$ rpki-client -vvf rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft File: _nzI0SyMuUDQbq7bWwrUPQUDYvE.mft (raw, json) Hash identifier: 7lOCioQJIva4dUTiNlUA/SXZarHd088m9nJdnpy+eAs= Subject key identifier: DD:00:FD:27:7B:D8:A7:8D:1C:B5:85:6F:86:31:2C:54:9E:6F:82:20 Authority key identifier: FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 Certificate issuer: /CN=A91D404F/serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft Manifest number: 12 Signing time: Wed 05 Feb 2025 06:26:22 +0000 Manifest this update: Wed 05 Feb 2025 06:26:22 +0000 Manifest next update: Wed 12 Feb 2025 06:26:22 +0000 Files and hashes: 1: _nzI0SyMuUDQbq7bWwrUPQUDYvE.crl (hash: QYNbhNFN+Wj7gFg4cagOOsfRNeuGOnuzcdfsAgS8ATY=) 2: F943DF74CBF711EFB86EC74FC4F9AE02.roa (hash: OQsiNqk/6UEhG+WoM7b9x1Qk45e1mg8EolKiz0N5DwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D404F Validity Not Before: Feb 5 06:26:22 2025 GMT Not After : Feb 12 06:26:22 2025 GMT Subject: CN=67a3048e-4763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:18:05:95:b9:5c:4a:31:1d:b1:f1:40:97: f1:84:6b:ad:b7:a3:f4:f9:5e:70:07:aa:6d:ca:21: 68:05:a7:70:8a:df:23:0e:d7:9c:0b:d7:95:4b:79: 0b:0b:28:62:25:83:5a:29:37:21:a7:98:0f:97:db: b8:0d:2a:7e:97:86:26:b4:49:19:ae:dc:be:d5:aa: fb:ae:c0:2d:7c:c9:7d:bc:8e:b1:87:81:8c:5e:e0: f9:a6:b5:bd:0d:87:f8:29:f3:0a:03:4b:14:10:2d: 0d:db:72:90:60:dc:da:b5:eb:f9:9d:54:89:79:93: af:f6:db:0b:3c:d6:2f:b3:f5:d4:7a:bf:9f:90:08: b0:02:c7:7b:1a:15:5d:49:23:c6:3a:eb:02:ed:cc: 1d:3c:c5:77:43:3e:12:85:75:59:58:e8:2d:bf:2f: 77:cc:e9:4e:67:c4:64:55:0c:3c:56:b4:37:76:eb: 79:26:f1:e0:4a:3f:7f:fa:17:f1:74:77:fc:41:98: 59:42:d1:3d:75:e1:cd:df:93:e1:00:a1:32:88:4f: 6d:e3:4a:a7:07:24:27:68:97:61:3d:4a:77:73:96: 8f:ed:c3:74:82:a7:3b:76:8a:33:d4:81:87:96:2f: ca:e2:31:54:e0:1c:b5:a8:15:ed:a0:f1:6a:c1:6f: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:00:FD:27:7B:D8:A7:8D:1C:B5:85:6F:86:31:2C:54:9E:6F:82:20 X509v3 Authority Key Identifier: keyid:FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:70:f3:81:d6:6e:1d:6e:cd:c7:53:7e:85:99:72:18:ee:f1: 2f:00:47:29:c0:ba:1d:bd:e5:1b:2e:32:3a:bc:26:9a:62:df: bc:71:01:d3:0e:1f:0a:d2:5c:d2:da:42:69:ae:f9:25:ad:f3: e4:69:79:42:dc:78:90:22:a4:3a:b5:53:b9:85:8a:6c:cf:53: 8f:5a:03:94:29:fe:09:43:2d:91:38:15:3e:ac:39:eb:81:ae: 0c:dd:1e:62:d5:ec:27:a9:f5:3e:c8:92:f7:77:dd:d8:af:12: e0:9b:5f:7e:b4:ad:5f:db:85:82:e5:6f:3b:95:04:4b:91:e3: c6:bc:82:a6:e7:75:00:f5:da:35:82:1e:e6:27:a0:d6:14:89: 31:b3:5a:38:91:86:11:f0:a7:16:d9:25:99:f1:21:1c:95:dd: 84:5b:cc:a1:a0:75:e1:11:45:1d:d1:9c:3d:4f:24:58:39:7a: 0c:23:92:bd:cb:67:c5:8f:59:1e:0d:e8:58:26:6e:76:a7:dc: 59:d0:01:cf:e5:a4:b3:01:6c:c5:15:0e:10:cb:d3:6b:30:c2: 69:c7:73:44:fd:2b:39:a9:7f:aa:8b:7c:b0:12:1a:b8:7c:7b: cf:e0:bc:f2:81:8e:92:04:6c:3e:40:64:1b:04:b6:8a:36:ca: f6:ad:f2:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDA0RjExMC8GA1UEBRMoRkU3Q0M4RDEyQzhDQjk0MEQwNkVBRURCNUIwQUQ0M0Qw NTAzNjJGMTAeFw0yNTAyMDUwNjI2MjJaFw0yNTAyMTIwNjI2MjJaMBgxFjAUBgNV BAMTDTY3YTMwNDhlLTQ3NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+iBgFlblcSjEdsfFAl/GEa623o/T5XnAHqm3KIWgFp3CK3yMO15wL15VLeQsL KGIlg1opNyGnmA+X27gNKn6Xhia0SRmu3L7VqvuuwC18yX28jrGHgYxe4Pmmtb0N h/gp8woDSxQQLQ3bcpBg3Nq16/mdVIl5k6/22ws81i+z9dR6v5+QCLACx3saFV1J I8Y66wLtzB08xXdDPhKFdVlY6C2/L3fM6U5nxGRVDDxWtDd263km8eBKP3/6F/F0 d/xBmFlC0T114c3fk+EAoTKIT23jSqcHJCdol2E9Sndzlo/tw3SCpzt2ijPUgYeW L8riMVTgHLWoFe2g8WrBbxjHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3QD9J3vY p40ctYVvhjEsVJ5vgiAwHwYDVR0jBBgwFoAU/nzI0SyMuUDQbq7bWwrUPQUDYvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0MDRGL0Q1RDBGRUI0Q0JG NzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVEUWJxN2JXd3JVUFFVRFl2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX256STBTeU11VURRYnE3Yld3clVQUVVEWXZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 MDRGL0Q1RDBGRUI0Q0JGNzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVE UWJxN2JXd3JVUFFVRFl2RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIFw84HWbh1uzcdTfoWZchju8S8ARynAuh295RsuMjq8Jppi37xxAdMO HwrSXNLaQmmu+SWt8+RpeULceJAipDq1U7mFimzPU49aA5Qp/glDLZE4FT6sOeuB rgzdHmLV7Cep9T7Ikvd33divEuCbX360rV/bhYLlbzuVBEuR48a8gqbndQD12jWC HuYnoNYUiTGzWjiRhhHwpxbZJZnxIRyV3YRbzKGgdeERRR3RnD1PJFg5egwjkr3L Z8WPWR4N6Fgmbnan3FnQAc/lpLMBbMUVDhDL02swwmnHc0T9Kzmpf6qLfLASGrh8 e8/gvPKBjpIEbD5AZBsEtoo2yvat8tU= -----END CERTIFICATE-----Generated at Wed Feb 5 20:12:39 2025 by rpki-client