$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: 6dwupPE9s8CtetTupBtHClIPgkGcfACu/lFIazIaFgE= Subject key identifier: EB:D4:F5:50:08:41:EC:6B:86:E2:07:F7:27:67:6A:3D:EF:87:1B:62 Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 31 Signing time: Sat 15 Feb 2025 09:03:40 +0000 Manifest this update: Sat 15 Feb 2025 09:03:39 +0000 Manifest next update: Sat 22 Feb 2025 09:03:39 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: rm1AmVpYO3gmzgqTD1H2Ei4gLmGls8ueGyBgHQC3LzM=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE Validity Not Before: Feb 15 09:03:39 2025 GMT Not After : Feb 22 09:03:39 2025 GMT Subject: CN=67b0586b-ff57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:b5:29:36:6f:1a:38:ea:2b:a3:77:dd:08: 94:5e:87:14:05:95:5a:43:07:ca:c4:e3:60:4c:a0: 17:92:de:ce:2e:9a:ca:f0:03:93:7d:68:b2:93:a1: 30:94:81:d7:00:bc:ef:72:be:a4:f2:03:9e:31:3e: f3:12:80:bc:ba:49:a6:35:b7:95:17:48:60:1d:40: 45:db:d3:74:74:a2:d5:4a:01:a0:a3:63:17:4a:ed: 82:c8:9c:02:f4:f7:7b:d0:5a:5a:48:a4:0e:7f:cb: 44:19:de:f4:a1:43:c4:93:91:0e:bb:1a:79:6e:f7: 07:86:8e:5b:be:76:99:7d:35:43:b3:a6:95:cf:53: 18:7e:4e:44:5e:56:07:ca:65:a0:a8:b1:bb:12:66: 05:3b:cd:16:2c:01:ea:26:1e:29:63:3f:cc:ae:31: 92:8b:59:42:59:2f:8c:d4:b5:f0:fc:d5:2e:1d:ef: 1e:96:99:09:3f:46:db:de:9b:ff:8d:5a:cb:83:2b: 97:34:79:19:61:ac:3f:c5:25:4b:36:56:8b:67:68: 76:9e:2b:e2:92:9d:6d:ee:cc:bf:c2:2d:0a:85:aa: 8d:4a:c8:d7:05:6c:c6:21:c5:b5:5a:26:98:b9:87: 99:1e:4b:3d:3b:36:10:8d:9b:c1:e4:ce:fa:ff:69: 30:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D4:F5:50:08:41:EC:6B:86:E2:07:F7:27:67:6A:3D:EF:87:1B:62 X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d3:05:b7:cd:85:71:2c:7c:b7:5f:59:2a:7a:61:c7:8c:4d: 5f:50:e7:3f:42:39:27:05:78:b2:55:d3:1b:0c:76:b7:a8:ed: 06:56:25:91:7b:f7:4f:aa:4d:b2:88:f9:d6:0f:c1:f8:af:84: 1c:3c:70:77:2a:d5:45:79:87:7a:8b:63:0a:6f:4c:8f:23:b2: 97:7c:d4:3a:c6:35:6a:11:5a:0d:90:82:90:37:ef:d7:0f:94: 8c:db:ff:82:9e:e2:94:40:19:5a:1d:f4:65:d7:8b:a3:1d:29: d5:7e:60:d4:3d:e4:c3:f3:bf:f6:eb:1f:3e:d6:18:c8:4d:88: 56:e5:1f:45:64:82:da:61:42:9d:9f:d3:89:ac:88:ec:59:3f: 05:63:a0:57:6a:da:32:b2:93:ff:8a:e8:3f:80:0a:a2:db:39: 26:b6:6d:ca:6b:ec:fa:37:9d:6a:3e:65:10:99:ff:c1:cd:71: 4e:fc:b8:1b:6b:eb:f4:e1:bf:6f:de:72:50:00:a6:a7:a4:7d: b3:a5:fc:51:ca:4a:a5:8d:9c:75:40:b0:03:0e:62:32:db:1c: c4:52:9b:3d:90:29:cc:c6:a8:fc:f0:bf:9e:09:fe:14:ef:e5: c7:b6:60:34:dd:1d:d4:16:bf:d7:33:1a:3e:5e:4a:eb:c4:e3: 93:8f:ee:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REVGRTExMC8GA1UEBRMoQTgyOTJGNjIwNEM4MjEzRDc5MUZBNkNDQUFGNTc4NTE5 NEVGODFBMDAeFw0yNTAyMTUwOTAzMzlaFw0yNTAyMjIwOTAzMzlaMBgxFjAUBgNV BAMTDTY3YjA1ODZiLWZmNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2/bUpNm8aOOoro3fdCJRehxQFlVpDB8rE42BMoBeS3s4umsrwA5N9aLKToTCU gdcAvO9yvqTyA54xPvMSgLy6SaY1t5UXSGAdQEXb03R0otVKAaCjYxdK7YLInAL0 93vQWlpIpA5/y0QZ3vShQ8STkQ67Gnlu9weGjlu+dpl9NUOzppXPUxh+TkReVgfK ZaCosbsSZgU7zRYsAeomHiljP8yuMZKLWUJZL4zUtfD81S4d7x6WmQk/Rtvem/+N WsuDK5c0eRlhrD/FJUs2VotnaHaeK+KSnW3uzL/CLQqFqo1KyNcFbMYhxbVaJpi5 h5keSz07NhCNm8Hkzvr/aTBBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU69T1UAhB 7GuG4gf3J2dqPe+HG2IwHwYDVR0jBBgwFoAUqCkvYgTIIT15H6bMqvV4UZTvgaAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzExNjRDQUUwQTUx NjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUNrdllnVElJVDE1SDZiTXF2VjRVWlR2Z2FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RUZFLzExNjRDQUUwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL3FDa3ZZZ1RJSVQx NUg2Yk1xdlY0VVpUdmdhQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAELTBbfNhXEsfLdfWSp6YceMTV9Q5z9COScFeLJV0xsMdreo7QZWJZF7 90+qTbKI+dYPwfivhBw8cHcq1UV5h3qLYwpvTI8jspd81DrGNWoRWg2QgpA379cP lIzb/4Ke4pRAGVod9GXXi6MdKdV+YNQ95MPzv/brHz7WGMhNiFblH0VkgtphQp2f 04msiOxZPwVjoFdq2jKyk/+K6D+ACqLbOSa2bcpr7Po3nWo+ZRCZ/8HNcU78uBtr 6/Thv2/eclAApqekfbOl/FHKSqWNnHVAsAMOYjLbHMRSmz2QKczGqPzwv54J/hTv 5ce2YDTdHdQWv9czGj5eSuvE45OP7go= -----END CERTIFICATE-----Generated at Sun Feb 16 15:34:39 2025 by rpki-client