$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: ZmdyM4idIuc29mtQ2U2CgK0gncFcEPaOb9mee2OsHi0= Subject key identifier: 13:D8:B0:0B:50:08:CB:DB:EB:8A:0C:45:BF:73:DD:9C:38:43:96:3E Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 0E67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0B54 Signing time: Fri 14 Feb 2025 21:45:18 +0000 Manifest this update: Fri 14 Feb 2025 21:45:17 +0000 Manifest next update: Fri 21 Feb 2025 21:45:17 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: XI+2EVa3+PLip1bF1HPQfWHaQZH5KwEhSUV2fBcrFT8=) 2: D0C30AAED19011EFB9DDF30DC4F9AE02.roa (hash: wtOuXEEJjUYTWpY0E5t1TiUGzbI8GDejma2rE9RJ+hE=) 3: A97B0954CF4411EF97DACA5AC4F9AE02.roa (hash: DYwkvsvRm+JSPeHD9ASsAAmeOo8QRXaAQeNFQ95mB3Y=) 4: 1FD91490E85B11EFAC5EF810C4F9AE02.roa (hash: baUYUs3mBkidNGAjatnRGqZzTufZEGvbPgkmVSP8z4k=) 5: E17464EAE60511EFA84D8E82C4F9AE02.roa (hash: eIgq6xKUC3WSNZ6sWHlE4Jfm6XnCdk12tmoHe6Xx8uw=) 6: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: y4GAkxc1wnMMcIWRORtwNgAVULVWlMkQgSrzLVx7bAs=) 7: BE7E4E9891F911EF86353E28C4F9AE02.roa (hash: cdF0IEAin6BEbgZDiectcRjj/Qj2LqehP647MMLBn4Y=) 8: 40F0E4DC75AB11EFB897AF69C4F9AE02.roa (hash: 66mcnb1x9N203HeKzYtZYqy46nvM7OGyg282gr346uI=) 9: FA9BC95A548711EF89E24A18C4F9AE02.roa (hash: TzqKssNJoGfL9wI2PFMHpXN5yW7cil9sz1WNr4GCrKI=) 10: E044F8EA6A7D11EFA472EC50C4F9AE02.roa (hash: o1wNjuG4TpbV9OvZFMpjNOBDtLxry7fuLmL+RNYnRgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3687 (0xe67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134 Validity Not Before: Feb 14 21:45:17 2025 GMT Not After : Feb 21 21:45:17 2025 GMT Subject: CN=67afb96d-3d14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:14:08:b1:e5:38:1b:72:44:8b:43:83:51:25: b9:08:25:27:98:4c:10:3d:40:8c:95:e3:02:a7:f8: dc:77:fc:f9:4a:06:25:2c:57:fd:b1:e9:a6:ca:0f: 27:06:44:f4:a6:d7:55:86:09:44:06:e5:9f:d5:ff: 8b:c6:3f:61:4a:62:f7:7b:f9:7f:12:8e:18:80:dd: 88:15:19:24:f1:47:bc:2c:32:a3:53:f0:c8:36:da: 68:2d:bf:1b:79:72:5a:8f:c6:3a:71:fa:85:75:9e: 17:a4:10:cb:f2:9a:0a:23:37:b9:53:cb:ca:51:80: 6a:be:df:22:6d:b5:79:e9:1b:1e:e3:70:90:11:ba: e5:1d:50:6a:27:3c:02:ac:7d:60:da:5b:ac:16:b2: 49:84:9f:1c:41:a2:2d:f1:4a:22:c7:bf:f0:f9:a6: 61:32:d7:bb:ba:ca:24:8d:d9:58:38:72:34:36:88: 7b:59:3d:04:4a:9c:e7:2f:c4:55:cd:0f:9d:eb:e4: ba:88:0f:4a:e0:da:e0:ff:f8:c8:0d:26:64:f3:56: fc:af:cd:05:05:fa:63:e1:d2:a8:6f:5d:c9:d7:dd: c1:0e:7e:ad:d7:97:ef:32:df:69:bb:b4:10:af:1b: 89:64:ee:4f:46:8d:ad:5c:b0:d3:fa:dc:d3:e1:68: e5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:D8:B0:0B:50:08:CB:DB:EB:8A:0C:45:BF:73:DD:9C:38:43:96:3E X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e3:d5:68:d2:35:b5:a0:ab:ee:1b:23:89:e2:aa:8e:5a:35: 2b:c3:55:24:3c:37:97:bc:07:60:b2:f7:0d:8c:80:fd:17:eb: 3e:03:3b:27:22:0c:a5:00:93:cd:b7:2c:88:b9:31:03:73:8a: 11:85:25:04:c5:9d:1c:2d:5e:49:71:90:be:26:2b:0a:43:85: ec:c8:ea:06:43:2a:37:ee:d3:57:44:ac:99:14:a0:ad:60:26: 67:58:84:57:1c:8d:c0:88:29:4d:b3:eb:2f:2b:8d:6c:76:a1: 67:7d:4b:cb:6b:4b:d2:2c:f5:bd:ce:bc:84:9b:02:b3:d5:d1: 0c:12:fa:33:24:e1:c2:a7:5f:63:c5:12:88:91:9b:d8:08:84: 5d:20:d0:50:08:0c:1b:45:73:fb:16:82:34:d1:cd:9b:1a:ee: 3f:16:1e:59:b4:7f:9a:ca:20:95:0f:19:9d:b4:96:72:b8:7d: 98:fe:c3:98:8a:9b:9c:24:b1:69:37:99:fb:f9:d3:bc:be:b2: f8:93:f4:81:b8:74:de:96:e1:5a:24:d9:68:c9:c7:d9:25:3c: 85:c8:a3:61:3f:34:e6:90:41:15:0d:97:97:5c:e7:24:df:4a: c7:99:56:49:63:b6:11:8a:1c:b6:c6:5f:76:64:64:0d:e9:6c: 0d:f8:94:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwMjE0MjE0NTE3WhcNMjUwMjIxMjE0NTE3WjAYMRYwFAYD VQQDEw02N2FmYjk2ZC0zZDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhQIseU4G3JEi0ODUSW5CCUnmEwQPUCMleMCp/jcd/z5SgYlLFf9semmyg8n BkT0ptdVhglEBuWf1f+Lxj9hSmL3e/l/Eo4YgN2IFRkk8Ue8LDKjU/DINtpoLb8b eXJaj8Y6cfqFdZ4XpBDL8poKIze5U8vKUYBqvt8ibbV56Rse43CQEbrlHVBqJzwC rH1g2lusFrJJhJ8cQaIt8Uoix7/w+aZhMte7usokjdlYOHI0Noh7WT0ESpznL8RV zQ+d6+S6iA9K4Nrg//jIDSZk81b8r80FBfpj4dKob13J193BDn6t15fvMt9pu7QQ rxuJZO5PRo2tXLDT+tzT4Wjl7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPYsAtQ CMvb64oMRb9z3Zw4Q5Y+MB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj49Vo0jW1oKvuGyOJ4qqOWjUrw1UkPDeXvAdgsvcNjID9F+s+Azsn IgylAJPNtyyIuTEDc4oRhSUExZ0cLV5JcZC+JisKQ4XsyOoGQyo37tNXRKyZFKCt YCZnWIRXHI3AiClNs+svK41sdqFnfUvLa0vSLPW9zryEmwKz1dEMEvozJOHCp19j xRKIkZvYCIRdINBQCAwbRXP7FoI00c2bGu4/Fh5ZtH+ayiCVDxmdtJZyuH2Y/sOY ipucJLFpN5n7+dO8vrL4k/SBuHTeluFaJNloycfZJTyFyKNhPzTmkEEVDZeXXOck 30rHmVZJY7YRihy2xl92ZGQN6WwN+JRW -----END CERTIFICATE-----Generated at Sun Feb 16 15:16:57 2025 by rpki-client