$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft File: FION2NTh_gMXFCZnF24W4KW2hlE.mft (raw, json) Hash identifier: LzGuHmB4oZuzb0IJUNnSVHiG9ch40Go+Tlb7SAGlF+Y= Subject key identifier: 77:4A:C5:6E:72:A0:2D:51:43:4B:09:C0:BC:22:76:06:67:5B:4A:E5 Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0D86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft Manifest number: 0D7F Signing time: Fri 22 Nov 2024 17:54:13 +0000 Manifest this update: Fri 22 Nov 2024 17:54:13 +0000 Manifest next update: Fri 29 Nov 2024 17:54:13 +0000 Files and hashes: 1: FION2NTh_gMXFCZnF24W4KW2hlE.crl (hash: DW6pKFxsZqfLkCCwj11yKRhiUpWk69/7l6FX1TXp0Gc=) 2: 14E68648B42D11E9A44FF25BC4F9AE02.roa (hash: +BalFw2CiL7uapLNj20tx3YBjmyA4tVc26LM7UMELNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3462 (0xd86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Nov 22 17:54:13 2024 GMT Not After : Nov 29 17:54:13 2024 GMT Subject: CN=6740c545-5d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9e:27:c8:ac:16:fb:1b:1b:7a:1b:8f:0e:01: 8b:a4:b6:1e:d3:9e:77:b0:00:71:a7:d7:b6:bd:3b: d0:e7:f7:77:ef:3d:1b:c8:8b:d6:8d:34:ff:51:86: 73:d4:24:61:ec:07:a3:bd:f4:62:75:fe:4d:b8:41: 75:35:74:47:d3:92:5a:7e:80:a9:3d:7b:f7:8e:ba: a1:96:9a:26:90:99:24:26:84:49:04:18:49:c1:97: 16:14:30:37:18:86:26:e1:eb:a1:32:4d:ae:4b:1b: 99:eb:10:cc:7a:a7:13:50:57:b6:27:71:d8:65:92: aa:47:e7:a0:83:84:5d:67:12:48:1b:a2:3f:ae:22: 48:14:59:98:4c:87:d1:7c:e3:21:98:f0:a6:9d:48: a8:f4:b7:4a:96:fc:4d:a9:1a:5a:08:57:0c:2d:51: f3:83:d1:a2:e1:be:ae:e9:dd:de:de:b6:6e:63:a6: 07:96:11:7c:8d:13:dd:b9:bc:a0:0f:79:f6:13:ce: 19:b1:b9:e8:e0:e1:7e:bd:71:e0:9c:0e:e1:95:67: cd:1b:5a:b4:16:eb:b0:15:a1:26:f3:58:6a:9a:6c: aa:0d:a9:16:49:ae:73:64:34:69:99:e2:14:27:27: ad:3e:77:aa:b9:42:fc:0f:b2:27:d7:ca:de:f5:8d: 2d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4A:C5:6E:72:A0:2D:51:43:4B:09:C0:BC:22:76:06:67:5B:4A:E5 X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:f9:e1:25:55:74:d5:81:60:ee:49:43:d1:a6:a2:04:80:16: f5:34:23:c3:5a:41:90:9e:7a:3a:14:77:c4:4c:4e:03:f1:69: 29:d2:f6:50:77:b4:71:8b:c5:ca:0d:b6:c7:f5:ca:33:66:de: 10:46:91:1c:f5:cb:02:fb:5e:e8:1d:75:9e:90:f9:6c:55:04: 40:f8:49:e4:de:40:bd:0e:7f:0e:49:04:a7:db:d9:28:f1:49: c8:d4:88:66:19:0e:a9:10:9f:b2:68:f0:24:db:08:78:97:4d: d0:88:12:6b:44:d2:20:9a:ad:01:80:2d:55:20:c3:be:f8:9d: 6c:03:01:79:76:4d:93:72:34:01:f8:24:cb:af:1e:2a:b4:f1: 96:39:ce:bf:36:cd:7e:13:25:a7:b8:aa:5a:c2:58:b5:cd:39: 9d:9c:de:2a:1e:06:6a:84:a2:7d:7b:c2:ce:75:0c:0b:aa:17: 9e:1b:ff:ea:d7:c5:e7:8f:80:3d:ef:20:32:e8:12:e4:3d:c3: 9c:7b:51:39:02:6f:c4:16:97:21:68:ba:e9:fd:ca:9d:97:4c: 3c:64:b7:42:91:bc:0b:08:7b:d5:67:c2:74:76:ab:94:97:29: d6:3a:c6:f4:a9:27:6d:03:6d:45:50:e1:b1:8e:3c:95:a5:e9: d1:04:06:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjQxMTIyMTc1NDEzWhcNMjQxMTI5MTc1NDEzWjAYMRYwFAYD VQQDEw02NzQwYzU0NS01ZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZ4nyKwW+xsbehuPDgGLpLYe0553sABxp9e2vTvQ5/d37z0byIvWjTT/UYZz 1CRh7AejvfRidf5NuEF1NXRH05JafoCpPXv3jrqhlpomkJkkJoRJBBhJwZcWFDA3 GIYm4euhMk2uSxuZ6xDMeqcTUFe2J3HYZZKqR+egg4RdZxJIG6I/riJIFFmYTIfR fOMhmPCmnUio9LdKlvxNqRpaCFcMLVHzg9Gi4b6u6d3e3rZuY6YHlhF8jRPdubyg D3n2E84Zsbno4OF+vXHgnA7hlWfNG1q0FuuwFaEm81hqmmyqDakWSa5zZDRpmeIU JyetPnequUL8D7In18re9Y0tzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdKxW5y oC1RQ0sJwLwidgZnW0rlMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTFEOS8xQzNERDk2NkI0MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9n TVhGQ1puRjI0VzRLVzJobEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl+eElVXTVgWDuSUPRpqIEgBb1NCPDWkGQnno6FHfETE4D8Wkp0vZQ d7Rxi8XKDbbH9cozZt4QRpEc9csC+17oHXWekPlsVQRA+Enk3kC9Dn8OSQSn29ko 8UnI1IhmGQ6pEJ+yaPAk2wh4l03QiBJrRNIgmq0BgC1VIMO++J1sAwF5dk2TcjQB +CTLrx4qtPGWOc6/Ns1+EyWnuKpawli1zTmdnN4qHgZqhKJ9e8LOdQwLqheeG//q 18Xnj4A97yAy6BLkPcOce1E5Am/EFpchaLrp/cqdl0w8ZLdCkbwLCHvVZ8J0dquU lynWOsb0qSdtA21FUOGxjjyVpenRBAYd -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org