$ rpki-client -vvf rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft File: JhOQ197eXRxAsfPigPOKCNqv3N4.mft (raw, json) Hash identifier: eibsPrDtHCIfh9rlVOudRFOWDUKOAHlrqljFxs5a2hc= Subject key identifier: 6F:33:8B:84:32:B4:B9:F1:88:E8:FE:82:FD:09:2B:B6:4A:3D:75:9A Authority key identifier: 26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE Certificate issuer: /CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft Manifest number: 014C Signing time: Sat 23 Nov 2024 02:31:44 +0000 Manifest this update: Sat 23 Nov 2024 02:31:44 +0000 Manifest next update: Sat 30 Nov 2024 02:31:44 +0000 Files and hashes: 1: JhOQ197eXRxAsfPigPOKCNqv3N4.crl (hash: 0vx0jGfSDy4dkL7Lacj5lc1L6M7DuhpS5f1Pc+8kkzc=) 2: 738195EEB11811ED997EA457C4F9AE02.roa (hash: Y3uWvVWc5h8AjMOh0rbq998afPQd3Tj5ztFh5AezKOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E367/serialNumber=261390D7DEDE5D1C40B1F3E280F38A08DAAFDCDE Validity Not Before: Nov 23 02:31:44 2024 GMT Not After : Nov 30 02:31:44 2024 GMT Subject: CN=67413e90-0444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:99:39:d9:ca:90:52:99:7d:f2:13:ac:de:81: 83:7f:23:dd:e3:51:22:3b:c4:fd:ad:ba:29:20:40: d2:b5:9e:eb:65:da:9f:da:fd:c4:03:a5:44:a3:e7: 62:73:bb:d5:a3:4f:95:2e:e8:57:28:ca:0f:69:ae: 9a:38:98:23:bf:22:0d:e7:3c:b8:ad:e9:e3:30:f4: e2:5b:cd:12:99:8a:16:e1:74:2f:b3:76:06:8f:09: 26:ab:36:0e:95:ee:a2:82:ca:d0:7e:d8:fe:53:de: 57:48:2c:36:04:bf:41:b2:ce:1e:2c:15:3d:ee:aa: e6:08:c7:e2:ae:72:26:62:cd:32:d2:01:a9:1c:8e: 85:3c:df:24:f0:f9:b3:ed:df:c1:cd:cd:f5:62:aa: 97:ca:cd:44:ea:d1:7b:ac:b8:9c:b7:91:68:d4:5e: d1:38:27:1f:19:ba:d4:df:87:2e:45:a9:4e:14:2c: b8:e4:3d:57:c5:87:bc:97:3b:91:ed:be:f1:82:44: 7f:c4:be:60:f8:f9:bb:6c:83:92:c0:1f:65:45:3e: ab:46:67:d0:8d:a9:36:4e:12:cb:72:40:08:4b:f7: c9:28:5e:97:af:c7:1c:f1:e5:01:ee:6a:f9:2d:0c: 4f:d2:e6:00:08:6f:73:62:d1:5a:ef:01:21:2b:f9: 07:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:33:8B:84:32:B4:B9:F1:88:E8:FE:82:FD:09:2B:B6:4A:3D:75:9A X509v3 Authority Key Identifier: keyid:26:13:90:D7:DE:DE:5D:1C:40:B1:F3:E2:80:F3:8A:08:DA:AF:DC:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JhOQ197eXRxAsfPigPOKCNqv3N4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E367/6BCECE0AADF011ED95D2B978C4F9AE02/JhOQ197eXRxAsfPigPOKCNqv3N4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:49:cb:d5:98:64:3a:43:64:d2:2f:62:28:6c:8b:04:36:c3: eb:1b:58:ca:7c:99:c6:f8:95:f9:1b:45:30:c7:22:f3:75:e0: 1a:02:9b:c2:d5:4c:12:20:50:29:92:b0:45:4a:af:f4:44:ad: 35:9b:cf:61:a9:fe:ac:b2:03:4b:59:8f:ed:86:3a:de:ed:48: 9b:10:a7:b1:d1:30:8c:65:d8:70:31:c4:6d:18:19:e6:eb:ef: 3d:65:a4:f1:04:48:40:91:93:63:a6:2e:03:91:46:52:55:50: 2c:23:7a:ee:81:4d:30:fb:af:80:32:a8:90:78:a2:63:63:d5: 8f:9a:e7:de:db:f9:15:30:a8:21:94:f9:98:05:aa:3e:58:16: 09:3e:6e:25:05:e5:5a:0f:54:3a:7c:46:72:dc:39:09:e1:e2: 67:4f:c5:67:ac:47:39:da:34:a7:d4:7b:94:a9:af:03:c3:24: 72:0d:c6:13:3f:e3:f9:e1:9e:3d:d0:de:aa:0d:dc:f5:af:55: 99:3a:e6:ee:54:b5:4d:e0:41:ab:3d:0c:5b:7f:04:bd:89:59: ac:01:76:79:76:bc:a1:a3:ed:86:45:09:6a:35:bd:9b:7c:50: 01:36:74:3a:0f:9b:c7:9f:14:ef:fa:cb:af:4a:78:9b:74:06: 46:77:0d:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkUzNjcxMTAvBgNVBAUTKDI2MTM5MEQ3REVERTVEMUM0MEIxRjNFMjgwRjM4QTA4 REFBRkRDREUwHhcNMjQxMTIzMDIzMTQ0WhcNMjQxMTMwMDIzMTQ0WjAYMRYwFAYD VQQDEw02NzQxM2U5MC0wNDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Jk52cqQUpl98hOs3oGDfyPd41EiO8T9rbopIEDStZ7rZdqf2v3EA6VEo+di c7vVo0+VLuhXKMoPaa6aOJgjvyIN5zy4renjMPTiW80SmYoW4XQvs3YGjwkmqzYO le6igsrQftj+U95XSCw2BL9Bss4eLBU97qrmCMfirnImYs0y0gGpHI6FPN8k8Pmz 7d/Bzc31YqqXys1E6tF7rLict5Fo1F7ROCcfGbrU34cuRalOFCy45D1XxYe8lzuR 7b7xgkR/xL5g+Pm7bIOSwB9lRT6rRmfQjak2ThLLckAIS/fJKF6Xr8cc8eUB7mr5 LQxP0uYACG9zYtFa7wEhK/kHSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8zi4Qy tLnxiOj+gv0JK7ZKPXWaMB8GA1UdIwQYMBaAFCYTkNfe3l0cQLHz4oDzigjar9ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTM2Ny82QkNFQ0UwQUFE RjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhSeEFzZlBpZ1BPS0NOcXYz TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0poT1ExOTdlWFJ4QXNmUGlnUE9LQ05xdjNONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTM2Ny82QkNFQ0UwQUFERjAxMUVEOTVEMkI5NzhDNEY5QUUwMi9KaE9RMTk3ZVhS eEFzZlBpZ1BPS0NOcXYzTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnScvVmGQ6Q2TSL2IobIsENsPrG1jKfJnG+JX5G0UwxyLzdeAaApvC 1UwSIFApkrBFSq/0RK01m89hqf6ssgNLWY/thjre7UibEKex0TCMZdhwMcRtGBnm 6+89ZaTxBEhAkZNjpi4DkUZSVVAsI3rugU0w+6+AMqiQeKJjY9WPmufe2/kVMKgh lPmYBao+WBYJPm4lBeVaD1Q6fEZy3DkJ4eJnT8VnrEc52jSn1HuUqa8DwyRyDcYT P+P54Z490N6qDdz1r1WZOubuVLVN4EGrPQxbfwS9iVmsAXZ5dryho+2GRQlqNb2b fFABNnQ6D5vHnxTv+suvSnibdAZGdw3O -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org