$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: fY+7cAWT+eB0OcRPHzzC98S6Z5LDtZKtrfNnhzsS0Mg= Subject key identifier: 52:3D:86:5C:6F:30:79:29:1C:28:63:AB:23:6D:84:76:E4:A6:0C:74 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 21C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 218B Signing time: Wed 20 Nov 2024 16:33:16 +0000 Manifest this update: Wed 20 Nov 2024 16:33:16 +0000 Manifest next update: Wed 27 Nov 2024 16:33:15 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: ygwH24sw06oKEu7/xEMuQJNj46ybJ5xoTqmjCkiybRo=) 2: 3EEE50E6A36B11EF9E46987EC4F9AE02.roa (hash: f7G+JecOso1tq/2DrQIIrvlSbJcZUWeFUA+OwYgWNPo=) 3: B937CBBA6DD411EF977CA52AC4F9AE02.roa (hash: DNPEZoiqquqZXGfdK28t7zQLFNY8ea/+gAa4O/ZRs1s=) 4: 235019148A3911EF864D8512C4F9AE02.roa (hash: hnfY3HHIXsd6wmd3BY/eNxymbtFAwmDiWZ9khlttIH8=) 5: 15C53E46A36B11EF93A3C460C4F9AE02.roa (hash: AH7A2JvJh3bIuqX5xOC6q7jSDpxrd3DH2pdvQN0stDs=) 6: FD2941A0BBC311EEBE58430EC4F9AE02.roa (hash: X2aoTMKWDO3O+NQTnXw87sQERWlGRf5FlK95mjGB8r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8648 (0x21c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Nov 20 16:33:16 2024 GMT Not After : Nov 27 16:33:15 2024 GMT Subject: CN=673e0f4c-e64b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:89:bb:02:c6:39:cd:29:97:37:d4:92:95:23: dd:c5:cd:d6:2b:38:6b:84:8a:a4:2e:e3:8a:30:cf: 36:4a:b0:65:25:48:f7:18:0e:13:5f:39:40:2b:a0: 77:2f:5c:56:6e:00:54:b4:56:55:7e:52:25:70:ce: aa:db:02:12:4b:5c:76:1c:2a:2a:e9:60:a0:f6:be: 39:8f:bd:05:a2:8e:87:e7:08:75:78:4e:f6:f5:00: 59:20:85:9e:dc:a8:46:8d:2c:4a:55:f1:5e:ce:4a: 3d:de:ff:1f:80:fe:57:41:2e:2e:b3:87:47:89:7d: 62:4a:51:de:05:dd:c2:e7:7b:b9:13:c3:83:ad:03: ea:85:f2:8b:bc:d4:96:a5:bf:b6:48:78:70:8f:ab: 5a:0b:ea:27:ac:ee:db:f1:f5:b1:12:e6:60:45:ed: 9f:94:0d:04:8f:99:53:b1:70:e9:92:78:17:d9:64: 48:da:df:aa:6f:c8:56:60:eb:7e:bc:9a:dd:cb:c6: b1:8f:08:66:ab:b1:60:f8:4c:fd:af:38:66:eb:5b: 27:1f:20:9e:71:f7:87:be:6c:a3:57:14:e4:22:91: 61:e1:ff:1c:ad:b4:0d:a5:bd:93:4a:bd:b2:78:b1: 38:29:f1:24:76:de:90:75:34:a4:2b:1a:90:25:52: 0a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:3D:86:5C:6F:30:79:29:1C:28:63:AB:23:6D:84:76:E4:A6:0C:74 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:3f:8c:4d:e8:15:f6:0c:eb:49:3b:90:f1:61:11:04:66:26: 17:36:76:4e:cf:23:6f:1f:69:b9:44:d9:cc:8c:b8:de:47:4d: a1:5d:78:54:8f:72:0d:65:27:41:b4:85:51:6a:e6:b4:9a:51: 04:3b:8c:d4:61:a4:f1:28:e6:3e:c6:a3:60:39:6e:7f:a1:ad: 5d:6b:b5:dd:30:f6:7a:99:5e:49:f3:16:87:6c:e9:e8:bb:fe: 37:5f:cb:24:7b:fd:f4:5a:98:09:82:07:2b:73:f6:1e:c6:68: e3:02:4b:dd:08:e2:a7:6e:dd:fd:ff:58:10:98:04:ba:f2:72: f8:0a:4c:eb:6f:6b:35:1f:7b:6e:68:b6:e3:1c:bc:29:83:ae: d4:b9:c6:b7:59:eb:b1:e3:e0:fc:c4:6e:e2:d2:19:da:b2:a7: 11:a5:83:c1:3b:58:f0:50:5d:bf:1c:78:fa:20:7f:47:d6:43: 3f:8f:97:a3:13:b3:d9:e2:13:d0:9b:cb:12:5c:70:5c:2a:b6: 7c:31:eb:13:51:19:21:7a:68:1d:21:4e:aa:ea:1b:b0:e7:82: f1:ba:50:38:db:d2:ff:36:dd:37:c2:99:61:6e:b8:5d:70:d1: 0d:ba:a4:13:7a:58:29:a7:1d:e3:20:b2:5f:c5:a7:a8:1f:ed: e6:b6:01:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjQxMTIwMTYzMzE2WhcNMjQxMTI3MTYzMzE1WjAYMRYwFAYD VQQDEw02NzNlMGY0Yy1lNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4m7AsY5zSmXN9SSlSPdxc3WKzhrhIqkLuOKMM82SrBlJUj3GA4TXzlAK6B3 L1xWbgBUtFZVflIlcM6q2wISS1x2HCoq6WCg9r45j70Foo6H5wh1eE729QBZIIWe 3KhGjSxKVfFezko93v8fgP5XQS4us4dHiX1iSlHeBd3C53u5E8ODrQPqhfKLvNSW pb+2SHhwj6taC+onrO7b8fWxEuZgRe2flA0Ej5lTsXDpkngX2WRI2t+qb8hWYOt+ vJrdy8axjwhmq7Fg+Ez9rzhm61snHyCecfeHvmyjVxTkIpFh4f8crbQNpb2TSr2y eLE4KfEkdt6QdTSkKxqQJVIKwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFI9hlxv MHkpHChjqyNthHbkpgx0MB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoP4xN6BX2DOtJO5DxYREEZiYXNnZOzyNvH2m5RNnMjLjeR02hXXhU j3INZSdBtIVRaua0mlEEO4zUYaTxKOY+xqNgOW5/oa1da7XdMPZ6mV5J8xaHbOno u/43X8ske/30WpgJggcrc/YexmjjAkvdCOKnbt39/1gQmAS68nL4Ckzrb2s1H3tu aLbjHLwpg67Uuca3Weux4+D8xG7i0hnasqcRpYPBO1jwUF2/HHj6IH9H1kM/j5ej E7PZ4hPQm8sSXHBcKrZ8MesTURkhemgdIU6q6huw54LxulA429L/Nt03wplhbrhd cNENuqQTelgppx3jILJfxaeoH+3mtgGI -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:14 2024 by rpki-client on console-ams.rpki-client.org