127gpit0TUlEdEZiyJ1AriqrW6+Mze/LdeGTBBWGFK+y2teu0/bEr5oiJYbdlts cPatIHN70LHP4+mN4/LcQghYtuJbGL0z -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:39 2025 by rpki-client