$ rpki-client -vvf rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft File: sGbiQQUMOMNJyyXUQBRFD09QGK4.mft (raw, json) Hash identifier: 2l+ze42edqQKfHxGTxqh0LrhPTZECp3NKAbybtWC7IQ= Subject key identifier: 68:F5:F7:49:08:F4:4E:48:03:B9:A9:16:2B:F3:DB:B5:C5:69:75:08 Authority key identifier: B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE Certificate issuer: /CN=A916CE83/serialNumber=B066E241050C38C349CB25D44014450F4F5018AE Certificate serial: 0FC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft Manifest number: 0FBB Signing time: Fri 22 Nov 2024 17:28:42 +0000 Manifest this update: Fri 22 Nov 2024 17:28:41 +0000 Manifest next update: Fri 29 Nov 2024 17:28:41 +0000 Files and hashes: 1: sGbiQQUMOMNJyyXUQBRFD09QGK4.crl (hash: E2Mk4fMBRWWSK+CA7fwB4EvFTRiVuYvuiphEwZCsa/M=) 2: 6657C8D243B911E9AE253437C4F9AE02.roa (hash: LmhQsBTb+BuO+Fwea9Qf/BB3cKTPF95IWgnUADqnRaM=) 3: D38E10ACDEA311EE901DD072C4F9AE02.roa (hash: 4rMhUP1V6/f4KSbXB3ah+ZfQ57lXwXKofHxQEjiCVfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4035 (0xfc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CE83/serialNumber=B066E241050C38C349CB25D44014450F4F5018AE Validity Not Before: Nov 22 17:28:41 2024 GMT Not After : Nov 29 17:28:41 2024 GMT Subject: CN=6740bf49-00e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:21:b2:22:35:60:39:ae:30:03:97:a0:f2:48: 1e:be:c1:5e:b5:5b:ed:60:8b:3f:a0:5e:55:65:63: 5d:dd:4e:38:28:c4:13:6f:67:84:9c:14:17:cd:42: b1:e3:93:cf:3a:ee:ef:26:e9:44:c1:aa:1c:0b:92: da:76:a2:aa:ed:f3:3c:fc:ea:27:67:8b:12:0b:1e: 37:ea:d6:aa:f3:f0:1f:26:05:0b:11:5e:27:12:2f: 19:ce:32:21:4c:d9:06:e1:c7:bd:97:9a:41:19:2c: 45:ab:60:f0:ac:a3:d1:fa:5c:2d:08:8a:b2:50:17: 88:3c:ad:5d:7a:ea:91:c3:99:b0:6c:0e:cb:30:43: 3a:7c:f5:eb:44:a4:19:98:3f:75:06:56:8e:9d:0f: 3e:21:6e:70:b7:aa:a5:cf:cb:0d:be:87:db:99:8b: 7e:7a:0a:c0:c7:2d:3d:a5:79:ed:8c:36:db:c8:59: 1d:7c:40:84:40:d0:c8:cb:be:7c:5b:4a:d5:c4:5a: 35:e5:cc:3e:9d:c2:69:b0:c6:ba:84:8b:d3:1c:70: 9a:eb:33:78:0d:41:32:43:6d:4c:4a:da:5a:81:40: 90:b7:c7:9a:e1:a9:12:c6:47:b3:c0:59:52:24:01: 3a:c3:3d:50:89:3d:3b:06:0b:43:eb:8c:97:9b:e9: e7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F5:F7:49:08:F4:4E:48:03:B9:A9:16:2B:F3:DB:B5:C5:69:75:08 X509v3 Authority Key Identifier: keyid:B0:66:E2:41:05:0C:38:C3:49:CB:25:D4:40:14:45:0F:4F:50:18:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGbiQQUMOMNJyyXUQBRFD09QGK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CE83/9564191A43B811E9ABA22A34C4F9AE02/sGbiQQUMOMNJyyXUQBRFD09QGK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f1:28:41:96:e9:14:77:47:f7:cc:2b:b0:38:f0:64:3e:4f: e8:a8:c2:02:df:a6:a5:ad:23:d1:41:32:81:bd:5a:2d:4c:d8: 97:12:d4:9b:ba:79:bf:49:b3:5d:2d:0a:48:f9:53:b1:a5:fd: bb:e5:34:ed:50:2b:06:4d:86:75:d1:2b:cf:bc:63:7f:c3:b8: ef:ff:31:0f:29:33:3a:70:56:c1:99:11:96:79:65:25:a4:40: 8d:7a:fd:7b:01:9d:5b:40:4d:0e:de:08:0c:fd:87:67:5b:b1: 4b:7f:4d:0d:30:02:6d:7f:f6:92:a5:0b:a5:90:1a:93:6a:f6: b4:39:f2:14:b9:08:64:6e:93:b7:1c:74:f6:cf:50:b8:c3:2c: 3a:23:77:64:0a:6d:68:a1:4a:3e:94:33:97:a3:9a:80:fe:c5: 76:58:f1:5f:47:02:7e:c2:29:70:99:65:c0:93:29:21:51:13: 92:2d:d2:4a:94:43:76:2e:f4:19:2a:42:a9:7f:9b:55:4f:0b: f5:b7:21:d0:3e:13:1e:ca:a5:d3:58:5e:81:5f:73:26:c0:cf: 83:09:09:57:d2:50:00:49:d9:31:98:25:f1:b0:71:ff:1e:ba: a3:7d:1f:f3:89:5d:90:02:f5:b8:0c:34:a0:41:75:f5:9c:60: 3e:df:c4:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNFODMxMTAvBgNVBAUTKEIwNjZFMjQxMDUwQzM4QzM0OUNCMjVENDQwMTQ0NTBG NEY1MDE4QUUwHhcNMjQxMTIyMTcyODQxWhcNMjQxMTI5MTcyODQxWjAYMRYwFAYD VQQDEw02NzQwYmY0OS0wMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9CGyIjVgOa4wA5eg8kgevsFetVvtYIs/oF5VZWNd3U44KMQTb2eEnBQXzUKx 45PPOu7vJulEwaocC5LadqKq7fM8/OonZ4sSCx436taq8/AfJgULEV4nEi8ZzjIh TNkG4ce9l5pBGSxFq2DwrKPR+lwtCIqyUBeIPK1deuqRw5mwbA7LMEM6fPXrRKQZ mD91BlaOnQ8+IW5wt6qlz8sNvofbmYt+egrAxy09pXntjDbbyFkdfECEQNDIy758 W0rVxFo15cw+ncJpsMa6hIvTHHCa6zN4DUEyQ21MStpagUCQt8ea4akSxkezwFlS JAE6wz1QiT07BgtD64yXm+nnQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGj190kI 9E5IA7mpFivz27XFaXUIMB8GA1UdIwQYMBaAFLBm4kEFDDjDScsl1EAURQ9PUBiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0U4My85NTY0MTkxQTQz QjgxMUU5QUJBMjJBMzRDNEY5QUUwMi9zR2JpUVFVTU9NTkp5eVhVUUJSRkQwOVFH SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHYmlRUVVNT01OSnl5WFVRQlJGRDA5UUdLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0U4My85NTY0MTkxQTQzQjgxMUU5QUJBMjJBMzRDNEY5QUUwMi9zR2JpUVFVTU9N Tkp5eVhVUUJSRkQwOVFHSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA08ShBlukUd0f3zCuwOPBkPk/oqMIC36alrSPRQTKBvVotTNiXEtSb unm/SbNdLQpI+VOxpf275TTtUCsGTYZ10SvPvGN/w7jv/zEPKTM6cFbBmRGWeWUl pECNev17AZ1bQE0O3ggM/YdnW7FLf00NMAJtf/aSpQulkBqTava0OfIUuQhkbpO3 HHT2z1C4wyw6I3dkCm1ooUo+lDOXo5qA/sV2WPFfRwJ+wilwmWXAkykhUROSLdJK lEN2LvQZKkKpf5tVTwv1tyHQPhMeyqXTWF6BX3MmwM+DCQlX0lAASdkxmCXxsHH/ HrqjfR/ziV2QAvW4DDSgQXX1nGA+38QM -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org