$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: AnFcsB7i5zsQQiOSboMXn39oljoiA+n636A5d9g2NJE= Subject key identifier: E7:34:8B:90:93:F2:9F:91:83:C3:8E:FF:10:29:DF:1B:7C:99:90:3F Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 25 Signing time: Mon 21 Oct 2024 06:03:46 +0000 Manifest this update: Mon 21 Oct 2024 06:03:46 +0000 Manifest next update: Mon 28 Oct 2024 06:03:46 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: nfdg73v/nlnUDVRKAsn8LDChxC8ITMAgKwf3DrHqxEU=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 06B76AE05AC911EF9DF4275AC4F9AE02.roa (hash: p2h51oKfWEnIrxeQceDN5JWcokM71oAHp5D24ePE5rk=) 4: 06237AC45AC911EF9DF4275AC4F9AE02.roa (hash: X3F/CNUdhflmAgi4adN4rn0epV3fDuvZOIzQJHOvlz4=) 5: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 06:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Oct 21 06:03:46 2024 GMT Not After : Oct 28 06:03:46 2024 GMT Subject: CN=6715eec2-5778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:97:df:15:18:9b:ce:88:42:2f:27:f9:ba:0c: fd:9e:e4:20:bf:ec:a1:21:2e:63:e8:32:fd:4f:61: 7e:67:d3:43:8f:a7:4f:5c:f7:ac:9d:c7:f8:08:df: 3f:dc:5a:e7:67:0d:07:87:3d:7c:55:a7:59:2d:d5: df:38:60:09:eb:b4:c5:b5:28:75:c7:21:37:77:39: f5:7f:66:40:e9:57:eb:98:29:e2:1e:36:40:2c:e8: bd:7c:4b:c3:30:4b:c4:f5:4f:8d:3c:69:64:b4:1c: 97:be:28:9b:3c:56:af:71:b0:a3:c6:a4:ff:68:5c: 84:ea:fd:07:37:b5:9c:b2:f0:ed:31:b1:1f:8d:b8: c6:4e:6d:70:80:5d:65:94:7f:5a:b5:2f:9f:5e:64: c9:c4:a0:d7:49:c2:bf:2f:11:00:5e:b6:36:dc:62: 5f:54:1d:ce:3d:b2:9b:7c:d6:fc:1f:35:79:ee:1f: c6:f2:4d:82:62:5b:a3:10:2c:ca:87:73:5b:7d:a3: 55:15:f5:26:f5:39:f5:ea:ae:48:f2:eb:43:48:69: d9:64:0c:8d:6b:3f:1d:75:aa:dc:9b:f2:82:ac:12: b9:e3:72:8b:a7:74:75:f4:e0:57:e5:b2:d6:0a:a6: a5:8c:74:3f:c8:6a:be:2d:cc:36:db:85:16:99:5e: 01:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:34:8B:90:93:F2:9F:91:83:C3:8E:FF:10:29:DF:1B:7C:99:90:3F X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:f2:ca:85:43:56:b7:d8:44:1f:3a:9d:df:97:64:6c:ba:50: a4:90:9a:cb:91:33:8a:80:fa:7b:16:3b:36:da:24:b1:10:fa: be:53:9f:c6:b9:dc:f4:94:38:85:fe:85:6e:e8:ff:8f:f3:a6: 8e:3c:b2:28:53:d6:e4:a4:f4:aa:6f:48:4d:48:49:29:47:b3: 91:41:d1:6d:80:6f:a8:16:7a:f5:18:cd:88:83:5f:76:e0:b5: c6:ce:a0:1d:c1:37:51:38:08:a1:f4:90:e6:ae:0f:1d:dc:91: e6:7a:dc:15:d2:89:c8:20:96:c9:a7:27:2d:6e:fc:47:06:25: 89:1f:cc:3a:49:0c:67:04:37:c1:c6:3b:9b:25:21:54:2a:fc: 28:80:c6:a8:27:18:21:e5:3e:70:3b:f2:06:90:e1:e5:b4:f5: e8:5d:05:5c:7d:13:19:69:4c:a4:db:05:88:f5:da:3d:2c:41: e5:c4:45:a4:99:2b:ef:bb:75:30:8a:63:17:23:69:18:b9:f8: 12:eb:1c:bd:4e:08:9e:7b:5b:54:17:26:35:cf:81:40:78:1d: fd:37:f8:bc:79:4d:d3:d9:cb:41:dd:b5:69:3a:ac:e7:25:89: 72:52:25:92:6f:a3:de:f4:25:60:5a:d5:9d:ba:ff:ae:4f:fb: 7d:06:36:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REYyNTExMC8GA1UEBRMoOTY4MzU0NTBEMzIxQzFFN0M0OENBMEM1RENEMkJBNkMx RDJENDhGMTAeFw0yNDEwMjEwNjAzNDZaFw0yNDEwMjgwNjAzNDZaMBgxFjAUBgNV BAMTDTY3MTVlZWMyLTU3NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCml98VGJvOiEIvJ/m6DP2e5CC/7KEhLmPoMv1PYX5n00OPp09c96ydx/gI3z/c WudnDQeHPXxVp1kt1d84YAnrtMW1KHXHITd3OfV/ZkDpV+uYKeIeNkAs6L18S8Mw S8T1T408aWS0HJe+KJs8Vq9xsKPGpP9oXITq/Qc3tZyy8O0xsR+NuMZObXCAXWWU f1q1L59eZMnEoNdJwr8vEQBetjbcYl9UHc49spt81vwfNXnuH8byTYJiW6MQLMqH c1t9o1UV9Sb1OfXqrkjy60NIadlkDI1rPx11qtyb8oKsErnjcoundHX04FflstYK pqWMdD/Iar4tzDbbhRaZXgHvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5zSLkJPy n5GDw47/ECnfG3yZkD8wHwYDVR0jBBgwFoAUloNUUNMhwefEjKDF3NK6bB0tSPEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJERjI1LzdGN0IxREFDNUFD NzExRUY5OUVBRkM0M0M0RjlBRTAyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQ RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbG9OVVVOTWh3ZWZFaktERjNOSzZiQjB0U1BFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE RjI1LzdGN0IxREFDNUFDNzExRUY5OUVBRkM0M0M0RjlBRTAyL2xvTlVVTk1od2Vm RWpLREYzTks2YkIwdFNQRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFjyyoVDVrfYRB86nd+XZGy6UKSQmsuRM4qA+nsWOzbaJLEQ+r5Tn8a5 3PSUOIX+hW7o/4/zpo48sihT1uSk9KpvSE1ISSlHs5FB0W2Ab6gWevUYzYiDX3bg tcbOoB3BN1E4CKH0kOauDx3ckeZ63BXSicgglsmnJy1u/EcGJYkfzDpJDGcEN8HG O5slIVQq/CiAxqgnGCHlPnA78gaQ4eW09ehdBVx9ExlpTKTbBYj12j0sQeXERaSZ K++7dTCKYxcjaRi5+BLrHL1OCJ57W1QXJjXPgUB4Hf03+Lx5TdPZy0HdtWk6rOcl iXJSJZJvo970JWBa1Z26/65P+30GNpM= -----END CERTIFICATE-----Generated at Mon Oct 21 06:55:33 2024 by rpki-client on console-fra.rpki-client.org