$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: Ix6cJ5ncXe0X1lVr+es5htHLpueFTa8ax6AlT7MdSS4= Subject key identifier: 7F:23:F7:6F:93:09:F0:52:9E:CA:DE:4E:88:83:15:27:1D:9F:CC:A0 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: 35 Signing time: Thu 21 Nov 2024 05:36:11 +0000 Manifest this update: Thu 21 Nov 2024 05:36:11 +0000 Manifest next update: Thu 28 Nov 2024 05:36:11 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: w0tp1oK6EKkPOX1qvXCESUxDx7nPTsbLvkKCGl449NM=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 06B76AE05AC911EF9DF4275AC4F9AE02.roa (hash: p2h51oKfWEnIrxeQceDN5JWcokM71oAHp5D24ePE5rk=) 4: 06237AC45AC911EF9DF4275AC4F9AE02.roa (hash: X3F/CNUdhflmAgi4adN4rn0epV3fDuvZOIzQJHOvlz4=) 5: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Nov 21 05:36:11 2024 GMT Not After : Nov 28 05:36:11 2024 GMT Subject: CN=673ec6cb-e959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:64:6b:ee:2f:d9:77:ba:d6:ff:85:7c:8b:61: dc:07:42:ec:2b:21:12:0b:b4:76:e2:55:da:2f:e7: 44:80:fe:71:9a:d8:c8:7e:59:41:eb:39:f1:40:ac: 36:b7:10:d7:10:3f:74:fe:6b:80:96:9e:e9:1e:ed: 97:66:b4:ea:c8:ff:c7:bc:59:10:14:14:29:7a:4e: 56:63:25:b1:b3:63:f8:b2:d8:aa:1e:80:6a:ea:85: df:bd:a1:df:21:a4:25:7c:b4:f4:4b:ba:17:30:51: 84:27:ea:4b:b0:51:e6:2d:be:6b:27:0c:26:1f:4a: 43:e7:e9:c2:32:51:35:3a:08:bb:3b:7b:49:f5:90: 6a:a8:ee:7e:60:8d:39:b8:a9:db:b6:32:42:6a:c3: 7b:17:b5:19:d5:29:2a:f4:da:ec:85:aa:bd:f3:5f: be:1f:cc:59:25:aa:19:72:58:b1:da:6b:cf:12:6c: b2:9e:ca:e8:12:b9:c2:a3:e7:21:04:98:69:f9:78: ef:cb:ba:23:05:0e:02:7f:5e:d8:37:56:87:53:48: b7:b6:f8:a7:73:c6:35:b7:5c:0f:53:db:60:19:81: cf:b4:d5:11:27:ee:6c:23:90:b6:01:e3:c1:aa:8a: 4b:94:74:5f:45:d6:15:ca:fa:f8:06:3b:3e:d4:94: 84:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:23:F7:6F:93:09:F0:52:9E:CA:DE:4E:88:83:15:27:1D:9F:CC:A0 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:16:7e:bb:e1:aa:93:9a:d0:9f:af:78:70:86:60:a6:80:55: 64:3b:67:60:8f:0f:e7:7c:e2:65:99:74:75:d3:2d:50:02:ca: 95:0b:ba:6b:22:b7:d7:a3:71:f3:d1:07:2a:12:43:65:00:ea: cb:bc:43:14:9f:ba:97:29:24:7a:c6:3f:4b:64:74:73:a2:8e: 1f:72:e2:04:64:2f:a1:7e:ff:7c:7b:bb:18:00:c9:bd:db:06: 95:02:f9:e8:7d:5e:40:85:a3:65:b0:f7:3a:d1:c3:74:60:a4: d0:de:35:dc:92:d1:fd:7c:ef:94:7b:0c:ec:56:13:ec:32:f3: 9d:9e:de:df:f3:50:01:4d:3b:51:95:ed:51:a5:d1:7f:80:2e: 2c:33:cb:db:f0:ef:e6:11:b2:0b:b1:c3:7d:92:89:56:7e:01: ad:a7:1f:9f:ba:90:68:1f:85:7a:e5:10:7a:9a:36:a8:2e:b5: 8e:99:d8:62:27:f3:ad:fd:78:33:52:b5:6d:7e:d3:45:70:6f: e9:b9:08:7b:84:cf:70:24:c7:66:f6:85:29:84:76:54:9d:43: 10:92:70:d0:de:09:93:8c:14:c5:0e:65:e8:75:9a:60:cd:46: 49:3a:2b:19:b1:37:18:92:1c:f0:bc:11:48:f6:f1:de:b9:7a: d8:13:75:49 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REYyNTExMC8GA1UEBRMoOTY4MzU0NTBEMzIxQzFFN0M0OENBMEM1RENEMkJBNkMx RDJENDhGMTAeFw0yNDExMjEwNTM2MTFaFw0yNDExMjgwNTM2MTFaMBgxFjAUBgNV BAMTDTY3M2VjNmNiLWU5NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHZGvuL9l3utb/hXyLYdwHQuwrIRILtHbiVdov50SA/nGa2Mh+WUHrOfFArDa3 ENcQP3T+a4CWnuke7ZdmtOrI/8e8WRAUFCl6TlZjJbGzY/iy2KoegGrqhd+9od8h pCV8tPRLuhcwUYQn6kuwUeYtvmsnDCYfSkPn6cIyUTU6CLs7e0n1kGqo7n5gjTm4 qdu2MkJqw3sXtRnVKSr02uyFqr3zX74fzFklqhlyWLHaa88SbLKeyugSucKj5yEE mGn5eO/LuiMFDgJ/Xtg3VodTSLe2+KdzxjW3XA9T22AZgc+01REn7mwjkLYB48Gq ikuUdF9F1hXK+vgGOz7UlIQhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfyP3b5MJ 8FKeyt5OiIMVJx2fzKAwHwYDVR0jBBgwFoAUloNUUNMhwefEjKDF3NK6bB0tSPEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJERjI1LzdGN0IxREFDNUFD NzExRUY5OUVBRkM0M0M0RjlBRTAyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQ RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbG9OVVVOTWh3ZWZFaktERjNOSzZiQjB0U1BFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE RjI1LzdGN0IxREFDNUFDNzExRUY5OUVBRkM0M0M0RjlBRTAyL2xvTlVVTk1od2Vm RWpLREYzTks2YkIwdFNQRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE8WfrvhqpOa0J+veHCGYKaAVWQ7Z2CPD+d84mWZdHXTLVACypULumsi t9ejcfPRByoSQ2UA6su8QxSfupcpJHrGP0tkdHOijh9y4gRkL6F+/3x7uxgAyb3b BpUC+eh9XkCFo2Ww9zrRw3RgpNDeNdyS0f1875R7DOxWE+wy852e3t/zUAFNO1GV 7VGl0X+ALiwzy9vw7+YRsguxw32SiVZ+Aa2nH5+6kGgfhXrlEHqaNqgutY6Z2GIn 8639eDNStW1+00Vwb+m5CHuEz3Akx2b2hSmEdlSdQxCScNDeCZOMFMUOZeh1mmDN Rkk6KxmxNxiSHPC8EUj28d65etgTdUk= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:13 2024 by rpki-client on console-fra.rpki-client.org