$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft File: Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft (raw, json) Hash identifier: uQ2UK7SsRNvErMQcDz+6QJtFHLTqWTBemZPJVZIJAKo= Subject key identifier: 90:C4:53:E9:0F:03:68:34:B9:63:E2:0D:EB:FD:E4:43:AA:87:D4:5D Authority key identifier: 17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A Certificate issuer: /CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Certificate serial: 342D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft Manifest number: 3428 Signing time: Fri 22 Nov 2024 14:50:54 +0000 Manifest this update: Fri 22 Nov 2024 14:50:53 +0000 Manifest next update: Fri 29 Nov 2024 14:50:53 +0000 Files and hashes: 1: Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl (hash: CuIXCn4oRHhbQ2NryY1910L8HXMbRF4cRpdUS+bCx70=) 2: E68E0FD4077B11EB98CA5D1CC4F9AE02.roa (hash: do/t1hxLNAObKeP+h7lIyAYLzs1i37SVx22K4ntYzxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13357 (0x342d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFB8/serialNumber=170E9C767643C3C1F60579408648A3F0DA84045A Validity Not Before: Nov 22 14:50:53 2024 GMT Not After : Nov 29 14:50:53 2024 GMT Subject: CN=67409a4e-02e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e1:2b:0b:c8:42:2a:ea:dd:df:04:b8:68:c9: 9d:a2:91:3e:c3:0e:5f:f8:17:b1:02:df:03:81:56: 26:fd:89:94:9e:71:a3:45:44:3b:4f:03:e9:e0:d7: de:57:0e:ed:98:ad:5c:fe:b0:e3:be:1b:5a:e2:de: d1:27:05:ff:4b:b4:6f:15:7e:30:ed:36:4c:59:a2: dc:96:f1:85:2e:b0:c0:7f:66:bb:67:ce:cc:79:2f: 99:1f:92:65:2d:d8:b6:60:20:f9:40:b9:0b:bb:1e: 51:2a:68:6a:d2:9e:01:1c:40:24:f6:f6:64:76:d6: df:7b:56:2d:4b:09:85:3b:b5:49:fb:b5:74:a2:c0: db:d4:b8:a1:01:7c:d4:f0:2c:4e:8b:7a:a0:da:af: 51:f5:92:a7:e1:83:bf:ff:2b:2e:ce:e3:e4:ee:97: e9:fd:9b:58:ff:43:f0:47:9d:00:6e:35:07:0d:51: f8:ea:5e:56:d8:e3:05:87:6a:18:e9:e8:b6:4b:36: 48:12:83:14:32:ed:46:c5:07:4a:6d:f7:5f:5a:15: a2:27:0b:c4:da:81:15:5b:7f:93:4b:3a:ee:b0:5d: 70:ae:af:da:cb:e1:ce:9e:0b:ca:c3:f3:21:77:f4: 5d:72:07:69:23:ea:e7:91:97:04:8b:10:43:98:80: 7b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:C4:53:E9:0F:03:68:34:B9:63:E2:0D:EB:FD:E4:43:AA:87:D4:5D X509v3 Authority Key Identifier: keyid:17:0E:9C:76:76:43:C3:C1:F6:05:79:40:86:48:A3:F0:DA:84:04:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFB8/D980A1721D9511E292150E7E08B02CD2/Fw6cdnZDw8H2BXlAhkij8NqEBFo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:b1:8c:be:35:84:5d:e5:dc:5c:1c:83:f0:c8:39:77:8b:9a: f9:88:77:9d:4c:4e:15:04:37:05:10:4d:63:e1:ed:f9:93:28: 9e:ba:82:d5:34:70:10:a3:6f:78:00:26:f0:52:aa:ec:6a:04: c3:c1:ed:da:71:b6:4f:30:61:0d:c3:f5:40:68:96:a4:2f:e2: 99:16:00:2c:48:75:c9:db:84:10:53:31:01:4e:e0:d7:f4:cf: de:8f:fc:14:8e:f6:04:2b:ea:82:df:f3:35:a4:3e:21:77:c6: 3a:90:63:76:94:da:d5:5e:24:01:a0:6a:a4:aa:6c:a5:1d:61: 40:9f:dc:86:15:d9:4f:74:0a:50:36:d2:c8:94:bd:9a:01:eb: 5d:9a:71:3f:24:7d:82:b7:f9:b7:e3:56:1a:fb:70:7b:fb:b2: 45:37:e7:f3:b1:dc:2c:57:77:d4:3b:bb:3c:06:1b:57:e7:e8: 19:7f:ab:6c:56:8a:6b:e2:ba:a3:8d:19:43:99:ac:f0:5f:e8: cc:b7:74:79:39:05:87:ef:d2:ac:26:da:85:b1:68:6c:71:76: 37:33:8b:f8:3e:1f:04:88:96:0d:7d:2d:b1:97:b5:9f:5f:a3: 0c:3c:b5:42:6b:74:fd:1f:15:de:bb:51:0a:51:ac:c0:be:9d: a6:6c:cc:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQjgxMTAvBgNVBAUTKDE3MEU5Qzc2NzY0M0MzQzFGNjA1Nzk0MDg2NDhBM0Yw REE4NDA0NUEwHhcNMjQxMTIyMTQ1MDUzWhcNMjQxMTI5MTQ1MDUzWjAYMRYwFAYD VQQDEw02NzQwOWE0ZS0wMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeErC8hCKurd3wS4aMmdopE+ww5f+BexAt8DgVYm/YmUnnGjRUQ7TwPp4Nfe Vw7tmK1c/rDjvhta4t7RJwX/S7RvFX4w7TZMWaLclvGFLrDAf2a7Z87MeS+ZH5Jl Ldi2YCD5QLkLux5RKmhq0p4BHEAk9vZkdtbfe1YtSwmFO7VJ+7V0osDb1LihAXzU 8CxOi3qg2q9R9ZKn4YO//ysuzuPk7pfp/ZtY/0PwR50AbjUHDVH46l5W2OMFh2oY 6ei2SzZIEoMUMu1GxQdKbfdfWhWiJwvE2oEVW3+TSzrusF1wrq/ay+HOngvKw/Mh d/RdcgdpI+rnkZcEixBDmIB7CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJDEU+kP A2g0uWPiDev95EOqh9RdMB8GA1UdIwQYMBaAFBcOnHZ2Q8PB9gV5QIZIo/DahARa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZCOC9EOTgwQTE3MjFE OTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4SDJCWGxBaGtpajhOcUVC Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z3NmNkblpEdzhIMkJYbEFoa2lqOE5xRUJGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUZCOC9EOTgwQTE3MjFEOTUxMUUyOTIxNTBFN0UwOEIwMkNEMi9GdzZjZG5aRHc4 SDJCWGxBaGtpajhOcUVCRm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZsYy+NYRd5dxcHIPwyDl3i5r5iHedTE4VBDcFEE1j4e35kyieuoLV NHAQo294ACbwUqrsagTDwe3acbZPMGENw/VAaJakL+KZFgAsSHXJ24QQUzEBTuDX 9M/ej/wUjvYEK+qC3/M1pD4hd8Y6kGN2lNrVXiQBoGqkqmylHWFAn9yGFdlPdApQ NtLIlL2aAetdmnE/JH2Ct/m341Ya+3B7+7JFN+fzsdwsV3fUO7s8BhtX5+gZf6ts Vopr4rqjjRlDmazwX+jMt3R5OQWH79KsJtqFsWhscXY3M4v4Ph8EiJYNfS2xl7Wf X6MMPLVCa3T9HxXeu1EKUazAvp2mbMw1 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org