$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft File: iHgvgx82npb5eaJYXPJzyRbHtP0.mft (raw, json) Hash identifier: 7Hz1LkTk5ORICVFvQTRnGHXBtkqKXvMS3jhHcDhXqdg= Subject key identifier: AB:85:AA:18:59:8F:00:CE:B8:88:98:23:4E:EB:27:EB:09:64:4E:10 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft Manifest number: 0648 Signing time: Fri 14 Feb 2025 23:37:54 +0000 Manifest this update: Fri 14 Feb 2025 23:37:54 +0000 Manifest next update: Fri 21 Feb 2025 23:37:53 +0000 Files and hashes: 1: iHgvgx82npb5eaJYXPJzyRbHtP0.crl (hash: d9WzRxRkXKy2KEXE4g/06lYSaGXn4uSWntlAtG3j7ds=) 2: 0F425E96346711EFA663CD51C4F9AE02.roa (hash: QRognwJk9AvzC5yneK2dgTuODW0yL1x1QHdbXzDSYZ0=) 3: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (hash: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6 Validity Not Before: Feb 14 23:37:54 2025 GMT Not After : Feb 21 23:37:53 2025 GMT Subject: CN=67afd3d2-b931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:47:eb:df:63:13:35:8a:42:6e:9e:b7:db:aa: 5f:7a:68:57:8e:c9:e3:ab:fc:5b:65:ae:1c:f6:e8: 0a:93:80:89:a5:41:fe:1e:ca:f7:d3:aa:4c:69:92: 0f:17:8f:d1:c4:e0:ed:78:08:56:99:71:c9:a2:d1: 00:e7:67:3c:f7:9e:96:5f:d8:f5:ea:9c:f1:c8:87: 76:c3:fd:7a:a6:ce:18:57:2c:f4:bb:a3:a7:99:91: d5:37:43:c6:6f:22:0d:84:76:35:cd:10:23:1c:e7: b4:19:db:24:85:b1:13:03:f7:2f:95:6b:2e:37:11: 42:7f:9d:4b:7d:73:7d:ec:99:b8:56:d9:3d:5a:98: 28:a3:3e:34:a3:67:6c:79:8d:27:d0:17:71:ca:09: 6f:0d:b0:75:98:99:79:06:e7:d0:70:23:04:4b:ed: 9a:09:bb:93:d6:38:da:d3:ea:cb:1e:da:49:b9:96: a5:0b:28:a5:55:0b:5f:51:52:13:cc:47:96:ac:07: 7c:57:e0:7e:c0:02:89:17:8a:53:df:2b:00:84:14: d6:59:0a:f2:62:cc:1e:f9:c1:e8:07:ca:70:d8:6a: 8d:4e:0d:9e:6a:43:fd:c5:5f:f4:d0:7e:0f:4f:68: 78:56:6a:74:4f:fd:8e:a9:0d:f7:74:76:25:a7:3a: fd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:85:AA:18:59:8F:00:CE:B8:88:98:23:4E:EB:27:EB:09:64:4E:10 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:23:be:18:76:47:52:60:06:a1:a7:50:51:4d:f0:c1:ba:38: bc:dd:37:53:d2:75:eb:e1:4b:c6:47:07:6c:cb:f6:3f:70:12: 4f:50:5b:34:10:36:06:c2:f9:20:25:e2:34:81:b3:4d:35:1c: 52:92:c0:38:e8:ea:30:07:90:a1:96:fc:d7:d6:b3:f5:a3:be: 10:10:c1:6e:7b:d9:f7:5d:2f:72:9a:96:6b:1b:9b:ea:4c:ae: ec:a5:6c:cc:d3:6f:95:0b:25:6e:66:b8:4a:68:6c:dd:83:92: 25:4b:95:81:b3:e8:1c:36:1a:f7:4f:35:ea:24:7f:c2:7e:b9: d5:5e:86:97:28:4f:1e:4b:13:d7:fe:44:f4:13:bb:16:90:86: e2:3a:8c:9c:0f:4f:d5:44:d6:a8:a5:30:e7:c3:29:3d:a5:46: 01:98:ad:fd:59:e3:1a:94:9d:a8:3e:0b:64:40:65:fa:54:f9: 6c:3f:3a:e0:b8:5f:b9:4d:ca:f5:2d:4e:b1:82:68:26:b1:c7: 09:bd:2f:2e:0f:21:89:9e:a5:82:f8:4d:ab:f0:b6:be:97:29: b4:32:fb:c5:87:f1:0d:9f:f5:6b:e2:fb:19:15:24:7f:43:97: e6:97:69:ce:19:84:e8:dc:93:f5:1d:75:ef:78:74:f1:f3:35: 64:d0:35:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUwMjE0MjMzNzU0WhcNMjUwMjIxMjMzNzUzWjAYMRYwFAYD VQQDEw02N2FmZDNkMi1iOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Efr32MTNYpCbp6326pfemhXjsnjq/xbZa4c9ugKk4CJpUH+Hsr306pMaZIP F4/RxODteAhWmXHJotEA52c8956WX9j16pzxyId2w/16ps4YVyz0u6OnmZHVN0PG byINhHY1zRAjHOe0GdskhbETA/cvlWsuNxFCf51LfXN97Jm4Vtk9Wpgooz40o2ds eY0n0BdxyglvDbB1mJl5BufQcCMES+2aCbuT1jja0+rLHtpJuZalCyilVQtfUVIT zEeWrAd8V+B+wAKJF4pT3ysAhBTWWQryYswe+cHoB8pw2GqNTg2eakP9xV/00H4P T2h4Vmp0T/2OqQ33dHYlpzr9vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKuFqhhZ jwDOuIiYI07rJ+sJZE4QMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVFNi84N0QxRUQwNjdBODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5w YjVlYUpZWFBKenlSYkh0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0I74YdkdSYAahp1BRTfDBuji83TdT0nXr4UvGRwdsy/Y/cBJPUFs0 EDYGwvkgJeI0gbNNNRxSksA46OowB5ChlvzX1rP1o74QEMFue9n3XS9ympZrG5vq TK7spWzM02+VCyVuZrhKaGzdg5IlS5WBs+gcNhr3TzXqJH/CfrnVXoaXKE8eSxPX /kT0E7sWkIbiOoycD0/VRNaopTDnwyk9pUYBmK39WeMalJ2oPgtkQGX6VPlsPzrg uF+5Tcr1LU6xgmgmsccJvS8uDyGJnqWC+E2r8La+lym0MvvFh/ENn/Vr4vsZFSR/ Q5fml2nOGYTo3JP1HXXveHTx8zVk0DU9 -----END CERTIFICATE-----Generated at Sun Feb 16 20:24:55 2025 by rpki-client