$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: Dburiz/1IBLPC93hPsn1NwaPcZI1RG6B1UMLusELK64= Subject key identifier: 69:E9:7D:EA:A1:3B:93:CF:9A:1E:91:1F:12:BB:20:2F:D7:23:5F:88 Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 0F8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 0F7B Signing time: Wed 20 Nov 2024 17:29:16 +0000 Manifest this update: Wed 20 Nov 2024 17:29:16 +0000 Manifest next update: Wed 27 Nov 2024 17:29:16 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: 1G0wy7oy/gXRpDqrCFZIOkGOjChyhFZy9yZaMVmFd8M=) 2: 9F883BFCB33811E981BB4E6FC4F9AE02.roa (hash: rRlhYDjmsKn1HWp2b9Kwcsqx4aDeX7WeOuZsyustf0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3982 (0xf8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: Nov 20 17:29:16 2024 GMT Not After : Nov 27 17:29:16 2024 GMT Subject: CN=673e1c6c-fe46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:32:9e:58:01:55:0f:33:e7:f9:36:e4:b3:09: 05:d6:ab:bb:35:c1:41:cb:60:6a:a7:7c:ff:b3:24: f5:c4:60:04:6e:b2:37:95:eb:70:d9:07:cf:2a:83: cf:b5:13:6c:47:2f:d2:8e:8c:84:1b:50:85:45:f7: 67:8c:ba:53:06:d4:2d:78:22:9f:b1:18:e7:23:3a: d2:03:c9:45:61:d9:e8:ad:11:5b:12:ee:d2:98:b8: 5f:18:9d:b5:43:db:fa:db:4e:bc:e8:ad:c5:92:38: 46:5a:c7:cc:c6:a0:0f:e9:d0:9b:b7:b1:b0:11:20: 5f:78:e8:86:5a:2e:44:f8:c6:23:d0:5d:a9:31:5b: 5b:fb:11:5f:35:6f:4f:4d:d2:28:73:07:6c:d5:3e: ff:70:ac:39:d9:e5:1f:6f:7f:e8:fe:76:e7:e2:3f: 97:67:38:40:c9:72:79:a4:fc:ae:a2:e1:0f:5e:47: 7e:4f:99:d5:ab:35:c3:9c:9d:41:c1:82:5d:be:3b: 9e:42:f8:a1:ac:73:d6:20:19:11:08:cf:7d:90:3d: bc:6f:52:b1:ec:b9:05:57:57:ef:d6:33:07:f3:d5: 07:16:60:45:4c:0c:0f:24:63:91:e4:23:eb:52:8a: 87:42:da:07:cb:74:06:aa:98:74:3c:a4:e0:20:a0: d6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E9:7D:EA:A1:3B:93:CF:9A:1E:91:1F:12:BB:20:2F:D7:23:5F:88 X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:09:3b:f9:07:90:6a:e5:d4:6a:64:cf:4f:48:77:18:a7:25: 06:87:da:87:46:cc:ba:a3:37:e5:65:5f:ad:d7:67:0e:5f:44: 50:67:7a:a1:0c:ac:ac:e7:ef:17:5a:24:49:55:75:68:f0:52: 16:b9:aa:f5:e4:ad:69:98:99:3a:27:7a:d9:76:13:fa:75:c6: 31:0c:ad:12:ec:38:7e:51:d7:9c:f7:5e:31:cd:47:db:af:ba: e1:d7:8f:c1:d8:90:64:b9:64:1d:3e:12:96:ba:fe:ec:7c:ce: b6:22:bd:d9:e8:4f:39:bc:76:9b:15:1f:90:27:bd:c8:42:ea: 1c:6e:5b:be:c4:85:cf:2d:ba:cc:60:9e:ad:6a:ea:cd:b8:f9: 97:e6:85:b8:a4:60:76:28:d7:8f:03:d2:39:95:68:53:9d:d5: 52:37:0b:69:73:f2:8f:7d:ac:f7:94:3f:9c:09:0b:52:c3:9c: 17:71:27:7a:14:f5:72:ff:2f:9d:6c:89:0a:6f:6e:13:0f:6b: 18:a0:1d:d8:83:62:45:5f:94:d8:70:f3:9a:14:7f:14:5f:3e: db:b3:c9:d9:8f:1b:a0:65:cb:b3:83:be:d0:dc:ef:f5:af:9f: 76:42:19:b8:ed:05:9f:1d:8d:9b:f3:e4:7e:98:a5:0e:04:f3: 35:37:46:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjQxMTIwMTcyOTE2WhcNMjQxMTI3MTcyOTE2WjAYMRYwFAYD VQQDEw02NzNlMWM2Yy1mZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzKeWAFVDzPn+TbkswkF1qu7NcFBy2Bqp3z/syT1xGAEbrI3letw2QfPKoPP tRNsRy/SjoyEG1CFRfdnjLpTBtQteCKfsRjnIzrSA8lFYdnorRFbEu7SmLhfGJ21 Q9v620686K3FkjhGWsfMxqAP6dCbt7GwESBfeOiGWi5E+MYj0F2pMVtb+xFfNW9P TdIocwds1T7/cKw52eUfb3/o/nbn4j+XZzhAyXJ5pPyuouEPXkd+T5nVqzXDnJ1B wYJdvjueQvihrHPWIBkRCM99kD28b1Kx7LkFV1fv1jMH89UHFmBFTAwPJGOR5CPr UoqHQtoHy3QGqph0PKTgIKDWdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnpfeqh O5PPmh6RHxK7IC/XI1+IMB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzCTv5B5Bq5dRqZM9PSHcYpyUGh9qHRsy6ozflZV+t12cOX0RQZ3qh DKys5+8XWiRJVXVo8FIWuar15K1pmJk6J3rZdhP6dcYxDK0S7Dh+Udec914xzUfb r7rh14/B2JBkuWQdPhKWuv7sfM62Ir3Z6E85vHabFR+QJ73IQuocblu+xIXPLbrM YJ6taurNuPmX5oW4pGB2KNePA9I5lWhTndVSNwtpc/KPfaz3lD+cCQtSw5wXcSd6 FPVy/y+dbIkKb24TD2sYoB3Yg2JFX5TYcPOaFH8UXz7bs8nZjxugZcuzg77Q3O/1 r592Qhm47QWfHY2b8+R+mKUOBPM1N0Y+ -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:51 2024 by rpki-client on console-fra.rpki-client.org