$ rpki-client -vvf rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft File: _D34EL_Cm_HPvwqvpWOX65tMq3c.mft (raw, json) Hash identifier: aAebraX1eb6PyqFvpO0ZphTkWcnfbmtffp+ENaX1lf8= Subject key identifier: B8:89:DB:19:AD:79:F5:F3:F4:EF:3F:D5:EA:E9:8A:88:B0:AC:ED:40 Authority key identifier: FC:3D:F8:10:BF:C2:9B:F1:CF:BF:0A:AF:A5:63:97:EB:9B:4C:AB:77 Certificate issuer: /CN=A916269D/serialNumber=FC3DF810BFC29BF1CFBF0AAFA56397EB9B4CAB77 Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft Manifest number: 0AF4 Signing time: Fri 22 Nov 2024 19:04:30 +0000 Manifest this update: Fri 22 Nov 2024 19:04:30 +0000 Manifest next update: Fri 29 Nov 2024 19:04:30 +0000 Files and hashes: 1: _D34EL_Cm_HPvwqvpWOX65tMq3c.crl (hash: T6aunuq7DnklsCfPAazkPk7ZL66qVT1cPS01ocoHXxE=) 2: EDA2987A32A211EA87A1561DC4F9AE02.roa (hash: Rb0mrBAhcgxptwAduOv5tg/4P6wlnoF3pah8TBCeTwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.crl rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916269D/serialNumber=FC3DF810BFC29BF1CFBF0AAFA56397EB9B4CAB77 Validity Not Before: Nov 22 19:04:30 2024 GMT Not After : Nov 29 19:04:30 2024 GMT Subject: CN=6740d5be-3cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:90:a8:a0:11:7a:22:77:a1:17:a1:ec:86:16: 7e:15:0e:5a:bb:ba:c3:6f:d7:ab:8e:a5:88:9b:5e: fb:38:70:5f:e1:86:4d:a6:bb:ba:30:19:8a:79:16: df:c9:aa:4e:f9:30:6b:b5:f8:bb:23:bc:ef:c8:50: a7:94:e3:f6:56:c3:79:87:6b:a7:d1:7f:ad:97:4b: a3:fe:44:75:82:43:2f:a9:e0:76:c7:4a:77:c1:66: 8c:53:c6:a1:3d:b6:da:c1:a9:a2:60:d5:a0:24:a0: 75:e7:ae:35:4b:76:e3:79:3e:a2:7e:d3:0b:29:fc: 70:9f:72:3f:69:14:c2:2e:03:34:3c:fd:cb:1a:47: 14:0f:23:78:a7:7d:73:59:1f:8a:83:05:1a:b4:62: d1:21:82:ef:80:d6:78:66:07:b0:88:ba:ce:63:a9: 02:81:9a:8c:d5:64:72:a9:22:32:fd:78:d4:0f:a1: 83:69:77:27:3c:de:11:f7:59:8b:f6:86:0b:03:6d: e2:c4:b7:a9:eb:db:b7:3f:cc:5b:37:42:40:9a:0d: b9:a0:eb:6f:95:ed:1c:48:f7:96:09:64:50:f9:fd: 49:4a:9f:f7:68:9f:e7:75:dc:da:5a:35:a1:2b:d0: d1:63:e8:8a:da:c5:80:d3:59:3d:e2:ab:19:b4:82: 8b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:89:DB:19:AD:79:F5:F3:F4:EF:3F:D5:EA:E9:8A:88:B0:AC:ED:40 X509v3 Authority Key Identifier: keyid:FC:3D:F8:10:BF:C2:9B:F1:CF:BF:0A:AF:A5:63:97:EB:9B:4C:AB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ec:0e:55:c5:8a:e1:aa:34:40:2a:56:3a:c5:fe:ed:26:fc: df:98:80:38:3a:56:6a:d9:6c:58:b9:14:4a:48:f3:f4:f3:c2: cb:7a:b8:10:cd:af:7b:3a:99:fd:01:7f:42:09:b5:9f:38:cf: b0:fe:c7:94:38:19:8d:80:32:93:bd:cd:02:8d:c6:4a:d1:a7: 2b:11:5c:fd:53:7d:fe:ff:f2:29:bc:00:bc:e0:bd:03:e6:bb: d7:3a:58:ed:a1:91:92:5b:05:43:a2:2a:cd:7e:10:b3:4c:29: 70:90:87:54:29:ad:17:b3:7e:6a:43:04:e5:86:9f:0a:37:e8: 35:2f:4c:2d:4f:2e:f1:cd:52:33:6c:19:b4:58:c5:8e:35:40: 99:8c:fd:f6:fe:d5:72:93:e1:ee:cc:fa:64:e5:53:5a:1d:94: ef:0d:af:a5:80:10:a2:9e:ff:b9:35:4a:ae:16:54:6c:2c:f0: 58:3f:e6:66:a2:72:72:29:ad:25:64:42:93:47:31:b4:2b:ee: 1e:9b:50:71:10:19:af:a6:7a:41:e0:e4:80:13:73:5f:b5:ef: 40:36:39:31:3d:15:2d:23:46:80:32:f4:90:1a:86:10:a4:dc: 52:0a:18:b0:08:74:cd:b3:e0:f3:53:cb:b5:e3:0d:5e:11:cd: ab:4f:ce:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2OUQxMTAvBgNVBAUTKEZDM0RGODEwQkZDMjlCRjFDRkJGMEFBRkE1NjM5N0VC OUI0Q0FCNzcwHhcNMjQxMTIyMTkwNDMwWhcNMjQxMTI5MTkwNDMwWjAYMRYwFAYD VQQDEw02NzQwZDViZS0zY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JCooBF6InehF6HshhZ+FQ5au7rDb9erjqWIm177OHBf4YZNpru6MBmKeRbf yapO+TBrtfi7I7zvyFCnlOP2VsN5h2un0X+tl0uj/kR1gkMvqeB2x0p3wWaMU8ah PbbawamiYNWgJKB15641S3bjeT6iftMLKfxwn3I/aRTCLgM0PP3LGkcUDyN4p31z WR+KgwUatGLRIYLvgNZ4ZgewiLrOY6kCgZqM1WRyqSIy/XjUD6GDaXcnPN4R91mL 9oYLA23ixLep69u3P8xbN0JAmg25oOtvle0cSPeWCWRQ+f1JSp/3aJ/nddzaWjWh K9DRY+iK2sWA01k94qsZtIKLEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiJ2xmt efXz9O8/1erpioiwrO1AMB8GA1UdIwQYMBaAFPw9+BC/wpvxz78Kr6Vjl+ubTKt3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjY5RC83OEJGOTQ1MDMy QTExMUVBODYyQkQ1MTdDNEY5QUUwMi9fRDM0RUxfQ21fSFB2d3F2cFdPWDY1dE1x M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EMzRFTF9DbV9IUHZ3cXZwV09YNjV0TXEzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjY5RC83OEJGOTQ1MDMyQTExMUVBODYyQkQ1MTdDNEY5QUUwMi9fRDM0RUxfQ21f SFB2d3F2cFdPWDY1dE1xM2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc7A5VxYrhqjRAKlY6xf7tJvzfmIA4OlZq2WxYuRRKSPP088LLergQ za97Opn9AX9CCbWfOM+w/seUOBmNgDKTvc0CjcZK0acrEVz9U33+//IpvAC84L0D 5rvXOljtoZGSWwVDoirNfhCzTClwkIdUKa0Xs35qQwTlhp8KN+g1L0wtTy7xzVIz bBm0WMWONUCZjP32/tVyk+HuzPpk5VNaHZTvDa+lgBCinv+5NUquFlRsLPBYP+Zm onJyKa0lZEKTRzG0K+4em1BxEBmvpnpB4OSAE3Nfte9ANjkxPRUtI0aAMvSQGoYQ pNxSChiwCHTNs+DzU8u14w1eEc2rT84U -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org