$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft File: yGA2V1UkSO1buu1xck0iIPA798Y.mft (raw, json) Hash identifier: VLpBXU6+8mrHMz+h9OCe0uSdcoxblZVtFOkaKWzBayg= Subject key identifier: 11:9B:45:92:F5:B5:EC:84:1A:44:98:85:03:88:55:CE:84:89:EF:5F Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft Manifest number: 74 Signing time: Sat 15 Feb 2025 08:01:33 +0000 Manifest this update: Sat 15 Feb 2025 08:01:33 +0000 Manifest next update: Sat 22 Feb 2025 08:01:33 +0000 Files and hashes: 1: yGA2V1UkSO1buu1xck0iIPA798Y.crl (hash: lVyUkvZWT7geqqdMZb14dcLpVWJDXEYSyEPkhtSIjS0=) 2: 68EBA63A48B911EFB80D9535C4F9AE02.roa (hash: OV24Kj5y+880mPdkukE2fpkmI0sbTUDGEcrj2jYLxRA=) 3: C006CA2248B311EFB8A4C178C4F9AE02.roa (hash: RWKYaNgfk7P7N5uSJ3tE2gik3mua1Il7oXxrRLWnbWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F Validity Not Before: Feb 15 08:01:33 2025 GMT Not After : Feb 22 08:01:33 2025 GMT Subject: CN=67b049dd-f0f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:db:66:38:fa:c5:32:53:6f:00:a6:1d:d2:ab: 97:a8:2b:b4:eb:51:7e:1a:2a:f4:aa:6a:66:9f:fb: e6:b2:7c:e9:64:80:22:2d:73:31:02:b4:b6:f8:60: d7:d4:1d:69:45:5f:6c:8d:d6:cd:c0:b5:d1:9b:71: ad:7e:9e:64:0b:bf:e4:11:1d:1b:1e:c0:0c:97:55: b0:60:c8:c6:6f:28:b5:b0:9d:4f:f2:fa:e2:5c:7a: 42:58:e7:c6:33:d7:d2:25:61:33:90:9c:f1:1b:f3: 43:54:eb:3b:93:68:18:91:1a:9e:75:0c:04:27:d4: 16:a1:f6:e6:5e:77:98:25:87:54:f1:df:77:1f:ae: 92:cd:5c:c3:35:1a:76:a1:8d:a0:51:8f:60:4c:fc: 09:1c:e6:7b:1b:e6:0c:9a:cf:60:25:9c:be:52:d2: e0:c8:8c:b5:34:23:4e:fb:e4:03:5a:88:b2:e2:b9: 8c:1a:b7:bd:b8:c6:48:b7:30:ec:91:de:ff:a6:a4: cf:b0:d5:c4:da:c4:dd:9c:49:0f:a3:55:91:33:34: 37:d4:c1:6d:78:c9:05:41:43:a9:0d:91:95:04:26: 32:27:d2:08:77:a0:cc:f1:41:9c:d4:fc:da:08:0d: 76:d8:3d:5a:ed:75:97:76:fb:1a:7e:a1:8e:2f:cd: 19:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9B:45:92:F5:B5:EC:84:1A:44:98:85:03:88:55:CE:84:89:EF:5F X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:5b:05:2e:b1:5b:4c:68:f6:20:62:ba:38:4d:7f:bd:75:1a: e8:9d:29:6c:fc:ba:a6:ad:a5:26:ab:12:8f:9b:aa:c2:6e:c4: 94:ed:b9:e4:2d:52:74:b1:db:87:fe:5e:85:97:de:d2:af:b8: 20:da:58:db:90:d5:40:20:6f:c1:d8:ef:09:a0:cd:3d:ab:5c: 56:7b:71:b2:bf:36:34:50:e1:2d:ee:12:ac:21:8b:4b:7b:4f: eb:77:11:01:04:cb:cb:22:31:ee:a3:31:cd:44:7b:aa:c4:fe: d9:3b:f1:5f:2f:12:d3:0a:21:ae:e9:26:28:58:af:8a:e4:3f: 53:f7:35:c9:6e:19:13:34:18:5e:b0:21:db:ca:27:cd:4a:9a: 8c:b1:f2:22:8f:c3:82:33:e2:42:0e:16:63:c4:52:3d:0b:d7: 1f:90:60:f6:2d:c5:0c:39:46:70:e7:8d:e3:50:6e:8b:36:71: c1:72:bd:40:54:46:74:83:47:f7:7e:21:29:49:08:e7:66:0f: 3e:87:3a:01:15:93:dc:ec:1b:88:cd:21:a8:88:dd:91:83:e3: d5:ca:54:22:cf:f0:fc:0c:43:5b:66:40:33:9e:08:08:b9:5b: ea:0a:f1:f9:7e:2e:eb:60:c8:39:99:19:a2:89:a4:99:44:e5: cb:a3:36:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NzgyRjExMC8GA1UEBRMoQzg2MDM2NTc1NTI0NDhFRDVCQkFFRDcxNzI0RDIyMjBG MDNCRjdDNjAeFw0yNTAyMTUwODAxMzNaFw0yNTAyMjIwODAxMzNaMBgxFjAUBgNV BAMTDTY3YjA0OWRkLWYwZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZ22Y4+sUyU28Aph3Sq5eoK7TrUX4aKvSqamaf++ayfOlkgCItczECtLb4YNfU HWlFX2yN1s3AtdGbca1+nmQLv+QRHRsewAyXVbBgyMZvKLWwnU/y+uJcekJY58Yz 19IlYTOQnPEb80NU6zuTaBiRGp51DAQn1Bah9uZed5glh1Tx33cfrpLNXMM1Gnah jaBRj2BM/Akc5nsb5gyaz2AlnL5S0uDIjLU0I0775ANaiLLiuYwat724xki3MOyR 3v+mpM+w1cTaxN2cSQ+jVZEzNDfUwW14yQVBQ6kNkZUEJjIn0gh3oMzxQZzU/NoI DXbYPVrtdZd2+xp+oY4vzRkPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEZtFkvW1 7IQaRJiFA4hVzoSJ718wHwYDVR0jBBgwFoAUyGA2V1UkSO1buu1xck0iIPA798Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3ODJGLzZEMjA3NUY2NDA3 MDExRUZCREE5RDY2RkM0RjlBRTAyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveUdBMlYxVWtTTzFidXUxeGNrMGlJUEE3OThZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 ODJGLzZEMjA3NUY2NDA3MDExRUZCREE5RDY2RkM0RjlBRTAyL3lHQTJWMVVrU08x YnV1MXhjazBpSVBBNzk4WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHZbBS6xW0xo9iBiujhNf711GuidKWz8uqatpSarEo+bqsJuxJTtueQt UnSx24f+XoWX3tKvuCDaWNuQ1UAgb8HY7wmgzT2rXFZ7cbK/NjRQ4S3uEqwhi0t7 T+t3EQEEy8siMe6jMc1Ee6rE/tk78V8vEtMKIa7pJihYr4rkP1P3NcluGRM0GF6w IdvKJ81Kmoyx8iKPw4Iz4kIOFmPEUj0L1x+QYPYtxQw5RnDnjeNQbos2ccFyvUBU RnSDR/d+ISlJCOdmDz6HOgEVk9zsG4jNIaiI3ZGD49XKVCLP8PwMQ1tmQDOeCAi5 W+oK8fl+LutgyDmZGaKJpJlE5cujNs4= -----END CERTIFICATE-----Generated at Sun Feb 16 15:43:30 2025 by rpki-client