$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: J0Mgwu3/CCES+flBX98OuEgxRjwDQmCcUOIGJDLRpi0= Subject key identifier: 8A:7F:15:77:94:A0:0E:A1:3B:0D:8B:42:47:25:F5:E4:AC:4D:8E:50 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0294 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 028F Signing time: Sat 15 Feb 2025 03:13:44 +0000 Manifest this update: Sat 15 Feb 2025 03:13:43 +0000 Manifest next update: Sat 22 Feb 2025 03:13:43 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: qRefiJb1cNug/iQGynaOAL76gHEc4249H3fi54N2cqU=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: cUJGyZcVowcCyXH2QiojzhWnaBYy0l9+HvH8D9IR1zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 660 (0x294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73 Validity Not Before: Feb 15 03:13:43 2025 GMT Not After : Feb 22 03:13:43 2025 GMT Subject: CN=67b00667-bdc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ad:35:d1:d8:8a:fa:be:32:79:83:a4:4a:8e: b3:29:3f:8f:79:e5:fe:7a:8f:49:65:e6:b0:88:1f: 66:0f:0c:e8:6d:18:fd:8f:7c:41:fc:86:31:4d:49: c3:01:9d:15:c2:ba:c4:9e:cb:5f:20:36:c7:c2:a2: 7e:76:b7:6f:7f:03:40:7d:18:57:98:00:49:fc:13: b2:7f:63:43:62:e5:81:11:8f:28:e0:e1:bc:4e:d5: a3:db:ec:f6:cc:b6:84:0e:95:88:47:a3:b7:82:6d: bf:76:da:6f:20:6b:09:d9:53:10:2c:e1:44:23:ac: 76:19:e4:e5:24:ca:55:f1:f3:9f:00:4c:f0:4b:6c: 0c:dd:6c:30:75:b7:da:15:06:be:50:c8:b5:83:53: 92:b4:1d:d7:20:14:61:2b:67:9b:1a:80:df:79:35: d8:77:70:d0:70:2d:bb:1b:98:d9:c9:73:4d:89:30: 8a:f4:6e:73:7e:83:36:5a:69:9c:b1:ef:4f:da:27: 5a:4c:20:85:74:e2:2d:fc:a2:c4:b0:78:ae:1b:df: ac:67:18:69:54:0b:ee:49:b8:9f:c6:37:fd:d1:c9: bf:f0:04:4b:75:7c:f1:ca:2b:05:f0:81:9c:03:e6: 44:82:4f:9f:79:03:35:cc:22:3c:a5:68:8e:5c:6f: 4d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:7F:15:77:94:A0:0E:A1:3B:0D:8B:42:47:25:F5:E4:AC:4D:8E:50 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a0:1f:03:08:6a:bf:ad:a8:3b:50:62:f9:8a:f6:76:a6:e3: d4:6e:c8:69:7c:c7:b5:74:45:f9:af:58:e8:a8:8b:3e:a6:08: a2:33:d1:28:8a:15:3b:2c:23:a1:f8:b1:4e:f4:a5:dc:5c:b5: 85:8c:97:95:a6:13:65:6e:e2:83:fb:87:58:72:99:16:08:97: 2e:4b:c6:10:7b:26:f9:35:55:cf:64:4b:eb:3d:22:e0:e8:8b: 11:83:76:64:49:99:4f:4b:70:1f:77:4a:a5:8c:fc:9e:21:2a: ca:88:a5:92:01:5c:8a:7c:bf:22:ea:70:10:78:bf:59:f6:6b: c9:82:44:e9:c1:02:63:ea:56:02:b3:05:22:47:04:fb:0d:cf: 26:ba:50:de:80:aa:bf:7b:ee:d7:c4:25:5a:77:94:45:93:d6: d6:b1:1b:3c:ab:78:2a:33:de:b8:86:34:24:66:d4:d3:37:03: f1:26:3d:e6:e9:29:54:c0:67:23:2f:e3:50:8e:21:b4:22:1c: bd:8d:c4:14:90:f8:b5:b8:11:24:71:67:09:7e:9b:a3:4d:a2: 99:29:52:a1:f5:ef:06:33:20:72:4f:d6:71:a0:ea:b9:ed:d8: bd:21:b4:52:f4:8e:bb:eb:26:66:a0:4e:71:9e:7c:98:2f:19: 8f:c7:b3:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwMjE1MDMxMzQzWhcNMjUwMjIyMDMxMzQzWjAYMRYwFAYD VQQDEw02N2IwMDY2Ny1iZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6010diK+r4yeYOkSo6zKT+PeeX+eo9JZeawiB9mDwzobRj9j3xB/IYxTUnD AZ0VwrrEnstfIDbHwqJ+drdvfwNAfRhXmABJ/BOyf2NDYuWBEY8o4OG8TtWj2+z2 zLaEDpWIR6O3gm2/dtpvIGsJ2VMQLOFEI6x2GeTlJMpV8fOfAEzwS2wM3Wwwdbfa FQa+UMi1g1OStB3XIBRhK2ebGoDfeTXYd3DQcC27G5jZyXNNiTCK9G5zfoM2Wmmc se9P2idaTCCFdOIt/KLEsHiuG9+sZxhpVAvuSbifxjf90cm/8ARLdXzxyisF8IGc A+ZEgk+feQM1zCI8pWiOXG9N7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIp/FXeU oA6hOw2LQkcl9eSsTY5QMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8oB8DCGq/rag7UGL5ivZ2puPUbshpfMe1dEX5r1joqIs+pgiiM9Eo ihU7LCOh+LFO9KXcXLWFjJeVphNlbuKD+4dYcpkWCJcuS8YQeyb5NVXPZEvrPSLg 6IsRg3ZkSZlPS3Afd0qljPyeISrKiKWSAVyKfL8i6nAQeL9Z9mvJgkTpwQJj6lYC swUiRwT7Dc8mulDegKq/e+7XxCVad5RFk9bWsRs8q3gqM964hjQkZtTTNwPxJj3m 6SlUwGcjL+NQjiG0Ihy9jcQUkPi1uBEkcWcJfpujTaKZKVKh9e8GMyByT9ZxoOq5 7di9IbRS9I676yZmoE5xnnyYLxmPx7Ow -----END CERTIFICATE-----Generated at Sun Feb 16 21:08:40 2025 by rpki-client