$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: /jOIzFpid6SIQHxUdr7vcIonJms1fbQdeCBYyQoxrOM= Subject key identifier: 3E:56:13:1C:4E:B0:62:0F:56:0B:B7:13:19:16:6D:2B:8C:47:39:84 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 07A9 Signing time: Fri 14 Feb 2025 22:11:44 +0000 Manifest this update: Fri 14 Feb 2025 22:11:43 +0000 Manifest next update: Fri 21 Feb 2025 22:11:43 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: 3TuvSAnH9VuNZxk+/m5XgKWeYpRQ+lap66r2XYag+G0=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D Validity Not Before: Feb 14 22:11:43 2025 GMT Not After : Feb 21 22:11:43 2025 GMT Subject: CN=67afbf9f-d334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ad:b0:8a:7b:82:c5:25:2a:90:ff:5e:f0:13: b1:5e:07:ed:35:8b:e0:d5:ad:1f:24:3c:46:f5:01: ac:a3:e2:4a:5b:1e:c7:c1:a8:af:87:de:8d:b9:e2: 91:3e:48:ac:84:cc:af:75:02:1e:fc:62:2c:2e:da: 90:9a:fc:fd:25:fc:fd:9e:f0:28:d7:9d:a8:4a:3b: fe:ce:55:bd:24:56:82:57:5e:d4:f4:73:85:e5:7f: 7c:54:c9:35:84:04:f6:a9:28:72:ca:2a:1e:c4:e9: 0b:85:be:40:ec:05:26:ba:04:59:33:f2:af:c2:5a: 54:94:96:95:ab:b5:18:01:cd:df:9a:b2:f7:e1:3c: 4e:bd:1f:3e:be:77:9f:89:c6:e2:31:b2:7e:04:fa: fe:27:d3:b7:59:18:ff:34:21:89:35:41:75:e8:9f: c9:da:de:98:ed:04:62:9b:30:24:ce:89:da:59:23: f3:4e:0e:77:b0:96:51:44:23:7e:60:e8:f0:da:5a: ab:41:48:a3:56:5f:c9:05:d5:69:49:84:f7:fa:9a: 82:eb:8c:ac:89:cc:a2:d6:3f:ce:e9:ec:c3:1e:25: c1:c0:ad:d9:97:ef:7d:1b:d6:26:d9:fd:cf:67:c6: 56:de:bc:76:81:d9:59:17:6c:17:72:d4:62:02:ce: a4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:56:13:1C:4E:B0:62:0F:56:0B:B7:13:19:16:6D:2B:8C:47:39:84 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:f1:9a:0f:5d:75:23:ef:c9:46:68:00:7b:df:8f:01:ef:f5: 56:08:36:bb:ac:d2:17:c8:53:d7:20:92:ca:ef:07:cd:7f:56: 06:d9:71:62:3b:4f:48:28:f0:78:cd:08:3c:d5:02:5d:53:48: a3:bb:da:aa:33:ad:a8:33:48:da:e2:4e:2e:53:5f:59:e5:c3: 53:9d:d0:e2:c9:b1:46:58:bd:b3:7f:3d:22:27:73:73:36:85: 7b:7a:2a:34:5e:c9:47:b7:f4:7e:30:24:a0:b1:02:ad:ad:d5: a6:6a:4f:9f:30:e9:60:eb:41:81:f4:1a:fd:28:7e:8c:17:71: fa:45:d2:46:27:c6:92:ad:76:20:7b:fc:e1:b0:1a:57:d4:16: 69:96:a3:03:0d:5c:bb:32:c7:d1:72:07:4c:f8:5d:ec:1d:16: 51:24:c5:97:e2:68:35:6f:48:ec:da:86:ee:d6:9b:de:92:70: 62:e4:0e:2b:bd:37:e7:cd:0b:2d:55:c2:02:ab:8e:44:17:62: 6a:4d:56:fe:43:9f:3c:30:6b:e5:b2:1b:c6:91:64:c5:d3:45: 19:24:56:3a:d6:b2:8b:4c:06:0e:0b:e7:09:31:e9:6e:cc:c1: 2d:9a:b2:8b:f7:13:5c:9f:3c:dc:d8:c3:ae:5e:66:9c:e2:35: 0b:db:43:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwMjE0MjIxMTQzWhcNMjUwMjIxMjIxMTQzWjAYMRYwFAYD VQQDEw02N2FmYmY5Zi1kMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6q2winuCxSUqkP9e8BOxXgftNYvg1a0fJDxG9QGso+JKWx7Hwaivh96NueKR PkishMyvdQIe/GIsLtqQmvz9Jfz9nvAo152oSjv+zlW9JFaCV17U9HOF5X98VMk1 hAT2qShyyioexOkLhb5A7AUmugRZM/KvwlpUlJaVq7UYAc3fmrL34TxOvR8+vnef icbiMbJ+BPr+J9O3WRj/NCGJNUF16J/J2t6Y7QRimzAkzonaWSPzTg53sJZRRCN+ YOjw2lqrQUijVl/JBdVpSYT3+pqC64ysicyi1j/O6ezDHiXBwK3Zl+99G9Ym2f3P Z8ZW3rx2gdlZF2wXctRiAs6kawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5WExxO sGIPVgu3ExkWbSuMRzmEMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg8ZoPXXUj78lGaAB7348B7/VWCDa7rNIXyFPXIJLK7wfNf1YG2XFi O09IKPB4zQg81QJdU0iju9qqM62oM0ja4k4uU19Z5cNTndDiybFGWL2zfz0iJ3Nz NoV7eio0XslHt/R+MCSgsQKtrdWmak+fMOlg60GB9Br9KH6MF3H6RdJGJ8aSrXYg e/zhsBpX1BZplqMDDVy7MsfRcgdM+F3sHRZRJMWX4mg1b0js2obu1pveknBi5A4r vTfnzQstVcICq45EF2JqTVb+Q588MGvlshvGkWTF00UZJFY61rKLTAYOC+cJMelu zMEtmrKL9xNcnzzc2MOuXmac4jUL20NC -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:39 2025 by rpki-client