$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft File: PUXFozv53U06Htp-0mQGWOH4Mf8.mft (raw, json) Hash identifier: V0y0SqvtuBwdp1+bQZHEGsiYgqfUc7MgEz7N3Pkr0mg= Subject key identifier: EC:1F:0A:3D:F3:1C:2D:11:A1:BC:A5:EE:9F:77:97:3B:1F:C6:83:5F Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0B3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft Manifest number: 0B37 Signing time: Fri 22 Nov 2024 18:58:08 +0000 Manifest this update: Fri 22 Nov 2024 18:58:07 +0000 Manifest next update: Fri 29 Nov 2024 18:58:07 +0000 Files and hashes: 1: PUXFozv53U06Htp-0mQGWOH4Mf8.crl (hash: AHRsJGKBw1hf2SHt1MltnroJWcrAzY/wTN9kT6coSWA=) 2: A11D7694261F11EAA88CE128C4F9AE02.roa (hash: hoqO9FG6w4Km8eSvitEm9i1d1kTzMCDiWm1RhII3OZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2877 (0xb3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: Nov 22 18:58:07 2024 GMT Not After : Nov 29 18:58:07 2024 GMT Subject: CN=6740d43f-d37d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ba:24:2b:52:f5:62:a7:66:51:65:78:28:3a: c2:34:1f:e4:95:4f:ea:f7:61:bd:7e:34:18:14:5c: bc:a5:03:9d:8f:79:50:6d:c1:e1:ad:1e:38:8b:86: 02:74:a5:80:5f:a9:13:28:23:8a:f5:c5:3c:09:09: 70:2d:9a:c1:23:2e:8b:69:f2:f8:f0:8f:32:94:6a: ab:77:6c:02:42:64:82:11:a1:ee:b8:cf:3d:e7:f6: 0c:63:41:2a:6f:83:ed:ff:c1:ca:de:6f:22:42:fa: 67:6b:48:6d:a2:25:0e:5d:eb:a7:4d:aa:81:83:9d: db:fb:c2:64:fa:14:e9:cf:ab:0a:c8:34:cc:01:d6: 04:0b:f6:8e:2d:dc:61:d2:da:ca:6b:4e:08:bb:50: 14:8a:62:79:32:5b:14:69:1d:b6:7b:2a:62:ed:2f: 2a:ad:76:37:d9:be:3f:08:88:26:e2:eb:af:00:f1: ec:3a:64:7c:ae:be:6a:41:a2:b2:5e:c2:7e:e8:d3: f3:0d:3a:29:94:a3:49:44:eb:f7:5a:00:05:93:6c: 2a:2d:e8:ee:35:c6:a3:7f:b7:03:80:32:2f:d1:bc: a1:db:4e:18:33:e4:0d:8f:1d:cc:5c:aa:43:42:e9: 60:2f:89:49:94:6d:aa:82:12:e5:f8:c4:a9:80:26: 2e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:1F:0A:3D:F3:1C:2D:11:A1:BC:A5:EE:9F:77:97:3B:1F:C6:83:5F X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:5b:69:85:6d:58:e4:b6:1c:e5:b7:69:1e:2d:69:47:2a:9c: e8:0c:77:51:8f:37:de:13:42:a9:4f:8c:68:a8:72:c5:bd:5e: e0:de:3e:5e:22:6d:ef:ef:1b:f4:e8:00:ee:3d:68:85:f9:c2: 5f:05:7d:49:f7:8c:37:6c:e6:04:c4:80:a6:7d:b5:38:cf:18: 22:a1:03:9b:48:94:10:fa:b3:1c:c7:4b:fb:9f:df:f0:f7:ac: 1d:38:9b:97:e0:dd:22:b5:4e:52:4e:05:fc:d9:5d:d1:05:5d: 2d:33:1e:71:66:95:c8:7d:b2:ed:46:65:08:21:f7:3e:2f:b8: 28:52:be:d2:73:38:f3:78:a7:3f:de:f3:51:d4:af:00:f3:b3: ab:bc:44:e4:cd:7f:55:5d:58:2f:be:60:37:60:e2:ca:c8:ea: cb:19:68:d0:9c:c2:49:d2:f2:65:5d:94:9d:4c:ea:89:a4:16: 7d:54:42:4a:98:7c:09:34:b4:03:3a:43:79:88:b5:45:f8:96: 85:51:cd:96:11:fc:f3:36:bc:ad:0f:3d:24:5e:24:bb:8f:cd: fe:d2:9e:77:8e:3f:cc:0c:d5:bf:ba:f5:fa:f9:f8:dd:14:24: 27:49:30:ad:a5:08:ec:bd:ce:e3:ae:43:cc:c0:76:22:3e:ac: 55:06:a7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjQxMTIyMTg1ODA3WhcNMjQxMTI5MTg1ODA3WjAYMRYwFAYD VQQDEw02NzQwZDQzZi1kMzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7okK1L1YqdmUWV4KDrCNB/klU/q92G9fjQYFFy8pQOdj3lQbcHhrR44i4YC dKWAX6kTKCOK9cU8CQlwLZrBIy6LafL48I8ylGqrd2wCQmSCEaHuuM895/YMY0Eq b4Pt/8HK3m8iQvpna0htoiUOXeunTaqBg53b+8Jk+hTpz6sKyDTMAdYEC/aOLdxh 0trKa04Iu1AUimJ5MlsUaR22eypi7S8qrXY32b4/CIgm4uuvAPHsOmR8rr5qQaKy XsJ+6NPzDToplKNJROv3WgAFk2wqLejuNcajf7cDgDIv0byh204YM+QNjx3MXKpD QulgL4lJlG2qghLl+MSpgCYuIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwfCj3z HC0Robyl7p93lzsfxoNfMB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkYwRS8xQTc1OEIwRTI2MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNV MDZIdHAtMG1RR1dPSDRNZjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoW2mFbVjkthzlt2keLWlHKpzoDHdRjzfeE0KpT4xoqHLFvV7g3j5e Im3v7xv06ADuPWiF+cJfBX1J94w3bOYExICmfbU4zxgioQObSJQQ+rMcx0v7n9/w 96wdOJuX4N0itU5STgX82V3RBV0tMx5xZpXIfbLtRmUIIfc+L7goUr7SczjzeKc/ 3vNR1K8A87OrvETkzX9VXVgvvmA3YOLKyOrLGWjQnMJJ0vJlXZSdTOqJpBZ9VEJK mHwJNLQDOkN5iLVF+JaFUc2WEfzzNrytDz0kXiS7j83+0p53jj/MDNW/uvX6+fjd FCQnSTCtpQjsvc7jrkPMwHYiPqxVBqdb -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org