$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: ki4Zr+2GPwE18NeXgaDq4WZtDWmd6gU+4m4gtz6fnXc= Subject key identifier: 94:3D:16:42:9E:E9:DF:A5:4A:00:62:CC:E1:9B:E7:0A:14:1C:5D:35 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 037C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 0374 Signing time: Sat 15 Feb 2025 02:25:44 +0000 Manifest this update: Sat 15 Feb 2025 02:25:44 +0000 Manifest next update: Sat 22 Feb 2025 02:25:44 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: ucA3+uCqCo2NnKujvquZglSeh23eK1Cum6ChHri6baA=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 892 (0x37c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636 Validity Not Before: Feb 15 02:25:44 2025 GMT Not After : Feb 22 02:25:44 2025 GMT Subject: CN=67affb28-5a16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:32:2d:d8:da:8c:e8:c0:fb:5a:b4:56:25: e3:31:03:13:3f:a4:a9:ca:74:a0:d6:af:56:90:8e: 4b:89:ae:7b:96:23:96:0d:d5:2d:3e:3d:61:f8:6d: b1:51:a2:09:b7:f8:c0:14:69:00:8b:41:fc:9c:db: 1f:55:71:61:33:62:40:7d:2d:3a:b3:e7:d4:12:5a: a1:34:3f:82:bc:35:df:b9:28:37:77:60:b7:95:12: a4:2a:67:87:ae:60:1d:92:3a:7e:60:15:c6:a0:fb: 4a:65:13:83:2e:6a:88:29:6e:8a:38:50:08:4c:94: 24:c6:e9:d1:37:dd:00:58:99:1d:8e:76:9e:7e:53: 64:02:79:2a:fb:f8:e2:1b:2e:56:60:1e:61:9e:fe: e1:e5:c9:25:4a:08:fd:6c:4d:ba:e8:5b:f0:62:9e: c7:1e:6e:54:f5:c8:23:09:90:b4:bb:c3:59:34:09: 5f:ae:57:06:db:0f:48:24:4d:19:ce:b6:5c:d6:52: c1:09:dd:8a:47:b9:a9:e5:65:0a:30:2d:0a:3d:e8: 46:24:12:61:a4:5f:43:6d:b9:2d:e2:35:e4:e1:79: ce:7e:68:1e:d6:64:a5:bc:5a:1e:cb:3d:28:d4:07: 0e:f8:d5:6b:be:2a:56:53:f5:e3:71:cb:0e:a4:df: c9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3D:16:42:9E:E9:DF:A5:4A:00:62:CC:E1:9B:E7:0A:14:1C:5D:35 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d3:e7:a4:13:38:1e:cd:b7:63:28:06:25:4b:e7:65:46:54: 0a:a5:ba:ce:6f:b0:42:86:7f:d4:29:29:0d:0c:8d:f5:08:50: 5a:fb:61:64:24:05:b7:6a:7b:2c:10:42:df:7c:c3:41:c4:11: db:f8:0a:44:84:a3:e2:6d:d4:ee:06:68:a8:8b:e6:29:b0:f7: 10:5a:a9:ce:14:ff:ae:db:2f:c2:6b:86:02:87:3e:2e:18:46: be:9d:ac:b9:75:4e:1a:96:3c:16:44:ce:c8:76:70:0b:ff:34: 61:ab:ab:db:39:aa:22:0e:f0:cf:bc:5f:20:83:15:d6:84:72: 89:1d:5d:b9:fb:19:ae:20:91:1e:6f:72:f9:10:81:21:0e:42: ea:3b:db:65:82:b5:df:9e:df:01:7a:24:77:63:45:2c:04:f7: a7:a2:ac:17:a2:e8:78:6e:4e:61:39:c6:84:0c:26:1b:db:3c: 0c:c8:26:2f:17:24:e5:4e:2d:a1:92:d5:76:47:ea:1d:5e:59: 63:45:b6:ed:a7:4c:0a:cf:8f:6b:61:51:d3:f7:ec:c1:8c:68: 03:3f:dc:19:42:bf:66:e1:63:6e:f3:c5:fa:2b:15:bb:67:c5: 06:e7:64:ca:56:6a:6b:d8:e4:fa:80:fa:8f:9f:15:ef:21:ed: 40:c6:0f:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwMjE1MDIyNTQ0WhcNMjUwMjIyMDIyNTQ0WjAYMRYwFAYD VQQDEw02N2FmZmIyOC01YTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspgyLdjajOjA+1q0ViXjMQMTP6SpynSg1q9WkI5Lia57liOWDdUtPj1h+G2x UaIJt/jAFGkAi0H8nNsfVXFhM2JAfS06s+fUElqhND+CvDXfuSg3d2C3lRKkKmeH rmAdkjp+YBXGoPtKZRODLmqIKW6KOFAITJQkxunRN90AWJkdjnaeflNkAnkq+/ji Gy5WYB5hnv7h5cklSgj9bE266FvwYp7HHm5U9cgjCZC0u8NZNAlfrlcG2w9IJE0Z zrZc1lLBCd2KR7mp5WUKMC0KPehGJBJhpF9Dbbkt4jXk4XnOfmge1mSlvFoeyz0o 1AcO+NVrvipWU/XjccsOpN/J3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQ9FkKe 6d+lSgBizOGb5woUHF01MB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb0+ekEzgezbdjKAYlS+dlRlQKpbrOb7BChn/UKSkNDI31CFBa+2Fk JAW3anssEELffMNBxBHb+ApEhKPibdTuBmioi+YpsPcQWqnOFP+u2y/Ca4YChz4u GEa+nay5dU4aljwWRM7IdnAL/zRhq6vbOaoiDvDPvF8ggxXWhHKJHV25+xmuIJEe b3L5EIEhDkLqO9tlgrXfnt8BeiR3Y0UsBPenoqwXouh4bk5hOcaEDCYb2zwMyCYv FyTlTi2hktV2R+odXlljRbbtp0wKz49rYVHT9+zBjGgDP9wZQr9m4WNu88X6KxW7 Z8UG52TKVmpr2OT6gPqPnxXvIe1Axg/c -----END CERTIFICATE-----Generated at Sun Feb 16 22:08:02 2025 by rpki-client