$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft File: hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft (raw, json) Hash identifier: eIfcxUg0eXFFdnS1sb1GFVBvSQfGY/SnhDfhystpi88= Subject key identifier: 58:55:9D:77:79:AB:69:0B:FF:82:9B:87:11:E1:1F:0C:1D:DE:A6:93 Authority key identifier: 85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE Certificate issuer: /CN=A91E5EEA/serialNumber=8577904C43C2A9BE118FDDD5BA7BB8B6044380FE Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft Manifest number: 0C Signing time: Wed 05 Feb 2025 06:32:16 +0000 Manifest this update: Wed 05 Feb 2025 06:32:15 +0000 Manifest next update: Wed 12 Feb 2025 06:32:15 +0000 Files and hashes: 1: hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl (hash: 1szQ2B8rz7jOnxHf5U1pIf27K7mQrIXIpOfnC+BRYyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA Validity Not Before: Feb 5 06:32:15 2025 GMT Not After : Feb 12 06:32:15 2025 GMT Subject: CN=67a305f0-0f6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1e:f9:a0:7d:36:c9:b5:9e:4d:7d:4e:73:2f: 20:c4:31:b0:5d:56:43:03:a5:dc:de:fc:77:f4:c8: 4e:10:65:a9:89:66:bc:1f:7b:0c:28:9c:23:83:aa: f4:2a:39:5a:66:0a:8e:b7:86:b8:a8:ed:f8:23:5f: 83:de:fb:c2:31:aa:a9:f1:a0:4c:6e:7a:10:c4:bc: 87:d2:bb:9a:53:82:01:e9:b1:e6:36:0a:df:d2:38: 32:73:c9:ce:d3:75:15:fa:a9:cd:3b:09:a6:7c:b8: 0f:e4:ef:c1:11:ae:0a:05:43:11:64:d7:25:31:e0: 37:45:80:01:0f:f9:c8:7f:08:09:04:69:d1:33:e9: d7:db:26:1c:f6:50:84:ff:2a:74:30:e9:0c:0c:4c: ed:b7:a1:3b:e9:6c:4a:f2:f2:f5:62:df:fd:03:05: 3a:63:cf:57:e7:bd:53:fa:18:c9:47:66:42:d0:04: 08:d4:69:9f:d3:ee:0a:cc:0b:b5:b5:c2:fc:1e:42: 97:04:e9:10:38:64:db:ec:64:e2:0b:4c:fb:b0:14: 60:70:64:0c:4e:f9:e0:a6:cf:1c:25:0f:14:7f:8d: 56:3d:b9:02:ef:33:c2:04:3e:c1:71:99:b5:39:07: a1:b0:2d:f3:6f:f9:79:f8:16:30:ed:cd:4a:98:1d: be:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:55:9D:77:79:AB:69:0B:FF:82:9B:87:11:E1:1F:0C:1D:DE:A6:93 X509v3 Authority Key Identifier: keyid:85:77:90:4C:43:C2:A9:BE:11:8F:DD:D5:BA:7B:B8:B6:04:43:80:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hXeQTEPCqb4Rj93Vunu4tgRDgP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/ECA2C7D6D4CF11EF98DF982BC4F9AE02/hXeQTEPCqb4Rj93Vunu4tgRDgP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:9f:53:64:07:e5:d5:33:d1:5c:eb:69:8f:93:71:27:2f:7c: 59:e2:9c:0d:fb:c6:a6:e7:21:6a:8d:9b:17:18:db:1f:ea:7c: 5b:9d:c1:2a:cd:bf:9f:dc:da:2e:ef:65:43:f2:a6:01:20:9a: 03:d6:33:5a:dd:52:5b:7b:c7:39:85:3b:58:3b:cb:8b:1b:de: b8:e1:b0:16:84:76:06:30:5d:3f:80:9e:f7:00:33:d2:56:90: 90:3d:1a:39:1f:0d:d5:8c:19:c8:9f:eb:57:53:d5:e9:f2:ef: d9:01:5a:71:b0:cc:1c:f7:8b:a0:1b:7d:4a:5d:08:bd:a8:f4: d4:db:c1:d1:83:6a:07:85:64:d4:0f:6f:ea:bf:d1:2d:01:cc: 1a:8c:c9:75:ca:12:72:9a:d2:36:1e:17:a1:fb:d8:35:5c:fb: d0:14:67:66:68:19:4b:32:b6:b8:46:4f:a6:ff:ca:9a:97:19: ef:0d:98:04:e4:b7:9e:4c:ad:7a:73:91:33:e4:7b:30:ea:6b: b4:0e:43:a1:46:14:21:d4:aa:ed:01:bf:10:c1:5a:f6:21:49: 3d:48:c4:09:ec:59:34:cf:6e:de:a9:b6:11:fa:b9:1f:63:ce: 75:0b:72:ed:29:a1:d3:7c:37:4d:1d:55:53:ef:ce:2e:57:e0: 63:59:d2:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoODU3NzkwNEM0M0MyQTlCRTExOEZEREQ1QkE3QkI4QjYw NDQzODBGRTAeFw0yNTAyMDUwNjMyMTVaFw0yNTAyMTIwNjMyMTVaMBgxFjAUBgNV BAMTDTY3YTMwNWYwLTBmNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvHvmgfTbJtZ5NfU5zLyDEMbBdVkMDpdze/Hf0yE4QZamJZrwfewwonCODqvQq OVpmCo63hrio7fgjX4Pe+8IxqqnxoExuehDEvIfSu5pTggHpseY2Ct/SODJzyc7T dRX6qc07CaZ8uA/k78ERrgoFQxFk1yUx4DdFgAEP+ch/CAkEadEz6dfbJhz2UIT/ KnQw6QwMTO23oTvpbEry8vVi3/0DBTpjz1fnvVP6GMlHZkLQBAjUaZ/T7grMC7W1 wvweQpcE6RA4ZNvsZOILTPuwFGBwZAxO+eCmzxwlDxR/jVY9uQLvM8IEPsFxmbU5 B6GwLfNv+Xn4FjDtzUqYHb6tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWFWdd3mr aQv/gpuHEeEfDB3eppMwHwYDVR0jBBgwFoAUhXeQTEPCqb4Rj93Vunu4tgRDgP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0VDQTJDN0Q2RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0Umo5M1Z1bnU0dGdSRGdQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFhlUVRFUENxYjRSajkzVnVudTR0Z1JEZ1A0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 RUVBL0VDQTJDN0Q2RDRDRjExRUY5OERGOTgyQkM0RjlBRTAyL2hYZVFURVBDcWI0 Umo5M1Z1bnU0dGdSRGdQNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJGfU2QH5dUz0VzraY+TcScvfFninA37xqbnIWqNmxcY2x/qfFudwSrN v5/c2i7vZUPypgEgmgPWM1rdUlt7xzmFO1g7y4sb3rjhsBaEdgYwXT+AnvcAM9JW kJA9GjkfDdWMGcif61dT1eny79kBWnGwzBz3i6AbfUpdCL2o9NTbwdGDageFZNQP b+q/0S0BzBqMyXXKEnKa0jYeF6H72DVc+9AUZ2ZoGUsytrhGT6b/ypqXGe8NmATk t55MrXpzkTPkezDqa7QOQ6FGFCHUqu0BvxDBWvYhST1IxAnsWTTPbt6pthH6uR9j znULcu0podN8N00dVVPvzi5X4GNZ0nY= -----END CERTIFICATE-----Generated at Thu Feb 6 03:41:59 2025 by rpki-client