$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft File: votHM7Guikc2t-kTJzPWVAkePSs.mft (raw, json) Hash identifier: JZ6CsO+x65hi7KRUdxhWasozl9Tnk0wfCiUSy/axFx0= Subject key identifier: D3:16:51:2F:DB:CE:2A:F6:87:F5:2C:E8:AE:36:3D:30:09:7D:18:07 Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B Certificate issuer: /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft Manifest number: 14 Signing time: Wed 05 Feb 2025 06:24:50 +0000 Manifest this update: Wed 05 Feb 2025 06:24:50 +0000 Manifest next update: Wed 12 Feb 2025 06:24:50 +0000 Files and hashes: 1: votHM7Guikc2t-kTJzPWVAkePSs.crl (hash: 1szcfwm3A/F3Xs2sB5g+nj2RhKh06Wl7rzCTDkvZXos=) 2: A3815188C9D211EFB961F44DC4F9AE02.roa (hash: q3EE6bhQvO1jqMvzi5TnaMDMrsSHuVeWmQU0kCxzZeQ=) 3: 63817B3AC9D211EFBC6F934DC4F9AE02.roa (hash: +20O4NUWPTxqKeXepVeDCO/g+GXNSbJwYfdmkDR6B2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9 Validity Not Before: Feb 5 06:24:50 2025 GMT Not After : Feb 12 06:24:50 2025 GMT Subject: CN=67a30432-af34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cd:c6:29:e3:fb:a3:0b:cd:8a:fb:93:e0:59: ef:e5:9a:19:7e:e4:f5:0a:09:b2:bf:d0:53:9e:0c: cb:03:92:0e:4f:1d:d0:cf:d2:b7:11:e2:c3:7c:0b: 2e:53:a5:a4:7b:08:b0:b3:af:4b:cc:7f:ad:3f:a1: cb:5e:07:86:93:77:2b:aa:6a:f8:25:04:5d:f1:a4: 73:9b:45:d9:1b:a1:ce:e3:82:44:13:04:bf:c2:ec: 99:63:5a:b5:41:f4:11:b6:89:34:c5:70:61:17:b5: 6c:ee:34:32:d2:3e:cb:b9:65:bf:31:3d:46:98:34: aa:60:59:c4:e8:18:b9:b4:8e:5d:2c:2b:2f:a3:e3: 64:7f:ad:86:96:16:01:5f:92:49:ed:44:6b:6a:9d: f3:94:ce:db:bd:22:f1:e2:7e:de:17:81:36:39:96: 24:7b:81:46:13:ff:6b:f5:90:1f:56:ce:b0:94:34: 3d:b3:83:b2:8d:c4:9b:3e:12:31:ff:ea:02:c2:e7: f1:f3:0a:7c:7f:c5:e5:fe:11:f0:6f:78:03:2d:3d: d7:eb:0d:7e:e6:25:f8:80:31:3c:13:b7:bd:f2:d7: bd:49:5e:24:d4:5b:dc:cf:fb:5b:f6:33:d2:c5:2c: 32:68:e6:61:71:0a:a3:c1:d1:8d:a8:5f:a3:1e:51: 8b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:16:51:2F:DB:CE:2A:F6:87:F5:2C:E8:AE:36:3D:30:09:7D:18:07 X509v3 Authority Key Identifier: keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:8c:ab:ee:dc:b9:30:d4:85:d1:0c:17:ae:79:de:8d:58:6d: a3:5f:85:17:fd:27:dd:7f:9a:24:c7:f8:cf:ba:e5:61:6a:0a: 94:b1:8c:eb:e7:31:4f:59:9f:41:49:7c:29:f6:9b:22:31:dd: 50:36:8d:4a:da:d8:42:52:47:47:fb:5c:21:8c:33:63:85:05: f5:c4:d3:9e:be:a7:79:ed:41:ee:bb:54:af:ee:db:cc:07:20: 20:1a:0a:86:bf:25:81:d0:2b:0d:3a:98:e8:1b:76:81:7b:fc: e6:55:b7:84:79:67:d4:32:72:73:eb:e7:4f:5b:b9:54:23:0a: 47:cd:e3:7a:c8:f8:e0:13:c5:f6:b7:95:b6:2d:c9:4d:7b:31: e0:51:f3:1a:46:a5:2e:dd:75:6f:f9:d2:ba:43:f9:d2:1a:75: e5:46:53:c5:16:f8:a4:73:d2:73:6f:3c:4f:5f:72:97:a4:ec: c3:6d:c6:62:cf:6b:95:6f:50:0b:24:cb:99:57:4d:54:46:4b: f6:9c:cc:51:db:4c:ee:d7:f9:1e:7e:1d:a4:dc:34:83:7b:5c: d6:38:80:66:5d:2b:1b:cc:b6:85:38:57:1b:5e:c6:77:ee:93: f6:59:4a:57:b5:c8:7e:8d:81:7e:1a:4c:08:96:3d:cb:a5:8f: c9:61:f8:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjNEOTExMC8GA1UEBRMoQkU4QjQ3MzNCMUFFOEE0NzM2QjdFOTEzMjczM0Q2NTQw OTFFM0QyQjAeFw0yNTAyMDUwNjI0NTBaFw0yNTAyMTIwNjI0NTBaMBgxFjAUBgNV BAMTDTY3YTMwNDMyLWFmMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqzcYp4/ujC82K+5PgWe/lmhl+5PUKCbK/0FOeDMsDkg5PHdDP0rcR4sN8Cy5T paR7CLCzr0vMf60/octeB4aTdyuqavglBF3xpHObRdkboc7jgkQTBL/C7JljWrVB 9BG2iTTFcGEXtWzuNDLSPsu5Zb8xPUaYNKpgWcToGLm0jl0sKy+j42R/rYaWFgFf kkntRGtqnfOUztu9IvHift4XgTY5liR7gUYT/2v1kB9WzrCUND2zg7KNxJs+EjH/ 6gLC5/HzCnx/xeX+EfBveAMtPdfrDX7mJfiAMTwTt73y171JXiTUW9zP+1v2M9LF LDJo5mFxCqPB0Y2oX6MeUYuJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0xZRL9vO KvaH9SzorjY9MAl9GAcwHwYDVR0jBBgwFoAUvotHM7Guikc2t+kTJzPWVAkePSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyM0Q5LzdCOEJENkNDQzlE MTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtjMnQta1RKelBXVkFrZVBT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdm90SE03R3Vpa2MydC1rVEp6UFdWQWtlUFNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy M0Q5LzdCOEJENkNDQzlEMTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtj MnQta1RKelBXVkFrZVBTcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAOMq+7cuTDUhdEMF6553o1YbaNfhRf9J91/miTH+M+65WFqCpSxjOvn MU9Zn0FJfCn2myIx3VA2jUra2EJSR0f7XCGMM2OFBfXE056+p3ntQe67VK/u28wH ICAaCoa/JYHQKw06mOgbdoF7/OZVt4R5Z9QycnPr509buVQjCkfN43rI+OATxfa3 lbYtyU17MeBR8xpGpS7ddW/50rpD+dIadeVGU8UW+KRz0nNvPE9fcpek7MNtxmLP a5VvUAsky5lXTVRGS/aczFHbTO7X+R5+HaTcNIN7XNY4gGZdKxvMtoU4Vxtexnfu k/ZZSle1yH6NgX4aTAiWPculj8lh+DE= -----END CERTIFICATE-----Generated at Wed Feb 5 19:56:12 2025 by rpki-client