$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft File: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft (raw, json) Hash identifier: V7hqQsO9l8IE7aEdYA1A+v2JjtYkTPFJGc+gobQxksU= Subject key identifier: 4A:52:5B:AF:10:F2:90:0C:69:41:93:B1:5D:2A:45:1C:30:39:6E:03 Authority key identifier: D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 Certificate issuer: /CN=A91F89A2/serialNumber=D8FC795B63CC42573FD5DB44F0A8386C8D643B84 Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft Manifest number: C3 Signing time: Sat 15 Feb 2025 06:59:33 +0000 Manifest this update: Sat 15 Feb 2025 06:59:33 +0000 Manifest next update: Sat 22 Feb 2025 06:59:33 +0000 Files and hashes: 1: 2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl (hash: a3RYu5Ky6sgkTcitb+Yq94WDdtBwWCrMJzTClmMMRwY=) 2: 6C363C0CF85911EE9EAE731BC4F9AE02.roa (hash: g3Rp9bNDQ9dW3bx4n0B6sKyw1hJKpt4SQCTG4hBG/Mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2 Validity Not Before: Feb 15 06:59:33 2025 GMT Not After : Feb 22 06:59:33 2025 GMT Subject: CN=67b03b55-7eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e3:ee:59:e8:53:00:de:b8:f1:05:3f:1e:7b: 61:25:64:f7:17:e2:6b:b5:95:fc:4a:94:28:c0:99: f2:5b:79:19:da:89:18:b2:6e:da:06:1c:0a:37:ef: 4b:21:95:9f:b8:c3:af:3f:f9:2e:db:c1:d8:e6:b6: ec:a4:94:27:26:d6:60:25:4d:3c:1f:5a:c1:1a:a7: 9a:51:ff:84:58:1e:0f:c9:81:a3:f4:48:a3:44:11: ac:5e:40:e0:05:3e:73:b7:c1:ca:88:12:dd:7f:ad: f1:97:e5:71:16:b3:c1:94:b9:bb:a4:ea:02:4c:43: 1a:9a:32:c3:24:c6:01:e1:d5:70:51:ec:4d:24:e1: 37:25:0b:8b:48:44:dc:2b:81:66:ab:74:c3:15:a5: b6:5a:a3:48:4f:1a:bd:68:c1:b7:5c:35:ae:35:a2: 99:fa:ba:05:a6:49:e4:90:11:aa:92:ab:43:a6:6d: e0:8a:70:f8:d8:af:43:a1:55:34:b3:5a:ff:39:16: 98:9a:ae:16:b2:1b:eb:22:a4:d6:e9:ba:4f:8d:04: b3:8e:9b:06:17:a6:cf:35:2d:36:a5:0d:f0:43:92: d2:05:f0:f0:cc:a5:be:90:b5:14:0d:30:40:65:85: eb:a2:f0:c8:a3:0b:78:c2:f9:7b:b8:50:3b:05:ef: ec:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:52:5B:AF:10:F2:90:0C:69:41:93:B1:5D:2A:45:1C:30:39:6E:03 X509v3 Authority Key Identifier: keyid:D8:FC:79:5B:63:CC:42:57:3F:D5:DB:44:F0:A8:38:6C:8D:64:3B:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/B396F3C0C54111EEABC2C385C4F9AE02/2Px5W2PMQlc_1dtE8Kg4bI1kO4Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:e8:36:0b:af:82:65:12:48:17:6d:24:f0:41:dd:ae:6e:12: 36:de:40:d9:b7:1b:b9:b2:ff:72:e1:e1:58:be:ef:95:a8:54: 2a:ab:05:05:47:74:16:08:67:58:1c:75:40:20:08:d4:88:10: 22:3a:13:e6:ad:3c:97:51:d4:c5:76:73:ec:bd:0f:0e:79:98: a7:e9:d5:15:71:27:55:51:28:1e:e8:54:a4:08:09:1a:6c:48: 00:26:ce:1e:59:69:ef:20:f0:32:5c:44:1d:f6:f3:9e:67:ef: ac:5f:90:e1:90:0f:8c:eb:f6:ae:ee:69:ee:d3:91:d7:79:8e: cf:b6:44:59:d4:a0:6b:6d:e6:7e:02:31:43:16:7e:8a:df:5c: 80:a4:12:50:86:71:23:86:bc:31:87:51:db:84:68:07:73:10: a3:c6:00:b6:00:be:3e:35:d6:cf:55:63:02:cd:71:4a:6d:71: 6e:b8:8a:33:b8:2f:4b:e3:a4:df:58:34:80:bf:fa:a7:93:c7: ad:e3:e2:97:91:a1:3e:de:62:9e:f7:7b:6b:80:6f:35:c5:69: bc:00:eb:37:9d:3e:a5:8d:0e:51:22:09:7e:74:9a:39:c3:87: 59:3d:40:f7:9b:e4:c7:47:eb:63:79:c3:37:35:e3:65:ae:19: 36:1f:ba:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKEQ4RkM3OTVCNjNDQzQyNTczRkQ1REI0NEYwQTgzODZD OEQ2NDNCODQwHhcNMjUwMjE1MDY1OTMzWhcNMjUwMjIyMDY1OTMzWjAYMRYwFAYD VQQDEw02N2IwM2I1NS03ZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+PuWehTAN648QU/HnthJWT3F+JrtZX8SpQowJnyW3kZ2okYsm7aBhwKN+9L IZWfuMOvP/ku28HY5rbspJQnJtZgJU08H1rBGqeaUf+EWB4PyYGj9EijRBGsXkDg BT5zt8HKiBLdf63xl+VxFrPBlLm7pOoCTEMamjLDJMYB4dVwUexNJOE3JQuLSETc K4Fmq3TDFaW2WqNITxq9aMG3XDWuNaKZ+roFpknkkBGqkqtDpm3ginD42K9DoVU0 s1r/ORaYmq4WshvrIqTW6bpPjQSzjpsGF6bPNS02pQ3wQ5LSBfDwzKW+kLUUDTBA ZYXrovDIowt4wvl7uFA7Be/sgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpSW68Q 8pAMaUGTsV0qRRwwOW4DMB8GA1UdIwQYMBaAFNj8eVtjzEJXP9XbRPCoOGyNZDuE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CMzk2RjNDMEM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFsY18xZHRFOEtnNGJJMWtP NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJQeDVXMlBNUWxjXzFkdEU4S2c0Ykkxa080US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CMzk2RjNDMEM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi8yUHg1VzJQTVFs Y18xZHRFOEtnNGJJMWtPNFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq6DYLr4JlEkgXbSTwQd2ubhI23kDZtxu5sv9y4eFYvu+VqFQqqwUF R3QWCGdYHHVAIAjUiBAiOhPmrTyXUdTFdnPsvQ8OeZin6dUVcSdVUSge6FSkCAka bEgAJs4eWWnvIPAyXEQd9vOeZ++sX5DhkA+M6/au7mnu05HXeY7PtkRZ1KBrbeZ+ AjFDFn6K31yApBJQhnEjhrwxh1HbhGgHcxCjxgC2AL4+NdbPVWMCzXFKbXFuuIoz uC9L46TfWDSAv/qnk8et4+KXkaE+3mKe93trgG81xWm8AOs3nT6ljQ5RIgl+dJo5 w4dZPUD3m+THR+tjecM3NeNlrhk2H7qw -----END CERTIFICATE-----Generated at Sun Feb 16 15:31:31 2025 by rpki-client