$ rpki-client -vvf rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft File: eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft (raw, json) Hash identifier: UXG8YHpX/R5PNFkcmNL8UGC7VKMwG6HhSKCkGpdk3vQ= Subject key identifier: 7F:00:F9:6D:CA:7C:8B:1B:D1:A6:C3:CB:F9:38:18:0C:6C:2D:F2:FB Authority key identifier: 78:9F:8B:78:7E:D3:DD:35:20:33:32:CE:B3:B5:32:E1:FA:F0:B6:C6 Certificate issuer: /CN=A914CF73/serialNumber=789F8B787ED3DD35203332CEB3B532E1FAF0B6C6 Certificate serial: 33F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft Manifest number: 33EC Signing time: Fri 22 Nov 2024 15:22:08 +0000 Manifest this update: Fri 22 Nov 2024 15:22:08 +0000 Manifest next update: Fri 29 Nov 2024 15:22:08 +0000 Files and hashes: 1: eJ-LeH7T3TUgMzLOs7Uy4frwtsY.crl (hash: Cg/+7ti23gKg13i7RfKK2gO3U2YFULiRsgF1Uu1cwIE=) 2: 5007D8DECAB411E889484D32C4F9AE02.roa (hash: yH9ArofJ+tRfmo2FFuv4f0Cn+G4EX/rNPyc9NB/teQ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.crl rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13299 (0x33f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CF73/serialNumber=789F8B787ED3DD35203332CEB3B532E1FAF0B6C6 Validity Not Before: Nov 22 15:22:08 2024 GMT Not After : Nov 29 15:22:08 2024 GMT Subject: CN=6740a1a0-bd4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e5:57:be:9e:30:c6:4a:37:c2:62:13:4f:48: 46:c7:56:04:8b:8c:e7:cd:cd:4a:38:46:65:96:d9: 83:9e:db:6a:bf:96:0f:60:a7:2f:5f:c5:9d:82:16: fe:fc:ae:00:11:19:36:a7:f7:68:b4:f9:fe:f1:dd: a1:7e:0d:62:87:d5:dd:5d:c7:e4:4d:62:ac:f4:05: ba:29:1f:4b:45:54:53:b6:8e:c3:d4:32:fa:ab:d2: 1e:c6:5f:dd:31:a0:55:22:8a:31:15:11:ab:48:75: b7:7c:43:44:3c:ad:00:f3:13:29:53:54:72:2c:93: a6:7c:4d:71:57:73:7f:1d:aa:cf:81:3a:8f:47:ce: d6:0b:f4:32:42:14:3d:b0:b7:e4:57:da:40:ec:36: a2:43:cd:8b:24:48:e9:72:25:9c:87:ff:56:44:d8: 40:c3:64:d9:ca:db:bf:ba:54:56:1c:fa:e4:d3:0a: de:49:6f:ff:c1:87:4f:5f:a2:a9:96:04:44:f1:41: 93:d4:b4:40:d4:21:e3:74:d2:3c:7c:1d:57:da:9e: e5:8d:2f:48:bb:c8:54:48:ff:04:c4:6c:14:16:ca: e0:c6:c3:b2:7b:c2:a6:56:18:0b:e5:4c:a2:5f:0c: dc:06:f7:80:2b:63:fa:02:ea:ca:fc:20:aa:00:40: 2c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:00:F9:6D:CA:7C:8B:1B:D1:A6:C3:CB:F9:38:18:0C:6C:2D:F2:FB X509v3 Authority Key Identifier: keyid:78:9F:8B:78:7E:D3:DD:35:20:33:32:CE:B3:B5:32:E1:FA:F0:B6:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CF73/A68475502A0111E281723CA608B02CD2/eJ-LeH7T3TUgMzLOs7Uy4frwtsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:88:1f:c0:b2:59:f9:c5:2b:50:b0:04:b8:b8:7a:4e:a8:e4: 78:53:e1:0e:76:73:b2:8c:7d:cc:cf:a7:b9:d3:04:4e:12:b4: 08:33:35:23:c0:ce:6c:7e:d2:64:97:f2:4c:35:8c:d9:be:2e: 84:7b:c4:f1:99:f2:74:21:c5:01:1b:7d:74:f9:a1:b3:d1:77: 41:11:0f:82:1f:56:d7:6a:f6:3c:93:ad:ef:9a:ba:d6:89:d9: 7f:ba:19:62:64:ec:b3:e9:85:72:b1:22:6b:1b:68:f9:46:9d: de:1c:f3:d5:5b:98:ed:80:ea:56:d7:ee:a7:64:f0:81:c5:5a: 23:32:89:c5:fe:32:da:db:be:bb:40:51:22:2d:1e:e5:7e:e2: 3f:61:80:08:1a:b5:18:dc:94:c8:38:fa:4b:00:7c:c3:29:9c: ae:2f:97:cc:2e:c2:84:60:2f:de:f1:45:cd:13:64:dd:9e:9c: 16:60:b8:46:85:d8:a0:1c:95:e2:e4:e8:e8:46:b1:94:75:16: 8f:b4:b9:0a:49:02:69:50:28:42:28:0e:03:8f:bc:52:66:54: 19:5f:e4:1d:48:b1:9b:20:d2:7f:d0:a4:23:87:ba:87:3c:f7: 4d:f4:9b:63:9e:f7:82:75:7d:eb:38:24:df:7c:9c:d0:b8:97: 4d:d2:f7:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENGNzMxMTAvBgNVBAUTKDc4OUY4Qjc4N0VEM0REMzUyMDMzMzJDRUIzQjUzMkUx RkFGMEI2QzYwHhcNMjQxMTIyMTUyMjA4WhcNMjQxMTI5MTUyMjA4WjAYMRYwFAYD VQQDEw02NzQwYTFhMC1iZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+VXvp4wxko3wmITT0hGx1YEi4znzc1KOEZlltmDnttqv5YPYKcvX8Wdghb+ /K4AERk2p/dotPn+8d2hfg1ih9XdXcfkTWKs9AW6KR9LRVRTto7D1DL6q9Iexl/d MaBVIooxFRGrSHW3fENEPK0A8xMpU1RyLJOmfE1xV3N/HarPgTqPR87WC/QyQhQ9 sLfkV9pA7DaiQ82LJEjpciWch/9WRNhAw2TZytu/ulRWHPrk0wreSW//wYdPX6Kp lgRE8UGT1LRA1CHjdNI8fB1X2p7ljS9Iu8hUSP8ExGwUFsrgxsOye8KmVhgL5Uyi XwzcBveAK2P6AurK/CCqAEAsbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8A+W3K fIsb0abDy/k4GAxsLfL7MB8GA1UdIwQYMBaAFHifi3h+0901IDMyzrO1MuH68LbG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0Y3My9BNjg0NzU1MDJB MDExMUUyODE3MjNDQTYwOEIwMkNEMi9lSi1MZUg3VDNUVWdNekxPczdVeTRmcnd0 c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VKLUxlSDdUM1RVZ016TE9zN1V5NGZyd3RzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0Y3My9BNjg0NzU1MDJBMDExMUUyODE3MjNDQTYwOEIwMkNEMi9lSi1MZUg3VDNU VWdNekxPczdVeTRmcnd0c1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4iB/Asln5xStQsAS4uHpOqOR4U+EOdnOyjH3Mz6e50wROErQIMzUj wM5sftJkl/JMNYzZvi6Ee8TxmfJ0IcUBG310+aGz0XdBEQ+CH1bXavY8k63vmrrW idl/uhliZOyz6YVysSJrG2j5Rp3eHPPVW5jtgOpW1+6nZPCBxVojMonF/jLa2767 QFEiLR7lfuI/YYAIGrUY3JTIOPpLAHzDKZyuL5fMLsKEYC/e8UXNE2TdnpwWYLhG hdigHJXi5OjoRrGUdRaPtLkKSQJpUChCKA4Dj7xSZlQZX+QdSLGbINJ/0KQjh7qH PPdN9JtjnveCdX3rOCTffJzQuJdN0vd8 -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:19 2024 by rpki-client on console-ams.rpki-client.org