$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: yEE770ntG6TYte/aMwOQVexap3yPYl3Kos56ErXYSc0= Subject key identifier: FB:2C:6E:31:F2:FE:FF:F6:CB:69:E9:E4:5A:E2:E6:41:B2:43:B3:C5 Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0ABC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0AAF Signing time: Sun 24 Nov 2024 19:06:58 +0000 Manifest this update: Sun 24 Nov 2024 19:06:57 +0000 Manifest next update: Sun 01 Dec 2024 19:06:57 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: hMlx1Ydo4atqmila5CXB1BeBlDSLDOLB4R7nllSAEwY=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: dPrx3cF0sDj9FTl2qCoRHJgtgGOLW5ACbJ0tx2wVxmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2748 (0xabc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: Nov 24 19:06:57 2024 GMT Not After : Dec 1 19:06:57 2024 GMT Subject: CN=67437952-220f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5d:f6:13:82:b0:8a:45:6a:1c:b9:08:f7:b6: f5:08:71:09:73:b2:91:7d:e5:10:08:61:7d:a0:ca: 41:84:22:f9:26:13:da:2f:5c:ba:25:e2:57:1e:9d: 31:2b:58:77:c9:06:04:58:79:c1:70:ec:da:64:87: 84:f3:1e:d8:74:36:b7:25:61:83:99:2f:4b:c0:3e: 03:ba:29:f9:71:22:58:83:7d:f7:64:f6:66:f3:44: 21:93:c4:97:60:64:d5:b9:91:34:d7:d7:61:11:88: 51:d4:63:e6:ea:39:0e:9f:bd:19:79:84:b6:6e:43: cf:66:fd:cb:cb:cb:8c:6e:fa:f3:96:c1:f3:4e:b9: 42:ff:88:10:2a:93:18:54:ef:c6:c8:f1:5e:f2:ec: 35:15:c8:03:51:81:ec:ba:9b:49:ff:0f:7a:3a:1d: a9:fc:20:31:ce:4a:53:b5:26:06:25:e9:bf:95:e4: a0:33:dd:62:94:4a:01:72:58:df:c8:4b:39:43:76: f4:88:c5:c7:74:ed:3f:54:39:8f:32:89:f4:ff:27: 58:1a:a4:80:a9:85:de:23:f9:be:d2:6f:21:ff:49: fc:08:13:a4:d4:f2:13:31:65:a0:61:1e:99:c9:87: 57:9a:2f:b1:62:f1:be:cb:11:b4:04:43:62:02:c9: 69:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:2C:6E:31:F2:FE:FF:F6:CB:69:E9:E4:5A:E2:E6:41:B2:43:B3:C5 X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:8e:67:39:28:a8:ed:2a:48:e0:bd:cd:0f:dd:e0:50:da:e6: 29:a7:7f:99:b5:fd:5f:2d:68:14:ac:c7:fc:d1:76:17:5a:15: ad:19:b7:e8:8e:5a:4c:64:c7:3a:36:14:5d:02:96:1d:d2:c4: 2e:c4:c5:e4:44:d8:da:74:b0:7c:8c:cd:18:1e:25:d2:9e:a7: dd:24:b0:98:af:58:b5:5f:d2:87:92:8b:2f:b9:75:2a:b9:ca: 7e:3d:e2:7e:0c:06:d9:fc:a1:d0:4f:9c:ad:08:5b:a7:1e:31: 7a:85:a4:cc:58:a9:f1:fa:4c:0a:5b:d8:e1:46:cf:c0:07:75: 4c:7f:08:f0:29:42:b2:30:0c:d5:19:61:27:b9:41:2b:2e:c2: 50:77:05:fe:45:6f:7c:e3:be:27:01:c8:df:56:0d:c2:b2:f8: 58:17:b2:7d:8d:2c:85:56:7c:d3:47:b9:4b:23:2b:d2:f5:57: d5:5e:3d:a6:c0:13:cf:63:d2:34:6c:24:fc:45:12:c8:3d:24: 27:65:3e:ae:ee:08:db:b4:d7:75:a2:7f:b3:b5:48:de:03:da: 5d:59:50:15:a3:44:d2:3f:f9:e2:a5:76:9f:9b:8b:4f:8d:5c: 5e:86:2a:65:d8:f6:0a:04:0a:c3:84:51:74:31:8a:06:4c:24: 5a:75:b8:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjQxMTI0MTkwNjU3WhcNMjQxMjAxMTkwNjU3WjAYMRYwFAYD VQQDEw02NzQzNzk1Mi0yMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtl32E4KwikVqHLkI97b1CHEJc7KRfeUQCGF9oMpBhCL5JhPaL1y6JeJXHp0x K1h3yQYEWHnBcOzaZIeE8x7YdDa3JWGDmS9LwD4Duin5cSJYg333ZPZm80Qhk8SX YGTVuZE019dhEYhR1GPm6jkOn70ZeYS2bkPPZv3Ly8uMbvrzlsHzTrlC/4gQKpMY VO/GyPFe8uw1FcgDUYHsuptJ/w96Oh2p/CAxzkpTtSYGJem/leSgM91ilEoBcljf yEs5Q3b0iMXHdO0/VDmPMon0/ydYGqSAqYXeI/m+0m8h/0n8CBOk1PITMWWgYR6Z yYdXmi+xYvG+yxG0BENiAslpnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPssbjHy /v/2y2np5Fri5kGyQ7PFMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtjmc5KKjtKkjgvc0P3eBQ2uYpp3+Ztf1fLWgUrMf80XYXWhWtGbfo jlpMZMc6NhRdApYd0sQuxMXkRNjadLB8jM0YHiXSnqfdJLCYr1i1X9KHkosvuXUq ucp+PeJ+DAbZ/KHQT5ytCFunHjF6haTMWKnx+kwKW9jhRs/AB3VMfwjwKUKyMAzV GWEnuUErLsJQdwX+RW98474nAcjfVg3CsvhYF7J9jSyFVnzTR7lLIyvS9VfVXj2m wBPPY9I0bCT8RRLIPSQnZT6u7gjbtNd1on+ztUjeA9pdWVAVo0TSP/nipXafm4tP jVxehipl2PYKBArDhFF0MYoGTCRadbg4 -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:54 2024 by rpki-client on console-fra.rpki-client.org