$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft File: oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft (raw, json) Hash identifier: kLDYIy9UEqkD+nrSWdGrtIeMO0t/pg/bXfv+RYBQofE= Subject key identifier: 94:F1:2D:D7:05:08:8A:C7:E0:D2:ED:75:19:31:14:26:88:9A:24:E5 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft Manifest number: 25 Signing time: Wed 05 Feb 2025 06:15:00 +0000 Manifest this update: Wed 05 Feb 2025 06:15:00 +0000 Manifest next update: Wed 12 Feb 2025 06:15:00 +0000 Files and hashes: 1: oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl (hash: c9pdwkhAk+DJAgx8Ua0+zon1AXLj0aFQii5JE6GfsOk=) 2: 5D5CEDCEAFC011EFAA2E3455C4F9AE02.roa (hash: 7A02Qe5tU1BaVkRNS6N9PAYKa4qN0Lgazu0at/u/nBw=) 3: 1597CAC6B00711EF863A582EC4F9AE02.roa (hash: ELgn79sVAW9E3JP6Gcqdp6NoM1aGV5NXuDSvgrgOR0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5 Validity Not Before: Feb 5 06:15:00 2025 GMT Not After : Feb 12 06:15:00 2025 GMT Subject: CN=67a301e4-8ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9a:cd:84:4e:7a:ef:53:b1:80:7a:5c:bc:d3: f5:e2:a9:eb:b9:9c:e7:7f:07:00:b0:0f:77:2b:f3: 5c:3f:46:33:d3:0a:d3:30:72:9f:24:e4:be:cb:e2: 50:b5:aa:05:a2:62:39:e3:bc:fe:e1:3c:1a:33:fb: e6:34:83:ff:34:7b:56:d7:5b:1c:49:7a:32:f4:7b: 89:98:44:c7:0f:04:0f:23:5e:ae:a8:f4:39:4a:d8: 94:df:19:c5:c1:16:ea:d8:17:43:e2:b2:4d:63:ee: d8:b1:38:34:0a:0f:4b:e3:fd:ef:43:55:ac:d1:c4: 80:e7:55:a5:cd:59:6d:6f:b7:06:92:94:a5:e1:0a: 58:c6:f5:5a:db:3f:bb:71:98:00:59:d5:c3:99:80: 33:4a:10:60:1f:c3:cf:7a:d3:91:68:6c:a8:42:9a: 38:d0:15:2f:79:20:a3:b9:2a:2b:e9:4f:bf:2e:8d: 2d:89:76:fd:f8:66:f4:c2:e2:5b:e2:f5:ed:81:40: 56:27:a0:05:cd:b0:4a:5d:62:e7:a3:4d:f7:2f:4e: ac:3b:07:9a:4a:fd:fe:8d:d8:11:00:e6:4c:72:7c: 9f:98:1f:a1:7f:eb:9e:14:78:23:0f:b4:fe:8d:44: b1:6f:8e:33:13:b0:79:f3:8e:ce:ac:29:c6:70:e1: da:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F1:2D:D7:05:08:8A:C7:E0:D2:ED:75:19:31:14:26:88:9A:24:E5 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:69:b8:cf:ab:0e:4c:9d:a1:63:2c:1d:90:46:aa:fb:37:84: 40:a8:b2:94:02:06:21:37:5a:2d:4b:81:41:25:22:eb:08:77: 54:06:6c:1b:8f:a3:b2:ce:99:e8:1a:42:14:36:f9:c1:81:87: 18:13:9f:d4:fe:a3:b9:bd:80:c1:44:67:a9:03:85:e8:81:cc: 73:a6:36:a9:8b:6f:fd:17:c2:35:e8:ad:03:80:62:99:06:48: 5d:0d:0a:d4:1c:db:88:06:03:0c:e6:53:76:d6:3b:bf:64:27: 40:c6:90:9e:60:99:9a:96:6e:37:1c:e2:51:11:75:83:d8:8d: b0:8f:b8:d1:1b:66:c6:fd:ac:17:d9:8d:bf:d7:ce:99:88:ad: 17:a0:d8:f0:aa:8a:3d:f6:f7:56:1e:30:5d:00:82:ed:62:9b: 00:13:21:fa:bb:fc:de:8e:40:03:58:40:6e:5a:d9:3f:f1:4a: d0:eb:47:16:0a:88:ed:43:76:4d:4d:b8:b7:d0:1a:ea:ab:a1: cf:42:2d:c3:72:b8:e9:f4:26:e3:86:9e:90:0c:5a:28:40:b0: 31:86:51:98:7f:62:94:be:cb:32:45:8e:61:0b:d9:af:ba:a3: 07:00:e4:a2:65:28:41:cc:d3:35:06:d4:94:f4:6c:89:c7:1a: 01:de:d4:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoQTAwRTAyREM3ODNGOTA4NDAyMURGOTRGNzU4NjI2NEVD NDdEMzQzODAeFw0yNTAyMDUwNjE1MDBaFw0yNTAyMTIwNjE1MDBaMBgxFjAUBgNV BAMTDTY3YTMwMWU0LThlZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCums2ETnrvU7GAely80/Xiqeu5nOd/BwCwD3cr81w/RjPTCtMwcp8k5L7L4lC1 qgWiYjnjvP7hPBoz++Y0g/80e1bXWxxJejL0e4mYRMcPBA8jXq6o9DlK2JTfGcXB FurYF0Pisk1j7tixODQKD0vj/e9DVazRxIDnVaXNWW1vtwaSlKXhCljG9VrbP7tx mABZ1cOZgDNKEGAfw89605FobKhCmjjQFS95IKO5KivpT78ujS2Jdv34ZvTC4lvi 9e2BQFYnoAXNsEpdYuejTfcvTqw7B5pK/f6N2BEA5kxyfJ+YH6F/654UeCMPtP6N RLFvjjMTsHnzjs6sKcZw4dqnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlPEt1wUI isfg0u11GTEUJoiaJOUwHwYDVR0jBBgwFoAUoA4C3Hg/kIQCHflPdYYmTsR9NDgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0Y5N0JDMzAyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5E Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb0E0QzNIZ19rSVFDSGZsUGRZWW1Uc1I5TkRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF NUU1L0Y5N0JDMzAyQUZCRjExRUZBMjhBMzY1NEM0RjlBRTAyL29BNEMzSGdfa0lR Q0hmbFBkWVltVHNSOU5EZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJNpuM+rDkydoWMsHZBGqvs3hECospQCBiE3Wi1LgUElIusId1QGbBuP o7LOmegaQhQ2+cGBhxgTn9T+o7m9gMFEZ6kDheiBzHOmNqmLb/0XwjXorQOAYpkG SF0NCtQc24gGAwzmU3bWO79kJ0DGkJ5gmZqWbjcc4lERdYPYjbCPuNEbZsb9rBfZ jb/XzpmIrReg2PCqij3291YeMF0Agu1imwATIfq7/N6OQANYQG5a2T/xStDrRxYK iO1Ddk1NuLfQGuqroc9CLcNyuOn0JuOGnpAMWihAsDGGUZh/YpS+yzJFjmEL2a+6 owcA5KJlKEHM0zUG1JT0bInHGgHe1No= -----END CERTIFICATE-----Generated at Thu Feb 6 05:16:51 2025 by rpki-client