$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: V7fSwmACerGGcrYC4eJliUXpGSAGwRXop6NiacZjbfU= Subject key identifier: 25:0A:50:CE:DF:FC:0A:76:2D:BE:02:FF:36:94:C2:9C:55:F4:78:D1 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: D4 Signing time: Sat 15 Feb 2025 06:46:31 +0000 Manifest this update: Sat 15 Feb 2025 06:46:31 +0000 Manifest next update: Sat 22 Feb 2025 06:46:31 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: 98p1jnoNmLPCEMVyCexgYvWOJ7YgDE6EkXw4lb53hfs=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: 8zPxRe7MaH+hS0FNXaje7YOQ+Hnyx7RIa4mbg2ZFLUE=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: Oms7A+5CbFEtaIgmT8kB8Ycz88DQ95dp9Wjdw3xeV+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1 Validity Not Before: Feb 15 06:46:31 2025 GMT Not After : Feb 22 06:46:31 2025 GMT Subject: CN=67b03847-71f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c3:e5:94:3d:11:52:49:5d:28:a3:ab:cf:2b: 4b:66:10:35:a7:25:4c:1f:36:85:10:73:3c:76:da: b0:7c:89:6b:09:31:d3:d9:83:fc:11:92:e6:9d:3d: 33:6d:5d:3b:c8:62:09:8c:18:89:1a:0f:a6:49:ca: 8a:a7:ea:be:69:39:78:8f:7c:e6:31:5a:c7:b2:e4: 8f:56:2c:e4:bc:02:b0:ed:29:f7:1a:c7:db:0d:1e: ae:75:18:6a:1a:b2:ca:0f:1d:18:63:38:a7:1b:ce: 39:85:eb:9c:86:73:34:af:8c:fc:b3:67:aa:91:f5: b2:fa:4e:b8:88:f0:5a:18:3f:7f:83:7c:df:df:63: c8:54:f7:5b:26:db:c8:6f:e7:f7:f5:b8:2b:7c:51: fa:de:81:57:3f:71:ac:8d:5a:42:5c:0f:09:2b:8c: cd:f9:af:99:e3:84:9e:1d:96:26:46:50:2c:63:8f: 6b:68:57:68:e2:86:72:50:d1:02:8e:ec:65:7f:8b: d6:9d:79:6d:d7:82:c1:4a:95:61:2a:5c:c5:48:9c: 19:58:f0:54:a6:51:69:f5:97:06:28:f8:a8:ab:6c: c4:ac:f2:10:d3:af:53:db:f9:a3:08:58:9f:fb:e8: 7b:8e:56:f8:eb:37:34:9d:f5:ca:2d:3d:8f:e7:60: a3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:0A:50:CE:DF:FC:0A:76:2D:BE:02:FF:36:94:C2:9C:55:F4:78:D1 X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:b0:ad:c9:61:e0:0f:a5:56:47:c6:b1:6a:b9:0e:57:20:d8: 84:e6:d8:f0:08:ac:1f:e4:ed:2f:9c:6e:a8:5f:f3:51:29:96: b6:05:42:d3:8a:b7:e8:e6:37:0b:10:b2:bf:f2:68:b1:80:dc: 94:65:9f:d4:0a:5b:9c:19:87:f2:bc:a8:3a:22:32:a9:5b:6e: 43:83:53:59:93:81:d3:9f:3d:74:f6:e0:f8:0d:a3:09:dd:31: 40:26:5d:a8:1a:00:14:10:31:bc:6f:ce:89:85:60:62:93:af: c8:7e:27:12:ca:71:56:84:90:65:07:30:c3:d3:43:91:ea:28: f2:92:80:c3:db:74:f7:36:57:3d:54:d5:1f:df:2f:d4:4d:4a: 52:b7:b3:a5:c5:2a:cd:2f:04:5f:34:e1:33:32:f6:00:47:4c: 7d:89:26:6b:1b:1e:c8:56:54:00:31:07:b0:e7:ff:d1:0a:28: f9:31:e1:a5:ef:5c:ac:8b:06:a4:c6:13:03:2d:e2:83:c5:64: 4b:f0:bb:02:d3:d8:13:94:eb:82:27:f3:99:be:08:51:87:57: 97:23:f8:3a:4d:d5:23:8d:60:4c:f6:01:5b:41:67:17:81:e9: a0:6d:60:ae:49:f8:2b:30:68:0f:b3:fe:9d:7d:77:df:b7:19: 3c:38:70:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUwMjE1MDY0NjMxWhcNMjUwMjIyMDY0NjMxWjAYMRYwFAYD VQQDEw02N2IwMzg0Ny03MWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48PllD0RUkldKKOrzytLZhA1pyVMHzaFEHM8dtqwfIlrCTHT2YP8EZLmnT0z bV07yGIJjBiJGg+mScqKp+q+aTl4j3zmMVrHsuSPVizkvAKw7Sn3GsfbDR6udRhq GrLKDx0YYzinG845heuchnM0r4z8s2eqkfWy+k64iPBaGD9/g3zf32PIVPdbJtvI b+f39bgrfFH63oFXP3GsjVpCXA8JK4zN+a+Z44SeHZYmRlAsY49raFdo4oZyUNEC juxlf4vWnXlt14LBSpVhKlzFSJwZWPBUplFp9ZcGKPioq2zErPIQ069T2/mjCFif ++h7jlb46zc0nfXKLT2P52Cj6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUKUM7f /Ap2Lb4C/zaUwpxV9HjRMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtsK3JYeAPpVZHxrFquQ5XINiE5tjwCKwf5O0vnG6oX/NRKZa2BULT irfo5jcLELK/8mixgNyUZZ/UClucGYfyvKg6IjKpW25Dg1NZk4HTnz109uD4DaMJ 3TFAJl2oGgAUEDG8b86JhWBik6/IficSynFWhJBlBzDD00OR6ijykoDD23T3Nlc9 VNUf3y/UTUpSt7OlxSrNLwRfNOEzMvYAR0x9iSZrGx7IVlQAMQew5//RCij5MeGl 71ysiwakxhMDLeKDxWRL8LsC09gTlOuCJ/OZvghRh1eXI/g6TdUjjWBM9gFbQWcX gemgbWCuSfgrMGgPs/6dfXfftxk8OHCD -----END CERTIFICATE-----Generated at Sun Feb 16 20:36:11 2025 by rpki-client