$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft File: VU9dfGbsUOhKiru6mWgXfkcp02Y.mft (raw, json) Hash identifier: DkmPz3zVoHYHNxSHmuaK5epbqgi+GlWIweR9Au2A4+k= Subject key identifier: 18:A7:11:8E:0F:06:6E:C3:5D:6D:0A:94:5E:CD:1F:30:63:0F:5F:B3 Authority key identifier: 55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 Certificate issuer: /CN=A91E8BE3/serialNumber=554F5D7C66EC50E84A8ABBBA9968177E4729D366 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft Manifest number: 1B Signing time: Wed 05 Feb 2025 06:21:46 +0000 Manifest this update: Wed 05 Feb 2025 06:21:45 +0000 Manifest next update: Wed 12 Feb 2025 06:21:45 +0000 Files and hashes: 1: VU9dfGbsUOhKiru6mWgXfkcp02Y.crl (hash: oFYASe7VEVr5Te390I1XUzgkv6XqG67090/58kxoeb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3 Validity Not Before: Feb 5 06:21:45 2025 GMT Not After : Feb 12 06:21:45 2025 GMT Subject: CN=67a3037a-80e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c6:74:9e:44:b0:72:e2:59:77:eb:9e:ff:3e: 4a:c1:5c:23:33:ca:1f:cd:f8:cf:a9:5f:d4:bb:4f: 55:dd:15:4b:3d:bd:2a:6d:e7:65:89:81:b2:6c:e9: 36:16:14:0c:f1:ca:89:46:9e:8e:b8:02:12:89:4c: ff:25:1c:f3:2b:8c:ef:72:e2:80:86:f8:57:eb:f0: 91:83:df:ef:47:3b:55:56:c0:dd:d7:78:3f:dd:f1: e4:0b:9c:82:99:fd:f6:0a:c9:53:1c:17:da:a0:c9: 4a:46:5f:74:e2:cf:7f:a2:ed:fb:3a:c8:b0:a2:38: 3a:6e:24:2c:72:93:ba:03:e1:19:7b:13:d6:f2:00: d4:36:8e:a9:a5:c6:39:22:dd:94:d7:18:00:61:36: d7:02:7e:67:a3:3d:20:c6:d3:86:67:da:85:08:b4: 6c:d9:00:d8:52:de:50:1d:49:2f:b3:d0:c6:f0:f6: 10:2b:c7:f3:1d:59:8e:d8:a6:72:eb:0a:9d:e2:4e: c1:27:d0:7f:57:78:72:1b:45:34:f5:bc:78:52:c9: 5f:5d:04:d2:9b:f8:2c:e7:7b:3d:71:88:6f:cc:7e: 40:92:e8:81:87:b4:6c:da:7e:b4:00:58:fe:ae:65: 19:3c:37:12:e6:d0:0a:4c:80:f6:41:7a:d6:70:39: 17:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A7:11:8E:0F:06:6E:C3:5D:6D:0A:94:5E:CD:1F:30:63:0F:5F:B3 X509v3 Authority Key Identifier: keyid:55:4F:5D:7C:66:EC:50:E8:4A:8A:BB:BA:99:68:17:7E:47:29:D3:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VU9dfGbsUOhKiru6mWgXfkcp02Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/EEEF7FEABF9C11EF9DA88282C4F9AE02/VU9dfGbsUOhKiru6mWgXfkcp02Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:8f:35:83:bb:5a:4b:d8:e0:1b:37:a7:12:08:c9:59:05:eb: 66:70:d2:ae:d2:85:d2:ef:75:fd:6f:76:84:12:57:a2:bc:be: 39:14:1b:e9:af:8c:88:69:bd:2c:6c:c3:89:c5:ed:14:32:6f: 93:87:ae:e8:78:7c:4d:a0:61:af:3c:1e:81:5b:67:66:61:4a: 68:79:39:c4:a3:e6:2f:a0:4b:b4:b1:74:ed:a9:aa:f0:b5:ba: 2b:21:73:94:68:77:3f:bc:d5:74:9a:d8:e2:3a:2a:c6:7a:7a: 41:94:85:80:6e:42:be:aa:df:8c:40:17:1e:70:48:a8:d0:37: 98:cb:fb:ea:aa:0f:37:4b:ee:7f:c0:f6:6d:4d:5f:74:e3:04: e3:77:e7:55:20:e6:89:ac:ee:0e:ef:08:4e:13:05:f5:f0:a2: 7b:04:98:ea:4a:8e:fc:c5:98:62:e1:e8:4c:6d:44:e0:b5:79: 63:5e:51:0c:7d:80:89:82:ba:2c:5b:ff:99:a2:3e:94:84:53: 03:cd:a1:f9:e4:10:21:54:2b:89:11:f2:9f:db:dd:86:9a:44: 64:80:27:bf:35:d8:c4:ed:ca:1e:f1:48:88:53:f5:15:a6:60: 6b:6f:11:a3:2d:1f:39:8d:13:02:71:16:2e:4f:57:83:f8:64: a5:9d:5a:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEJFMzExMC8GA1UEBRMoNTU0RjVEN0M2NkVDNTBFODRBOEFCQkJBOTk2ODE3N0U0 NzI5RDM2NjAeFw0yNTAyMDUwNjIxNDVaFw0yNTAyMTIwNjIxNDVaMBgxFjAUBgNV BAMTDTY3YTMwMzdhLTgwZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNxnSeRLBy4ll3657/PkrBXCMzyh/N+M+pX9S7T1XdFUs9vSpt52WJgbJs6TYW FAzxyolGno64AhKJTP8lHPMrjO9y4oCG+Ffr8JGD3+9HO1VWwN3XeD/d8eQLnIKZ /fYKyVMcF9qgyUpGX3Tiz3+i7fs6yLCiODpuJCxyk7oD4Rl7E9byANQ2jqmlxjki 3ZTXGABhNtcCfmejPSDG04Zn2oUItGzZANhS3lAdSS+z0Mbw9hArx/MdWY7YpnLr Cp3iTsEn0H9XeHIbRTT1vHhSyV9dBNKb+Cznez1xiG/MfkCS6IGHtGzafrQAWP6u ZRk8NxLm0ApMgPZBetZwORctAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGKcRjg8G bsNdbQqUXs0fMGMPX7MwHwYDVR0jBBgwFoAUVU9dfGbsUOhKiru6mWgXfkcp02Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4QkUzL0VFRUY3RkVBQkY5 QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9oS2lydTZtV2dYZmtjcDAy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlU5ZGZHYnNVT2hLaXJ1Nm1XZ1hma2NwMDJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 QkUzL0VFRUY3RkVBQkY5QzExRUY5REE4ODI4MkM0RjlBRTAyL1ZVOWRmR2JzVU9o S2lydTZtV2dYZmtjcDAyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKePNYO7WkvY4Bs3pxIIyVkF62Zw0q7ShdLvdf1vdoQSV6K8vjkUG+mv jIhpvSxsw4nF7RQyb5OHruh4fE2gYa88HoFbZ2ZhSmh5OcSj5i+gS7SxdO2pqvC1 uishc5Rodz+81XSa2OI6KsZ6ekGUhYBuQr6q34xAFx5wSKjQN5jL++qqDzdL7n/A 9m1NX3TjBON351Ug5oms7g7vCE4TBfXwonsEmOpKjvzFmGLh6ExtROC1eWNeUQx9 gImCuixb/5miPpSEUwPNofnkECFUK4kR8p/b3YaaRGSAJ7812MTtyh7xSIhT9RWm YGtvEaMtHzmNEwJxFi5PV4P4ZKWdWik= -----END CERTIFICATE-----Generated at Thu Feb 6 04:07:34 2025 by rpki-client