$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft File: rbkheCH_vuCW4c7EcJijFFokbqA.mft (raw, json) Hash identifier: d65cPPdRhNtdQg7ZqzyhggiReSTBAbxN1gs0h2as65U= Subject key identifier: C1:30:27:61:8F:FD:6B:C3:93:43:C6:72:13:B5:35:AF:F1:FD:08:1B Authority key identifier: AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 Certificate issuer: /CN=A91F6E63/serialNumber=ADB9217821FFBEE096E1CEC47098A3145A246EA0 Certificate serial: 053B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft Manifest number: 0535 Signing time: Mon 17 Feb 2025 00:25:29 +0000 Manifest this update: Mon 17 Feb 2025 00:25:28 +0000 Manifest next update: Mon 24 Feb 2025 00:25:28 +0000 Files and hashes: 1: rbkheCH_vuCW4c7EcJijFFokbqA.crl (hash: 5hcDJuJFhAwAG0omkcpRg7VG+oAe2P8oKwSJS0bJkJM=) 2: 0C0402DEE5CD11EBADAD0E66C4F9AE02.roa (hash: C+71hKrmRR9fYlphYRnTOW1PJp3T8YQjGXM58/kjFCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E63 Validity Not Before: Feb 17 00:25:28 2025 GMT Not After : Feb 24 00:25:28 2025 GMT Subject: CN=67b281f8-d32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4b:2c:e1:da:b6:07:28:75:5d:00:0a:fd:f6: f2:28:a6:c1:d9:9f:04:a0:3d:23:73:bb:cb:29:58: ed:4b:cd:3e:56:7a:04:3c:6f:7c:4e:68:da:5a:b9: 4d:cb:64:dd:a4:44:86:59:5b:66:ff:5c:65:40:fb: a8:90:8a:5b:b3:77:80:08:70:e9:62:dc:a6:3d:45: 0d:d4:76:7d:a6:42:20:9a:64:93:0b:4d:ee:e9:5b: b7:ab:12:b8:2c:40:81:95:dc:15:88:2f:64:60:17: 48:c7:01:f3:59:1e:fc:23:e9:bd:e0:4a:8c:63:c8: 6e:46:b8:4f:4c:7c:ce:b8:b3:bf:9a:68:fe:54:be: d0:b8:da:01:72:dc:37:96:bc:6c:c3:f4:67:88:49: 01:42:3a:48:64:a8:ae:24:94:71:f1:6c:c0:f2:77: c2:d9:57:c3:5a:32:83:7f:db:c1:8b:13:69:04:25: 04:97:23:58:10:a1:84:56:5c:87:f0:02:d8:9f:b8: 9c:03:85:7f:40:77:ed:0b:a0:c1:52:8a:12:66:04: 5c:7d:ff:a7:3e:5d:e8:b4:99:fc:ad:9d:01:ae:23: 9e:d6:92:71:a9:1b:ee:f5:ec:87:3d:a1:50:4b:ef: cc:2e:ed:21:2c:6a:9c:bc:5e:9f:cb:16:06:14:ce: 69:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:30:27:61:8F:FD:6B:C3:93:43:C6:72:13:B5:35:AF:F1:FD:08:1B X509v3 Authority Key Identifier: keyid:AD:B9:21:78:21:FF:BE:E0:96:E1:CE:C4:70:98:A3:14:5A:24:6E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rbkheCH_vuCW4c7EcJijFFokbqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E63/D69CD928E4A411EB8BC5C546C4F9AE02/rbkheCH_vuCW4c7EcJijFFokbqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:4f:1a:25:13:30:52:1a:5e:31:17:08:d3:d6:75:e4:21:50: c1:93:25:80:7c:52:e9:21:66:bc:bc:52:b1:c4:41:04:38:3a: 53:c7:53:d2:1c:99:7d:c1:9f:df:a4:03:9d:eb:e0:f3:80:eb: b8:7d:ad:e5:db:6b:77:ba:1d:c5:45:ac:ec:dc:43:6a:5e:d1: e0:25:df:c4:aa:4a:5b:f3:42:59:89:f8:1e:d6:c0:ba:68:3e: 31:04:22:97:4a:82:56:45:6c:68:5c:d0:c6:4e:bf:af:22:d0: 23:c2:40:71:9c:70:cf:df:d0:0a:0d:60:09:dd:49:00:43:d6: e9:dc:6d:2b:13:c4:47:89:ba:da:c4:ba:d0:90:54:3d:db:bf: be:ee:f2:a5:48:3e:85:04:17:96:35:e9:90:ec:66:04:ab:16: 0e:64:f0:32:d5:0c:9a:29:2b:df:9a:60:43:72:87:90:55:81: b0:65:7e:4b:6e:96:bc:0b:f1:e9:0d:0a:db:c7:ce:d9:2d:98: 85:71:a3:c7:61:5b:d1:42:d0:cf:26:2c:6a:58:81:4c:b9:08: 0d:58:59:71:9b:91:38:ba:d6:06:ff:6a:ad:a9:90:a5:71:2b: a3:fe:0d:cd:69:93:9c:76:d4:fd:6d:ac:67:52:58:85:4d:a9: a1:d6:4c:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFNjMxMTAvBgNVBAUTKEFEQjkyMTc4MjFGRkJFRTA5NkUxQ0VDNDcwOThBMzE0 NUEyNDZFQTAwHhcNMjUwMjE3MDAyNTI4WhcNMjUwMjI0MDAyNTI4WjAYMRYwFAYD VQQDEw02N2IyODFmOC1kMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10ss4dq2Byh1XQAK/fbyKKbB2Z8EoD0jc7vLKVjtS80+VnoEPG98TmjaWrlN y2TdpESGWVtm/1xlQPuokIpbs3eACHDpYtymPUUN1HZ9pkIgmmSTC03u6Vu3qxK4 LECBldwViC9kYBdIxwHzWR78I+m94EqMY8huRrhPTHzOuLO/mmj+VL7QuNoBctw3 lrxsw/RniEkBQjpIZKiuJJRx8WzA8nfC2VfDWjKDf9vBixNpBCUElyNYEKGEVlyH 8ALYn7icA4V/QHftC6DBUooSZgRcff+nPl3otJn8rZ0BriOe1pJxqRvu9eyHPaFQ S+/MLu0hLGqcvF6fyxYGFM5pUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEwJ2GP /WvDk0PGchO1Na/x/QgbMB8GA1UdIwQYMBaAFK25IXgh/77gluHOxHCYoxRaJG6g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU2My9ENjlDRDkyOEU0 QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1Q1c0YzdFY0ppakZGb2ti cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jia2hlQ0hfdnVDVzRjN0VjSmlqRkZva2JxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU2My9ENjlDRDkyOEU0QTQxMUVCOEJDNUM1NDZDNEY5QUUwMi9yYmtoZUNIX3Z1 Q1c0YzdFY0ppakZGb2ticUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtTxolEzBSGl4xFwjT1nXkIVDBkyWAfFLpIWa8vFKxxEEEODpTx1PS HJl9wZ/fpAOd6+DzgOu4fa3l22t3uh3FRazs3ENqXtHgJd/Eqkpb80JZifge1sC6 aD4xBCKXSoJWRWxoXNDGTr+vItAjwkBxnHDP39AKDWAJ3UkAQ9bp3G0rE8RHibra xLrQkFQ927++7vKlSD6FBBeWNemQ7GYEqxYOZPAy1QyaKSvfmmBDcoeQVYGwZX5L bpa8C/HpDQrbx87ZLZiFcaPHYVvRQtDPJixqWIFMuQgNWFlxm5E4utYG/2qtqZCl cSuj/g3NaZOcdtT9baxnUliFTamh1ky7 -----END CERTIFICATE-----Generated at Mon Feb 17 07:21:58 2025 by rpki-client