$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft File: h7HuPp7irRoRPyeipU4sC41a-zQ.mft (raw, json) Hash identifier: fOwKLtcRzzNrw0GU6gUiA7jN4QoYxbJD+iQOuq+8Urw= Subject key identifier: 96:FA:0A:C2:C5:6D:C6:59:86:83:D5:CC:70:87:AA:F7:BD:54:29:CC Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft Manifest number: 62 Signing time: Sat 15 Feb 2025 08:28:32 +0000 Manifest this update: Sat 15 Feb 2025 08:28:32 +0000 Manifest next update: Sat 22 Feb 2025 08:28:32 +0000 Files and hashes: 1: h7HuPp7irRoRPyeipU4sC41a-zQ.crl (hash: fUUNtrpnag234/PuiYohM9IAZQXiuk0sDRYBmltVm3k=) 2: D4FC5DAE5B9E11EF9205B45BC4F9AE02.roa (hash: 01FcOCzumKzY/vQ8wHIJFFKXgIpVBxtq1T3eDI1dtgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5 Validity Not Before: Feb 15 08:28:32 2025 GMT Not After : Feb 22 08:28:32 2025 GMT Subject: CN=67b05030-0872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:87:57:e7:e5:a9:de:71:1c:88:3d:e1:89:3f: e8:81:24:91:b2:d2:28:c4:82:2e:9b:93:05:9f:da: ae:47:a3:1d:76:82:f8:52:ee:d9:5d:86:e8:56:1e: ea:00:81:03:5b:4a:31:9e:a9:13:13:ba:f0:a2:64: 4b:d9:c5:d6:c2:b2:ba:03:09:19:ba:41:f6:3a:d6: 25:3f:07:1c:d3:e2:c1:0b:a0:3b:4b:3f:93:eb:eb: a4:0a:51:f7:07:79:3a:6b:e2:6d:2b:78:ce:b4:c6: 52:e5:23:5c:be:53:60:49:20:4f:b3:0a:f4:a0:50: e9:7a:f5:77:60:eb:01:d4:05:4a:3d:ce:ca:ad:e4: 96:d8:33:02:8b:f8:a7:b5:52:42:09:02:e8:6a:b9: 05:ac:4c:e9:74:a9:ab:7a:16:e6:7c:29:2a:5b:b2: c0:10:b4:0b:d6:c0:7d:78:31:a6:fc:0d:a0:cd:fe: 81:c1:a3:f1:b7:40:ad:41:8d:7f:cf:f2:64:9f:8b: 2c:b4:4e:9a:ae:c6:7a:da:a4:18:3b:fc:0e:25:55: 48:22:4c:89:48:03:a8:c3:ec:94:0d:49:8e:0f:b4: a8:84:f1:87:d9:0c:a8:6e:e2:55:c3:dd:5a:09:36: de:b4:76:ce:ee:5b:e9:be:64:1c:83:0a:9e:86:5d: ce:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FA:0A:C2:C5:6D:C6:59:86:83:D5:CC:70:87:AA:F7:BD:54:29:CC X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:92:a2:e7:02:1b:52:e0:9e:5f:b6:8f:00:b3:ff:7e:5a:a9: d2:34:3f:40:be:fd:48:d6:72:ba:dc:46:9e:19:3f:e9:44:8b: 7b:8f:48:7d:9b:de:0e:ab:2e:f6:2f:32:63:76:a4:27:27:08: 65:1e:62:c4:66:2a:4d:30:60:69:c8:24:ac:1e:43:42:f4:de: af:03:f1:20:80:64:2f:b9:32:31:b4:1b:7f:0c:ba:c8:92:f2: fb:78:8c:7e:3a:14:be:13:ac:b0:1f:d2:2d:08:28:dd:17:67: 38:ec:80:c5:14:3e:4b:c6:68:0b:d2:67:e7:4a:0d:e5:43:09: f9:ae:5d:1b:5e:6f:fc:dc:2a:e8:2d:c5:88:05:e6:be:7b:c3: d7:79:2d:e4:e5:2c:cc:74:64:33:28:a1:7c:fe:1c:78:85:85: 26:a7:79:02:05:84:fe:37:14:96:76:cc:44:28:5c:51:90:91: 54:91:6f:1b:4d:a5:3c:a2:e0:b6:04:3f:08:bf:da:e6:2c:10: 8c:4b:ec:c1:2f:b7:a7:9d:60:7b:f3:3a:d1:c1:84:35:cc:21: b1:82:a6:80:12:02:05:fd:cd:d9:3a:27:98:91:11:4c:01:d6: 2d:53:43:b5:86:ce:8e:41:10:65:97:96:cb:d5:2c:ba:44:14: 75:39:b3:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjlGNTExMC8GA1UEBRMoODdCMUVFM0U5RUUyQUQxQTExM0YyN0EyQTU0RTJDMEI4 RDVBRkIzNDAeFw0yNTAyMTUwODI4MzJaFw0yNTAyMjIwODI4MzJaMBgxFjAUBgNV BAMTDTY3YjA1MDMwLTA4NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAh1fn5anecRyIPeGJP+iBJJGy0ijEgi6bkwWf2q5Hox12gvhS7tldhuhWHuoA gQNbSjGeqRMTuvCiZEvZxdbCsroDCRm6QfY61iU/BxzT4sELoDtLP5Pr66QKUfcH eTpr4m0reM60xlLlI1y+U2BJIE+zCvSgUOl69Xdg6wHUBUo9zsqt5JbYMwKL+Ke1 UkIJAuhquQWsTOl0qat6FuZ8KSpbssAQtAvWwH14Mab8DaDN/oHBo/G3QK1BjX/P 8mSfiyy0TpquxnrapBg7/A4lVUgiTIlIA6jD7JQNSY4PtKiE8YfZDKhu4lXD3VoJ Nt60ds7uW+m+ZByDCp6GXc5BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlvoKwsVt xlmGg9XMcIeq971UKcwwHwYDVR0jBBgwFoAUh7HuPp7irRoRPyeipU4sC41a+zQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGOUY1LzhCOTI2RDJBNUI5 RTExRUY4QkY5MTc1QkM0RjlBRTAyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaDdIdVBwN2lyUm9SUHllaXBVNHNDNDFhLXpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG OUY1LzhCOTI2RDJBNUI5RTExRUY4QkY5MTc1QkM0RjlBRTAyL2g3SHVQcDdpclJv UlB5ZWlwVTRzQzQxYS16US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIySoucCG1Lgnl+2jwCz/35aqdI0P0C+/UjWcrrcRp4ZP+lEi3uPSH2b 3g6rLvYvMmN2pCcnCGUeYsRmKk0wYGnIJKweQ0L03q8D8SCAZC+5MjG0G38MusiS 8vt4jH46FL4TrLAf0i0IKN0XZzjsgMUUPkvGaAvSZ+dKDeVDCfmuXRteb/zcKugt xYgF5r57w9d5LeTlLMx0ZDMooXz+HHiFhSaneQIFhP43FJZ2zEQoXFGQkVSRbxtN pTyi4LYEPwi/2uYsEIxL7MEvt6edYHvzOtHBhDXMIbGCpoASAgX9zdk6J5iREUwB 1i1TQ7WGzo5BEGWXlsvVLLpEFHU5s8g= -----END CERTIFICATE-----Generated at Sun Feb 16 22:19:23 2025 by rpki-client