$ rpki-client -vvf rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft File: Sn0mxMvxZwAkXWf79pULcSkYmTk.mft (raw, json) Hash identifier: 09iL1BKk4DsQcRTu3EVViTpbRaFMyhl1DqskfZL8KlM= Subject key identifier: 8B:92:C3:03:B8:A6:A8:03:E1:11:66:40:DC:B0:79:BA:60:5B:A4:BC Authority key identifier: 4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 Certificate issuer: /CN=A91839CF/serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Certificate serial: 03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft Manifest number: 02 Signing time: Sat 23 Nov 2024 11:22:17 +0000 Manifest this update: Sat 23 Nov 2024 11:22:17 +0000 Manifest next update: Sat 30 Nov 2024 11:22:17 +0000 Files and hashes: 1: Sn0mxMvxZwAkXWf79pULcSkYmTk.crl (hash: ItoWzrd/i7ZZwk4U03hETMO3+aXctPmRiNAsxXNTpEI=) 2: 305EB30EA98D11EF8C023466C4F9AE02.roa (hash: Buuzt0i/kKtBaGkDf9aAUjvIwcQJfDzcstPOVS8Jm/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 11:16:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91839CF/serialNumber=4A7D26C4CBF16700245D67FBF6950B7129189939 Validity Not Before: Nov 23 11:22:17 2024 GMT Not After : Nov 30 11:22:17 2024 GMT Subject: CN=6741bae9-be73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ee:9c:b9:fc:cd:e6:d0:a2:7e:01:17:cb:92: fa:04:c4:1d:2b:e1:05:09:f1:d5:86:c5:17:09:d9: 38:f2:89:b7:39:b4:c8:ee:53:b9:1c:58:51:02:82: 44:b5:b2:eb:5c:11:08:2f:38:8d:5b:24:3d:12:6a: 9c:71:d4:6f:f1:30:4e:4b:bf:f3:8f:38:cb:c9:de: 9d:c3:11:67:13:c7:31:a5:9c:0b:e7:88:06:c7:40: c1:f0:d6:7f:7f:c1:a9:47:08:e9:db:46:cb:4d:4b: d9:1a:f8:00:16:03:7c:9b:48:9f:4c:a2:53:26:fc: e4:18:d1:56:a1:2f:9d:75:e3:48:9f:40:dd:8c:4f: fc:10:af:ef:df:52:26:60:08:7f:c8:24:4c:c4:aa: 97:b6:c0:6e:69:16:f7:ad:d0:ce:82:f7:d7:96:69: 89:ac:3b:e4:30:fd:2e:b4:9a:1e:21:00:c6:93:b2: 2b:b1:af:f2:65:e5:3d:74:e3:22:c8:39:3f:7f:fc: ba:c4:a1:6f:56:f3:50:d0:85:a5:95:da:7b:22:64: da:46:bd:77:fc:fa:c5:09:17:eb:1b:64:f9:4b:a7: b3:4b:c8:83:3c:c4:76:35:e1:ed:20:b6:84:7f:33: 89:9d:71:9b:b9:d7:93:3a:21:50:e5:32:4f:b5:93: a4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:92:C3:03:B8:A6:A8:03:E1:11:66:40:DC:B0:79:BA:60:5B:A4:BC X509v3 Authority Key Identifier: keyid:4A:7D:26:C4:CB:F1:67:00:24:5D:67:FB:F6:95:0B:71:29:18:99:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sn0mxMvxZwAkXWf79pULcSkYmTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91839CF/4DF2BE52A98C11EFBA068864C4F9AE02/Sn0mxMvxZwAkXWf79pULcSkYmTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:39:f7:0e:e7:28:7e:94:98:63:c8:80:70:fb:97:6c:e7:23: f7:2a:5c:45:52:9f:af:d5:cd:e2:43:50:67:83:f3:8c:5a:f5: af:c8:91:d8:85:c9:5a:fc:aa:57:ed:35:94:1b:fa:86:a1:33: 21:e5:4f:c1:62:fd:0f:c8:79:ab:eb:a9:9e:48:ef:bf:f5:04: 7c:ad:09:97:92:e4:28:47:1b:4e:ea:21:66:c6:1e:82:7a:f3: 48:75:5d:a6:58:d6:5f:9f:89:e6:a4:fa:03:61:02:5a:45:e5: ae:82:2d:e5:bb:b9:9d:04:a0:37:0a:66:9d:47:20:3e:d1:07: 93:e7:74:02:2a:92:78:c8:36:d7:97:85:e1:3e:e1:a9:d1:01: 92:83:5f:cb:60:49:6c:78:7c:d7:a5:3a:b5:8c:8a:77:d5:f6: f6:c8:cf:48:4b:8a:b7:0b:7e:5d:5b:be:e3:2b:c8:c7:62:98: c9:59:e8:ce:d5:c2:c5:9b:48:cc:81:c3:e9:3f:6f:b6:cb:73: 12:60:c3:41:79:25:70:0c:b8:33:ac:c1:24:3f:2b:76:73:05: 51:94:0d:a7:57:d6:74:dd:fd:70:e2:2e:07:e6:91:d1:0e:a2: 2e:c0:d5:77:88:7f:e2:a7:34:45:0d:55:15:37:16:49:f1:e8: 78:4b:db:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzlDRjExMC8GA1UEBRMoNEE3RDI2QzRDQkYxNjcwMDI0NUQ2N0ZCRjY5NTBCNzEy OTE4OTkzOTAeFw0yNDExMjMxMTIyMTdaFw0yNDExMzAxMTIyMTdaMBgxFjAUBgNV BAMTDTY3NDFiYWU5LWJlNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa7py5/M3m0KJ+ARfLkvoExB0r4QUJ8dWGxRcJ2Tjyibc5tMjuU7kcWFECgkS1 sutcEQgvOI1bJD0Sapxx1G/xME5Lv/OPOMvJ3p3DEWcTxzGlnAvniAbHQMHw1n9/ walHCOnbRstNS9ka+AAWA3ybSJ9MolMm/OQY0VahL51140ifQN2MT/wQr+/fUiZg CH/IJEzEqpe2wG5pFvet0M6C99eWaYmsO+Qw/S60mh4hAMaTsiuxr/Jl5T104yLI OT9//LrEoW9W81DQhaWV2nsiZNpGvXf8+sUJF+sbZPlLp7NLyIM8xHY14e0gtoR/ M4mdcZu515M6IVDlMk+1k6TBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi5LDA7im qAPhEWZA3LB5umBbpLwwHwYDVR0jBBgwFoAUSn0mxMvxZwAkXWf79pULcSkYmTkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzOUNGLzRERjJCRTUyQTk4 QzExRUZCQTA2ODg2NEM0RjlBRTAyL1NuMG14TXZ4WndBa1hXZjc5cFVMY1NrWW1U ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU24wbXhNdnhad0FrWFdmNzlwVUxjU2tZbVRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz OUNGLzRERjJCRTUyQTk4QzExRUZCQTA2ODg2NEM0RjlBRTAyL1NuMG14TXZ4WndB a1hXZjc5cFVMY1NrWW1Uay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC859w7nKH6UmGPIgHD7l2znI/cqXEVSn6/VzeJDUGeD84xa9a/IkdiF yVr8qlftNZQb+oahMyHlT8Fi/Q/IeavrqZ5I77/1BHytCZeS5ChHG07qIWbGHoJ6 80h1XaZY1l+fieak+gNhAlpF5a6CLeW7uZ0EoDcKZp1HID7RB5PndAIqknjINteX heE+4anRAZKDX8tgSWx4fNelOrWMinfV9vbIz0hLircLfl1bvuMryMdimMlZ6M7V wsWbSMyBw+k/b7bLcxJgw0F5JXAMuDOswSQ/K3ZzBVGUDadX1nTd/XDiLgfmkdEO oi7A1XeIf+KnNEUNVRU3Fknx6HhL2x8= -----END CERTIFICATE-----Generated at Sat Nov 23 13:12:52 2024 by rpki-client on console-fra.rpki-client.org