$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: kLjQLIcW4vzwiq4akJoUw+Ea2myy3YTth0jLinx6lto= Subject key identifier: 29:48:6F:E3:12:11:E5:EA:CE:87:FA:C5:B2:AC:97:BB:B7:88:0D:97 Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 0FD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 0F9B Signing time: Fri 22 Nov 2024 17:32:28 +0000 Manifest this update: Fri 22 Nov 2024 17:32:28 +0000 Manifest next update: Fri 29 Nov 2024 17:32:28 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: RlZTROtGkShWc5SR5/5g14ooffcBv/ev6p8ta2KKlE0=) 2: 64BBCC50909D11ED9EA9867FC4F9AE02.roa (hash: mhCrCLIryxh44WtZLA41qeaUSE+ipopXbFtA9uM/L9M=) 3: B38547B48C1811ED95522F3EC4F9AE02.roa (hash: HXSaiv/+h3LslBJCo/sEGl2BDqm+Kqjgd7hBF3MDYrc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4048 (0xfd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Nov 22 17:32:28 2024 GMT Not After : Nov 29 17:32:28 2024 GMT Subject: CN=6740c02c-09f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e2:69:2a:44:df:8a:81:48:db:53:43:94:f0: 3e:25:90:5c:9c:30:8f:01:85:20:0f:1d:54:f1:b0: 5f:ed:e3:81:b8:3b:a3:36:66:94:4c:89:f9:8f:61: 32:e0:ae:16:0f:71:81:d0:66:5b:bb:ab:4b:dc:9a: 77:75:da:f8:e2:1b:97:fa:f9:d0:8c:86:e5:8b:45: b0:ff:45:33:95:91:e8:29:8b:5a:b9:28:97:7e:89: ed:95:6b:61:4a:62:b5:bc:c9:9f:f1:d2:8a:32:88: 92:71:d8:65:4f:8b:3e:6e:a2:c0:1d:77:cd:13:0d: 16:94:c2:89:56:95:ff:ad:45:a1:6b:46:b8:b4:26: ce:1e:88:ca:f5:11:43:64:e7:d9:d8:af:e8:6d:e1: eb:c4:fd:86:cf:a1:84:70:92:1c:a0:d6:69:4a:38: ec:fe:bb:b1:06:a9:17:d0:8a:fc:95:b6:05:11:1b: 5e:ad:c5:e5:55:cf:27:31:6f:75:70:e4:6f:e6:1b: fd:c7:c7:66:63:71:1e:c8:1d:4c:47:73:c9:76:ed: d8:e5:c8:11:7f:45:45:4b:01:f7:8a:86:05:e7:5c: e2:32:cd:d1:cd:5e:15:c6:97:5f:ad:92:eb:8b:90: 8a:14:5b:e8:1e:d6:3d:d3:31:f4:7f:44:16:2e:82: 54:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:48:6F:E3:12:11:E5:EA:CE:87:FA:C5:B2:AC:97:BB:B7:88:0D:97 X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:ad:3c:56:f3:d0:b4:0a:c3:14:be:ef:ff:97:73:05:09:53: 44:42:50:e2:d4:63:3c:02:3f:b1:73:6f:c2:61:0b:92:78:e2: a4:6d:a0:9c:13:c7:fd:9d:55:d4:9d:d2:89:dd:ff:c5:6f:0a: c7:1f:67:90:be:98:53:55:0d:71:91:11:2c:d8:76:f5:6c:6e: c2:f6:45:35:38:98:ba:cf:05:21:10:49:77:dc:49:15:35:5f: ed:bc:c5:eb:79:e7:69:c7:6b:4d:f3:c6:64:9b:1e:4f:ec:cd: eb:12:37:05:7e:06:37:99:2d:0d:e7:1e:6a:db:13:af:87:e8: 1b:b3:ea:5a:b7:f6:e1:2f:af:f7:86:0e:fa:73:40:1d:ac:07: f3:5e:e8:5f:d7:ad:2f:3f:e2:39:8b:de:e0:f3:c2:37:80:35: bf:90:84:88:c1:27:d0:89:bd:88:58:07:94:61:4f:79:3d:14: 13:43:4e:20:20:4b:4e:f7:3e:36:42:5c:cf:c6:5b:1c:aa:83: 4d:c4:0d:f2:e6:8a:c9:44:43:78:a8:29:ff:d9:07:c3:f7:20: 53:5f:5f:8d:e6:44:de:5d:bc:d3:01:9b:39:ae:54:17:ec:b3: 5b:6a:14:ba:44:1f:46:6e:4d:64:15:de:6d:c9:e6:60:6c:17: 78:f4:ec:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjQxMTIyMTczMjI4WhcNMjQxMTI5MTczMjI4WjAYMRYwFAYD VQQDEw02NzQwYzAyYy0wOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+JpKkTfioFI21NDlPA+JZBcnDCPAYUgDx1U8bBf7eOBuDujNmaUTIn5j2Ey 4K4WD3GB0GZbu6tL3Jp3ddr44huX+vnQjIbli0Ww/0UzlZHoKYtauSiXfontlWth SmK1vMmf8dKKMoiScdhlT4s+bqLAHXfNEw0WlMKJVpX/rUWha0a4tCbOHojK9RFD ZOfZ2K/obeHrxP2Gz6GEcJIcoNZpSjjs/ruxBqkX0Ir8lbYFERtercXlVc8nMW91 cORv5hv9x8dmY3EeyB1MR3PJdu3Y5cgRf0VFSwH3ioYF51ziMs3RzV4VxpdfrZLr i5CKFFvoHtY90zH0f0QWLoJU5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClIb+MS EeXqzof6xbKsl7u3iA2XMB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJrTxW89C0CsMUvu//l3MFCVNEQlDi1GM8Aj+xc2/CYQuSeOKkbaCc E8f9nVXUndKJ3f/FbwrHH2eQvphTVQ1xkREs2Hb1bG7C9kU1OJi6zwUhEEl33EkV NV/tvMXreedpx2tN88Zkmx5P7M3rEjcFfgY3mS0N5x5q2xOvh+gbs+pat/bhL6/3 hg76c0AdrAfzXuhf160vP+I5i97g88I3gDW/kISIwSfQib2IWAeUYU95PRQTQ04g IEtO9z42QlzPxlscqoNNxA3y5orJREN4qCn/2QfD9yBTX1+N5kTeXbzTAZs5rlQX 7LNbahS6RB9Gbk1kFd5tyeZgbBd49OxR -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org