$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: q9phRTRPSgGzqPtX8PCD+94QuQoDWi8C3YIWRygjGyU= Subject key identifier: 57:3B:DC:35:75:E0:5B:C3:60:7B:31:81:62:DF:27:98:03:81:AD:71 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 016E Signing time: Mon 17 Feb 2025 04:37:37 +0000 Manifest this update: Mon 17 Feb 2025 04:37:36 +0000 Manifest next update: Mon 24 Feb 2025 04:37:36 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: JIA0RYQFuwmnshOI+lZS9RU11Hl9KXIy44y9ARwstrI=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: 5+9jJwjzRyNYN2O27C0xkTXdTv27eYHF2xhj3n4/zw8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: OTItAaxPPemMiPzq6xmShyEDu1glCIdZDgb+Zo6pNyA=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: H7vSiuNaTY/QVhx1Z+0HnkEM6Adv1NWsmVcvR+Op02o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2 Validity Not Before: Feb 17 04:37:36 2025 GMT Not After : Feb 24 04:37:36 2025 GMT Subject: CN=67b2bd10-4c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2d:a6:c8:6b:b6:ad:c2:e7:ad:1e:0c:e1:bc: b8:42:86:a7:cd:60:03:f4:c1:6f:54:f1:8f:98:57: d1:85:d3:da:8f:5b:ed:b1:88:be:a2:e5:f8:33:51: ae:12:fe:52:95:1d:73:af:ab:9f:69:5a:4f:9e:9e: 25:ca:74:54:6d:50:4a:37:15:4b:80:41:c7:86:17: ea:2f:82:40:9d:ad:1f:4d:22:56:fb:9e:3d:c0:08: e2:8b:7f:ef:a3:17:b4:c2:50:c2:f1:d5:97:36:36: d7:ae:37:e5:a4:ce:fd:80:99:bb:79:77:af:66:29: 2d:e7:c2:08:2d:06:fe:82:21:21:8c:51:38:db:18: e4:5b:e8:57:ee:4f:81:5a:7e:99:a0:99:38:ff:b8: 5b:33:ad:6e:da:c2:a3:88:4e:35:9f:21:eb:a4:ca: 2d:e9:d7:04:be:58:c3:c2:b2:79:ac:c6:5e:46:fd: c1:81:ed:d5:62:bc:a6:6b:23:b2:e4:10:e5:13:7f: cf:cc:5d:32:2f:de:e1:e0:a2:76:7d:3e:0b:84:82: 11:6e:7c:18:c3:a8:d2:3a:b5:a7:ed:22:80:52:33: bf:99:76:19:15:ee:ae:1e:be:53:63:f4:3a:9b:65: bc:39:24:6e:7b:76:97:13:c3:fb:33:dd:cb:b8:f4: 03:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3B:DC:35:75:E0:5B:C3:60:7B:31:81:62:DF:27:98:03:81:AD:71 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:35:28:69:f6:cd:96:07:d7:b1:b0:91:52:c8:ab:fa:b5:62: ef:2a:7e:de:df:71:0c:51:38:ca:24:9c:9a:91:b4:96:c9:26: f2:9e:99:bd:6a:59:86:b3:02:fc:49:12:12:6d:51:e6:5a:ae: 31:48:ff:02:21:f9:ea:ea:3b:f8:e0:3f:89:78:47:db:7a:43: 05:ef:5c:cb:c6:2b:1b:3b:97:99:08:a7:19:88:a5:7d:f1:e7: 5d:6d:63:ec:33:c5:d3:d2:4f:f8:b7:7a:bf:a6:c0:99:0c:bf: 9f:a9:ec:e0:04:f7:74:d7:29:93:98:cb:89:64:37:76:a6:15: e4:8f:52:2e:c2:b4:74:f3:b5:7c:b2:44:84:bc:cf:ea:69:78: b9:cd:96:55:0e:1e:5e:4a:17:b4:97:68:fc:32:e2:24:b9:47: e0:35:61:d2:a4:d5:79:ff:0a:74:84:2d:06:6f:3c:38:b4:85: c9:5b:6c:8c:0c:28:be:42:58:90:e6:e8:64:cc:83:a2:d1:38: 89:ec:37:98:c2:3c:6d:c3:ce:4f:b1:a7:1d:12:02:51:aa:68: 45:c9:27:9a:32:2c:a9:1e:81:33:2b:4d:91:10:e5:9e:dc:ba: 1f:3a:93:91:2c:6d:74:07:eb:1e:2a:1d:3b:19:39:bc:e4:e3: b3:89:d3:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwMjE3MDQzNzM2WhcNMjUwMjI0MDQzNzM2WjAYMRYwFAYD VQQDEw02N2IyYmQxMC00YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2S2myGu2rcLnrR4M4by4QoanzWAD9MFvVPGPmFfRhdPaj1vtsYi+ouX4M1Gu Ev5SlR1zr6ufaVpPnp4lynRUbVBKNxVLgEHHhhfqL4JAna0fTSJW+549wAjii3/v oxe0wlDC8dWXNjbXrjflpM79gJm7eXevZikt58IILQb+giEhjFE42xjkW+hX7k+B Wn6ZoJk4/7hbM61u2sKjiE41nyHrpMot6dcEvljDwrJ5rMZeRv3Bge3VYrymayOy 5BDlE3/PzF0yL97h4KJ2fT4LhIIRbnwYw6jSOrWn7SKAUjO/mXYZFe6uHr5TY/Q6 m2W8OSRue3aXE8P7M93LuPQD/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFc73DV1 4FvDYHsxgWLfJ5gDga1xMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFNShp9s2WB9exsJFSyKv6tWLvKn7e33EMUTjKJJyakbSWySbynpm9 almGswL8SRISbVHmWq4xSP8CIfnq6jv44D+JeEfbekMF71zLxisbO5eZCKcZiKV9 8eddbWPsM8XT0k/4t3q/psCZDL+fqezgBPd01ymTmMuJZDd2phXkj1IuwrR087V8 skSEvM/qaXi5zZZVDh5eShe0l2j8MuIkuUfgNWHSpNV5/wp0hC0Gbzw4tIXJW2yM DCi+QliQ5uhkzIOi0TiJ7DeYwjxtw85PsacdEgJRqmhFySeaMiypHoEzK02REOWe 3LofOpORLG10B+seKh07GTm85OOzidPW -----END CERTIFICATE-----Generated at Mon Feb 17 07:29:53 2025 by rpki-client