$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft File: lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft (raw, json) Hash identifier: nOoWIz7OLTdGP4gxuzt2Z0nilFBylIAxHGexJw4QKkw= Subject key identifier: 23:F2:6E:67:86:E8:24:9D:2B:F3:7F:58:0B:06:6C:8F:9C:DD:76:45 Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft Manifest number: 01A3 Signing time: Sat 15 Feb 2025 04:20:44 +0000 Manifest this update: Sat 15 Feb 2025 04:20:43 +0000 Manifest next update: Sat 22 Feb 2025 04:20:43 +0000 Files and hashes: 1: lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl (hash: /CriGyRU+aK1bbc7GhyyXyEIpA6ep83M54NRLOXDDI0=) 2: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (hash: inCWlFg4eyi3SZb4mhg7QgWhnaX3zI3I9iGqmhoauLc=) 3: 9ADB02A27F4E11EDB22F3582C4F9AE02.roa (hash: 9Oyy54xhiWuTllhGlORwlpgALp6JCiYOJTYLu9JoBj0=) 4: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (hash: 5EKiWHDPeMiKNhe7uJ6GnZoz2bb2Ob3eC5qrY4BOvLk=) 5: 912586FA7F4F11ED96FDE369C4F9AE02.roa (hash: vg/uug9ogWENghuoz8JvK8TWhFT7WTN1jNAJcLX1AUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F Validity Not Before: Feb 15 04:20:43 2025 GMT Not After : Feb 22 04:20:43 2025 GMT Subject: CN=67b0161b-3068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:eb:a1:12:24:e0:76:4f:f0:44:25:45:36:ba: 65:37:5f:e9:2f:de:3e:aa:95:c3:31:34:cc:e7:c7: 56:24:ca:b6:56:fa:8c:1b:d4:b3:4a:55:df:35:e5: 0e:0a:ff:29:a1:8f:96:34:9e:02:75:3e:ae:d5:64: e2:cd:63:8b:0d:c8:b3:e5:5e:ca:7b:2f:59:14:d5: 73:45:48:92:cc:0d:a3:03:bd:cc:f8:7a:6d:d8:4e: 1a:ce:0d:28:81:e8:3a:63:6d:81:af:89:65:09:d2: f7:c7:db:83:29:80:c9:cf:e1:f6:ca:a9:d3:e1:5a: 26:95:8b:04:80:13:f8:31:6d:11:7b:06:c9:18:8d: df:28:d7:f9:f3:05:51:6a:63:24:41:f7:ac:c4:dc: 95:5a:e0:86:d2:3b:47:4b:c8:8b:ee:e5:00:75:2f: e9:26:ae:ca:8a:d0:2b:e8:2c:0a:6d:83:7a:59:5b: d5:92:aa:0e:18:d0:08:8d:ae:4c:68:40:75:bf:45: a7:d3:4a:e2:c4:37:ff:37:e7:4d:5e:b2:0b:35:b9: 73:a5:dd:aa:5a:38:fb:34:e2:46:bf:ca:8a:9b:29: 71:2c:6c:ae:cd:16:f1:58:37:67:75:2c:84:55:86: b4:2c:f5:11:2e:61:3e:1c:6d:11:5f:6a:f1:51:0f: 7b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F2:6E:67:86:E8:24:9D:2B:F3:7F:58:0B:06:6C:8F:9C:DD:76:45 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:87:65:1c:c9:80:58:35:3d:1c:ed:6d:5d:9d:e6:8e:ae:d9: 18:b7:13:e7:77:9d:29:74:8d:1d:2a:3a:57:da:80:6f:8e:d4: e7:aa:a2:43:00:be:10:d5:89:27:76:b3:dc:ad:3a:0c:bb:5c: 2d:66:50:c2:71:a7:97:53:be:db:60:c9:63:77:8e:03:a9:88: 71:3a:87:d6:4c:0a:3f:57:76:76:b5:98:95:bb:5c:ba:4b:3e: b9:d4:39:5d:3d:45:f5:36:c6:ad:78:c2:1a:9f:df:cf:59:e8: 6d:f3:18:87:99:85:cc:9e:c6:9c:fb:79:4d:f2:0f:1a:f6:df: e2:27:3e:63:4e:a1:a1:10:fe:c7:99:c8:14:a6:85:95:78:ce: 5a:c5:8e:bf:7f:5a:a8:e0:84:98:78:73:dd:a6:b2:84:97:11: 65:13:b5:77:06:58:a2:e4:92:31:47:6d:b6:a1:00:2a:18:18: 78:30:d7:fd:f9:8a:93:cc:65:2b:38:9d:d5:19:4e:2c:c0:e5: de:09:d4:0a:ad:70:7f:ab:b8:db:4d:fe:9b:b9:ed:e3:9c:44: 0e:0a:03:f1:d5:90:8b:f6:92:7e:54:6c:8a:25:db:72:20:6e: e0:c0:1b:56:94:bc:ae:26:f7:0a:b3:81:46:8e:b5:f5:e4:a1: ea:93:2b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUwMjE1MDQyMDQzWhcNMjUwMjIyMDQyMDQzWjAYMRYwFAYD VQQDEw02N2IwMTYxYi0zMDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OuhEiTgdk/wRCVFNrplN1/pL94+qpXDMTTM58dWJMq2VvqMG9SzSlXfNeUO Cv8poY+WNJ4CdT6u1WTizWOLDciz5V7Key9ZFNVzRUiSzA2jA73M+Hpt2E4azg0o geg6Y22Br4llCdL3x9uDKYDJz+H2yqnT4VomlYsEgBP4MW0RewbJGI3fKNf58wVR amMkQfesxNyVWuCG0jtHS8iL7uUAdS/pJq7KitAr6CwKbYN6WVvVkqoOGNAIja5M aEB1v0Wn00rixDf/N+dNXrILNblzpd2qWjj7NOJGv8qKmylxLGyuzRbxWDdndSyE VYa0LPURLmE+HG0RX2rxUQ97rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCPybmeG 6CSdK/N/WAsGbI+c3XZFMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0UzRi8zMDVFQjg3NjdDREIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRU aTBkelJWUzJrRk1SRFVXLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARh2UcyYBYNT0c7W1dneaOrtkYtxPnd50pdI0dKjpX2oBvjtTnqqJD AL4Q1YkndrPcrToMu1wtZlDCcaeXU77bYMljd44DqYhxOofWTAo/V3Z2tZiVu1y6 Sz651DldPUX1NsateMIan9/PWeht8xiHmYXMnsac+3lN8g8a9t/iJz5jTqGhEP7H mcgUpoWVeM5axY6/f1qo4ISYeHPdprKElxFlE7V3Blii5JIxR222oQAqGBh4MNf9 +YqTzGUrOJ3VGU4swOXeCdQKrXB/q7jbTf6bue3jnEQOCgPx1ZCL9pJ+VGyKJdty IG7gwBtWlLyuJvcKs4FGjrX15KHqkyvO -----END CERTIFICATE-----Generated at Sun Feb 16 15:05:48 2025 by rpki-client