$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft File: pS-PmFnKxH1oVCcjTSYW655TljQ.mft (raw, json) Hash identifier: vkXWTyDZd2chRlmttazxcal/H3bwREuQC5MCfPI4umE= Subject key identifier: 19:5A:43:C0:71:B0:0D:E5:11:3F:61:1B:70:2D:C0:97:B3:A4:50:06 Authority key identifier: A5:2F:8F:98:59:CA:C4:7D:68:54:27:23:4D:26:16:EB:9E:53:96:34 Certificate issuer: /CN=A9188D8F/serialNumber=A52F8F9859CAC47D685427234D2616EB9E539634 Certificate serial: 0AA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pS-PmFnKxH1oVCcjTSYW655TljQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft Manifest number: 0AA2 Signing time: Fri 22 Nov 2024 19:18:00 +0000 Manifest this update: Fri 22 Nov 2024 19:17:59 +0000 Manifest next update: Fri 29 Nov 2024 19:17:59 +0000 Files and hashes: 1: pS-PmFnKxH1oVCcjTSYW655TljQ.crl (hash: nBC2cCA8DCbRaannHCDw6H98Dwxn3CY1ihav/XKiJnM=) 2: A84F7CEE432711EA87CB0E53C4F9AE02.roa (hash: MpvzI6CZw61K9EHN7FjBJQlJM7cvj1uvm28ieQf0lOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.crl rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pS-PmFnKxH1oVCcjTSYW655TljQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2728 (0xaa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D8F/serialNumber=A52F8F9859CAC47D685427234D2616EB9E539634 Validity Not Before: Nov 22 19:17:59 2024 GMT Not After : Nov 29 19:17:59 2024 GMT Subject: CN=6740d8e7-e241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f9:fc:0d:59:b6:64:9e:c7:bd:41:fd:00:1a: f3:eb:98:38:67:7a:bf:6f:b9:c0:c0:09:c8:4e:a7: 00:83:d2:b3:a7:7d:72:62:26:f3:62:9b:ac:dd:12: e7:b2:c4:cb:15:e9:76:d3:e0:76:88:d3:eb:f2:cc: a3:63:1c:a9:dd:55:28:c3:3e:e5:7d:51:3b:c7:6c: 9d:68:78:6b:76:27:a8:c9:43:f1:1b:6a:1e:7a:9b: 60:3e:9e:13:63:a2:db:aa:ab:a9:d1:79:21:ec:a0: d6:3b:ea:ad:9f:c4:a1:fc:29:77:82:0e:49:e0:19: 2a:71:f6:08:37:7f:fe:65:e7:12:bc:da:63:c3:40: 44:d9:58:8b:9b:c1:a3:e2:35:05:0f:d8:82:16:27: 1c:e6:f8:77:7a:96:59:e7:71:ab:36:13:7b:b2:8b: 54:83:e5:71:0b:63:8c:43:53:a3:a1:d2:fe:71:f7: ee:de:71:12:51:bf:a3:13:47:da:37:28:7d:60:2b: 86:f0:1b:be:25:22:47:f7:33:e1:ed:be:16:f1:ec: 96:51:13:5a:e2:1e:a2:cc:73:41:99:76:23:80:6c: 85:55:42:fb:82:d9:86:4f:98:58:d0:bd:85:6e:83: e6:05:79:5e:eb:6c:f0:a4:40:5d:8f:3e:08:15:73: 41:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5A:43:C0:71:B0:0D:E5:11:3F:61:1B:70:2D:C0:97:B3:A4:50:06 X509v3 Authority Key Identifier: keyid:A5:2F:8F:98:59:CA:C4:7D:68:54:27:23:4D:26:16:EB:9E:53:96:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pS-PmFnKxH1oVCcjTSYW655TljQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:02:7f:44:25:08:f0:f0:2f:6e:0f:3b:92:1c:7b:da:89:f1: a1:19:f6:5b:63:f9:f6:c4:50:d9:77:41:14:e8:3e:a0:b7:40: f7:ea:45:39:7c:19:44:fe:47:98:33:a0:e2:2c:c4:c4:15:3e: cf:b4:c0:75:35:b8:53:66:9b:92:72:e3:9c:90:f5:18:1f:44: a0:78:af:33:98:f2:d5:09:04:c5:83:a8:3b:11:a6:2f:e8:6c: 1e:bf:ce:ca:c4:13:d5:f8:3e:cb:22:df:a7:84:9c:88:fd:30: 1a:77:0c:15:03:40:7d:f1:f3:1a:30:29:21:61:e9:5a:e3:69: b7:86:1b:c1:ae:e3:ad:af:03:34:f4:16:75:32:95:33:01:74: c9:8d:8f:49:cf:0a:ea:88:ff:06:7f:70:68:03:67:c3:95:bf: d3:fa:52:84:df:db:9f:1f:98:a2:b8:05:da:e2:c8:e0:fa:bc: b7:ef:86:3e:50:ac:49:37:b8:cc:3d:cc:1b:72:28:8b:11:f3: 17:26:c8:81:d4:aa:3e:0b:cd:47:a4:d6:f1:a8:a2:42:fe:da: 92:13:69:16:df:34:00:2a:dd:e4:ef:ad:14:3d:37:68:01:91: ef:d5:32:22:c5:f9:4d:b4:d7:c0:64:96:cd:a1:70:28:ef:41: 1f:a5:2a:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEOEYxMTAvBgNVBAUTKEE1MkY4Rjk4NTlDQUM0N0Q2ODU0MjcyMzREMjYxNkVC OUU1Mzk2MzQwHhcNMjQxMTIyMTkxNzU5WhcNMjQxMTI5MTkxNzU5WjAYMRYwFAYD VQQDEw02NzQwZDhlNy1lMjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPn8DVm2ZJ7HvUH9ABrz65g4Z3q/b7nAwAnITqcAg9Kzp31yYibzYpus3RLn ssTLFel20+B2iNPr8syjYxyp3VUowz7lfVE7x2ydaHhrdieoyUPxG2oeeptgPp4T Y6Lbqqup0Xkh7KDWO+qtn8Sh/Cl3gg5J4BkqcfYIN3/+ZecSvNpjw0BE2ViLm8Gj 4jUFD9iCFicc5vh3epZZ53GrNhN7sotUg+VxC2OMQ1OjodL+cffu3nESUb+jE0fa Nyh9YCuG8Bu+JSJH9zPh7b4W8eyWURNa4h6izHNBmXYjgGyFVUL7gtmGT5hY0L2F boPmBXle62zwpEBdjz4IFXNBhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlaQ8Bx sA3lET9hG3AtwJezpFAGMB8GA1UdIwQYMBaAFKUvj5hZysR9aFQnI00mFuueU5Y0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQ4Ri9CODUyRkIzQzQz MjQxMUVBOTI2MzI1NEFDNEY5QUUwMi9wUy1QbUZuS3hIMW9WQ2NqVFNZVzY1NVRs alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTLVBtRm5LeEgxb1ZDY2pUU1lXNjU1VGxqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQ4Ri9CODUyRkIzQzQzMjQxMUVBOTI2MzI1NEFDNEY5QUUwMi9wUy1QbUZuS3hI MW9WQ2NqVFNZVzY1NVRsalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjAn9EJQjw8C9uDzuSHHvaifGhGfZbY/n2xFDZd0EU6D6gt0D36kU5 fBlE/keYM6DiLMTEFT7PtMB1NbhTZpuScuOckPUYH0SgeK8zmPLVCQTFg6g7EaYv 6Gwev87KxBPV+D7LIt+nhJyI/TAadwwVA0B98fMaMCkhYela42m3hhvBruOtrwM0 9BZ1MpUzAXTJjY9JzwrqiP8Gf3BoA2fDlb/T+lKE39ufH5iiuAXa4sjg+ry374Y+ UKxJN7jMPcwbciiLEfMXJsiB1Ko+C81HpNbxqKJC/tqSE2kW3zQAKt3k760UPTdo AZHv1TIixflNtNfAZJbNoXAo70EfpSoc -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:30 2024 by rpki-client on console-fra.rpki-client.org