$ rpki-client -vvf rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft File: --bA8ysvL8RXYKA0LkO79VK03oU.mft (raw, json) Hash identifier: mDSIeO4BksAXd/8wkync6x5uAgTiDn0UM5WOdjMLQas= Subject key identifier: EF:9B:F8:93:52:3B:9B:86:75:FE:DB:DF:A3:4E:83:F9:6E:20:14:E8 Authority key identifier: FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 Certificate issuer: /CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Certificate serial: 0D42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft Manifest number: 0D2D Signing time: Fri 22 Nov 2024 17:58:06 +0000 Manifest this update: Fri 22 Nov 2024 17:58:05 +0000 Manifest next update: Fri 29 Nov 2024 17:58:05 +0000 Files and hashes: 1: --bA8ysvL8RXYKA0LkO79VK03oU.crl (hash: U6PnLiQ2pg2DDDsdqI1LWFk49Gkh3v2m/NFsaC7tjMY=) 2: 4C67EC06C68E11E983395515C4F9AE02.roa (hash: tP21nihbHvOPN0o7Q7ZnYvoB4lWQWRK3//ALxViNCn4=) 3: CA761A36760A11EC8FB55C23C4F9AE02.roa (hash: XcKMqxWrgr72X1rDOMRNGWOhRv7K/Bosj9SE1/JpnIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3394 (0xd42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Validity Not Before: Nov 22 17:58:05 2024 GMT Not After : Nov 29 17:58:05 2024 GMT Subject: CN=6740c62d-b36c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9e:ab:ad:18:a9:a6:23:28:47:05:84:0b:b7: d8:46:ef:3c:4b:82:b2:79:4d:5f:54:b3:7b:7f:fb: 88:46:ef:8f:bf:d2:79:8c:4a:5c:9f:d3:ef:97:bb: bf:ff:4b:90:87:89:42:46:9b:8b:23:ef:63:c6:61: d7:8b:b4:08:2f:84:f5:ab:52:35:05:9a:f7:c0:68: 2a:b0:84:7c:73:ae:f9:3f:7e:33:53:fb:34:1a:54: f5:c8:e3:ba:62:18:d5:0c:0a:1e:7a:7f:92:d0:54: a5:82:7e:2a:ea:9a:86:ce:5d:dd:0c:01:48:cd:02: 1f:d5:e1:c0:66:11:2c:2d:6a:de:30:5f:c2:39:5d: 87:a2:57:25:7a:d6:4e:e1:d9:29:5c:47:cf:53:b3: 62:a5:d2:21:cc:38:f4:ba:e3:0a:45:4b:de:5e:70: 0b:98:e9:e4:f8:bc:66:16:e4:e3:18:43:8c:64:7c: ab:73:93:32:d1:4e:18:6b:d3:23:94:f5:12:95:0c: 30:62:30:fe:d1:b3:6d:99:d1:13:e3:20:4f:17:3d: f7:b8:12:c4:2c:25:4a:e4:3e:d1:24:db:98:50:2a: 0f:9d:fe:40:6d:18:ab:06:4f:73:00:74:68:67:d2: e4:30:a5:05:a6:66:63:ad:9d:1f:5c:65:fe:17:d3: 8f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9B:F8:93:52:3B:9B:86:75:FE:DB:DF:A3:4E:83:F9:6E:20:14:E8 X509v3 Authority Key Identifier: keyid:FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:4b:8b:d1:c8:ee:e5:8e:f5:06:98:ea:da:29:f4:7f:84:1a: e4:2d:00:53:3a:4f:3e:d3:37:aa:3f:27:8d:35:7e:7e:f0:cc: cf:fb:11:e7:d7:52:36:a8:77:42:db:21:05:a8:19:06:1d:6c: f7:6c:9d:1c:62:ef:36:ad:4c:52:bb:15:4c:df:3b:38:2b:65: f2:cc:b4:21:e4:23:e6:b0:2d:0a:1d:e5:60:37:38:9c:48:64: 0b:d7:64:32:db:e7:33:ba:00:ac:49:73:be:eb:0b:cb:b0:bb: 32:85:71:ab:5e:d5:9c:d2:16:1e:43:ba:ca:67:31:76:b1:93: 96:49:cb:47:c4:dd:d8:f8:82:43:ee:23:83:77:7a:c7:f0:b5: 71:ef:1e:68:2f:6f:98:4d:1a:ab:bb:97:b1:6f:c9:07:db:99: 27:50:48:aa:c3:42:65:01:68:af:3f:8d:a7:56:16:40:00:98: 73:74:dc:64:23:19:c5:a8:c7:04:68:76:22:76:e1:d4:de:b4: 25:1b:af:81:7a:0b:ef:7b:54:18:28:db:26:79:e7:0b:cb:87: 6f:99:0a:88:ac:6c:7a:43:9e:a5:1b:36:6a:d1:0a:2f:61:81: f1:20:c7:f3:56:52:be:87:22:c0:1b:f1:f5:c1:91:73:c5:9f: ad:55:71:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjRCRDMxMTAvBgNVBAUTKEZCRTZDMEYzMkIyRjJGQzQ1NzYwQTAzNDJFNDNCQkY1 NTJCNERFODUwHhcNMjQxMTIyMTc1ODA1WhcNMjQxMTI5MTc1ODA1WjAYMRYwFAYD VQQDEw02NzQwYzYyZC1iMzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJ6rrRippiMoRwWEC7fYRu88S4KyeU1fVLN7f/uIRu+Pv9J5jEpcn9Pvl7u/ /0uQh4lCRpuLI+9jxmHXi7QIL4T1q1I1BZr3wGgqsIR8c675P34zU/s0GlT1yOO6 YhjVDAoeen+S0FSlgn4q6pqGzl3dDAFIzQIf1eHAZhEsLWreMF/COV2HolcletZO 4dkpXEfPU7NipdIhzDj0uuMKRUveXnALmOnk+LxmFuTjGEOMZHyrc5My0U4Ya9Mj lPUSlQwwYjD+0bNtmdET4yBPFz33uBLELCVK5D7RJNuYUCoPnf5AbRirBk9zAHRo Z9LkMKUFpmZjrZ0fXGX+F9OPAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+b+JNS O5uGdf7b36NOg/luIBToMB8GA1UdIwQYMBaAFPvmwPMrLy/EV2CgNC5Du/VStN6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNEJEMy8wRTREODY3QUM2 OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4UlhZS0EwTGtPNzlWSzAz b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0tYkE4eXN2TDhSWFlLQTBMa083OVZLMDNvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NEJEMy8wRTREODY3QUM2OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4 UlhZS0EwTGtPNzlWSzAzb1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHS4vRyO7ljvUGmOraKfR/hBrkLQBTOk8+0zeqPyeNNX5+8MzP+xHn 11I2qHdC2yEFqBkGHWz3bJ0cYu82rUxSuxVM3zs4K2XyzLQh5CPmsC0KHeVgNzic SGQL12Qy2+czugCsSXO+6wvLsLsyhXGrXtWc0hYeQ7rKZzF2sZOWSctHxN3Y+IJD 7iODd3rH8LVx7x5oL2+YTRqru5exb8kH25knUEiqw0JlAWivP42nVhZAAJhzdNxk IxnFqMcEaHYiduHU3rQlG6+Begvve1QYKNsmeecLy4dvmQqIrGx6Q56lGzZq0Qov YYHxIMfzVlK+hyLAG/H1wZFzxZ+tVXFG -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org