$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: OWVp7BiK03Quz7uTT4P0fTyUNoXWqDEXhYYpqtiusg0= Subject key identifier: CD:81:3F:64:A2:B4:D7:D0:B9:B8:9E:B1:48:8C:F4:9E:35:B3:CF:84 Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: 63 Signing time: Sat 15 Feb 2025 08:11:20 +0000 Manifest this update: Sat 15 Feb 2025 08:11:20 +0000 Manifest next update: Sat 22 Feb 2025 08:11:20 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: IMdPxQV0FJ023SQPUc9GS4XPPh8DxG+dBCV0ie14/MU=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: FxzQ/fIjW3ehlt8HpKRH7n5BfwlAuKegJIAFiGlOhTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57 Validity Not Before: Feb 15 08:11:20 2025 GMT Not After : Feb 22 08:11:20 2025 GMT Subject: CN=67b04c28-0e66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:36:d6:fe:b3:93:aa:36:62:01:25:d4:24:38: c5:1f:19:45:74:74:e4:77:bb:2b:4f:ff:51:5e:8b: 23:5c:24:c7:95:6e:1a:3f:57:dc:7d:e4:d3:8f:0d: e3:aa:8b:9f:b6:db:9e:22:24:f0:d1:82:07:25:f7: 5b:01:0d:1f:32:51:9a:2f:75:b0:ca:98:a1:50:f5: e3:10:29:60:92:f1:77:2b:33:e0:cf:6b:03:88:1f: 9b:f3:ba:c6:b3:64:36:41:6b:2a:3d:e7:ba:48:f3: ce:90:a6:c9:45:a6:56:2e:42:be:cb:75:3f:6b:c8: d3:a6:2d:ba:ce:21:d8:1b:82:58:a0:0d:ba:f7:f6: d6:ea:70:73:d7:96:a6:88:56:e1:d1:2d:19:4b:e2: 8e:01:31:79:5b:df:9c:9b:32:eb:44:93:86:00:14: 9c:66:de:ed:4e:a8:f4:13:24:5e:89:a8:65:af:35: 76:ae:11:9f:b8:17:8e:26:20:e1:25:5b:b3:1b:a4: 3f:4c:04:64:1c:de:88:88:80:65:37:af:d0:b4:f5: c7:00:61:53:c9:c9:fe:c0:f7:a9:b0:59:ca:46:45: 22:f2:f0:36:27:f2:76:75:73:f1:c0:0f:be:14:6a: 01:24:bf:c6:e6:6d:81:40:c3:48:91:f7:b4:0a:bb: d4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:81:3F:64:A2:B4:D7:D0:B9:B8:9E:B1:48:8C:F4:9E:35:B3:CF:84 X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d9:a6:17:a2:9d:8d:f5:f4:34:31:09:4d:7a:2a:3c:8d:a3: 24:b7:59:76:d5:44:0c:40:70:15:51:4d:90:90:90:25:0d:b6: 81:5f:7f:8c:5c:53:e6:ef:c0:0e:fa:96:96:0d:c1:ac:9d:63: 65:1b:8e:77:9b:c8:21:85:48:bc:7b:14:f3:2f:aa:49:65:16: e1:2a:14:0a:c3:5a:27:e9:5b:fa:40:2f:ca:1b:af:f9:1e:68: 95:2b:be:54:ea:21:15:a2:2a:26:b3:b4:1b:12:7d:3b:62:6f: 69:9e:d9:65:a4:7e:34:18:68:4a:93:13:ab:10:af:ff:79:13: ca:15:8f:09:db:1e:da:1e:56:15:75:ed:4e:80:da:09:47:7d: 4f:07:63:e4:73:42:40:e4:cc:02:36:c5:02:2c:a7:ed:89:b8: 37:b5:58:81:c5:d0:26:5d:21:01:6e:be:d3:c9:b5:71:98:7f: ac:3d:6b:9c:7e:29:1c:5b:50:dd:c3:d8:25:28:dd:90:cb:16: 7d:ab:52:fb:a0:03:46:90:0b:b8:63:e7:83:f3:7d:86:8c:4b: fb:85:b9:e3:13:d9:f2:ed:fe:a6:72:82:3f:cb:65:24:f7:ff: 9c:4c:e6:fe:ba:92:a3:d8:fb:13:23:ad:18:bc:9e:0f:d4:9a: a9:4b:e0:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE1NzExMC8GA1UEBRMoRDlDNUQ4MkFCRDMwRkREMjBGQTlDQUYzRDFFRDg2N0RC MDc2OTU2QjAeFw0yNTAyMTUwODExMjBaFw0yNTAyMjIwODExMjBaMBgxFjAUBgNV BAMTDTY3YjA0YzI4LTBlNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuNtb+s5OqNmIBJdQkOMUfGUV0dOR3uytP/1FeiyNcJMeVbho/V9x95NOPDeOq i5+2254iJPDRggcl91sBDR8yUZovdbDKmKFQ9eMQKWCS8XcrM+DPawOIH5vzusaz ZDZBayo957pI886QpslFplYuQr7LdT9ryNOmLbrOIdgbgligDbr39tbqcHPXlqaI VuHRLRlL4o4BMXlb35ybMutEk4YAFJxm3u1OqPQTJF6JqGWvNXauEZ+4F44mIOEl W7MbpD9MBGQc3oiIgGU3r9C09ccAYVPJyf7A96mwWcpGRSLy8DYn8nZ1c/HAD74U agEkv8bmbYFAw0iR97QKu9RfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzYE/ZKK0 19C5uJ6xSIz0njWzz4QwHwYDVR0jBBgwFoAU2cXYKr0w/dIPqcrz0e2GfbB2lWsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTU3LzZFNzQ4MzEwNTZF QzExRUY4QTBDQjI0RkM0RjlBRTAyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxX cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMmNYWUtyMHdfZElQcWNyejBlMkdmYkIybFdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTU3LzZFNzQ4MzEwNTZFQzExRUY4QTBDQjI0RkM0RjlBRTAyLzJjWFlLcjB3X2RJ UHFjcnowZTJHZmJCMmxXcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB/ZpheinY319DQxCU16KjyNoyS3WXbVRAxAcBVRTZCQkCUNtoFff4xc U+bvwA76lpYNwaydY2UbjnebyCGFSLx7FPMvqkllFuEqFArDWifpW/pAL8obr/ke aJUrvlTqIRWiKiaztBsSfTtib2me2WWkfjQYaEqTE6sQr/95E8oVjwnbHtoeVhV1 7U6A2glHfU8HY+RzQkDkzAI2xQIsp+2JuDe1WIHF0CZdIQFuvtPJtXGYf6w9a5x+ KRxbUN3D2CUo3ZDLFn2rUvugA0aQC7hj54PzfYaMS/uFueMT2fLt/qZygj/LZST3 /5xM5v66kqPY+xMjrRi8ng/UmqlL4FA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:28:29 2025 by rpki-client