$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: X10DSBq70PMmaA++71j259rhIv3NvildY/XzTBp0I14= Subject key identifier: 5B:4C:70:54:27:C9:22:B3:A3:24:C5:AC:B1:01:D2:81:DE:61:44:76 Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 0F Signing time: Wed 05 Feb 2025 06:30:34 +0000 Manifest this update: Wed 05 Feb 2025 06:30:34 +0000 Manifest next update: Wed 12 Feb 2025 06:30:34 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: 2KfA5MOskhbCxq0Y0Cfi2Ih4tQMRyOnM7YMIdc938t0=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: PORQCBDGSlwilkpipBB8A0mqgYc20HJgljabtkGa8CI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083 Validity Not Before: Feb 5 06:30:34 2025 GMT Not After : Feb 12 06:30:34 2025 GMT Subject: CN=67a3058a-cba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:f8:2e:cc:91:4e:00:2e:7e:f5:e6:25:8d: 4f:ee:02:80:32:39:4d:6c:f2:82:38:9f:8e:8a:5b: 25:75:f2:3b:c9:02:ac:5f:1f:f6:02:5b:3a:bb:ab: 87:4c:32:21:51:ce:ff:a3:be:74:65:b8:74:f6:bd: 0c:a6:32:5e:a9:74:85:97:a1:77:07:29:51:29:d7: 77:cb:f0:b6:86:95:10:bf:9f:04:1d:d9:5d:fb:68: a5:81:ea:11:c6:40:c4:08:59:35:f9:82:bb:c1:78: 34:50:94:02:19:6c:16:e9:3d:11:e4:8a:cf:2a:79: f3:dd:56:a0:63:9f:af:b1:59:f9:1d:47:ba:06:c8: 35:fe:dd:3b:9d:7b:5c:71:b2:f3:1c:4b:f8:ad:ec: 11:f8:4a:35:a4:39:54:16:9d:1c:72:a0:ca:9e:d1: 78:53:34:8a:89:5c:54:46:a1:e7:06:ff:7c:64:f7: c2:a3:95:bd:25:43:e5:05:9f:c6:b5:27:86:31:1b: 5d:31:6c:9b:7b:1b:19:fa:6b:21:34:cb:8a:79:c7: 72:da:14:09:03:5e:d0:62:c0:dc:0d:00:61:1e:b6: 9e:bf:49:ec:d0:be:b3:59:01:de:21:76:8e:9a:df: a8:b6:62:a1:e0:30:ec:07:32:04:54:97:5e:81:3f: 08:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:4C:70:54:27:C9:22:B3:A3:24:C5:AC:B1:01:D2:81:DE:61:44:76 X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:f7:9a:71:c7:66:ef:0d:da:4f:bc:99:44:d9:44:dd:3d:07: 55:e5:70:d6:27:56:79:f7:85:30:8e:35:8a:55:ed:d3:01:76: 0c:d8:8e:06:6e:55:f5:68:6b:b5:98:de:1c:58:d7:c3:63:56: ae:40:1a:5c:2f:d7:05:19:94:50:f4:de:5e:92:5e:9a:d5:e4: 2a:8d:97:91:3a:c5:25:77:9a:1f:42:bb:69:d4:c1:a8:53:8c: fa:a9:a5:ed:8d:e4:5d:83:14:8e:d5:50:bf:54:89:c0:05:01: 5b:8c:f4:d4:96:41:65:30:40:7b:9c:bf:03:df:c0:df:a3:43: 90:06:50:aa:7e:1d:ef:e9:c5:2c:6c:8a:ba:8e:f6:cc:f2:8a: 59:5b:a2:ae:ec:35:87:45:70:f8:5c:2a:02:84:74:aa:12:ad: 17:b6:d4:4c:a7:46:11:aa:9f:33:01:08:88:cd:f9:2a:55:55: ce:37:a8:1e:1a:fa:7c:39:2d:6d:d7:81:43:c9:45:16:24:49: 12:f4:56:3c:47:78:e1:c4:42:9a:8b:c8:c3:26:05:1b:85:fb: bf:25:2d:25:e2:19:78:a2:5a:2a:11:de:51:bb:bd:61:10:af: 1a:c9:73:b9:35:4c:8d:38:36:b2:55:3e:ae:aa:cb:c1:9a:16: 3e:02:9d:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoNjk0RjU2MUI2M0RBN0NDNTc3OTMxNjM2RDQ3ODhBRDJC MEI0QUUyMDAeFw0yNTAyMDUwNjMwMzRaFw0yNTAyMTIwNjMwMzRaMBgxFjAUBgNV BAMTDTY3YTMwNThhLWNiYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIZPguzJFOAC5+9eYljU/uAoAyOU1s8oI4n46KWyV18jvJAqxfH/YCWzq7q4dM MiFRzv+jvnRluHT2vQymMl6pdIWXoXcHKVEp13fL8LaGlRC/nwQd2V37aKWB6hHG QMQIWTX5grvBeDRQlAIZbBbpPRHkis8qefPdVqBjn6+xWfkdR7oGyDX+3Tude1xx svMcS/it7BH4SjWkOVQWnRxyoMqe0XhTNIqJXFRGoecG/3xk98Kjlb0lQ+UFn8a1 J4YxG10xbJt7Gxn6ayE0y4p5x3LaFAkDXtBiwNwNAGEetp6/SezQvrNZAd4hdo6a 36i2YqHgMOwHMgRUl16BPwipAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUW0xwVCfJ IrOjJMWssQHSgd5hRHYwHwYDVR0jBBgwFoAUaU9WG2PafMV3kxY21HiK0rC0riAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0M4NkNEODA2RDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVU5V0cyUGFmTVYza3hZMjFIaUswckMwcmlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MDgzL0M4NkNEODA2RDFCMDExRUY4ODMzQzkzM0M0RjlBRTAyL2FVOVdHMlBhZk1W M2t4WTIxSGlLMHJDMHJpQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABT3mnHHZu8N2k+8mUTZRN09B1XlcNYnVnn3hTCONYpV7dMBdgzYjgZu VfVoa7WY3hxY18NjVq5AGlwv1wUZlFD03l6SXprV5CqNl5E6xSV3mh9Cu2nUwahT jPqppe2N5F2DFI7VUL9UicAFAVuM9NSWQWUwQHucvwPfwN+jQ5AGUKp+He/pxSxs irqO9szyillboq7sNYdFcPhcKgKEdKoSrRe21EynRhGqnzMBCIjN+SpVVc43qB4a +nw5LW3XgUPJRRYkSRL0VjxHeOHEQpqLyMMmBRuF+78lLSXiGXiiWioR3lG7vWEQ rxrJc7k1TI04NrJVPq6qy8GaFj4CnaM= -----END CERTIFICATE-----Generated at Thu Feb 6 05:14:50 2025 by rpki-client