$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft File: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft (raw, json) Hash identifier: 2lJlC+vZVE/3itsDqy1X22+Bm6EiKX5kBt9ZMtwVPds= Subject key identifier: 5F:02:28:9A:B4:C4:74:49:85:43:9B:3E:77:B5:4D:0C:6C:1E:A8:6B Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft Manifest number: 68 Signing time: Fri 14 Feb 2025 16:48:40 +0000 Manifest this update: Fri 14 Feb 2025 16:48:40 +0000 Manifest next update: Fri 21 Feb 2025 16:48:40 +0000 Files and hashes: 1: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl (hash: XXx8hNhfVr3ElhG9aY5XzqnZykmN4Tqhe/Xl0BPrzAc=) 2: D5BFBE9E591811EF80AA9F21C4F9AE02.roa (hash: Be1e/Cdz8VdYcqGFGYCyAGRq8xP47qVzQCL7lbjwbsc=) 3: 626CA672591911EFAF1F1D23C4F9AE02.roa (hash: qW4tv57PdJFsLgd8tlpnpMjIsJF0H5vXkIX6yK4Jq7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A Validity Not Before: Feb 14 16:48:40 2025 GMT Not After : Feb 21 16:48:40 2025 GMT Subject: CN=67af73e8-9976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:bd:9c:bb:8c:b1:e2:87:2c:08:96:67:5e: d3:05:05:86:b8:8c:96:28:e4:91:7b:dc:21:e7:0b: 8f:73:44:af:67:00:21:45:ed:ac:be:38:0d:66:e0: db:fc:b8:9c:4b:4a:96:f9:0e:ab:0f:04:f8:c5:d5: f0:e9:4e:a8:b2:e0:6a:3a:06:33:c0:3a:20:54:7e: 1c:75:07:07:d9:a8:56:02:5c:15:ae:d3:23:96:32: 10:d0:55:81:9c:e0:e0:45:9a:ed:25:dc:2a:87:c6: a2:aa:e6:2b:f6:92:d6:c8:cf:9d:f2:d9:36:72:49: ef:f7:68:81:3c:b8:a3:c8:87:c4:da:93:85:a6:34: 53:b0:97:bb:4e:ad:68:ef:d4:cf:31:43:fc:fb:7b: a7:a7:33:1d:89:06:1f:c0:8d:59:e2:ed:c2:a6:5b: ac:c7:9c:39:31:71:8e:e8:be:e5:8f:81:c4:83:a6: 29:05:0c:0a:f1:68:1d:18:d5:71:23:96:3e:b1:9c: d1:1b:6f:ef:94:2b:80:d7:e9:54:d9:70:c5:3b:61: 5b:0f:c8:c1:c4:7a:5b:af:ba:2f:da:a9:d3:7f:e8: e9:f7:f0:ab:45:dc:ab:bb:13:ff:00:ba:16:59:9a: 10:0d:b3:09:62:0b:18:a5:8b:df:7e:3a:de:63:5b: 1c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:02:28:9A:B4:C4:74:49:85:43:9B:3E:77:B5:4D:0C:6C:1E:A8:6B X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e2:bb:50:d3:80:d6:ad:1c:4f:dd:d1:ec:9d:c8:01:52:f3: e4:e4:b1:a8:69:b9:3b:ff:5c:0f:de:a1:1f:a7:c3:80:fe:35: f3:44:91:d2:ff:93:9a:00:21:c1:de:e7:2f:c2:b3:ed:d7:79: b8:97:1b:d7:d9:0f:1b:8d:dd:13:0e:97:c9:66:47:50:c7:dc: 8b:cd:07:76:32:10:d5:9b:02:ed:ba:cb:d9:46:bf:30:20:d4: 5a:26:92:f2:ba:ee:d3:7e:9f:9a:a0:00:29:dc:82:fe:8c:6a: 5e:17:3d:3a:24:a9:b0:22:cd:3a:0f:58:b8:4f:86:79:0e:73: 3f:e7:b0:e2:c6:3c:44:f4:04:88:29:f9:60:34:3c:5d:fc:56: 19:d8:33:43:de:c5:3f:7a:e0:05:d2:67:c4:ee:7f:fd:3a:29: 01:44:ab:c8:11:de:0e:fe:10:07:e1:7b:f5:16:07:0e:d3:21: f1:99:c5:25:11:06:54:59:da:85:5c:a6:a5:bb:ac:dd:47:96: 12:2b:f1:c2:e8:4a:5a:5a:00:22:62:ed:33:f5:b2:54:58:c9: e0:45:fb:fb:55:d0:cd:eb:93:9d:91:44:f9:e9:1a:ec:63:06: 45:10:cd:10:29:46:e1:3b:b7:d5:a8:85:65:b3:e2:1b:db:90: 38:a1:82:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDYyQTExMC8GA1UEBRMoMERBRjRGMUFDNTgxOTg5MzFBRDVDMDAwN0Y1MjU1QTc5 REQwRTRDNzAeFw0yNTAyMTQxNjQ4NDBaFw0yNTAyMjExNjQ4NDBaMBgxFjAUBgNV BAMTDTY3YWY3M2U4LTk5NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9YL2cu4yx4ocsCJZnXtMFBYa4jJYo5JF73CHnC49zRK9nACFF7ay+OA1m4Nv8 uJxLSpb5DqsPBPjF1fDpTqiy4Go6BjPAOiBUfhx1BwfZqFYCXBWu0yOWMhDQVYGc 4OBFmu0l3CqHxqKq5iv2ktbIz53y2TZySe/3aIE8uKPIh8Tak4WmNFOwl7tOrWjv 1M8xQ/z7e6enMx2JBh/AjVni7cKmW6zHnDkxcY7ovuWPgcSDpikFDArxaB0Y1XEj lj6xnNEbb++UK4DX6VTZcMU7YVsPyMHEeluvui/aqdN/6On38KtF3Ku7E/8AuhZZ mhANswliCxili99+Ot5jWxz5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXwIomrTE dEmFQ5s+d7VNDGweqGswHwYDVR0jBBgwFoAUDa9PGsWBmJMa1cAAf1JVp53Q5Mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NjJBLzRFQkE4NDZFNTg1 NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRGE5UEdzV0JtSk1hMWNBQWYxSlZwNTNRNU1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 NjJBLzRFQkE4NDZFNTg1NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpN YTFjQUFmMUpWcDUzUTVNYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFziu1DTgNatHE/d0eydyAFS8+TksahpuTv/XA/eoR+nw4D+NfNEkdL/ k5oAIcHe5y/Cs+3XebiXG9fZDxuN3RMOl8lmR1DH3IvNB3YyENWbAu26y9lGvzAg 1FomkvK67tN+n5qgACncgv6Mal4XPTokqbAizToPWLhPhnkOcz/nsOLGPET0BIgp +WA0PF38VhnYM0PexT964AXSZ8Tuf/06KQFEq8gR3g7+EAfhe/UWBw7TIfGZxSUR BlRZ2oVcpqW7rN1HlhIr8cLoSlpaACJi7TP1slRYyeBF+/tV0M3rk52RRPnpGuxj BkUQzRApRuE7t9WohWWz4hvbkDihgu0= -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:38 2025 by rpki-client