$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft File: JXqeaRTVinRbDuar5UjNvgIEiNQ.mft (raw, json) Hash identifier: lhVHxaEib5QG991T2Z+P3rMRliV2hUCaLrWMrIM9jrM= Subject key identifier: A0:FC:F3:17:57:86:56:0C:99:26:4A:5F:5B:40:A4:E0:88:0A:29:4A Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 0231 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft Manifest number: 01F2 Signing time: Sat 15 Feb 2025 04:19:51 +0000 Manifest this update: Sat 15 Feb 2025 04:19:50 +0000 Manifest next update: Sat 22 Feb 2025 04:19:50 +0000 Files and hashes: 1: JXqeaRTVinRbDuar5UjNvgIEiNQ.crl (hash: nj+GPkImq15X5XyBLPoxC1PjZoPd+oLZ3RjdAIRCiOE=) 2: AB4BB622CE6111EF981AC77AC4F9AE02.roa (hash: 8+XeZ7gTs//qEFH1W7DiRKrnlw1RkeEDoAo1raNhxyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D Validity Not Before: Feb 15 04:19:50 2025 GMT Not After : Feb 22 04:19:50 2025 GMT Subject: CN=67b015e7-bccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:ef:0e:7d:90:dd:0d:8e:52:bd:af:f0:e8: c6:d7:6c:eb:12:06:9d:6a:9a:4a:01:45:2f:04:e2: 69:83:e1:12:57:36:ee:12:95:80:15:ca:81:fa:11: 20:d8:ff:6e:a8:96:8f:2f:a2:d9:7d:e7:52:4b:1d: ad:bd:c1:2e:41:39:f7:97:a6:7f:7b:1b:f9:73:04: bc:5f:2c:a4:b4:de:b0:02:32:22:16:23:b4:70:23: e9:bc:47:b1:e2:6f:73:08:e1:93:37:7c:19:cb:fa: c3:26:b3:a3:a4:d6:c3:67:a3:64:8a:99:de:16:e6: 52:48:13:c1:dc:bd:48:90:af:b5:91:33:91:1c:65: 45:cf:32:f4:b7:45:00:5e:f1:cb:9e:e7:77:04:5b: d5:48:e1:61:b1:6b:96:54:6c:5b:48:6a:fb:5e:fe: 40:9e:0c:f9:01:dc:aa:10:8d:a9:03:65:fc:07:5c: fe:8e:45:b0:dc:58:82:f1:37:d2:7f:e4:5e:3f:6f: 76:38:72:1e:ec:2a:f1:9c:8a:09:76:f6:a0:3c:ef: 62:66:47:15:91:dc:99:c6:7e:3d:85:bc:9c:43:85: 7a:90:99:21:dc:f5:d7:01:a7:e7:62:cb:1d:25:75: d6:98:5a:f5:f9:05:00:70:97:08:79:b0:cd:89:4d: 3b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FC:F3:17:57:86:56:0C:99:26:4A:5F:5B:40:A4:E0:88:0A:29:4A X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:5f:c2:48:24:e6:83:e6:cb:8a:47:e9:1e:d3:36:90:d2:ea: 9d:f7:ea:fb:1b:23:98:78:42:93:6e:88:7c:ad:46:98:46:8a: 90:ff:ec:e1:60:e4:3f:2f:8c:8b:02:c1:f0:f8:2a:49:e9:57: 0a:b7:9b:a8:6b:84:c0:d3:24:e7:5a:e5:98:74:cb:da:54:57: d7:f3:14:c9:9f:d3:73:68:9d:9d:97:aa:9d:81:d5:25:59:ba: a7:7c:a2:f1:be:7e:53:a0:72:15:3d:0c:c4:a7:8c:1b:71:bf: f4:83:02:25:aa:6b:36:86:a7:83:90:15:15:57:39:71:35:5e: 74:61:5b:27:4c:20:aa:f0:1f:0e:9b:51:b6:f7:12:5f:66:50: 3d:17:dd:fb:be:fb:89:76:b8:47:d5:ec:e5:c4:44:da:c4:6a: 5c:ca:a9:5b:a4:97:1f:0a:70:75:7e:7a:39:df:0f:39:dd:b3: 83:84:3a:88:0d:9a:21:6a:6a:d3:ab:ab:67:b0:b1:80:84:43: 2d:02:6f:79:be:ed:be:9d:af:ec:48:c6:0f:f0:72:0f:1a:49: 05:f9:23:db:1f:a9:ba:37:b5:a1:60:ff:e9:17:cf:13:b2:8c: 35:fd:a4:83:97:18:be:c7:28:6b:75:b7:2a:5c:91:82:38:7e: 45:14:85:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjUwMjE1MDQxOTUwWhcNMjUwMjIyMDQxOTUwWjAYMRYwFAYD VQQDEw02N2IwMTVlNy1iY2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxc7vDn2Q3Q2OUr2v8OjG12zrEgadappKAUUvBOJpg+ESVzbuEpWAFcqB+hEg 2P9uqJaPL6LZfedSSx2tvcEuQTn3l6Z/exv5cwS8XyyktN6wAjIiFiO0cCPpvEex 4m9zCOGTN3wZy/rDJrOjpNbDZ6NkipneFuZSSBPB3L1IkK+1kTORHGVFzzL0t0UA XvHLnud3BFvVSOFhsWuWVGxbSGr7Xv5Angz5AdyqEI2pA2X8B1z+jkWw3FiC8TfS f+ReP292OHIe7CrxnIoJdvagPO9iZkcVkdyZxn49hbycQ4V6kJkh3PXXAafnYssd JXXWmFr1+QUAcJcIebDNiU07AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKD88xdX hlYMmSZKX1tApOCICilKMB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDE1RC82QzQ3NDkyMDczMTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmlu UmJEdWFyNVVqTnZnSUVpTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARX8JIJOaD5suKR+ke0zaQ0uqd9+r7GyOYeEKTboh8rUaYRoqQ/+zh YOQ/L4yLAsHw+CpJ6VcKt5uoa4TA0yTnWuWYdMvaVFfX8xTJn9NzaJ2dl6qdgdUl WbqnfKLxvn5ToHIVPQzEp4wbcb/0gwIlqms2hqeDkBUVVzlxNV50YVsnTCCq8B8O m1G29xJfZlA9F937vvuJdrhH1ezlxETaxGpcyqlbpJcfCnB1fno53w853bODhDqI DZohamrTq6tnsLGAhEMtAm95vu2+na/sSMYP8HIPGkkF+SPbH6m6N7WhYP/pF88T sow1/aSDlxi+xyhrdbcqXJGCOH5FFIVM -----END CERTIFICATE-----Generated at Sun Feb 16 21:55:19 2025 by rpki-client