$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: wpa/JRgPzpuXRuJ0KHQdA9wGVFHsAtwuHpUhSef+ktg= Subject key identifier: A3:74:38:98:45:17:2E:64:BE:94:37:8D:DB:2E:4D:72:E0:98:E2:15 Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 11 Signing time: Wed 05 Feb 2025 06:27:10 +0000 Manifest this update: Wed 05 Feb 2025 06:27:10 +0000 Manifest next update: Wed 12 Feb 2025 06:27:10 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: VvDNNy1jlRaUOm4d6m7oNPETGyn/Cgku4LsuSqvbRmI=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B Validity Not Before: Feb 5 06:27:10 2025 GMT Not After : Feb 12 06:27:10 2025 GMT Subject: CN=67a304be-289b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:2b:66:1a:72:e5:ae:7c:ba:ad:9d:a0:b0: c3:28:bc:65:c2:f6:eb:51:76:39:0e:8f:f3:74:4f: 72:73:5f:61:fa:28:d9:f3:37:92:a4:0d:31:3c:ff: 97:5a:08:92:8a:4d:38:e0:ef:86:b5:18:88:99:15: 7f:a3:a8:74:04:f3:c7:83:b9:5e:5d:4d:ec:c9:cf: 69:f2:de:e0:cf:84:11:47:11:d0:52:84:15:97:03: f5:0b:26:f9:fe:0a:97:5d:b7:5c:6d:3c:66:1a:a7: 54:4f:f9:6d:59:16:0d:d5:12:8c:b6:50:e9:fc:8a: 6c:eb:5e:70:e4:d6:62:99:0c:57:08:36:f2:31:c2: fd:87:03:0d:36:e0:00:e8:9c:e7:8e:c9:b8:69:db: 48:c1:37:c7:44:2f:c0:c9:1b:1a:00:8e:3d:03:7f: 88:cd:1f:5a:8b:75:d9:aa:15:2e:aa:8c:52:af:79: 30:5b:be:dc:d3:ec:d5:4a:38:b9:eb:f5:1a:b2:54: d2:93:40:b8:cd:f1:90:73:c0:d9:77:d9:f4:2f:05: f3:b8:57:a2:c8:69:59:24:cc:fb:f2:20:29:94:e7: 51:0f:c6:8d:74:fe:28:bf:cd:6f:0d:eb:8e:e7:1d: 6c:94:85:f1:fd:98:b7:66:22:22:9f:fb:4b:8b:2f: 16:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:74:38:98:45:17:2E:64:BE:94:37:8D:DB:2E:4D:72:E0:98:E2:15 X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:28:20:ea:22:40:3f:eb:d4:80:57:91:db:e3:3f:4d:8e:fa: 1c:28:d0:93:85:8d:ee:df:92:d0:64:99:5e:74:d0:cf:9e:c3: 76:88:7c:36:e6:3f:6f:73:20:dc:46:97:4e:fe:55:ec:c4:93: 7f:0c:20:4c:5d:96:22:a7:37:36:a4:49:ef:0e:36:60:c4:49: 4a:8b:1d:6c:1e:03:26:d4:f1:bf:a1:03:80:ee:42:7a:db:2f: 56:cb:eb:68:9d:da:76:b3:57:b9:b9:c7:5b:49:15:09:ef:24: 7d:7e:18:5f:e0:d3:40:fe:4f:85:91:b8:c5:da:bb:07:9d:e2: 60:5f:15:e3:8a:82:a6:14:77:b5:df:f7:58:d1:91:26:58:f1: e3:ad:ad:19:67:c0:e4:ac:d7:65:f1:18:76:73:ec:9a:86:b1: 83:2d:95:8c:4d:e1:38:94:cf:ce:d6:32:84:b5:df:e7:ff:53: 92:e5:6e:82:aa:56:89:7b:f7:e5:28:3d:d6:08:21:84:99:d6: 8b:00:9f:eb:ac:19:8a:03:a2:ff:92:10:bc:a6:f6:43:60:81: e0:86:ff:48:f4:19:64:78:d9:e1:b2:37:c3:59:78:37:55:4b: 27:d3:24:5d:a2:cd:85:3a:1a:fc:4c:b8:7a:bc:89:9a:f3:d8: 23:02:22:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoODUyMDQ2OTE1MTg1Rjg1NUUwOUVCMzQ0Nzg4MTM5NDMw RTc0MEYwNzAeFw0yNTAyMDUwNjI3MTBaFw0yNTAyMTIwNjI3MTBaMBgxFjAUBgNV BAMTDTY3YTMwNGJlLTI4OWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC25ytmGnLlrny6rZ2gsMMovGXC9utRdjkOj/N0T3JzX2H6KNnzN5KkDTE8/5da CJKKTTjg74a1GIiZFX+jqHQE88eDuV5dTezJz2ny3uDPhBFHEdBShBWXA/ULJvn+ Cpddt1xtPGYap1RP+W1ZFg3VEoy2UOn8imzrXnDk1mKZDFcINvIxwv2HAw024ADo nOeOybhp20jBN8dEL8DJGxoAjj0Df4jNH1qLddmqFS6qjFKveTBbvtzT7NVKOLnr 9RqyVNKTQLjN8ZBzwNl32fQvBfO4V6LIaVkkzPvyICmU51EPxo10/ii/zW8N647n HWyUhfH9mLdmIiKf+0uLLxZTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUo3Q4mEUX LmS+lDeN2y5NcuCY4hUwHwYDVR0jBBgwFoAUhSBGkVGF+FXgnrNEeIE5Qw50Dwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0U2MzVGNzk2Q0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFNCR2tWR0YtRlhnbnJORWVJRTVRdzUwRHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0U2MzVGNzk2Q0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZY Z25yTkVlSUU1UXc1MER3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC8oIOoiQD/r1IBXkdvjP02O+hwo0JOFje7fktBkmV500M+ew3aIfDbm P29zINxGl07+VezEk38MIExdliKnNzakSe8ONmDESUqLHWweAybU8b+hA4DuQnrb L1bL62id2nazV7m5x1tJFQnvJH1+GF/g00D+T4WRuMXauwed4mBfFeOKgqYUd7Xf 91jRkSZY8eOtrRlnwOSs12XxGHZz7JqGsYMtlYxN4TiUz87WMoS13+f/U5LlboKq Vol79+UoPdYIIYSZ1osAn+usGYoDov+SELym9kNggeCG/0j0GWR42eGyN8NZeDdV SyfTJF2izYU6GvxMuHq8iZrz2CMCIks= -----END CERTIFICATE-----Generated at Thu Feb 6 05:06:22 2025 by rpki-client