$ rpki-client -vvf rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft File: FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft (raw, json) Hash identifier: JqnZINAa46gWb6f2sz1uvBKElUCnUlyncMNaoUQwzsM= Subject key identifier: 0F:78:A4:E3:C9:86:4E:39:BA:63:58:E0:5A:39:4E:D6:EC:7B:7A:1A Authority key identifier: 15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 Certificate issuer: /CN=A91468A1/serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Certificate serial: 0A63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft Manifest number: 0A5C Signing time: Fri 22 Nov 2024 19:25:45 +0000 Manifest this update: Fri 22 Nov 2024 19:25:45 +0000 Manifest next update: Fri 29 Nov 2024 19:25:45 +0000 Files and hashes: 1: FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl (hash: hpYLmCEnlKVP072Z90b/LIuui32iQmJ0HGWNj+M7xuw=) 2: F0520A385DD611EAA4AD4767C4F9AE02.roa (hash: lmF/e5IG5EpeViX3RQEVWvmsb2v09JOH6dxA1kV5Fos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91468A1/serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Validity Not Before: Nov 22 19:25:45 2024 GMT Not After : Nov 29 19:25:45 2024 GMT Subject: CN=6740dab9-2401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:75:a3:8f:e6:27:d5:4f:0b:a5:a4:6c:3c:12: 51:4b:dd:c6:bc:af:d3:0b:6f:0c:ae:3c:5f:5b:06: 0a:d9:63:73:96:f9:0b:b3:6d:ee:d5:2b:33:dd:73: 07:84:7a:e1:57:f2:aa:e5:9f:26:48:ac:76:13:79: 6d:5f:06:43:15:8a:07:f0:02:52:ba:41:1f:5a:f7: 0d:e5:19:b1:f4:73:de:5c:ff:45:4b:3c:8a:40:68: 85:33:b2:80:13:0e:6f:36:7d:53:5d:0d:84:06:05: 86:e5:a1:f0:76:46:0e:99:c0:ba:d1:33:72:61:b7: e6:75:51:8a:0c:87:6f:6e:2a:74:bc:41:41:ad:8c: d7:3f:ca:32:85:55:8b:98:5b:83:a6:b7:13:fc:66: 21:74:03:0b:b6:95:e6:2b:70:72:95:1d:cf:87:41: d1:72:d4:66:6a:d3:a7:d5:27:44:8d:80:0f:44:f7: ff:15:d6:12:d2:a8:b4:10:72:7b:b7:d6:2d:6f:31: 0c:e6:f8:91:bc:3e:02:61:29:86:ba:c4:8c:05:fd: 1d:d4:19:d1:6c:cb:e3:7b:10:c0:d9:8e:a1:9c:e9: e1:88:b0:44:a2:c8:1c:a7:8d:0c:fc:ca:52:51:8a: d1:f6:db:5e:82:4d:9d:38:cb:02:a0:68:4d:47:44: bf:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:78:A4:E3:C9:86:4E:39:BA:63:58:E0:5A:39:4E:D6:EC:7B:7A:1A X509v3 Authority Key Identifier: keyid:15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:74:ee:f3:15:5f:d4:61:53:4f:71:ce:48:10:5c:f1:f8:06: c4:86:fa:3f:46:45:da:f2:29:21:f1:ec:d7:3e:cc:1c:68:27: 03:fe:5b:74:40:e3:4c:57:d7:a1:64:ae:54:de:eb:ef:d0:e3: 4c:aa:f2:8c:b5:e3:54:2b:17:7a:85:fc:28:a4:01:18:a2:c0: 26:d4:e1:1b:a3:14:f2:b3:fc:fc:bd:de:b4:21:0c:59:27:d4: 1c:d4:1a:37:24:13:84:87:59:b6:56:b6:73:5c:c0:c2:da:29: 85:77:f9:56:90:80:33:70:ee:b9:fd:09:e0:09:f7:d2:0c:f3: 94:bb:81:b1:0e:28:ef:ec:e2:c5:14:37:3d:44:bc:c0:7c:c1: 7d:56:ec:8d:0d:9b:8c:ec:fd:18:f3:12:54:a2:34:df:5d:5b: 4d:bc:7e:60:f1:6b:13:3a:71:91:e6:06:c7:a8:4c:87:85:4a: 59:ec:b4:78:d6:2a:1f:0d:3b:58:63:1e:fd:90:0f:48:4f:70: 6b:cc:47:3b:03:99:5e:cb:82:d1:4e:0d:46:ab:3f:87:fb:21: 8f:2b:da:d9:f5:8a:d0:af:56:7c:5e:71:1d:3c:3a:91:f5:5d: 7a:a8:08:78:dc:ca:ca:79:bc:d2:56:e2:46:1a:a4:cb:6c:1b: e1:f8:31:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY4QTExMTAvBgNVBAUTKDE1MkEzQjQzMjI1Q0ZBMkM1RjhERTI3QTlBNjg5M0Qz QjIzRjVERTMwHhcNMjQxMTIyMTkyNTQ1WhcNMjQxMTI5MTkyNTQ1WjAYMRYwFAYD VQQDEw02NzQwZGFiOS0yNDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3Wjj+Yn1U8LpaRsPBJRS93GvK/TC28MrjxfWwYK2WNzlvkLs23u1Ssz3XMH hHrhV/Kq5Z8mSKx2E3ltXwZDFYoH8AJSukEfWvcN5Rmx9HPeXP9FSzyKQGiFM7KA Ew5vNn1TXQ2EBgWG5aHwdkYOmcC60TNyYbfmdVGKDIdvbip0vEFBrYzXP8oyhVWL mFuDprcT/GYhdAMLtpXmK3BylR3Ph0HRctRmatOn1SdEjYAPRPf/FdYS0qi0EHJ7 t9YtbzEM5viRvD4CYSmGusSMBf0d1BnRbMvjexDA2Y6hnOnhiLBEosgcp40M/MpS UYrR9ttegk2dOMsCoGhNR0S/LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA94pOPJ hk45umNY4Fo5Ttbse3oaMB8GA1UdIwQYMBaAFBUqO0MiXPosX43ieppok9OyP13j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjhBMS8yRTFDQzY0NDUx MTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1peGZqZUo2bW1pVDA3SV9Y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTbzdReUpjLWl4ZmplSjZtbWlUMDdJX1hlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjhBMS8yRTFDQzY0NDUxMTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1p eGZqZUo2bW1pVDA3SV9YZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKdO7zFV/UYVNPcc5IEFzx+AbEhvo/RkXa8ikh8ezXPswcaCcD/lt0 QONMV9ehZK5U3uvv0ONMqvKMteNUKxd6hfwopAEYosAm1OEboxTys/z8vd60IQxZ J9Qc1Bo3JBOEh1m2VrZzXMDC2imFd/lWkIAzcO65/QngCffSDPOUu4GxDijv7OLF FDc9RLzAfMF9VuyNDZuM7P0Y8xJUojTfXVtNvH5g8WsTOnGR5gbHqEyHhUpZ7LR4 1iofDTtYYx79kA9IT3BrzEc7A5ley4LRTg1Gqz+H+yGPK9rZ9YrQr1Z8XnEdPDqR 9V16qAh43MrKebzSVuJGGqTLbBvh+DEo -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org