$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft File: Zd_y7j-bsuskVR4dGPHWPewKbhc.mft (raw, json) Hash identifier: bR3fgeGwPryvkVtBduk2ykah+egC0k08NPBnpftEQZw= Subject key identifier: ED:8E:E3:A6:9B:51:1E:86:C2:0F:86:DA:8A:E9:15:CA:C7:A9:74:FC Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 082B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft Manifest number: 081F Signing time: Fri 14 Feb 2025 21:51:29 +0000 Manifest this update: Fri 14 Feb 2025 21:51:28 +0000 Manifest next update: Fri 21 Feb 2025 21:51:28 +0000 Files and hashes: 1: Zd_y7j-bsuskVR4dGPHWPewKbhc.crl (hash: f0kp4cKgJhudsm1yd5MywuA2k49m4dZw7OKbkeoojVk=) 2: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (hash: ef1HFtGWmHcKz9CuwiCCXSfT1VQsZ1MT51qDrYk3OoI=) 3: A7034AFA7F8411EC9036F64CC4F9AE02.roa (hash: f9tQPToB76p1pPXGROGF6QphrQQvfLBw4Gw3PGjwt1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6 Validity Not Before: Feb 14 21:51:28 2025 GMT Not After : Feb 21 21:51:28 2025 GMT Subject: CN=67afbae1-8e4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:cc:10:62:45:42:f2:3d:41:96:bf:4f:f3: 7f:a7:39:4d:ae:6b:4a:ac:e6:3f:d9:e8:f5:d4:e5: b3:9d:9c:e9:76:e9:f1:9f:b5:bb:15:b9:f6:c1:f5: 99:56:45:18:c6:3c:e7:d5:12:d7:09:bc:c2:91:2e: ff:92:94:bd:ab:c9:1c:c2:b8:cc:9f:c8:9d:e0:09: 3d:eb:9c:11:bc:dc:94:80:a0:12:7e:7e:f8:6c:3e: 8e:1e:50:ac:5a:02:0a:05:3c:4c:a7:d7:2f:b3:ea: f3:6e:2b:8e:b8:66:49:7f:a3:68:85:a1:f9:af:80: a4:d2:4f:12:6e:5a:8a:36:df:62:55:52:93:37:eb: 7c:a2:96:4c:28:d7:cc:72:24:15:51:11:00:53:2f: ae:a4:42:6b:a3:16:74:3f:f0:32:df:4d:64:88:81: 38:23:a7:81:1b:f7:ec:ca:e2:a0:ae:42:78:e3:3b: 51:43:db:f6:0f:41:7e:5b:c6:a5:ff:dc:e3:2d:98: 9f:21:1d:e3:24:f6:c7:75:95:d9:36:19:a3:2f:95: a4:6a:0d:49:6a:2d:13:c8:46:fb:6f:31:e6:c1:9f: 69:1a:60:91:40:77:eb:ff:cc:f8:fe:2f:71:c0:3b: 2b:30:cf:b6:45:2b:8e:34:63:01:94:73:2e:89:23: 58:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8E:E3:A6:9B:51:1E:86:C2:0F:86:DA:8A:E9:15:CA:C7:A9:74:FC X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:de:b5:57:76:54:7e:4f:4b:6d:9c:cd:80:43:a6:47:57:ed: ef:65:a7:f9:66:dd:8b:d5:23:14:eb:5e:0e:1d:e1:17:35:ce: c5:8f:60:50:1d:c8:d2:3b:97:0d:5c:65:3c:48:61:a1:53:ec: ca:48:8b:ce:12:69:5a:06:f4:61:c3:2e:70:b8:ec:76:9d:6b: 30:76:a8:0d:33:82:45:63:80:04:f0:60:1c:d0:68:7e:81:07: 51:9e:04:29:15:66:e4:05:c3:ef:cb:e3:ae:97:9f:16:27:0a: f4:50:8e:78:5d:34:e1:55:70:f7:bf:e8:b0:52:17:13:b6:3a: 26:24:a0:07:24:ef:b8:14:d0:21:d9:33:b1:3b:8b:8b:7a:45: a4:bd:a2:91:fd:8f:54:3c:72:61:a9:79:68:ef:fc:d3:38:d5: 8e:62:18:5e:89:d1:6c:48:91:cd:2b:f1:06:9f:69:f4:a0:ce: 6f:d8:59:d7:03:a8:2c:fc:a4:42:0f:fd:db:b6:a7:96:b2:95: 4a:72:ac:cf:45:58:23:c9:c9:06:48:15:a2:19:dd:a6:b2:8d: 81:d6:b0:bb:da:ed:15:87:cf:99:eb:69:4e:00:48:56:a8:e7: 8a:26:6e:a6:9a:85:cc:46:1c:7a:fe:9f:28:bc:8a:d2:c2:ba: 59:e1:8f:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUwMjE0MjE1MTI4WhcNMjUwMjIxMjE1MTI4WjAYMRYwFAYD VQQDEw02N2FmYmFlMS04ZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrHMEGJFQvI9QZa/T/N/pzlNrmtKrOY/2ej11OWznZzpdunxn7W7Fbn2wfWZ VkUYxjzn1RLXCbzCkS7/kpS9q8kcwrjMn8id4Ak965wRvNyUgKASfn74bD6OHlCs WgIKBTxMp9cvs+rzbiuOuGZJf6NohaH5r4Ck0k8SblqKNt9iVVKTN+t8opZMKNfM ciQVUREAUy+upEJroxZ0P/Ay301kiIE4I6eBG/fsyuKgrkJ44ztRQ9v2D0F+W8al /9zjLZifIR3jJPbHdZXZNhmjL5Wkag1Jai0TyEb7bzHmwZ9pGmCRQHfr/8z4/i9x wDsrMM+2RSuONGMBlHMuiSNYVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2O46ab UR6Gwg+G2orpFcrHqXT8MB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RENCNi9FODgzREZENkNDM0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1 c2tWUjRkR1BIV1Bld0tiaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBo3rVXdlR+T0ttnM2AQ6ZHV+3vZaf5Zt2L1SMU614OHeEXNc7Fj2BQ HcjSO5cNXGU8SGGhU+zKSIvOEmlaBvRhwy5wuOx2nWswdqgNM4JFY4AE8GAc0Gh+ gQdRngQpFWbkBcPvy+Oul58WJwr0UI54XTThVXD3v+iwUhcTtjomJKAHJO+4FNAh 2TOxO4uLekWkvaKR/Y9UPHJhqXlo7/zTONWOYhheidFsSJHNK/EGn2n0oM5v2FnX A6gs/KRCD/3btqeWspVKcqzPRVgjyckGSBWiGd2mso2B1rC72u0Vh8+Z62lOAEhW qOeKJm6mmoXMRhx6/p8ovIrSwrpZ4Y8C -----END CERTIFICATE-----Generated at Sun Feb 16 15:08:16 2025 by rpki-client