$ rpki-client -vvf rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft File: sHoKQBnouCACE78tzPxocPheBGY.mft (raw, json) Hash identifier: ZiHe9aF2GPYMstf24nfLe6FBMAnkQg7VXwJSgWFKXso= Subject key identifier: B7:D1:88:A2:E3:6F:F9:BA:B2:84:5B:4C:BE:99:CB:0F:92:B0:4B:B8 Authority key identifier: B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 Certificate issuer: /CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Certificate serial: 0BD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft Manifest number: 0BCC Signing time: Fri 22 Nov 2024 18:34:07 +0000 Manifest this update: Fri 22 Nov 2024 18:34:06 +0000 Manifest next update: Fri 29 Nov 2024 18:34:06 +0000 Files and hashes: 1: sHoKQBnouCACE78tzPxocPheBGY.crl (hash: bsICjoYFzY0H4N7MgIwaQ7cHAf5YKqK07Uipeo7p5JI=) 2: 6ED5481209DF11EAA6052433C4F9AE02.roa (hash: m+JE5pCglgWFiHYLAbZNmBupgcN+FxTJD3mSp1g3gfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E5FB/serialNumber=B07A0A4019E8B8200213BF2DCCFC6870F85E0466 Validity Not Before: Nov 22 18:34:06 2024 GMT Not After : Nov 29 18:34:06 2024 GMT Subject: CN=6740ce9f-54dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:17:a0:3d:d3:19:d8:20:cd:32:55:19:e9:a3: b7:50:4b:e3:b7:e5:a2:15:10:28:5c:d8:6d:ac:33: 62:c4:d4:26:b8:9f:e5:b9:1a:79:21:a2:2b:06:01: b0:83:05:0c:e2:a1:7d:46:a0:2b:23:23:63:c1:7d: b3:e0:c3:8e:35:7b:6d:41:33:f2:fb:70:75:20:ce: ef:f5:84:19:fc:b3:38:c9:a3:bf:b6:e9:b2:95:9f: 4b:68:b3:6a:39:1c:59:96:91:5f:36:60:a7:4a:de: 86:5b:82:98:e8:a9:16:1d:0c:57:0e:38:62:6a:22: c5:6a:2e:83:4e:0c:69:68:7e:4e:45:5a:57:1f:8c: 8a:8a:d4:fc:5b:23:c7:0c:fa:40:df:8a:cc:b0:e8: 0a:45:01:b4:76:9b:e0:99:3e:bb:0b:39:46:fd:7c: a4:91:e0:6d:81:d9:71:2a:f7:91:91:9b:23:65:24: 53:e2:a5:38:5d:56:02:5c:93:78:0b:0b:bd:80:47: dc:1c:9f:b3:96:35:56:44:0c:aa:23:01:48:77:26: 57:83:d1:cd:60:72:83:1b:84:44:bb:e4:aa:f4:c7: f9:28:fe:13:86:42:27:15:f7:ba:95:f8:bf:72:5b: fa:e4:25:91:5a:53:ce:17:de:31:0a:42:10:01:9e: 7d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D1:88:A2:E3:6F:F9:BA:B2:84:5B:4C:BE:99:CB:0F:92:B0:4B:B8 X509v3 Authority Key Identifier: keyid:B0:7A:0A:40:19:E8:B8:20:02:13:BF:2D:CC:FC:68:70:F8:5E:04:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sHoKQBnouCACE78tzPxocPheBGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E5FB/C156DF8E09DE11EA9E4E7D32C4F9AE02/sHoKQBnouCACE78tzPxocPheBGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:aa:f6:cc:20:77:d3:2a:04:3a:7a:69:0a:30:55:67:dc:48: b2:17:85:0d:46:d2:5f:3f:dd:b4:b2:1a:6f:f9:69:30:f5:78: c9:a8:45:69:a0:ca:30:8c:62:2b:6e:5b:f6:5b:e7:58:f5:31: 33:bb:08:83:71:22:fa:fe:a2:cc:28:a9:16:a0:2c:1a:eb:bf: 31:4c:12:10:15:53:55:48:a1:a2:f7:51:d5:93:8d:0a:78:98: 38:d0:e2:71:13:ae:d6:8c:1a:de:9e:01:02:cd:3d:3e:2e:f6: bd:2a:50:46:c6:e3:61:db:2a:18:cd:73:66:9b:8b:c9:fe:ca: 3a:eb:b2:7a:69:54:d1:4c:85:d8:a4:6f:82:d8:1e:23:be:01: 01:68:ce:6b:12:1d:b7:0e:50:0c:8c:a9:fd:8f:12:9e:e1:b1: 9f:e5:d2:1b:9a:94:58:13:45:c6:c1:9a:07:d2:91:ea:f3:fa: ca:9a:fc:ef:56:0f:ab:2a:f5:40:e2:07:5e:4b:db:fa:66:e4: ac:6b:61:1a:8f:c5:e5:21:0e:7d:71:1c:17:55:06:66:d0:4f: df:07:39:e5:c7:f7:5e:b5:e1:60:f8:9f:a8:50:dd:7b:f4:ce: 3e:81:d0:e6:20:30:f4:d0:d8:a6:70:15:c9:9b:f3:2a:44:19: d2:fa:05:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU1RkIxMTAvBgNVBAUTKEIwN0EwQTQwMTlFOEI4MjAwMjEzQkYyRENDRkM2ODcw Rjg1RTA0NjYwHhcNMjQxMTIyMTgzNDA2WhcNMjQxMTI5MTgzNDA2WjAYMRYwFAYD VQQDEw02NzQwY2U5Zi01NGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxegPdMZ2CDNMlUZ6aO3UEvjt+WiFRAoXNhtrDNixNQmuJ/luRp5IaIrBgGw gwUM4qF9RqArIyNjwX2z4MOONXttQTPy+3B1IM7v9YQZ/LM4yaO/tumylZ9LaLNq ORxZlpFfNmCnSt6GW4KY6KkWHQxXDjhiaiLFai6DTgxpaH5ORVpXH4yKitT8WyPH DPpA34rMsOgKRQG0dpvgmT67CzlG/XykkeBtgdlxKveRkZsjZSRT4qU4XVYCXJN4 Cwu9gEfcHJ+zljVWRAyqIwFIdyZXg9HNYHKDG4REu+Sq9Mf5KP4ThkInFfe6lfi/ clv65CWRWlPOF94xCkIQAZ59XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfRiKLj b/m6soRbTL6Zyw+SsEu4MB8GA1UdIwQYMBaAFLB6CkAZ6LggAhO/Lcz8aHD4XgRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTVGQi9DMTU2REY4RTA5 REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VDQUNFNzh0elB4b2NQaGVC R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NIb0tRQm5vdUNBQ0U3OHR6UHhvY1BoZUJHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTVGQi9DMTU2REY4RTA5REUxMUVBOUU0RTdEMzJDNEY5QUUwMi9zSG9LUUJub3VD QUNFNzh0elB4b2NQaGVCR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALqvbMIHfTKgQ6emkKMFVn3EiyF4UNRtJfP920shpv+Wkw9XjJqEVp oMowjGIrblv2W+dY9TEzuwiDcSL6/qLMKKkWoCwa678xTBIQFVNVSKGi91HVk40K eJg40OJxE67WjBrengECzT0+Lva9KlBGxuNh2yoYzXNmm4vJ/so667J6aVTRTIXY pG+C2B4jvgEBaM5rEh23DlAMjKn9jxKe4bGf5dIbmpRYE0XGwZoH0pHq8/rKmvzv Vg+rKvVA4gdeS9v6ZuSsa2Eaj8XlIQ59cRwXVQZm0E/fBznlx/deteFg+J+oUN17 9M4+gdDmIDD00NimcBXJm/MqRBnS+gXC -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org