$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft File: PdCVvno70d2CniomSfx-gafv40w.mft (raw, json) Hash identifier: cfG8wc2x8eOv0JRAqeC7r0OOwoctebHE++MIYWcA3N0= Subject key identifier: 90:C7:C1:2D:BC:B6:41:AF:59:FB:C6:B0:03:68:75:66:25:56:12:D2 Authority key identifier: 3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C Certificate issuer: /CN=A91C8307/serialNumber=3DD095BE7A3BD1DD829E2A2649FC7E81A7EFE34C Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft Manifest number: 1B Signing time: Wed 05 Feb 2025 06:21:37 +0000 Manifest this update: Wed 05 Feb 2025 06:21:37 +0000 Manifest next update: Wed 12 Feb 2025 06:21:37 +0000 Files and hashes: 1: PdCVvno70d2CniomSfx-gafv40w.crl (hash: 2f4HRoAt4e6uKVEywHOG603cMWDQgi1CrM4H1fasQ4w=) 2: DEDB3932BED411EF835BB47AC4F9AE02.roa (hash: O2sa7pTiQKdOhkw1Yh9cM+13JLJmRbo0IeSALJBybOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307 Validity Not Before: Feb 5 06:21:37 2025 GMT Not After : Feb 12 06:21:37 2025 GMT Subject: CN=67a30371-f325 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:54:0f:7c:19:78:1a:61:da:b4:fc:cf:f1: 16:e0:ea:b8:3b:0c:55:76:da:2b:51:91:b0:11:67: 6d:23:34:7f:7d:b0:34:cc:d9:09:56:d0:1c:0e:0a: 5b:c4:ea:df:e0:4a:df:28:f0:0d:63:9c:00:29:6d: b3:bf:8e:31:7c:85:9a:0d:2f:74:af:9f:b0:07:ad: f9:30:d0:54:3a:06:e7:d0:cf:63:b5:e8:93:03:91: 77:25:18:39:86:88:e6:21:25:49:c8:25:1c:70:f1: 79:ab:5f:a8:af:6a:ac:3d:4e:e6:f5:e3:4f:42:29: 5d:5c:9e:a2:9d:85:50:74:40:fd:29:f8:d0:05:37: ff:d6:61:fd:2a:26:09:1f:dd:25:33:33:3e:39:d8: 35:eb:4f:32:6b:4d:5e:52:93:48:fb:f6:88:86:f4: 03:b7:9b:2b:01:df:0e:17:e0:84:38:28:ba:6d:f6: 30:a3:4e:38:32:8b:ea:13:e7:60:95:74:0c:e2:57: b5:de:d3:ab:05:46:f2:9f:a1:0d:42:f9:3b:e1:8d: 3d:f2:f0:91:65:75:78:61:72:bc:14:fb:e3:db:c3: f8:64:91:90:7f:d4:30:56:8c:78:0b:a2:39:ec:d4: 53:74:64:71:60:1b:5d:2b:39:ac:32:ba:4b:bf:56: d0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C7:C1:2D:BC:B6:41:AF:59:FB:C6:B0:03:68:75:66:25:56:12:D2 X509v3 Authority Key Identifier: keyid:3D:D0:95:BE:7A:3B:D1:DD:82:9E:2A:26:49:FC:7E:81:A7:EF:E3:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdCVvno70d2CniomSfx-gafv40w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/3432F60CBECD11EF98C74132C4F9AE02/PdCVvno70d2CniomSfx-gafv40w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:31:ef:8d:0f:c1:df:12:b2:1b:3b:c0:3b:9d:81:8c:91:60: 1a:8c:b4:36:a7:6d:60:84:ec:65:86:89:57:0a:36:47:0f:47: f4:cf:e8:0c:df:71:74:5a:67:a0:4f:95:a0:87:20:9f:0e:c4: 94:20:55:55:cd:ec:e3:99:2b:69:0a:0c:72:81:2e:ac:70:d6: 06:a9:91:21:0f:bd:bd:4c:be:65:d7:d8:ce:d4:b6:bb:ce:3c: 63:b3:c4:70:e9:13:97:18:98:75:e4:4f:63:cc:06:d2:d0:db: bb:02:58:93:4d:86:03:4d:ee:69:4e:8b:a6:82:de:65:95:f6: 69:7d:fc:2d:96:4c:40:10:7e:f7:81:79:7b:02:b4:72:69:c2: 1e:f1:a1:9e:5f:65:91:b7:a3:58:11:18:53:a2:85:2a:ab:27: e8:62:72:9a:26:d4:21:f4:ee:4f:ba:21:5b:d6:74:ca:66:d4: 06:4a:09:9a:9f:e8:4f:0c:70:b6:f8:94:c9:ec:d6:c0:d4:78: 90:54:e4:e5:e2:26:bf:b4:91:4c:7f:46:38:c4:5f:d8:10:64: f1:c4:e2:4e:3f:ba:74:a0:39:02:69:d4:6d:a9:82:fc:39:aa: 9f:37:61:78:06:39:5c:97:26:f4:08:6c:a0:18:9f:3d:58:0a: 51:9a:91:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoM0REMDk1QkU3QTNCRDFERDgyOUUyQTI2NDlGQzdFODFB N0VGRTM0QzAeFw0yNTAyMDUwNjIxMzdaFw0yNTAyMTIwNjIxMzdaMBgxFjAUBgNV BAMTDTY3YTMwMzcxLWYzMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCijlQPfBl4GmHatPzP8Rbg6rg7DFV22itRkbARZ20jNH99sDTM2QlW0BwOClvE 6t/gSt8o8A1jnAApbbO/jjF8hZoNL3Svn7AHrfkw0FQ6BufQz2O16JMDkXclGDmG iOYhJUnIJRxw8XmrX6ivaqw9Tub1409CKV1cnqKdhVB0QP0p+NAFN//WYf0qJgkf 3SUzMz452DXrTzJrTV5Sk0j79oiG9AO3mysB3w4X4IQ4KLpt9jCjTjgyi+oT52CV dAziV7Xe06sFRvKfoQ1C+TvhjT3y8JFldXhhcrwU++Pbw/hkkZB/1DBWjHgLojns 1FN0ZHFgG10rOawyuku/VtApAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkMfBLby2 Qa9Z+8awA2h1ZiVWEtIwHwYDVR0jBBgwFoAUPdCVvno70d2CniomSfx+gafv40ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzM0MzJGNjBDQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1BkQ1Z2bm83MGQyQ25pb21TZngtZ2FmdjQw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGRDVnZubzcwZDJDbmlvbVNmeC1nYWZ2NDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzM0MzJGNjBDQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1BkQ1Z2bm83MGQy Q25pb21TZngtZ2FmdjQwdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAcx740Pwd8Sshs7wDudgYyRYBqMtDanbWCE7GWGiVcKNkcPR/TP6Azf cXRaZ6BPlaCHIJ8OxJQgVVXN7OOZK2kKDHKBLqxw1gapkSEPvb1MvmXX2M7UtrvO PGOzxHDpE5cYmHXkT2PMBtLQ27sCWJNNhgNN7mlOi6aC3mWV9ml9/C2WTEAQfveB eXsCtHJpwh7xoZ5fZZG3o1gRGFOihSqrJ+hicpom1CH07k+6IVvWdMpm1AZKCZqf 6E8McLb4lMns1sDUeJBU5OXiJr+0kUx/RjjEX9gQZPHE4k4/unSgOQJp1G2pgvw5 qp83YXgGOVyXJvQIbKAYnz1YClGakds= -----END CERTIFICATE-----Generated at Thu Feb 6 05:02:31 2025 by rpki-client