$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: T5MV4Yho2wedTDXtCrYr5UvTd0BoKt+j8/+BqT25ou8= Subject key identifier: 0A:1D:BA:E8:AE:C0:86:27:00:97:9B:9D:F7:B7:5A:C4:BD:EB:25:F6 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 09EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 09DB Signing time: Tue 22 Oct 2024 19:50:56 +0000 Manifest this update: Tue 22 Oct 2024 19:50:55 +0000 Manifest next update: Tue 29 Oct 2024 19:50:55 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: 7rmDJrNlQQejhnkmaXNX97hkmnyAiJ3aBLzu96ZZODg=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: 2PTTTwQLgh4fXXfTwObsWVUAWIktXTAcMw+Xyyr0VJ8=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: ATnpQbMAdtf7EHZF16qCy3h60N8FuS/9+ZIqFWtImrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 19:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2542 (0x9ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Oct 22 19:50:55 2024 GMT Not After : Oct 29 19:50:55 2024 GMT Subject: CN=6718021f-9435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fb:58:2f:7e:a3:54:a9:f3:3c:db:cb:0e:40: cf:0f:37:61:fe:37:74:49:c5:31:65:7d:3a:a8:2a: 72:2a:93:3c:da:4b:60:74:b7:e4:60:ba:b7:4c:20: da:91:41:28:2c:38:4d:1f:a0:20:a4:ca:44:2f:1a: bc:92:50:15:b7:dc:e3:ec:02:72:d0:2b:6f:c9:c7: ca:d3:ff:35:09:60:18:30:4a:76:30:87:b8:fe:dc: 7e:10:bd:b8:57:92:8f:70:f6:0b:63:26:d7:9b:1b: 65:0d:ec:72:40:64:c5:76:dc:fc:60:40:6c:7f:6d: ef:ae:fd:07:c8:29:da:70:86:64:be:8b:86:79:32: fe:1b:da:f8:dd:4b:22:2e:d8:ab:b2:c3:e9:db:75: 56:3d:eb:57:ae:d6:ea:23:12:77:d5:70:63:fc:ed: 73:5d:3f:f5:89:d1:7c:45:d9:0c:91:9b:a2:ec:11: 7d:a6:1b:7b:70:a3:51:78:3e:eb:43:11:f7:60:84: 2e:97:a5:c8:9b:24:1c:78:99:00:18:2e:5b:d0:f5: a3:5e:de:82:d5:fe:30:b5:8d:80:e3:d9:fb:df:c2: 79:dc:6b:9d:86:6e:99:f8:dd:43:96:48:e2:3d:b6: 1b:8e:31:f5:e8:d3:eb:36:d7:a9:95:b2:db:88:9b: d6:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:1D:BA:E8:AE:C0:86:27:00:97:9B:9D:F7:B7:5A:C4:BD:EB:25:F6 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:15:11:aa:ac:0e:f6:25:ba:62:59:93:06:23:24:72:9d:ed: 92:fa:7a:72:52:c1:5f:f7:da:df:67:1e:47:f0:a9:00:ac:39: 21:f5:60:0b:00:04:18:90:90:80:8f:f5:31:6e:4e:b3:e1:50: 90:cb:b5:ae:80:28:2d:5c:93:1c:82:33:db:0d:0e:ac:36:4f: a8:7e:7a:21:e3:52:81:b7:01:c4:ce:05:8f:6e:fb:e0:95:9e: 9c:7b:5d:b0:fd:20:e6:a7:be:ba:60:64:bc:c9:03:94:f1:56: a6:2c:e1:41:95:8c:91:f4:9b:ec:ae:b5:14:6f:03:72:82:ac: e6:57:84:57:b2:05:c6:64:a9:d0:f6:10:5d:68:48:8d:c7:82: 54:a6:8a:20:cf:a4:02:23:15:c1:c7:4b:3b:a3:f5:fa:ab:85: 7d:c1:eb:14:c4:df:bc:9e:38:c7:a6:ce:8a:5c:0d:f8:20:94: a4:d6:d9:d7:3c:5e:f5:97:16:84:9f:63:63:e7:96:23:b2:c5: da:37:9a:2d:64:91:f4:de:2d:90:b0:10:2b:9d:e5:83:50:ea: 7e:bd:9f:1a:11:7b:95:c6:9e:f2:71:6e:d0:41:18:fc:25:2a: 9a:68:21:13:2d:d6:dd:c9:fb:9f:ed:72:dc:84:a4:73:cb:98: 99:34:de:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjQxMDIyMTk1MDU1WhcNMjQxMDI5MTk1MDU1WjAYMRYwFAYD VQQDEw02NzE4MDIxZi05NDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPtYL36jVKnzPNvLDkDPDzdh/jd0ScUxZX06qCpyKpM82ktgdLfkYLq3TCDa kUEoLDhNH6AgpMpELxq8klAVt9zj7AJy0CtvycfK0/81CWAYMEp2MIe4/tx+EL24 V5KPcPYLYybXmxtlDexyQGTFdtz8YEBsf23vrv0HyCnacIZkvouGeTL+G9r43Usi LtirssPp23VWPetXrtbqIxJ31XBj/O1zXT/1idF8RdkMkZui7BF9pht7cKNReD7r QxH3YIQul6XImyQceJkAGC5b0PWjXt6C1f4wtY2A49n738J53Gudhm6Z+N1Dlkji PbYbjjH16NPrNteplbLbiJvWXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoduuiu wIYnAJebnfe3WsS96yX2MB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+FRGqrA72JbpiWZMGIyRyne2S+npyUsFf99rfZx5H8KkArDkh9WAL AAQYkJCAj/Uxbk6z4VCQy7WugCgtXJMcgjPbDQ6sNk+ofnoh41KBtwHEzgWPbvvg lZ6ce12w/SDmp766YGS8yQOU8VamLOFBlYyR9JvsrrUUbwNygqzmV4RXsgXGZKnQ 9hBdaEiNx4JUpoogz6QCIxXBx0s7o/X6q4V9wesUxN+8njjHps6KXA34IJSk1tnX PF71lxaEn2Nj55YjssXaN5otZJH03i2QsBArneWDUOp+vZ8aEXuVxp7ycW7QQRj8 JSqaaCETLdbdyfuf7XLchKRzy5iZNN7w -----END CERTIFICATE-----Generated at Tue Oct 22 21:25:49 2024 by rpki-client on console-fra.rpki-client.org