$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: Z3XaC49sopl+vLmLHtpbaXJs6QU9T4nM367oZB6SHOs= Subject key identifier: 39:55:74:77:29:BD:C1:E7:03:01:3A:AA:D7:4C:C2:7E:3F:9E:A0:02 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0C15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0C07 Signing time: Fri 22 Nov 2024 18:19:30 +0000 Manifest this update: Fri 22 Nov 2024 18:19:29 +0000 Manifest next update: Fri 29 Nov 2024 18:19:29 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: usmrisk5VecslkFRkobJv7EIGfIYsw5oFSgtAByTtf8=) 2: 427CB2F0FAFE11ED8553B675C4F9AE02.roa (hash: 1AfZmTN8y2dEAxymesK7ZqhybAJpm7kmJ8uQOh7MeNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3093 (0xc15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Nov 22 18:19:29 2024 GMT Not After : Nov 29 18:19:29 2024 GMT Subject: CN=6740cb32-692c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:60:e7:ff:f6:06:70:b6:b0:86:74:a6:ab:74: cb:50:52:64:32:a3:f8:8a:25:d3:f3:82:78:b2:ec: d9:c0:d9:5b:62:22:3a:37:d4:2c:6d:10:f0:32:72: 0b:86:22:30:b3:5d:89:ef:8c:7a:2a:03:a1:66:94: aa:fe:48:b8:43:a9:0f:5f:f6:e5:21:5b:23:69:37: 56:b9:61:60:39:ab:94:f5:d1:b3:a4:ad:34:39:55: 47:d4:32:b3:21:45:6e:46:14:51:2c:41:bc:40:51: dc:13:93:1d:fc:2f:07:a1:27:c3:3a:4f:0f:50:61: d8:a0:d7:4e:dd:88:4d:46:2d:9f:03:dc:21:a1:f9: 3d:db:7e:7c:32:5c:8a:49:71:b0:5c:c5:f4:5c:76: be:e8:47:61:98:c7:38:76:32:d3:8d:b4:ac:44:4c: d6:e3:f8:22:5d:4c:f1:e9:7f:87:ba:e1:51:f7:15: d2:66:1f:53:6d:5a:06:28:3a:42:95:e8:d2:91:0d: 81:4b:62:92:c3:35:c5:73:70:73:90:9b:79:fa:00: 71:05:e3:ce:a9:7d:4c:b0:17:89:32:fc:6e:44:78: 50:2c:ac:46:00:70:2a:19:95:3d:16:11:48:d3:98: 83:43:a2:08:ae:b9:25:5e:ef:d1:ab:f9:be:ee:dc: fc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:55:74:77:29:BD:C1:E7:03:01:3A:AA:D7:4C:C2:7E:3F:9E:A0:02 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:96:5f:60:86:fb:53:b5:12:03:c7:23:81:2a:b7:0d:cb:eb: e6:cb:d2:2f:87:7d:3c:7a:d3:50:18:61:77:72:3e:3e:de:82: 9e:d7:1a:35:4c:da:40:64:bb:61:42:86:01:9f:ed:58:ba:d4: e6:7b:06:26:bb:5b:94:1b:c7:6c:e7:22:00:ff:be:b5:c8:30: 0b:6f:8c:73:f9:6f:aa:71:4f:0b:e5:2d:a4:9e:f2:10:9a:5c: 2a:9f:d3:8b:ae:e8:62:6e:55:d7:9e:35:52:82:7f:03:99:c2: 73:de:e6:d7:c6:4d:61:64:70:ae:00:61:a4:6a:be:f4:a2:0f: 88:f2:a6:cb:42:96:37:bc:79:3f:bd:4e:0d:20:6d:2d:96:ef: ad:8a:d1:ea:71:11:4f:e0:58:a9:f8:ba:e0:fc:96:61:a2:b1: ef:6a:8d:47:04:8f:f2:df:3b:33:a7:7f:87:45:ba:35:cf:c0: 03:a0:d9:cc:28:c1:89:6f:55:c2:c1:05:ee:33:52:e8:3c:a2: f6:dd:f1:0c:1a:7e:06:10:e1:0d:02:de:23:78:8b:63:54:18: 5e:c6:91:0d:7c:da:37:f0:83:34:c4:ec:73:2d:2b:83:bd:60: f4:e9:28:03:e7:40:c5:93:43:cb:e4:23:4c:ce:b6:19:d8:bb: 90:0c:52:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjQxMTIyMTgxOTI5WhcNMjQxMTI5MTgxOTI5WjAYMRYwFAYD VQQDEw02NzQwY2IzMi02OTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GDn//YGcLawhnSmq3TLUFJkMqP4iiXT84J4suzZwNlbYiI6N9QsbRDwMnIL hiIws12J74x6KgOhZpSq/ki4Q6kPX/blIVsjaTdWuWFgOauU9dGzpK00OVVH1DKz IUVuRhRRLEG8QFHcE5Md/C8HoSfDOk8PUGHYoNdO3YhNRi2fA9whofk92358MlyK SXGwXMX0XHa+6EdhmMc4djLTjbSsREzW4/giXUzx6X+HuuFR9xXSZh9TbVoGKDpC lejSkQ2BS2KSwzXFc3BzkJt5+gBxBePOqX1MsBeJMvxuRHhQLKxGAHAqGZU9FhFI 05iDQ6IIrrklXu/Rq/m+7tz80wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlVdHcp vcHnAwE6qtdMwn4/nqACMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0ll9ghvtTtRIDxyOBKrcNy+vmy9Ivh308etNQGGF3cj4+3oKe1xo1 TNpAZLthQoYBn+1YutTmewYmu1uUG8ds5yIA/761yDALb4xz+W+qcU8L5S2knvIQ mlwqn9OLruhiblXXnjVSgn8DmcJz3ubXxk1hZHCuAGGkar70og+I8qbLQpY3vHk/ vU4NIG0tlu+titHqcRFP4Fip+Lrg/JZhorHvao1HBI/y3zszp3+HRbo1z8ADoNnM KMGJb1XCwQXuM1LoPKL23fEMGn4GEOENAt4jeItjVBhexpENfNo38IM0xOxzLSuD vWD06SgD50DFk0PL5CNMzrYZ2LuQDFJ0 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org