$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: 9F/EVxxZvTdc9g/I6MidgvH3QW2BvdulreUd4HM2kgE= Subject key identifier: 4A:08:4E:F2:14:E6:06:46:55:91:C6:1B:21:14:0D:50:85:5B:CC:71 Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0F5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 0F51 Signing time: Fri 22 Nov 2024 17:33:38 +0000 Manifest this update: Fri 22 Nov 2024 17:33:38 +0000 Manifest next update: Fri 29 Nov 2024 17:33:38 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: TWgXxVdgO7Dw/vhwmp1dRg2eW2BMtx01h0fZUDmHnCc=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: wn3cySuLwXeKUJ473H4yvfiVQMWLgbgSubD4zK5xaVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3932 (0xf5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Nov 22 17:33:38 2024 GMT Not After : Nov 29 17:33:38 2024 GMT Subject: CN=6740c072-1b55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9d:85:94:34:8b:8c:32:9a:74:1d:a4:29:77: a4:48:6d:fd:d5:d8:72:cd:ae:c6:82:3d:24:92:80: 4d:08:08:b4:54:e2:5f:2c:3d:74:39:dc:0e:4a:f5: e4:f6:68:14:cb:94:2e:4f:50:5c:ac:50:94:58:c0: 39:72:dd:66:63:c0:f1:5a:9b:be:41:21:8a:e2:20: 76:d3:56:96:7f:ff:3d:d7:93:ec:6b:12:f2:9f:0c: ad:3c:02:4e:6d:93:ec:b8:13:8f:79:77:f6:a0:9c: ce:fb:df:bb:95:8d:3f:a5:a0:ec:3f:e4:ed:b7:9f: ef:1d:f0:33:c0:b4:f9:88:2a:4d:67:d2:90:7f:8b: 47:cc:30:d7:5c:44:11:59:cb:b6:d3:7a:b2:c6:56: 2a:76:87:5a:fe:c5:39:8d:a3:95:8c:a7:94:86:94: b5:89:75:41:c8:57:4b:ec:5e:ad:2e:53:70:59:cc: 5b:b9:1a:40:96:63:44:03:3b:0d:2c:6f:07:ba:dd: af:ed:2c:04:ed:91:f6:b6:b8:8c:f1:e5:8a:3b:19: c9:9b:16:98:b7:89:3d:65:0c:05:76:4f:12:f0:de: 93:18:e0:88:85:a2:6c:92:42:4e:1d:c2:e7:13:b0: 50:ae:08:e3:0a:7b:58:60:f0:3e:d4:0f:1d:f2:e4: b2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:08:4E:F2:14:E6:06:46:55:91:C6:1B:21:14:0D:50:85:5B:CC:71 X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:2b:52:63:b2:d1:e9:cb:0f:21:7c:6a:ac:c8:6a:10:1e:72: a8:52:83:7f:d6:6d:c1:74:e0:f6:d4:66:e1:1e:bc:10:b7:96: a4:67:64:53:81:fc:16:ba:23:e3:e6:d4:8c:75:70:c5:e7:bb: 85:d2:72:5c:09:a4:45:60:2b:c5:ee:c8:7f:bf:f7:de:ef:fa: ce:ba:92:e2:53:9b:04:f7:b4:ea:a7:89:ac:a8:8b:ec:a6:9c: 26:26:61:da:8c:b2:11:27:51:62:a7:40:9b:a3:0a:1b:db:36: 9c:1c:15:11:22:3c:82:66:a9:79:d3:b3:df:0d:ae:4a:79:33: 14:be:2f:4d:1a:8f:68:eb:e7:bd:1d:fc:71:f1:48:7a:0b:a9: 95:44:06:24:af:cf:58:6b:13:d7:04:90:cd:0b:56:c4:2a:cb: 38:f6:29:93:d4:30:1e:72:fe:df:60:e6:34:7f:21:84:33:dc: 47:6e:8e:32:d2:ed:5f:c3:38:e9:c9:97:59:ce:e5:9d:9e:9a: 17:2c:8b:2b:5b:8f:77:77:6c:74:52:e7:12:d2:d4:fe:29:04: 58:1f:51:5f:29:01:64:36:6f:dd:f3:1a:d7:0d:41:1f:6f:a9: 74:a0:0b:b3:06:91:7f:cc:b1:f2:4e:72:56:0b:79:84:42:8d: 08:f6:59:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjQxMTIyMTczMzM4WhcNMjQxMTI5MTczMzM4WjAYMRYwFAYD VQQDEw02NzQwYzA3Mi0xYjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp2FlDSLjDKadB2kKXekSG391dhyza7Ggj0kkoBNCAi0VOJfLD10OdwOSvXk 9mgUy5QuT1BcrFCUWMA5ct1mY8DxWpu+QSGK4iB201aWf/8915PsaxLynwytPAJO bZPsuBOPeXf2oJzO+9+7lY0/paDsP+Ttt5/vHfAzwLT5iCpNZ9KQf4tHzDDXXEQR Wcu203qyxlYqdoda/sU5jaOVjKeUhpS1iXVByFdL7F6tLlNwWcxbuRpAlmNEAzsN LG8Hut2v7SwE7ZH2triM8eWKOxnJmxaYt4k9ZQwFdk8S8N6TGOCIhaJskkJOHcLn E7BQrgjjCntYYPA+1A8d8uSytQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoITvIU 5gZGVZHGGyEUDVCFW8xxMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFK1JjstHpyw8hfGqsyGoQHnKoUoN/1m3BdOD21GbhHrwQt5akZ2RT gfwWuiPj5tSMdXDF57uF0nJcCaRFYCvF7sh/v/fe7/rOupLiU5sE97Tqp4msqIvs ppwmJmHajLIRJ1Fip0Cbowob2zacHBURIjyCZql507PfDa5KeTMUvi9NGo9o6+e9 Hfxx8Uh6C6mVRAYkr89YaxPXBJDNC1bEKss49imT1DAecv7fYOY0fyGEM9xHbo4y 0u1fwzjpyZdZzuWdnpoXLIsrW493d2x0UucS0tT+KQRYH1FfKQFkNm/d8xrXDUEf b6l0oAuzBpF/zLHyTnJWC3mEQo0I9llI -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org