$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: b6FA1yQfdxqvN0kOJK4mcfruxj89GCKcm3HFIcM4AQA= Subject key identifier: 7D:63:07:57:29:50:7A:C7:D8:F0:4A:4F:51:C4:FD:58:22:C4:28:9B Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1A7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1A7C Signing time: Wed 20 Nov 2024 16:18:40 +0000 Manifest this update: Wed 20 Nov 2024 16:18:39 +0000 Manifest next update: Wed 27 Nov 2024 16:18:39 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: T3PnxxLkChTkrBEZU9K5gbeNOf29o5sXHmmCaBDxs5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6783 (0x1a7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: Nov 20 16:18:39 2024 GMT Not After : Nov 27 16:18:39 2024 GMT Subject: CN=673e0be0-ea32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bf:78:e8:6e:81:57:f9:ef:0d:1e:76:03:42: 86:5a:be:91:37:3a:88:7b:91:54:c5:9b:94:4b:55: 70:c6:1b:09:81:63:98:a6:a8:72:5e:9b:bb:5a:d3: 41:7e:81:80:d5:90:7d:92:d7:2d:a0:e5:de:77:4c: 52:01:3d:cf:f9:46:68:ca:f0:f8:60:ce:46:64:44: 46:3d:41:ab:d5:20:ac:ee:e6:bf:be:8f:3c:14:7b: af:c9:2a:b0:25:e8:de:f1:2e:bc:69:7b:eb:0d:74: b7:84:cc:79:9b:4a:ea:c1:0a:09:43:eb:1f:8b:36: 1e:8f:3d:3a:28:32:60:5e:9c:17:65:07:64:32:58: 73:9f:85:00:f9:17:dd:46:2f:5d:f2:3a:28:4c:d8: 97:28:0e:23:19:1e:2c:e7:36:91:bc:96:11:11:d2: 6e:ad:b2:e9:9f:ad:7b:ff:cd:3b:79:1b:60:bd:c4: 79:d9:91:ff:89:14:21:67:c6:e0:f0:a8:e8:ae:3a: 50:ef:0b:da:1c:d5:34:a4:fb:8d:ff:f1:97:4d:a8: 0e:a4:bc:c2:d2:8f:c4:d8:de:6b:98:05:a4:39:5f: 0d:43:f3:b7:0c:0d:68:0e:23:2f:f9:58:72:ca:52: 62:f7:90:30:31:2a:dc:63:d1:05:c2:33:f3:68:a2: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:63:07:57:29:50:7A:C7:D8:F0:4A:4F:51:C4:FD:58:22:C4:28:9B X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:87:de:c4:84:8b:83:dd:b1:4f:e0:8b:91:40:98:55:1c:32: dc:56:11:f9:c8:b2:44:69:3e:8d:c0:b4:9a:4d:cf:a4:57:f1: 1c:17:6e:42:a6:8c:2c:f9:cc:6b:38:fe:1b:01:19:41:a4:2e: ec:47:5a:e1:06:a6:8c:0b:4a:49:75:08:14:e6:d8:46:b7:7b: 57:d6:5a:3b:45:a3:84:72:de:3c:79:2d:1f:fa:d7:d5:d8:d3: 2c:77:9e:c5:fa:54:9c:d6:89:a1:a7:d2:3a:b2:3b:8d:c6:71: bd:02:c9:27:ad:59:f4:09:27:c6:6c:be:bf:62:bd:fa:d2:9b: cd:3c:b5:af:48:36:c4:18:85:de:b1:22:1b:ac:9d:6c:a9:94: 52:82:f6:49:73:ac:fe:17:ef:ef:20:6b:fa:a6:c5:b6:ee:e8: de:f7:1d:0c:4e:61:17:2a:cb:4b:3d:9e:c2:2f:5a:66:a9:11: 3a:fd:7c:56:30:96:1b:75:c7:82:a1:33:16:76:df:63:18:88: e7:ce:3d:5f:7c:44:8e:88:c5:35:0e:86:7c:8e:6b:ce:38:19: 13:96:9c:6e:1f:f3:a5:c2:f6:35:d1:11:4a:e7:45:b6:6a:49: a6:0f:19:7e:56:7f:76:2b:24:8e:7b:37:e1:15:7e:1a:38:8b: 43:5c:d3:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjQxMTIwMTYxODM5WhcNMjQxMTI3MTYxODM5WjAYMRYwFAYD VQQDEw02NzNlMGJlMC1lYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7946G6BV/nvDR52A0KGWr6RNzqIe5FUxZuUS1VwxhsJgWOYpqhyXpu7WtNB foGA1ZB9ktctoOXed0xSAT3P+UZoyvD4YM5GZERGPUGr1SCs7ua/vo88FHuvySqw Jeje8S68aXvrDXS3hMx5m0rqwQoJQ+sfizYejz06KDJgXpwXZQdkMlhzn4UA+Rfd Ri9d8jooTNiXKA4jGR4s5zaRvJYREdJurbLpn617/807eRtgvcR52ZH/iRQhZ8bg 8KjorjpQ7wvaHNU0pPuN//GXTagOpLzC0o/E2N5rmAWkOV8NQ/O3DA1oDiMv+Vhy ylJi95AwMSrcY9EFwjPzaKLBAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1jB1cp UHrH2PBKT1HE/VgixCibMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUh97EhIuD3bFP4IuRQJhVHDLcVhH5yLJEaT6NwLSaTc+kV/EcF25C pows+cxrOP4bARlBpC7sR1rhBqaMC0pJdQgU5thGt3tX1lo7RaOEct48eS0f+tfV 2NMsd57F+lSc1omhp9I6sjuNxnG9AsknrVn0CSfGbL6/Yr360pvNPLWvSDbEGIXe sSIbrJ1sqZRSgvZJc6z+F+/vIGv6psW27uje9x0MTmEXKstLPZ7CL1pmqRE6/XxW MJYbdceCoTMWdt9jGIjnzj1ffESOiMU1DoZ8jmvOOBkTlpxuH/OlwvY10RFK50W2 akmmDxl+Vn92KySOezfhFX4aOItDXNNK -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:52 2024 by rpki-client on console-fra.rpki-client.org