$ rpki-client -vvf rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft File: FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft (raw, json) Hash identifier: 8gRUtjUdqZAeBtujGrV4+6iqFjscVqh7ceW83HTFbjs= Subject key identifier: AA:7C:69:94:F3:6A:90:C5:DC:57:9F:BA:8B:BF:8D:C2:D4:C8:AF:AA Authority key identifier: 14:54:8E:70:94:9E:50:5F:8B:A8:A5:39:1E:46:6E:1E:99:D3:B7:27 Certificate issuer: /CN=A91193C1/serialNumber=14548E70949E505F8BA8A5391E466E1E99D3B727 Certificate serial: 04C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft Manifest number: 04BC Signing time: Fri 22 Nov 2024 23:27:43 +0000 Manifest this update: Fri 22 Nov 2024 23:27:43 +0000 Manifest next update: Fri 29 Nov 2024 23:27:43 +0000 Files and hashes: 1: FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl (hash: cHLnIBzBukd1qlf0GqBDdYdTaGJJVEGNhDbkgZqYsKY=) 2: AC58009E782A11EFA7DD8F7CC4F9AE02.roa (hash: QVvq8n67O4BwvE2m1nf05uYuzsM/8nQ/hW6OWK20q7A=) 3: C8900982059611ECB2896C55C4F9AE02.roa (hash: hg4ELKymdwHyn2QAAvtW6T2bJJMNtTNjpAlYq36iGfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1224 (0x4c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91193C1/serialNumber=14548E70949E505F8BA8A5391E466E1E99D3B727 Validity Not Before: Nov 22 23:27:43 2024 GMT Not After : Nov 29 23:27:43 2024 GMT Subject: CN=6741136f-0d74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6e:d4:ef:b7:29:ca:05:6d:79:6e:46:ce:c4: a9:39:3c:a1:b5:f9:ad:82:af:5d:b3:95:e2:4a:75: 47:fa:b8:fc:2a:ef:07:53:f1:cc:6c:e1:93:e7:2d: 0f:0f:75:cc:d4:eb:a3:4b:81:d2:dd:49:5b:ce:79: cc:9a:15:1d:68:4c:e9:cd:8f:83:07:b0:2e:a7:0d: ae:58:a4:83:39:b3:b9:27:55:6f:3b:6c:c5:04:f2: 4f:06:69:9f:d1:f1:41:3f:3c:76:0e:76:d7:30:ed: 2c:9a:70:fc:bd:a9:0e:9e:41:d4:7e:0d:7a:10:2a: 58:68:64:97:64:17:f0:9d:e1:ca:9f:64:cf:4f:37: 6f:2e:00:08:19:a2:c9:04:fa:a4:5d:fd:a7:aa:a7: a3:4f:07:7f:2b:87:6e:f5:ed:f3:3f:32:8e:6b:11: 2f:22:81:75:8d:35:0c:4e:a5:be:e1:51:f1:09:fe: f7:25:8f:37:fc:78:54:12:82:7f:a4:ff:e2:a7:ee: 96:88:e2:af:65:32:98:bb:93:59:21:08:01:61:82: 5d:1b:6d:c8:06:c6:60:12:3a:4e:23:0f:f9:ee:80: c0:fc:ad:79:fd:bf:d1:03:8d:27:4b:be:01:a8:9b: 82:0a:b5:3a:af:61:60:44:29:cd:aa:35:53:0a:af: 2a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7C:69:94:F3:6A:90:C5:DC:57:9F:BA:8B:BF:8D:C2:D4:C8:AF:AA X509v3 Authority Key Identifier: keyid:14:54:8E:70:94:9E:50:5F:8B:A8:A5:39:1E:46:6E:1E:99:D3:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFSOcJSeUF-LqKU5HkZuHpnTtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91193C1/736E3B48059311EC8921ED85C4F9AE02/FFSOcJSeUF-LqKU5HkZuHpnTtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1c:8b:1b:e7:9a:21:f7:63:59:1d:f3:75:91:e7:d1:30:e9: 7e:c2:ab:c6:f7:62:31:eb:b7:ff:26:e7:67:12:d0:d4:3f:c0: 92:07:7f:b5:da:99:a5:34:57:25:e9:31:07:41:9a:da:1c:81: d7:56:d3:f4:0e:8f:c9:25:05:6d:2e:7b:de:f0:e5:0c:d2:f9: dd:12:9c:32:df:26:e0:e0:b6:cb:bc:7e:9d:27:ba:8d:dd:e6: 04:b3:0d:65:fd:c1:29:29:f3:f7:48:b8:a2:5f:eb:8a:b5:b5: 9b:26:25:44:f4:b4:ff:ef:42:82:fd:e2:51:1b:47:dc:76:2d: df:2e:71:2f:5c:d7:04:87:f9:ab:01:c5:73:e2:27:eb:22:12: ba:f7:ba:c7:9b:a5:65:9f:6d:6d:ee:66:81:80:79:fc:04:93: 09:6d:e1:cf:9c:ed:97:2a:03:a7:3a:23:0d:08:4c:e7:c2:f3: 3f:b0:c8:da:27:03:1e:d7:fd:7e:71:6a:3e:88:cb:4d:75:d4: 4f:e9:54:6b:2b:91:64:9c:b9:ce:85:87:51:a0:1d:3f:6e:fb: e4:d9:f5:89:67:fe:0e:ad:e3:b8:63:20:b0:91:5b:2d:5c:70: 20:8d:fb:3d:8d:f1:0f:76:e7:ec:f2:bc:3f:a8:9f:d5:11:01: fa:16:fb:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzQzExMTAvBgNVBAUTKDE0NTQ4RTcwOTQ5RTUwNUY4QkE4QTUzOTFFNDY2RTFF OTlEM0I3MjcwHhcNMjQxMTIyMjMyNzQzWhcNMjQxMTI5MjMyNzQzWjAYMRYwFAYD VQQDEw02NzQxMTM2Zi0wZDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmG7U77cpygVteW5GzsSpOTyhtfmtgq9ds5XiSnVH+rj8Ku8HU/HMbOGT5y0P D3XM1OujS4HS3UlbznnMmhUdaEzpzY+DB7Aupw2uWKSDObO5J1VvO2zFBPJPBmmf 0fFBPzx2DnbXMO0smnD8vakOnkHUfg16ECpYaGSXZBfwneHKn2TPTzdvLgAIGaLJ BPqkXf2nqqejTwd/K4du9e3zPzKOaxEvIoF1jTUMTqW+4VHxCf73JY83/HhUEoJ/ pP/ip+6WiOKvZTKYu5NZIQgBYYJdG23IBsZgEjpOIw/57oDA/K15/b/RA40nS74B qJuCCrU6r2FgRCnNqjVTCq8qEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp8aZTz apDF3Fefuou/jcLUyK+qMB8GA1UdIwQYMBaAFBRUjnCUnlBfi6ilOR5Gbh6Z07cn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTNDMS83MzZFM0I0ODA1 OTMxMUVDODkyMUVEODVDNEY5QUUwMi9GRlNPY0pTZVVGLUxxS1U1SGtadUhwblR0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGU09jSlNlVUYtTHFLVTVIa1p1SHBuVHR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTNDMS83MzZFM0I0ODA1OTMxMUVDODkyMUVEODVDNEY5QUUwMi9GRlNPY0pTZVVG LUxxS1U1SGtadUhwblR0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrHIsb55oh92NZHfN1kefRMOl+wqvG92Ix67f/JudnEtDUP8CSB3+1 2pmlNFcl6TEHQZraHIHXVtP0Do/JJQVtLnve8OUM0vndEpwy3ybg4LbLvH6dJ7qN 3eYEsw1l/cEpKfP3SLiiX+uKtbWbJiVE9LT/70KC/eJRG0fcdi3fLnEvXNcEh/mr AcVz4ifrIhK697rHm6Vln21t7maBgHn8BJMJbeHPnO2XKgOnOiMNCEznwvM/sMja JwMe1/1+cWo+iMtNddRP6VRrK5FknLnOhYdRoB0/bvvk2fWJZ/4OreO4YyCwkVst XHAgjfs9jfEPdufs8rw/qJ/VEQH6Fvt6 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org