$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: 49ExFA8h7t0CYs4GO4DQub5oL2XwwuzAit1DAI8z/lI= Subject key identifier: F6:A9:8D:57:4D:E9:09:28:77:E6:C0:0B:75:9D:AF:C8:F3:49:99:F3 Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: 71 Signing time: Sat 15 Feb 2025 08:03:43 +0000 Manifest this update: Sat 15 Feb 2025 08:03:42 +0000 Manifest next update: Sat 22 Feb 2025 08:03:42 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: pyPAqb3GUiVDPxGL0Rgo4OEFnzHkijHa3s55P48ts0M=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: fPKFaBZi29sZTZtbLlYUsELWzYxUxH7zVg+U9ijvWSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064 Validity Not Before: Feb 15 08:03:42 2025 GMT Not After : Feb 22 08:03:42 2025 GMT Subject: CN=67b04a5e-61be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:49:68:c4:f9:03:f9:a9:fc:f8:38:b6:73:78: 20:ca:7d:5c:f2:11:82:e0:06:4a:a1:fb:82:76:c1: 36:95:c7:a1:39:6a:5c:df:4b:65:1b:f4:6e:d6:a1: 8f:3d:f9:cd:8f:28:8a:74:14:94:28:2b:be:cd:72: d6:2c:c0:9a:03:10:a2:6c:f6:28:d6:2c:26:03:e8: 0d:2d:36:17:73:86:ae:ae:be:6b:93:45:50:83:13: 6e:09:25:06:03:ff:7b:71:a7:c9:42:fd:93:f7:0b: da:ec:33:2a:71:db:17:07:9f:8a:26:c8:57:65:4a: 26:a3:cb:4e:51:5b:0b:19:9e:d1:f0:9f:1e:91:e6: 29:29:5c:fd:31:76:37:77:b4:c7:f2:30:cc:82:25: 32:8a:b0:c4:2d:89:fc:12:9c:88:38:0e:e1:41:94: e9:41:ab:fa:b5:10:71:90:c5:9f:c8:dd:a2:2a:a3: 51:36:2e:5e:ba:ae:8a:16:cb:a8:a4:4b:23:6a:c5: 25:93:2e:ee:dd:3c:5c:db:11:5e:b1:94:04:6d:25: 01:91:9a:62:b1:c1:9c:c3:db:e7:74:f0:81:bb:eb: 5d:b0:eb:49:b0:ae:a9:84:b4:a1:26:52:1d:a4:fa: ec:b3:36:b3:d1:e9:be:12:92:27:d4:ba:13:63:a9: 04:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A9:8D:57:4D:E9:09:28:77:E6:C0:0B:75:9D:AF:C8:F3:49:99:F3 X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:c4:34:9f:71:5e:6f:35:f1:e6:5d:d8:0a:23:3b:59:d5:56: 99:fd:da:c4:1b:61:5b:1e:ab:a7:b0:50:f4:95:0a:c5:48:db: 8a:6c:48:f2:4b:f2:f2:bb:3f:06:ca:5f:d6:75:db:84:20:a5: c9:58:fd:f5:64:18:14:77:3d:2f:90:83:89:6a:b7:0f:b2:81: b3:c3:ca:c6:05:ba:bd:b8:8e:54:fe:8f:48:d8:1e:6b:d5:30: 5d:f5:e3:a0:63:f0:78:4c:e0:ab:f5:ee:d3:50:e4:1f:58:2e: 8a:fe:41:4d:bc:82:8b:25:96:67:80:a6:a4:41:27:2a:9b:c2: 11:f9:72:31:4d:c5:ab:c2:48:eb:ba:cf:b0:24:63:70:4a:ed: dd:6d:32:bb:aa:4c:eb:c4:8b:51:6d:b2:09:0f:6c:28:b4:5b: c7:48:cf:cc:9c:32:40:29:4a:9f:81:87:d7:5a:61:aa:dc:25: fa:ac:19:e7:6a:83:b9:ad:f3:b1:eb:43:ce:54:50:05:b1:52: 3c:e1:64:69:95:2d:d5:5d:90:20:07:c2:04:a8:a3:c5:0e:23: c8:b7:24:b6:36:33:42:d1:a3:36:41:be:b2:4e:6e:80:eb:7d: 2d:96:ca:b9:ec:ca:23:88:a4:de:ee:8c:8f:cc:fb:7f:34:65: 8b:6e:9a:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjA2NDExMC8GA1UEBRMoQUQ0MzMyMDM4MjcyQzJEQjMyMTVEREEzQURGQjAxNTM1 NDE1NjkxMzAeFw0yNTAyMTUwODAzNDJaFw0yNTAyMjIwODAzNDJaMBgxFjAUBgNV BAMTDTY3YjA0YTVlLTYxYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0SWjE+QP5qfz4OLZzeCDKfVzyEYLgBkqh+4J2wTaVx6E5alzfS2Ub9G7WoY89 +c2PKIp0FJQoK77NctYswJoDEKJs9ijWLCYD6A0tNhdzhq6uvmuTRVCDE24JJQYD /3txp8lC/ZP3C9rsMypx2xcHn4omyFdlSiajy05RWwsZntHwnx6R5ikpXP0xdjd3 tMfyMMyCJTKKsMQtifwSnIg4DuFBlOlBq/q1EHGQxZ/I3aIqo1E2Ll66rooWy6ik SyNqxSWTLu7dPFzbEV6xlARtJQGRmmKxwZzD2+d08IG7612w60mwrqmEtKEmUh2k +uyzNrPR6b4SkifUuhNjqQQdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9qmNV03p CSh35sALdZ2vyPNJmfMwHwYDVR0jBBgwFoAUrUMyA4JywtsyFd2jrfsBU1QVaRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGMDY0L0YzQ0E2MTcyNDRF MjExRUZCMTNGMjIxNEM0RjlBRTAyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclVNeUE0Snl3dHN5RmQyanJmc0JVMVFWYVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG MDY0L0YzQ0E2MTcyNDRFMjExRUZCMTNGMjIxNEM0RjlBRTAyL3JVTXlBNEp5d3Rz eUZkMmpyZnNCVTFRVmFSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAALENJ9xXm818eZd2AojO1nVVpn92sQbYVseq6ewUPSVCsVI24psSPJL 8vK7PwbKX9Z124QgpclY/fVkGBR3PS+Qg4lqtw+ygbPDysYFur24jlT+j0jYHmvV MF3146Bj8HhM4Kv17tNQ5B9YLor+QU28gosllmeApqRBJyqbwhH5cjFNxavCSOu6 z7AkY3BK7d1tMruqTOvEi1FtsgkPbCi0W8dIz8ycMkApSp+Bh9daYarcJfqsGedq g7mt87HrQ85UUAWxUjzhZGmVLdVdkCAHwgSoo8UOI8i3JLY2M0LRozZBvrJOboDr fS2WyrnsyiOIpN7ujI/M+380ZYtumvA= -----END CERTIFICATE-----Generated at Sun Feb 16 15:18:37 2025 by rpki-client