$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: aar0iMRgyx+blufGShGyyjxMS2ji+F9MiKrEfeg6xq4= Subject key identifier: 6D:42:8A:D9:A0:5A:B7:35:06:6F:47:F7:4F:3B:C8:79:A2:6F:F4:6B Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 137D Signing time: Fri 22 Nov 2024 18:36:10 +0000 Manifest this update: Fri 22 Nov 2024 18:36:10 +0000 Manifest next update: Fri 29 Nov 2024 18:36:10 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: UcW/Xa04gueMjfCyzuW5RkJ7NnCEmavot7NLwmuECN4=) 2: 687DF56A8E2211EEB23A0C6CC4F9AE02.roa (hash: 8hNFjt6860Ps194YD3tqqE18VQShBpsbalp5nYV8/mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: Nov 22 18:36:10 2024 GMT Not After : Nov 29 18:36:10 2024 GMT Subject: CN=6740cf1a-ece2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:71:82:ec:4b:02:88:95:92:ed:db:af:1c:49: 40:61:3d:8c:2f:ac:e4:cf:e6:12:87:50:f8:1f:8a: 87:d0:0b:9b:20:ba:b4:2c:e4:84:a0:af:69:67:35: 71:13:9c:c0:92:3b:39:cb:8d:fe:15:1f:5b:51:79: 45:80:1e:9b:cf:69:64:93:fd:0e:8d:bb:2f:be:b5: 7e:0a:a4:c1:31:bd:9c:05:bd:31:1c:c7:ba:20:90: 4e:89:11:46:0c:8a:06:e5:18:bd:0c:e1:e5:4f:20: 09:7e:4e:77:f5:de:d3:84:13:af:ff:0e:10:0f:c1: ac:79:cb:99:f2:8e:5d:58:e5:b4:22:e8:4f:72:e8: cc:31:73:e1:2c:37:a4:60:34:f8:95:cd:26:25:ae: 27:68:14:55:f9:a5:97:25:0d:c7:81:83:bd:17:41: 93:00:b7:d6:c0:db:0f:fe:46:f8:44:af:91:66:97: 67:eb:fc:09:b9:a6:e8:5d:29:1b:c5:86:39:fd:dc: a1:95:20:de:c6:ac:8c:4a:d8:fc:37:bc:0c:d4:c9: d8:57:9d:26:b4:39:ff:11:1f:63:b4:46:26:f6:9a: 0a:8e:6a:2f:da:87:33:70:02:17:00:79:eb:a8:bc: f3:76:23:9b:b5:8d:a7:fd:93:25:41:f4:ee:46:d1: ff:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:42:8A:D9:A0:5A:B7:35:06:6F:47:F7:4F:3B:C8:79:A2:6F:F4:6B X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:69:62:99:07:49:aa:65:99:f3:a6:89:c3:26:e7:4a:5b:f5: f9:9b:c1:a4:3f:90:3a:86:b6:ee:9b:f0:35:49:a6:a1:67:30: 0d:d6:60:8e:7b:ef:c4:a4:10:18:c2:d0:be:13:16:cf:ed:1a: 31:b2:e7:a2:38:8b:59:5f:38:68:93:a9:5b:48:b9:28:bd:b4: 4c:8c:49:fa:76:33:0b:d0:6b:1e:ed:f7:8d:72:a3:51:ed:f8: f9:a3:30:5c:65:6a:fb:30:5b:c4:cd:e6:b9:d2:d4:36:5b:67: b4:0c:bc:97:64:96:38:22:f9:52:c9:b9:67:b9:d4:bb:dc:78: c2:5a:73:db:cf:ff:20:31:52:da:07:60:1f:bd:d3:5e:65:ff: 3e:7b:64:e2:0b:e0:16:45:38:1d:bb:9e:4c:1b:ee:41:5a:19: 76:01:c1:66:a6:be:0e:b5:f5:74:52:ff:91:7f:2f:11:b7:3e: de:0c:a7:16:d2:5f:a4:07:ac:a1:6a:76:27:14:fe:6b:73:dd: 68:62:61:e6:7f:50:ec:ae:67:35:13:ff:67:61:6e:e8:89:9d: dd:9f:49:da:49:93:3c:08:35:51:3c:26:0f:4d:64:f5:0b:19: 69:02:60:d4:32:66:ba:46:21:1a:61:0d:72:7a:f0:78:80:e9: a0:44:8e:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjQxMTIyMTgzNjEwWhcNMjQxMTI5MTgzNjEwWjAYMRYwFAYD VQQDEw02NzQwY2YxYS1lY2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3GC7EsCiJWS7duvHElAYT2ML6zkz+YSh1D4H4qH0AubILq0LOSEoK9pZzVx E5zAkjs5y43+FR9bUXlFgB6bz2lkk/0OjbsvvrV+CqTBMb2cBb0xHMe6IJBOiRFG DIoG5Ri9DOHlTyAJfk539d7ThBOv/w4QD8GsecuZ8o5dWOW0IuhPcujMMXPhLDek YDT4lc0mJa4naBRV+aWXJQ3HgYO9F0GTALfWwNsP/kb4RK+RZpdn6/wJuaboXSkb xYY5/dyhlSDexqyMStj8N7wM1MnYV50mtDn/ER9jtEYm9poKjmov2oczcAIXAHnr qLzzdiObtY2n/ZMlQfTuRtH/2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1Citmg Wrc1Bm9H9087yHmib/RrMB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkaWKZB0mqZZnzponDJudKW/X5m8GkP5A6hrbum/A1SaahZzAN1mCO e+/EpBAYwtC+ExbP7RoxsueiOItZXzhok6lbSLkovbRMjEn6djML0Gse7feNcqNR 7fj5ozBcZWr7MFvEzea50tQ2W2e0DLyXZJY4IvlSyblnudS73HjCWnPbz/8gMVLa B2AfvdNeZf8+e2TiC+AWRTgdu55MG+5BWhl2AcFmpr4OtfV0Uv+Rfy8Rtz7eDKcW 0l+kB6yhanYnFP5rc91oYmHmf1Dsrmc1E/9nYW7oiZ3dn0naSZM8CDVRPCYPTWT1 CxlpAmDUMma6RiEaYQ1yevB4gOmgRI7b -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org