$ rpki-client -vvf rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft File: 8gl4uKIsE6CwK586X8LUiKuovtU.mft (raw, json) Hash identifier: 5uLeIWTLRt+LmFY8VsS0cedVjAR9y/e0nzj1BREl67k= Subject key identifier: 84:58:04:98:A6:E9:0F:F0:EC:CA:5A:46:12:3C:3C:70:8E:A6:80:94 Authority key identifier: F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 Certificate issuer: /CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Certificate serial: 098E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft Manifest number: 0989 Signing time: Fri 22 Nov 2024 19:50:27 +0000 Manifest this update: Fri 22 Nov 2024 19:50:27 +0000 Manifest next update: Fri 29 Nov 2024 19:50:27 +0000 Files and hashes: 1: 8gl4uKIsE6CwK586X8LUiKuovtU.crl (hash: SQ+uUkBJyk9yftD45OlIQ76FjeQwdmUYoQrRdRweWRo=) 2: BD7E578079E011EA8DD5907FC4F9AE02.roa (hash: hZNhQOH/ytzwG9GDAfdV+gztLsOvcnb7H0kMrbac6Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2446 (0x98e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914653C/serialNumber=F20978B8A22C13A0B02B9F3A5FC2D488ABA8BED5 Validity Not Before: Nov 22 19:50:27 2024 GMT Not After : Nov 29 19:50:27 2024 GMT Subject: CN=6740e083-5e01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f6:2f:d8:c2:24:98:03:87:ea:f4:53:0d:cd: f1:4f:af:c3:34:74:67:b3:dc:28:a7:80:a5:01:a6: 7b:ef:75:5d:c1:f9:33:fd:a1:82:02:a6:c6:a5:31: b5:d2:9d:24:ea:95:82:05:8e:3e:54:49:7c:f7:b6: a3:55:8c:43:6a:93:ba:f9:ee:15:ce:c2:a6:69:2f: 67:0e:04:ca:28:e3:a2:5e:5e:0f:a1:55:62:f9:6e: 4c:1a:8a:18:72:03:fa:25:73:e4:40:07:28:b6:5c: ea:20:37:64:25:3b:fd:b5:5e:fd:46:54:32:4e:e1: 55:33:59:3e:a3:7f:10:f3:2c:99:24:8d:f3:92:9b: 19:6f:1f:7e:53:46:0f:cb:bf:62:9f:f7:dd:1b:1e: 30:32:87:1d:ac:d2:6e:fc:af:ac:31:0e:fd:4d:3e: a6:af:39:d5:1f:1d:a8:17:fc:ea:60:3a:1f:78:1d: a3:e4:e4:02:f0:fe:ba:fc:55:d2:b4:55:5b:b0:2f: 0e:32:d8:1d:83:74:36:63:e4:ef:4d:fa:8b:77:71: 28:47:8a:25:38:e4:10:72:13:d1:8c:9e:d8:c9:3b: 4c:c6:90:d7:06:99:4b:49:f2:89:ed:2a:67:a9:b9: 96:d8:16:f9:d8:0d:1e:db:a5:4d:a5:c2:5a:3e:ed: cb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:58:04:98:A6:E9:0F:F0:EC:CA:5A:46:12:3C:3C:70:8E:A6:80:94 X509v3 Authority Key Identifier: keyid:F2:09:78:B8:A2:2C:13:A0:B0:2B:9F:3A:5F:C2:D4:88:AB:A8:BE:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8gl4uKIsE6CwK586X8LUiKuovtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914653C/5BA8782079DF11EABC9D977DC4F9AE02/8gl4uKIsE6CwK586X8LUiKuovtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:db:57:82:92:1a:b3:e1:6d:9b:c2:6c:ea:dd:3e:3c:a3:76: fb:20:54:24:33:49:69:8c:37:3a:e7:4d:73:92:09:8e:03:44: 2f:4f:eb:ac:80:2e:54:f1:bd:7b:a5:3d:e5:22:eb:e3:20:98: 25:18:98:3e:7a:e8:33:5f:81:fe:f2:76:f9:7c:2e:52:06:99: 64:d0:be:e6:c7:b5:50:b3:45:34:20:ab:9c:d9:e9:d4:b1:a3: cd:1f:b2:8b:a1:4a:72:db:46:b8:55:0a:e7:44:43:a2:58:88: 69:24:cc:86:0e:56:af:f8:e0:d8:95:e2:9c:a4:42:90:98:38: 36:b5:ac:66:31:fe:44:29:d4:dd:72:91:bd:8b:c2:80:16:31: fc:f8:4d:d6:15:14:8e:7c:1b:fe:2f:22:11:7a:2c:52:50:74: e9:d9:b9:8d:87:77:bd:34:31:e2:ef:c5:a7:b2:39:31:a1:36: b8:72:ef:f1:d5:bc:bc:be:c0:e5:52:ff:7e:09:bf:81:97:ee: b8:cc:c2:3e:e4:3c:23:1f:54:cb:88:d9:53:c9:52:e8:f2:14: 0a:4b:12:34:09:fd:08:7a:6d:c9:e0:6f:5c:a4:5c:28:fe:2d: e9:ac:aa:ab:d7:46:05:1d:3d:49:47:2e:7a:be:7b:3f:b5:a9: 62:0e:48:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY1M0MxMTAvBgNVBAUTKEYyMDk3OEI4QTIyQzEzQTBCMDJCOUYzQTVGQzJENDg4 QUJBOEJFRDUwHhcNMjQxMTIyMTk1MDI3WhcNMjQxMTI5MTk1MDI3WjAYMRYwFAYD VQQDEw02NzQwZTA4My01ZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPYv2MIkmAOH6vRTDc3xT6/DNHRns9wop4ClAaZ773Vdwfkz/aGCAqbGpTG1 0p0k6pWCBY4+VEl897ajVYxDapO6+e4VzsKmaS9nDgTKKOOiXl4PoVVi+W5MGooY cgP6JXPkQAcotlzqIDdkJTv9tV79RlQyTuFVM1k+o38Q8yyZJI3zkpsZbx9+U0YP y79in/fdGx4wMocdrNJu/K+sMQ79TT6mrznVHx2oF/zqYDofeB2j5OQC8P66/FXS tFVbsC8OMtgdg3Q2Y+TvTfqLd3EoR4olOOQQchPRjJ7YyTtMxpDXBplLSfKJ7Spn qbmW2Bb52A0e26VNpcJaPu3LGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRYBJim 6Q/w7MpaRhI8PHCOpoCUMB8GA1UdIwQYMBaAFPIJeLiiLBOgsCufOl/C1IirqL7V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjUzQy81QkE4NzgyMDc5 REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2Q3dLNTg2WDhMVWlLdW92 dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhnbDR1S0lzRTZDd0s1ODZYOExVaUt1b3Z0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUzQy81QkE4NzgyMDc5REYxMUVBQkM5RDk3N0RDNEY5QUUwMi84Z2w0dUtJc0U2 Q3dLNTg2WDhMVWlLdW92dFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI21eCkhqz4W2bwmzq3T48o3b7IFQkM0lpjDc6501zkgmOA0QvT+us gC5U8b17pT3lIuvjIJglGJg+eugzX4H+8nb5fC5SBplk0L7mx7VQs0U0IKuc2enU saPNH7KLoUpy20a4VQrnREOiWIhpJMyGDlav+ODYleKcpEKQmDg2taxmMf5EKdTd cpG9i8KAFjH8+E3WFRSOfBv+LyIReixSUHTp2bmNh3e9NDHi78WnsjkxoTa4cu/x 1by8vsDlUv9+Cb+Bl+64zMI+5DwjH1TLiNlTyVLo8hQKSxI0Cf0Iem3J4G9cpFwo /i3prKqr10YFHT1JRy56vns/taliDkjE -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org