$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: tOAEUJcI/PtYunX8uL4butz762K8ck6Bx2I4YMHW188= Subject key identifier: 73:09:DC:51:95:AB:B0:5E:02:50:AA:61:75:0B:2A:7C:75:14:9D:BD Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 086F Signing time: Fri 14 Feb 2025 21:36:56 +0000 Manifest this update: Fri 14 Feb 2025 21:36:55 +0000 Manifest next update: Fri 21 Feb 2025 21:36:55 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: xfsTy30KdWVDipVoCie2vXwS6N0pVikH3yNOv1U/jkc=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: KT6K45U/vV1zQkhhfiaxr9a9XeTKLIwG0eEDcyR3ERI=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9 Validity Not Before: Feb 14 21:36:55 2025 GMT Not After : Feb 21 21:36:55 2025 GMT Subject: CN=67afb777-0e1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:73:d9:0a:bf:e4:88:7c:1c:c7:87:2c:a1:40: 31:80:2c:a6:01:9c:5c:33:90:90:be:ae:e4:7f:9c: ac:82:d5:7d:22:82:5a:9b:67:cb:28:4d:ac:5e:69: 6c:3b:8c:8f:27:7d:91:fa:e2:e1:37:7e:1c:09:c9: 32:c7:b6:2c:cf:57:d5:f3:bf:f7:29:5a:bc:07:c5: 47:72:00:d7:88:e0:12:3a:14:db:6f:cd:bd:df:07: 7d:ef:e0:0e:0e:9e:5f:ef:80:44:36:01:08:03:16: 95:7e:3f:f7:3c:44:c2:3e:61:2c:45:d0:be:db:12: 73:15:ba:3f:01:1a:71:56:4b:3f:d9:f5:e0:ac:34: 00:2b:12:09:c3:af:ad:db:77:3f:07:84:64:58:f9: 63:ce:ec:e3:c5:91:f8:6d:3f:ff:49:9a:7f:54:19: 0c:91:a0:63:7e:c5:95:2f:10:fa:80:8d:fa:61:35: 9f:f4:32:11:75:b3:fa:4c:43:0d:ca:fa:97:4c:b9: 2c:17:ee:b7:37:39:3a:88:8d:26:ab:64:95:ac:92: 8e:29:26:7f:08:9e:d2:c5:b2:f1:94:36:2a:bd:16: 9c:11:59:63:c5:37:92:90:5a:35:ab:ad:a0:ea:f9: a0:fd:dc:8b:1a:86:ac:62:1a:a9:d0:be:15:c6:ee: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:09:DC:51:95:AB:B0:5E:02:50:AA:61:75:0B:2A:7C:75:14:9D:BD X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:b7:91:de:9a:1c:d4:e9:90:c2:6c:ce:42:9c:94:d7:dc:fb: b1:d3:78:8f:5f:e3:1d:68:6b:1e:2a:32:9c:d3:fb:c3:de:29: f6:3c:1b:25:3c:a2:25:1e:8a:3f:08:41:49:a6:36:ff:5d:d6: 14:03:90:96:fc:af:02:2c:f2:11:91:00:72:13:c5:49:b8:87: d1:19:40:ac:ba:45:39:56:4c:29:76:4f:59:ff:b5:fc:4d:3b: 2b:dc:23:b0:80:37:45:fc:cd:e9:d8:4d:5b:9d:c8:97:c3:e5: 70:77:14:25:6b:e0:e9:64:f6:da:41:dc:ed:29:14:80:4c:2c: 24:88:c4:2a:9b:df:d3:13:78:d0:ea:87:c7:24:4a:55:89:b4: 49:8a:1d:0f:be:c5:94:e8:ff:ab:05:99:65:7c:84:21:53:a0: 02:80:9a:9c:9e:63:4a:fe:9f:d7:7a:fe:d2:28:ef:07:f2:93: 4d:1a:d5:af:53:dc:5a:15:5e:2b:fd:f5:fe:43:67:df:3e:2b: da:be:0b:9b:cf:3d:eb:56:d6:65:ab:38:1d:75:c0:58:62:99: 0b:9f:4f:7d:db:20:2c:30:4c:12:85:d1:ef:f3:b6:ed:d4:7d: 38:87:51:77:07:5c:f2:fd:49:14:6a:7c:d9:fc:50:72:2d:28: 27:12:fa:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwMjE0MjEzNjU1WhcNMjUwMjIxMjEzNjU1WjAYMRYwFAYD VQQDEw02N2FmYjc3Ny0wZTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HPZCr/kiHwcx4csoUAxgCymAZxcM5CQvq7kf5ysgtV9IoJam2fLKE2sXmls O4yPJ32R+uLhN34cCckyx7Ysz1fV87/3KVq8B8VHcgDXiOASOhTbb8293wd97+AO Dp5f74BENgEIAxaVfj/3PETCPmEsRdC+2xJzFbo/ARpxVks/2fXgrDQAKxIJw6+t 23c/B4RkWPljzuzjxZH4bT//SZp/VBkMkaBjfsWVLxD6gI36YTWf9DIRdbP6TEMN yvqXTLksF+63Nzk6iI0mq2SVrJKOKSZ/CJ7SxbLxlDYqvRacEVljxTeSkFo1q62g 6vmg/dyLGoasYhqp0L4Vxu7xQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHMJ3FGV q7BeAlCqYXULKnx1FJ29MB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAot5HemhzU6ZDCbM5CnJTX3Pux03iPX+MdaGseKjKc0/vD3in2PBsl PKIlHoo/CEFJpjb/XdYUA5CW/K8CLPIRkQByE8VJuIfRGUCsukU5Vkwpdk9Z/7X8 TTsr3COwgDdF/M3p2E1bnciXw+VwdxQla+DpZPbaQdztKRSATCwkiMQqm9/TE3jQ 6ofHJEpVibRJih0PvsWU6P+rBZllfIQhU6ACgJqcnmNK/p/Xev7SKO8H8pNNGtWv U9xaFV4r/fX+Q2ffPivavgubzz3rVtZlqzgddcBYYpkLn0992yAsMEwShdHv87bt 1H04h1F3B1zy/UkUanzZ/FByLSgnEvo0 -----END CERTIFICATE-----Generated at Sun Feb 16 20:12:44 2025 by rpki-client