$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft File: gTpuT37cWLx6SLbR_XwZ39go8fE.mft (raw, json) Hash identifier: kRIdwg7ZnznfDVbNVuosR4P4gQWmPiGeErmhQOjaBfQ= Subject key identifier: 61:B8:B2:0F:3C:96:D4:83:E3:C7:80:BF:32:36:FE:6F:7A:81:79:C9 Authority key identifier: 81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 Certificate issuer: /CN=A91E0CF5/serialNumber=813A6E4F7EDC58BC7A48B6D1FD7C19DFD828F1F1 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft Manifest number: 6B Signing time: Sat 15 Feb 2025 08:07:23 +0000 Manifest this update: Sat 15 Feb 2025 08:07:22 +0000 Manifest next update: Sat 22 Feb 2025 08:07:22 +0000 Files and hashes: 1: gTpuT37cWLx6SLbR_XwZ39go8fE.crl (hash: vkLAI7bwz7qcHut/MrppFndZOMG6/H9gCjFrbdOY6vM=) 2: C0F3F504492B11EF8EF0D04FC4F9AE02.roa (hash: 9XdOr8ci0XxQ25MZorUAalomR3Uhklj1yk5ZzWVz3NQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CF5 Validity Not Before: Feb 15 08:07:22 2025 GMT Not After : Feb 22 08:07:22 2025 GMT Subject: CN=67b04b3b-cce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e2:75:20:58:33:2e:80:fd:37:68:f2:4f:96: c1:22:e0:3c:a0:18:0d:2e:05:fc:6d:35:dd:e4:43: 80:53:bb:6b:dd:e9:00:13:ba:f5:f8:87:74:2b:ed: 91:e7:2a:5b:37:6c:7b:3c:89:08:4c:d6:9c:e7:c9: 76:94:6a:cb:c5:72:7c:a6:8b:25:7c:31:b3:13:a1: 94:2d:70:79:21:7d:9d:e6:ee:fe:b9:9b:99:ac:b1: 77:6c:5e:50:39:f7:5a:a8:2c:86:33:6a:89:1d:db: d9:01:70:ac:4e:8f:b1:85:9d:3e:01:43:28:e6:b4: 67:03:c8:54:d4:8c:07:4c:c8:d1:21:21:f9:33:a6: 32:9b:7b:f0:c6:2f:9e:4d:9a:ba:11:b0:08:b9:b6: c8:2d:00:95:00:54:ec:89:9b:0c:05:37:12:ee:9e: b5:9b:a9:da:46:09:be:b7:eb:cf:e8:a9:b3:f4:6b: cd:ab:6f:70:db:7b:06:9b:07:c7:bb:84:a5:d2:ba: 1c:e2:1c:89:87:c6:62:7f:b2:93:5d:99:37:47:03: 38:2d:4b:f1:f7:02:8d:ee:c5:97:2c:32:fe:5d:e7: 23:0b:3f:f7:e9:43:1d:84:d1:cf:2b:68:03:d8:b9: d6:47:91:b2:1d:b8:c9:c3:8f:d0:e5:58:23:6a:aa: 5e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B8:B2:0F:3C:96:D4:83:E3:C7:80:BF:32:36:FE:6F:7A:81:79:C9 X509v3 Authority Key Identifier: keyid:81:3A:6E:4F:7E:DC:58:BC:7A:48:B6:D1:FD:7C:19:DF:D8:28:F1:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gTpuT37cWLx6SLbR_XwZ39go8fE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CF5/4BB7C644492B11EFBE10184FC4F9AE02/gTpuT37cWLx6SLbR_XwZ39go8fE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:13:43:37:a6:60:0e:61:df:c7:17:55:cb:dc:ea:95:7f:5f: f7:8e:32:48:b9:d4:c3:1a:11:cc:d2:21:86:06:53:39:be:8e: ce:05:8a:4b:8f:ea:a0:4b:41:fe:c6:65:87:81:9d:2c:74:e1: de:59:df:fa:85:bf:42:a5:cd:d3:1a:07:02:54:ca:dd:3a:1c: d1:88:78:2d:c8:4d:0e:17:e9:b5:d7:5e:22:e7:8b:d2:76:86: 7b:1b:9c:dc:2d:81:0f:fb:78:ec:e0:01:25:45:bc:1c:b6:4d: 52:85:9d:38:97:87:73:83:5d:c3:09:f6:e5:fc:c0:cd:11:46: fc:bf:e6:d6:e8:40:fc:39:2f:70:5b:d8:63:20:76:84:f2:c9: 90:8b:a1:e3:b1:20:e9:5e:9f:44:bf:43:c7:e3:d0:53:95:aa: bc:7f:5e:be:9c:dc:9e:2f:9d:72:46:3b:2a:ad:3d:bc:7d:1c: 61:24:cc:9a:99:5b:5a:b6:e5:37:38:7f:99:68:49:25:9c:a5: 6a:15:ee:c3:ee:56:bf:23:4e:7e:be:81:b5:4d:7d:40:71:47: c5:a7:48:29:7b:01:c5:f7:f8:4e:c9:ff:b8:5d:8a:8f:68:1e: 4d:87:11:9c:a3:05:5b:19:1c:e3:3c:39:15:33:8d:5a:4f:3d: 39:50:79:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENGNTExMC8GA1UEBRMoODEzQTZFNEY3RURDNThCQzdBNDhCNkQxRkQ3QzE5REZE ODI4RjFGMTAeFw0yNTAyMTUwODA3MjJaFw0yNTAyMjIwODA3MjJaMBgxFjAUBgNV BAMTDTY3YjA0YjNiLWNjZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC14nUgWDMugP03aPJPlsEi4DygGA0uBfxtNd3kQ4BTu2vd6QATuvX4h3Qr7ZHn Kls3bHs8iQhM1pznyXaUasvFcnymiyV8MbMToZQtcHkhfZ3m7v65m5mssXdsXlA5 91qoLIYzaokd29kBcKxOj7GFnT4BQyjmtGcDyFTUjAdMyNEhIfkzpjKbe/DGL55N mroRsAi5tsgtAJUAVOyJmwwFNxLunrWbqdpGCb6368/oqbP0a82rb3DbewabB8e7 hKXSuhziHImHxmJ/spNdmTdHAzgtS/H3Ao3uxZcsMv5d5yMLP/fpQx2E0c8raAPY udZHkbIduMnDj9DlWCNqql4pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYbiyDzyW 1IPjx4C/Mjb+b3qBeckwHwYDVR0jBBgwFoAUgTpuT37cWLx6SLbR/XwZ39go8fEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0Y1LzRCQjdDNjQ0NDky QjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4NlNMYlJfWHdaMzlnbzhm RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ1RwdVQzN2NXTHg2U0xiUl9Yd1ozOWdvOGZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw Q0Y1LzRCQjdDNjQ0NDkyQjExRUZCRTEwMTg0RkM0RjlBRTAyL2dUcHVUMzdjV0x4 NlNMYlJfWHdaMzlnbzhmRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIwTQzemYA5h38cXVcvc6pV/X/eOMki51MMaEczSIYYGUzm+js4FikuP 6qBLQf7GZYeBnSx04d5Z3/qFv0KlzdMaBwJUyt06HNGIeC3ITQ4X6bXXXiLni9J2 hnsbnNwtgQ/7eOzgASVFvBy2TVKFnTiXh3ODXcMJ9uX8wM0RRvy/5tboQPw5L3Bb 2GMgdoTyyZCLoeOxIOlen0S/Q8fj0FOVqrx/Xr6c3J4vnXJGOyqtPbx9HGEkzJqZ W1q25Tc4f5loSSWcpWoV7sPuVr8jTn6+gbVNfUBxR8WnSCl7AcX3+E7J/7hdio9o Hk2HEZyjBVsZHOM8ORUzjVpPPTlQeSU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:12 2025 by rpki-client