$ rpki-client -vvf rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft File: he6Mb5WNbzwfFdLBq8T-m75s7tc.mft (raw, json) Hash identifier: K0bgawW6ze+vIrzDllZiaaSwK5SxWN2nIgZMIiShuSA= Subject key identifier: 12:7C:E6:5A:0B:C1:D8:0F:41:27:DF:B8:A1:DF:05:C0:3A:23:7D:CD Authority key identifier: 85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 Certificate issuer: /CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Certificate serial: 10C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft Manifest number: 10C1 Signing time: Fri 22 Nov 2024 17:18:46 +0000 Manifest this update: Fri 22 Nov 2024 17:18:46 +0000 Manifest next update: Fri 29 Nov 2024 17:18:46 +0000 Files and hashes: 1: he6Mb5WNbzwfFdLBq8T-m75s7tc.crl (hash: KiLTFP9v6gPaWyUolBDpHguZt2VKhikWcJkt3bBKNyE=) 2: 8B8DEE220F0911E9A8CC815EC4F9AE02.roa (hash: cp4F4jMIgfMAt85H7Jg8xGE9loHPzsrPu/dVe17GTAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4296 (0x10c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Validity Not Before: Nov 22 17:18:46 2024 GMT Not After : Nov 29 17:18:46 2024 GMT Subject: CN=6740bcf6-60f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f4:c4:0b:24:17:ba:e6:2e:f2:de:9f:68:4e: 8d:61:62:c7:18:73:c5:74:38:52:82:07:dc:33:03: db:43:7f:4c:a3:c5:a5:ba:fe:df:d3:eb:06:4b:27: 46:7d:87:a4:70:1e:be:86:ec:91:53:70:97:62:b6: 6f:74:c2:08:d1:b1:cb:8f:3a:b8:99:9e:84:47:1b: a8:29:9b:8e:d4:48:99:55:7e:8f:87:74:a3:17:a1: 91:09:0b:ae:38:0d:8e:d4:ca:f2:0d:65:bc:f2:c3: 1d:a4:28:76:ce:0d:45:5c:5b:e1:2b:5a:3b:e6:3b: 31:50:ea:35:fc:25:a4:6c:67:9b:7d:31:bb:2d:99: 1d:23:b2:72:c7:dd:fc:5c:6b:ce:84:e5:07:d7:de: f2:7b:1d:ad:3d:2f:74:31:7c:7a:65:a0:8a:89:10: a6:03:ce:e3:12:53:cb:0f:5e:f3:80:fd:e5:61:0d: c4:82:02:0d:9a:37:0a:58:37:a3:c9:25:c6:00:86: 61:29:4c:9e:55:b0:88:3d:6f:24:9a:55:d3:bc:9b: fb:12:90:9d:40:c2:34:ff:06:90:4a:9e:09:61:aa: 37:df:3f:e0:7b:74:1f:32:b2:e5:4b:97:eb:4f:72: 5a:f7:dd:17:13:ee:d6:d8:38:d5:c9:03:a7:a3:4e: e9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:7C:E6:5A:0B:C1:D8:0F:41:27:DF:B8:A1:DF:05:C0:3A:23:7D:CD X509v3 Authority Key Identifier: keyid:85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:23:35:13:8a:d2:45:6c:97:14:b8:42:29:e5:f1:72:1c:32: 6b:a5:b9:9b:39:e5:d5:33:2d:2c:53:fe:78:93:72:d8:00:7e: 9d:2d:a0:4e:61:eb:4a:fa:1b:65:57:be:2c:20:2d:62:b6:fd: 49:67:35:77:c9:07:fb:a8:3a:43:1f:04:b3:8f:9b:51:18:07: e3:69:a6:9e:99:b7:3a:23:37:d0:93:ce:b0:f2:a7:22:e4:fd: 04:95:75:53:73:7b:a6:92:e4:c7:03:14:b1:cc:a2:df:43:28: 67:9a:58:08:0d:3d:fa:ba:e0:ad:e2:06:fe:eb:a5:83:15:93: 83:cb:92:44:ae:f9:60:80:44:a7:d8:08:d9:f8:e9:5d:43:b0: f8:2c:ad:40:4e:8b:ba:02:d8:78:3d:dc:22:b0:5e:b7:f6:24: a9:63:91:24:7d:af:38:6b:ef:ee:b0:c9:a7:d5:a8:96:8f:66: 3c:79:f7:f2:d6:d6:d3:61:4b:b5:bd:8c:15:57:2c:96:b4:8b: 5c:84:4b:9f:b9:8d:ba:92:0d:e5:22:ea:eb:25:79:a1:41:75: e0:66:65:36:8d:ca:e6:ca:31:a8:a7:15:3d:dd:f1:1c:08:74: 88:b3:10:74:a7:89:65:f5:47:db:0f:4a:98:1b:a1:f5:7d:60: 34:fa:15:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNjUxMTAvBgNVBAUTKDg1RUU4QzZGOTU4RDZGM0MxRjE1RDJDMUFCQzRGRTlC QkU2Q0VFRDcwHhcNMjQxMTIyMTcxODQ2WhcNMjQxMTI5MTcxODQ2WjAYMRYwFAYD VQQDEw02NzQwYmNmNi02MGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/TECyQXuuYu8t6faE6NYWLHGHPFdDhSggfcMwPbQ39Mo8Wluv7f0+sGSydG fYekcB6+huyRU3CXYrZvdMII0bHLjzq4mZ6ERxuoKZuO1EiZVX6Ph3SjF6GRCQuu OA2O1MryDWW88sMdpCh2zg1FXFvhK1o75jsxUOo1/CWkbGebfTG7LZkdI7Jyx938 XGvOhOUH197yex2tPS90MXx6ZaCKiRCmA87jElPLD17zgP3lYQ3EggINmjcKWDej ySXGAIZhKUyeVbCIPW8kmlXTvJv7EpCdQMI0/waQSp4JYao33z/ge3QfMrLlS5fr T3Ja990XE+7W2DjVyQOno07pAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJ85loL wdgPQSffuKHfBcA6I33NMB8GA1UdIwQYMBaAFIXujG+VjW88HxXSwavE/pu+bO7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE2NS85MEYwRkZBRTBG MDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6d2ZGZExCcThULW03NXM3 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNk1iNVdOYnp3ZkZkTEJxOFQtbTc1czd0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTE2NS85MEYwRkZBRTBGMDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6 d2ZGZExCcThULW03NXM3dGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/IzUTitJFbJcUuEIp5fFyHDJrpbmbOeXVMy0sU/54k3LYAH6dLaBO YetK+htlV74sIC1itv1JZzV3yQf7qDpDHwSzj5tRGAfjaaaembc6IzfQk86w8qci 5P0ElXVTc3umkuTHAxSxzKLfQyhnmlgIDT36uuCt4gb+66WDFZODy5JErvlggESn 2AjZ+OldQ7D4LK1ATou6Ath4PdwisF639iSpY5Ekfa84a+/usMmn1aiWj2Y8effy 1tbTYUu1vYwVVyyWtItchEufuY26kg3lIurrJXmhQXXgZmU2jcrmyjGopxU93fEc CHSIsxB0p4ll9UfbD0qYG6H1fWA0+hUW -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org