$ rpki-client -vvf rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft (raw, json) Hash identifier: rm+CBLf6qv4TSJvw7oOqUjgGVmHOycu4cCzOpiORAW8= Subject key identifier: E9:52:3A:99:84:B7:98:A5:C1:5D:FB:2B:36:67:5B:F7:90:7C:3B:54 Authority key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 Certificate issuer: /CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Certificate serial: 078A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft Manifest number: 0779 Signing time: Fri 22 Nov 2024 20:58:49 +0000 Manifest this update: Fri 22 Nov 2024 20:58:49 +0000 Manifest next update: Fri 29 Nov 2024 20:58:49 +0000 Files and hashes: 1: rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl (hash: berT1tVa4oj/IOKcEGLezZgDvNLdrkYVAaKTOxMQMTY=) 2: 7D0F62FAF3EF11EA82F3C251C4F9AE02.roa (hash: qjMMlEqEvaBO7XAFYzvleISXKC2IIZdSXJalJOe7pw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1930 (0x78a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Validity Not Before: Nov 22 20:58:49 2024 GMT Not After : Nov 29 20:58:49 2024 GMT Subject: CN=6740f089-53ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e7:6f:e5:2f:90:d0:28:38:6a:e5:82:72:54: 0d:aa:1c:2b:7d:ce:5b:bb:de:d3:90:5e:6d:f4:ed: 19:3c:57:d4:36:8c:11:fd:25:ae:e6:10:87:56:7f: 58:65:26:b4:e6:bc:2d:5f:9c:10:0b:a8:19:d2:46: 01:b4:49:89:b5:ee:ae:e6:e5:ef:62:a6:d9:ad:7b: 7c:8a:14:02:7d:2f:17:a9:84:1d:df:f1:62:bd:12: 23:b9:4c:6e:35:b6:0e:03:0c:8e:5d:1c:1f:4e:1a: 9c:09:b3:8d:9c:d9:02:4f:1b:d1:fd:8c:3f:e4:92: 2f:24:47:fd:c2:63:3f:e0:1a:0e:db:f4:36:cc:84: 69:13:ea:27:3b:0a:7d:db:16:82:d4:97:5b:4d:1a: 8c:30:9a:59:fa:28:84:5c:b8:20:9e:a8:2d:91:f2: 60:b9:1e:08:2b:1f:c2:4e:e3:a7:e3:cf:2b:84:10: 28:4c:23:ce:0c:62:be:2c:83:52:30:05:b7:55:58: c7:33:ef:f6:bb:d0:2e:6c:bc:b2:eb:40:df:f6:4f: d9:3d:4d:01:8e:5d:54:0c:16:34:f1:02:42:7c:1f: 24:93:86:58:68:cc:b4:9a:1e:17:df:09:42:a1:b8: 0b:f5:ca:0a:1b:04:ed:67:ca:e7:b5:03:47:29:94: 0a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:52:3A:99:84:B7:98:A5:C1:5D:FB:2B:36:67:5B:F7:90:7C:3B:54 X509v3 Authority Key Identifier: keyid:AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ca:91:a7:cc:45:84:fb:54:6f:75:f0:14:4e:ed:c9:cf:de: c6:0a:2b:ee:9f:cc:81:87:ec:a3:57:5e:16:e5:ea:c3:85:90: 90:c8:51:2a:7a:1a:1e:68:6a:c0:a1:f0:cb:1f:b7:12:c6:c2: 0a:be:18:c2:d6:49:29:36:b4:55:2d:1a:9a:91:31:9e:88:82: d2:78:14:b3:da:fa:18:8c:d3:56:82:21:bb:20:ba:ac:42:88: 6e:64:df:9b:2c:f0:5e:b0:c7:ba:2f:68:5f:bf:79:f9:af:34: 7b:e3:de:e1:8d:b3:03:4a:7b:b7:07:a7:85:4f:92:8a:25:42: 2c:20:46:7f:87:88:6d:ba:47:3e:f0:ef:fe:ac:c1:3b:c2:85: b3:d8:92:24:27:79:5c:1d:de:b2:76:0a:12:e2:16:14:f5:18: 51:df:dd:5a:05:97:f7:ce:8a:2d:a1:1c:f8:14:d2:3c:69:e5: 75:40:57:bb:df:29:e2:e3:b4:b9:78:69:81:e5:53:c6:5f:42: c0:fe:70:08:98:24:2f:14:50:9a:35:ed:09:e5:f8:64:9f:1e: 68:a7:e8:b2:ee:b6:45:ff:4d:b4:e9:06:85:b9:3c:07:6a:63: 18:37:63:4e:dc:4d:d7:08:50:c5:60:aa:72:5d:f8:7e:8a:90: 90:44:75:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEzOEQxMTAvBgNVBAUTKEFFMEYwRTlFRDRBNjcwNkU5MkUxMEI3ODlCQUMyQzYy NUE1NjUxNTYwHhcNMjQxMTIyMjA1ODQ5WhcNMjQxMTI5MjA1ODQ5WjAYMRYwFAYD VQQDEw02NzQwZjA4OS01M2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAredv5S+Q0Cg4auWCclQNqhwrfc5bu97TkF5t9O0ZPFfUNowR/SWu5hCHVn9Y ZSa05rwtX5wQC6gZ0kYBtEmJte6u5uXvYqbZrXt8ihQCfS8XqYQd3/FivRIjuUxu NbYOAwyOXRwfThqcCbONnNkCTxvR/Yw/5JIvJEf9wmM/4BoO2/Q2zIRpE+onOwp9 2xaC1JdbTRqMMJpZ+iiEXLggnqgtkfJguR4IKx/CTuOn488rhBAoTCPODGK+LINS MAW3VVjHM+/2u9AubLyy60Df9k/ZPU0Bjl1UDBY08QJCfB8kk4ZYaMy0mh4X3wlC obgL9coKGwTtZ8rntQNHKZQKhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlSOpmE t5ilwV37KzZnW/eQfDtUMB8GA1UdIwQYMBaAFK4PDp7UpnBukuELeJusLGJaVlFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTM4RC80RjZFOTMxOEYz RUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNHNlM0UXQ0bTZ3c1lscFdV VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JnOE9udFNtY0c2UzRRdDRtNndzWWxwV1VWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTM4RC80RjZFOTMxOEYzRUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNH NlM0UXQ0bTZ3c1lscFdVVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfypGnzEWE+1RvdfAUTu3Jz97GCivun8yBh+yjV14W5erDhZCQyFEq ehoeaGrAofDLH7cSxsIKvhjC1kkpNrRVLRqakTGeiILSeBSz2voYjNNWgiG7ILqs QohuZN+bLPBesMe6L2hfv3n5rzR7497hjbMDSnu3B6eFT5KKJUIsIEZ/h4htukc+ 8O/+rME7woWz2JIkJ3lcHd6ydgoS4hYU9RhR391aBZf3zootoRz4FNI8aeV1QFe7 3yni47S5eGmB5VPGX0LA/nAImCQvFFCaNe0J5fhknx5op+iy7rZF/0206QaFuTwH amMYN2NO3E3XCFDFYKpyXfh+ipCQRHVQ -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org