$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft File: 15aZWndnWcQmQxeAAofr7u-0umo.mft (raw, json) Hash identifier: XQc68cjs1H8mVnDqTzGq4AnEKctAg0vPlqQEziU0jvQ= Subject key identifier: F1:FA:C9:49:7B:D5:4C:55:AB:15:BA:73:65:2D:77:78:A6:F7:3E:CE Authority key identifier: D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A Certificate issuer: /CN=A91C022C/serialNumber=D796995A776759C4264317800287EBEEEFB4BA6A Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft Manifest number: 12 Signing time: Wed 05 Feb 2025 06:32:06 +0000 Manifest this update: Wed 05 Feb 2025 06:32:05 +0000 Manifest next update: Wed 12 Feb 2025 06:32:05 +0000 Files and hashes: 1: 15aZWndnWcQmQxeAAofr7u-0umo.crl (hash: cHu2nl0pohn+ZrW3+3KdHt4h2wsA+nT6KU+eXOlEisk=) 2: 90405CE2D5DD11EF99075D78C4F9AE02.roa (hash: hTL1z9/ySOlu0XaviOinYnMnBTyzcwAp4EbODVpERNU=) 3: B6CFF1B2D5F911EFB9B1055CC4F9AE02.roa (hash: ZxCbb7cdq/LewtopQIPSnB7gN2Ydt1y4TyGzN7hgTr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C Validity Not Before: Feb 5 06:32:05 2025 GMT Not After : Feb 12 06:32:05 2025 GMT Subject: CN=67a305e5-5b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5f:d6:1b:64:67:1c:f9:89:82:06:3e:4e:9e: 73:45:64:2a:5f:09:26:79:06:7a:e7:7b:73:c1:b6: 10:2a:f2:34:b0:d5:ee:11:27:92:16:3f:9e:d8:6e: 2c:e3:81:be:6e:05:73:d0:c8:09:63:a5:df:d4:10: 6b:57:3e:bf:88:7e:f8:a8:b0:c1:57:9d:76:6c:16: dc:8a:d2:0e:ba:45:38:ea:96:e9:e5:5c:60:dc:52: 65:73:28:c1:ce:a6:77:a0:a1:32:57:6f:64:ce:64: 11:cc:c8:a7:67:de:04:15:5e:1b:8d:d7:8c:ee:c5: 3f:91:6c:c0:a5:7f:fd:e6:04:c1:7d:12:ff:36:ee: 1f:1e:ab:c7:91:7f:d4:20:71:6e:df:05:3c:b9:06: de:f7:f9:64:45:ca:10:61:0e:c4:a7:de:a7:38:76: de:b3:8a:1a:33:12:8c:1d:e5:9a:d5:66:90:25:fc: 6b:28:ba:b9:ab:85:7e:29:5c:83:d3:62:23:5a:ca: b1:be:4e:79:36:92:e3:e7:e1:0c:d4:b4:63:29:01: 13:4a:04:9c:83:fe:99:2f:2f:7f:05:83:89:9b:3f: b4:85:10:90:49:2e:ee:cf:4d:06:15:f1:73:20:ac: 9d:07:30:84:ea:30:2b:0c:bb:73:e7:a1:5a:00:ff: 0a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FA:C9:49:7B:D5:4C:55:AB:15:BA:73:65:2D:77:78:A6:F7:3E:CE X509v3 Authority Key Identifier: keyid:D7:96:99:5A:77:67:59:C4:26:43:17:80:02:87:EB:EE:EF:B4:BA:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/15aZWndnWcQmQxeAAofr7u-0umo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/BA0F2DF2D4B911EF9FA8E24FC4F9AE02/15aZWndnWcQmQxeAAofr7u-0umo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ca:5d:c1:53:58:3f:3f:11:f3:57:c5:86:89:d3:71:e1:d4: a1:98:64:c1:d1:5b:14:cf:ff:fc:b7:c5:9c:ac:df:22:4f:c9: 40:d8:52:15:d7:57:56:16:3d:41:7e:e9:82:bb:2d:9a:39:3e: dc:4f:8d:8f:38:89:bb:b0:3a:e0:c7:08:ad:52:ed:48:07:d5: 65:66:2f:de:b6:c6:e6:27:f0:bd:ab:3a:66:1d:c8:3a:f1:91: c5:c6:c9:75:51:c2:11:5c:5d:24:3a:0d:79:ac:da:8d:79:ac: 12:fb:ad:6d:c8:7f:b7:2d:a5:09:e8:7b:2f:3b:20:dd:97:c2: e7:11:c3:fe:a9:92:9a:02:fa:9c:72:80:c8:06:57:25:e6:09: 2e:6f:61:6c:44:b7:56:9c:d3:2a:ee:43:24:7f:6f:8a:b7:0e: 2b:46:75:18:e1:db:83:aa:04:b5:a7:ae:7c:51:2d:4b:3c:64: cc:ac:c8:08:1d:c8:f0:1e:41:cd:88:cc:ab:10:5f:21:26:d8: a5:39:33:42:14:fc:26:08:bb:31:d2:13:1a:8b:95:58:5e:74: cc:da:ee:10:d3:d0:7a:38:3e:06:02:4e:c9:e8:bc:b7:ba:23: 0f:d6:3a:e5:4d:28:29:13:38:a3:57:e7:8d:d9:f3:17:97:f8: 00:80:77:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDIyQzExMC8GA1UEBRMoRDc5Njk5NUE3NzY3NTlDNDI2NDMxNzgwMDI4N0VCRUVF RkI0QkE2QTAeFw0yNTAyMDUwNjMyMDVaFw0yNTAyMTIwNjMyMDVaMBgxFjAUBgNV BAMTDTY3YTMwNWU1LTViOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZX9YbZGcc+YmCBj5OnnNFZCpfCSZ5Bnrne3PBthAq8jSw1e4RJ5IWP57Ybizj gb5uBXPQyAljpd/UEGtXPr+IfviosMFXnXZsFtyK0g66RTjqlunlXGDcUmVzKMHO pnegoTJXb2TOZBHMyKdn3gQVXhuN14zuxT+RbMClf/3mBMF9Ev827h8eq8eRf9Qg cW7fBTy5Bt73+WRFyhBhDsSn3qc4dt6zihozEowd5ZrVZpAl/GsourmrhX4pXIPT YiNayrG+Tnk2kuPn4QzUtGMpARNKBJyD/pkvL38Fg4mbP7SFEJBJLu7PTQYV8XMg rJ0HMITqMCsMu3PnoVoA/wr1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8frJSXvV TFWrFbpzZS13eKb3Ps4wHwYDVR0jBBgwFoAU15aZWndnWcQmQxeAAofr7u+0umow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMjJDL0JBMEYyREYyRDRC OTExRUY5RkE4RTI0RkM0RjlBRTAyLzE1YVpXbmRuV2NRbVF4ZUFBb2ZyN3UtMHVt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMTVhWlduZG5XY1FtUXhlQUFvZnI3dS0wdW1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw MjJDL0JBMEYyREYyRDRCOTExRUY5RkE4RTI0RkM0RjlBRTAyLzE1YVpXbmRuV2NR bVF4ZUFBb2ZyN3UtMHVtby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGbKXcFTWD8/EfNXxYaJ03Hh1KGYZMHRWxTP//y3xZys3yJPyUDYUhXX V1YWPUF+6YK7LZo5PtxPjY84ibuwOuDHCK1S7UgH1WVmL962xuYn8L2rOmYdyDrx kcXGyXVRwhFcXSQ6DXms2o15rBL7rW3If7ctpQnoey87IN2XwucRw/6pkpoC+pxy gMgGVyXmCS5vYWxEt1ac0yruQyR/b4q3DitGdRjh24OqBLWnrnxRLUs8ZMysyAgd yPAeQc2IzKsQXyEm2KU5M0IU/CYIuzHSExqLlVhedMza7hDT0Ho4PgYCTsnovLe6 Iw/WOuVNKCkTOKNX543Z8xeX+ACAd8A= -----END CERTIFICATE-----Generated at Thu Feb 6 05:05:54 2025 by rpki-client