$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft File: STM5VHszADpYWZg2-0yZ55RJzfI.mft (raw, json) Hash identifier: Q3l4KtIBXCnigSF27v4Zbd3KgQND6y6fv/dPJf4L0v0= Subject key identifier: 48:03:28:0C:F1:EB:EA:D8:A0:1B:63:60:85:C1:9D:0E:81:B6:09:58 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0A42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft Manifest number: 0A27 Signing time: Fri 22 Nov 2024 19:36:29 +0000 Manifest this update: Fri 22 Nov 2024 19:36:28 +0000 Manifest next update: Fri 29 Nov 2024 19:36:28 +0000 Files and hashes: 1: STM5VHszADpYWZg2-0yZ55RJzfI.crl (hash: VCnU/ARu/XDUre3PlCnldUrvGCRlUnGzidpWh+7RK0E=) 2: 28BBBAA2634211EABE282367C4F9AE02.roa (hash: 873bBCGHkjfyb8l6bvX0YIj28dpF73yIbp8jCOGaSvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2626 (0xa42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Nov 22 19:36:28 2024 GMT Not After : Nov 29 19:36:28 2024 GMT Subject: CN=6740dd3d-477b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:05:66:7d:8a:34:c4:4c:1b:3e:1b:70:f5: d7:1d:6c:60:b0:2c:fa:5e:fd:7c:3c:c4:19:a2:ad: 33:00:d7:f7:5d:0f:45:e3:9e:20:d3:d1:3a:86:6a: fc:1e:59:f8:71:0e:89:ba:4c:21:3a:c5:a0:dc:1b: ab:b9:b4:d5:39:61:16:97:c1:30:10:81:c7:47:64: 99:2e:e5:24:ab:34:39:81:b1:63:77:85:d6:b6:5e: 4f:a2:62:ed:69:52:5b:3a:5f:32:13:84:cf:ad:45: 1c:57:b0:fc:d9:86:4a:3b:99:e9:54:dd:ea:23:7a: 71:47:0c:52:18:6b:42:3d:30:8e:e3:f6:8b:09:14: 39:40:3d:e8:75:07:8f:47:89:2e:7c:d4:6e:47:09: 45:84:e5:ae:68:82:66:25:2a:c6:1f:03:73:dd:95: 23:14:0c:9e:01:0b:ef:e6:3f:1b:b2:49:12:fc:aa: b1:1d:43:02:63:bc:73:91:6f:ef:ab:ed:35:5a:e3: 8b:ba:c0:c6:15:40:44:14:83:76:f0:93:b1:25:9d: e6:40:35:07:b7:61:3e:18:db:9f:59:d8:82:10:cc: 00:da:da:4a:5f:76:64:4e:19:b0:8d:7d:02:4d:30: 40:9f:c4:61:b5:64:81:52:51:53:c2:64:77:ea:e5: 09:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:03:28:0C:F1:EB:EA:D8:A0:1B:63:60:85:C1:9D:0E:81:B6:09:58 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:28:6d:d3:84:41:a1:c6:6d:83:08:ec:d6:e9:9d:76:e8:67: 73:b6:70:fd:c6:99:c7:6a:d3:91:ca:6a:22:d8:84:fe:59:0b: b8:0d:d4:08:50:eb:e3:f7:79:ce:33:b0:43:c7:fb:9f:ba:4d: 3f:33:7a:5f:a4:fd:5e:a5:90:24:7f:fc:9b:4d:6c:9c:c8:ce: 46:99:f4:ce:de:5d:6a:6f:06:ca:35:20:9e:0b:ea:c9:1f:dd: 19:a3:6a:86:ee:2b:90:f9:b4:55:19:58:49:a5:73:8e:5c:41: 11:f7:6f:9c:cd:e5:e5:21:72:1e:d1:cd:77:01:e4:28:6b:e8: 58:16:75:b9:03:6a:05:c2:59:2f:3b:95:4e:a4:49:e5:6d:fb: da:96:27:a5:97:b9:27:42:a9:c3:b3:a1:41:c6:0a:ed:c4:03: b9:cd:0d:8e:a1:7a:9c:61:29:0a:93:89:0e:01:13:a6:b0:fa: 19:5c:05:ea:52:e7:ae:19:8f:ca:27:75:36:bf:a3:9a:c3:bd: 3d:4f:8f:b8:a0:4d:a7:b2:ce:a5:fa:32:c1:8e:3f:56:37:5e: 0c:00:db:c0:73:58:fd:75:46:f4:42:20:fa:27:03:c0:44:b0: a5:04:a6:be:b3:5c:15:56:bc:4c:07:ec:24:91:73:70:01:e2: 5b:66:fd:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjQxMTIyMTkzNjI4WhcNMjQxMTI5MTkzNjI4WjAYMRYwFAYD VQQDEw02NzQwZGQzZC00NzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3gFZn2KNMRMGz4bcPXXHWxgsCz6Xv18PMQZoq0zANf3XQ9F454g09E6hmr8 Hln4cQ6JukwhOsWg3BurubTVOWEWl8EwEIHHR2SZLuUkqzQ5gbFjd4XWtl5PomLt aVJbOl8yE4TPrUUcV7D82YZKO5npVN3qI3pxRwxSGGtCPTCO4/aLCRQ5QD3odQeP R4kufNRuRwlFhOWuaIJmJSrGHwNz3ZUjFAyeAQvv5j8bskkS/KqxHUMCY7xzkW/v q+01WuOLusDGFUBEFIN28JOxJZ3mQDUHt2E+GNufWdiCEMwA2tpKX3ZkThmwjX0C TTBAn8RhtWSBUlFTwmR36uUJQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgDKAzx 6+rYoBtjYIXBnQ6BtglYMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjc5NS9CRDAzMkUwNDYzNDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFE cFlXWmcyLTB5WjU1Ukp6ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXKG3ThEGhxm2DCOzW6Z126GdztnD9xpnHatORymoi2IT+WQu4DdQI UOvj93nOM7BDx/ufuk0/M3pfpP1epZAkf/ybTWycyM5GmfTO3l1qbwbKNSCeC+rJ H90Zo2qG7iuQ+bRVGVhJpXOOXEER92+czeXlIXIe0c13AeQoa+hYFnW5A2oFwlkv O5VOpEnlbfvaliell7knQqnDs6FBxgrtxAO5zQ2OoXqcYSkKk4kOAROmsPoZXAXq UueuGY/KJ3U2v6Oaw709T4+4oE2nss6l+jLBjj9WN14MANvAc1j9dUb0QiD6JwPA RLClBKa+s1wVVrxMB+wkkXNwAeJbZv1t -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org