$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: lbK3/6xgWPS/91DNs/vy5JLnI3/I0DapI9UFxUFAZgI= Subject key identifier: 37:CD:10:E1:04:14:7A:49:81:88:85:FC:3B:DC:B7:AF:96:B4:1A:AB Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 08C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 08B1 Signing time: Fri 14 Feb 2025 21:30:26 +0000 Manifest this update: Fri 14 Feb 2025 21:30:25 +0000 Manifest next update: Fri 21 Feb 2025 21:30:25 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: Nowot6rN/B4nmW+Fai7RK2X0lQh2Ebimn3maHkKQUqc=) 2: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: yfWpHkNEQh2G2/td7i4AwoD5izJRxTmfi2zYrBb7ip0=) 3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: LXbUGEX0BzxPJTGdu8cpn4olWR+ALKon9w0YiyjSIgs=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: v1LJQRKcSsr5fZtI1cfsXADOOD23gM5W/71UiLOuA2g=) 5: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: 9K+/QIvWHuZSt1H4NN5SMc8oOUogkYlKWodRdIYoXcE=) 6: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: hGMtMKEqwODOU8waS4uGb4bFguPGRuvaBHiKMUVPICY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2246 (0x8c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0 Validity Not Before: Feb 14 21:30:25 2025 GMT Not After : Feb 21 21:30:25 2025 GMT Subject: CN=67afb5f2-a1d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e9:f9:e4:12:8f:40:d1:02:69:90:52:b1:82: dc:8f:e5:6a:cd:19:59:b2:bb:13:e4:0e:12:94:1c: d3:0b:fa:45:b5:b3:34:f4:97:e1:0d:f6:cb:7e:c8: 20:8b:9e:5a:a1:db:2f:35:13:a8:97:12:32:e9:c4: ae:6e:28:9d:53:74:92:be:20:61:45:4a:15:0b:73: fb:66:8d:c7:85:e6:64:c1:5a:9f:e9:c3:bb:a7:c2: 64:9d:c5:2b:70:b2:5a:50:82:04:1d:97:d0:e9:7a: c6:3b:8b:9e:c0:b0:22:5f:a7:9a:4c:b3:7e:7b:59: d8:9a:b2:5c:f6:f6:03:5b:e0:86:d1:b1:75:7a:7a: 24:d4:0c:e3:ba:17:10:69:b3:82:12:14:67:84:f0: e7:28:fa:fc:d8:c5:73:c6:69:11:32:cb:2f:73:38: b2:f1:90:58:9d:63:75:82:c4:c8:58:ac:3b:42:9f: 93:69:73:98:92:3c:79:fb:fc:85:14:a4:c3:32:1a: 8d:70:43:8a:4f:74:c1:d5:1b:e2:1f:e6:ae:1b:d8: 5b:a2:4b:9f:82:79:e8:89:84:31:3e:4c:d9:0e:6a: 46:f2:b1:8f:54:e3:22:fc:03:42:7b:05:11:47:98: 66:66:65:b9:d0:19:18:f1:47:22:8c:22:b8:90:4f: b7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:CD:10:E1:04:14:7A:49:81:88:85:FC:3B:DC:B7:AF:96:B4:1A:AB X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:fd:e8:d2:2d:e1:b4:a1:80:4d:3f:b5:a3:40:38:52:58:26: aa:57:0b:7c:8b:42:49:67:c1:96:04:da:e2:31:9b:4d:89:d0: ea:fc:73:26:4d:7f:4e:c7:4f:17:03:3b:96:d9:fb:93:1f:c2: 24:a5:2e:55:e6:74:7e:74:c9:1b:6c:3c:e7:00:0d:56:b5:33: e9:0e:2f:f8:86:00:b3:54:a2:69:19:2e:b6:ca:4d:1c:b9:ab: 4f:d3:00:38:37:f4:85:9d:86:c9:45:c6:ab:98:08:47:55:52: 36:93:16:1f:e5:9f:f5:b7:4d:03:e5:b9:00:b3:74:3c:d3:f5: f2:6f:eb:a5:44:ca:40:83:a8:8f:3e:4f:b3:ce:8f:db:20:28: 81:b4:45:df:39:b0:ad:37:a8:c7:63:1e:40:a0:30:80:cc:96: 7a:bb:26:a7:a7:db:dd:f8:76:bc:57:20:35:3e:be:68:da:91: a6:84:da:8b:96:9c:6a:69:e2:4e:23:ab:91:62:a9:0e:0a:6b: 97:d8:94:d4:9b:65:8d:2e:04:41:5a:67:30:09:fb:72:c1:6e: bb:c1:53:be:f8:8b:31:32:61:fa:7c:85:30:c4:8b:84:7c:18: e4:e1:09:4f:65:96:e5:9a:61:c5:84:53:4b:2a:68:86:4f:c1: 5c:ff:9b:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwMjE0MjEzMDI1WhcNMjUwMjIxMjEzMDI1WjAYMRYwFAYD VQQDEw02N2FmYjVmMi1hMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOn55BKPQNECaZBSsYLcj+VqzRlZsrsT5A4SlBzTC/pFtbM09JfhDfbLfsgg i55aodsvNROolxIy6cSubiidU3SSviBhRUoVC3P7Zo3HheZkwVqf6cO7p8JkncUr cLJaUIIEHZfQ6XrGO4uewLAiX6eaTLN+e1nYmrJc9vYDW+CG0bF1enok1AzjuhcQ abOCEhRnhPDnKPr82MVzxmkRMssvcziy8ZBYnWN1gsTIWKw7Qp+TaXOYkjx5+/yF FKTDMhqNcEOKT3TB1RviH+auG9hbokufgnnoiYQxPkzZDmpG8rGPVOMi/ANCewUR R5hmZmW50BkY8UcijCK4kE+3oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfNEOEE FHpJgYiF/Dvct6+WtBqrMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAd/ejSLeG0oYBNP7WjQDhSWCaqVwt8i0JJZ8GWBNriMZtNidDq/HMm TX9Ox08XAzuW2fuTH8IkpS5V5nR+dMkbbDznAA1WtTPpDi/4hgCzVKJpGS62yk0c uatP0wA4N/SFnYbJRcarmAhHVVI2kxYf5Z/1t00D5bkAs3Q80/Xyb+ulRMpAg6iP Pk+zzo/bICiBtEXfObCtN6jHYx5AoDCAzJZ6uyanp9vd+Ha8VyA1Pr5o2pGmhNqL lpxqaeJOI6uRYqkOCmuX2JTUm2WNLgRBWmcwCftywW67wVO++IsxMmH6fIUwxIuE fBjk4QlPZZblmmHFhFNLKmiGT8Fc/5th -----END CERTIFICATE-----Generated at Sun Feb 16 22:27:55 2025 by rpki-client