$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft File: RxYGeFsy9N8-yUPyp4fbohJpbh8.mft (raw, json) Hash identifier: MidwUmeZXg+IuWZqjKkhMREVNfG97yKVTRlWzVORGk4= Subject key identifier: 6F:4F:44:FA:8B:FD:02:31:BF:92:87:DD:6A:4A:0A:95:3C:5A:DE:EC Authority key identifier: 47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F Certificate issuer: /CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Certificate serial: 254C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft Manifest number: 252A Signing time: Sun 24 Nov 2024 15:39:52 +0000 Manifest this update: Sun 24 Nov 2024 15:39:52 +0000 Manifest next update: Sun 01 Dec 2024 15:39:52 +0000 Files and hashes: 1: RxYGeFsy9N8-yUPyp4fbohJpbh8.crl (hash: daM2PpVeX689+onpYmXTUwxR87ZaF+x8lmVw5pXKMKw=) 2: 9E7A9830049911E89DF5A065C4F9AE02.roa (hash: +Hb+NiJ9R+0o3y3C5pGdfyqayEUbh+XeiaUDvnEWILw=) 3: A6A6CE0A54EC11E791C3F825C4F9AE02.roa (hash: GKvqpNtngL4CLVJfuRTvFt8AdTrJ98zOSUzO6azhFSk=) 4: 58EB6F3E115511EC97960769C4F9AE02.roa (hash: o3kWnyNSxJFY3lvDnoQm9cCtMvw8qbOporWcpE2Yjl8=) 5: 598E740E5A6011EDAF6FC679C4F9AE02.roa (hash: HL4pbC/iVl60jzP8PvY6wEjqTSd1XUG9dKyfATvV9ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9548 (0x254c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Validity Not Before: Nov 24 15:39:52 2024 GMT Not After : Dec 1 15:39:52 2024 GMT Subject: CN=674348c8-5b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ce:ae:c2:fe:fa:c5:61:a0:3c:d1:25:39:1d: d7:af:cd:ef:98:87:9e:b7:9c:5a:8f:12:d8:0b:a9: bc:e5:9d:8a:e9:8f:bd:6d:df:d3:83:be:e4:85:d4: 9c:ba:d8:3e:c4:b4:ef:30:a8:1b:08:54:91:cf:4e: 1f:ab:ed:d4:cc:07:64:5d:79:c7:0a:f7:de:b8:13: 03:2f:8e:2f:72:21:50:8c:7b:cf:13:73:a9:f5:4a: 32:cd:cf:b4:32:70:82:17:ce:75:59:03:86:27:fe: c3:46:a6:59:11:2b:4d:83:13:e9:c3:1e:23:fe:c0: 5b:7e:65:92:fe:b7:7e:56:79:a5:d0:c4:7d:a4:43: 94:d3:5b:99:2f:93:86:d6:4a:96:7e:14:52:48:23: 36:eb:df:ea:25:f1:1a:3e:6a:d4:7e:c9:cf:2f:18: 6b:0b:dd:a7:2f:b0:10:db:cc:9e:40:9b:c8:fe:ba: 63:83:23:61:1a:9f:34:65:c7:15:ac:0b:8e:41:a2: 28:00:1a:2b:c1:52:45:4d:f7:5a:2a:d3:df:7d:a5: 65:4b:89:b4:92:59:34:57:7d:98:b2:52:74:1e:21: fe:22:70:de:c7:80:c6:00:90:b1:3f:bf:d7:1f:e5: 64:ce:14:2e:44:29:3a:f9:74:6c:d3:48:74:04:ac: 13:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4F:44:FA:8B:FD:02:31:BF:92:87:DD:6A:4A:0A:95:3C:5A:DE:EC X509v3 Authority Key Identifier: keyid:47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:1f:c0:2e:bf:a3:1f:91:ea:73:1f:6d:98:d6:0e:4b:f3:0b: 06:d7:e0:ef:4a:92:25:ed:7b:74:38:cd:74:a9:f9:43:ae:73: c0:35:76:5e:f2:ec:7b:9a:b4:14:c2:32:69:a2:0e:f6:6a:94: 3f:7e:dd:64:61:ff:54:9c:6e:14:59:69:4d:f5:fe:56:0e:8f: 75:f7:ca:6c:5f:37:be:26:3a:8d:ee:c0:79:33:52:41:8f:da: 2d:37:93:4e:5f:6d:f9:da:32:aa:7e:98:0f:bd:50:04:11:59: ab:eb:49:48:54:ef:db:1d:a0:89:14:12:7a:f4:6f:6f:fb:14: 49:7b:fa:6a:f4:cd:fa:6e:83:53:a8:b3:99:0e:28:6c:4a:10: da:4f:7a:1d:c6:5d:c0:c2:90:f8:16:50:7e:50:38:a0:97:1d: 2b:cd:6d:57:ef:f0:86:fb:00:10:22:c0:d6:a0:d8:6b:5a:b0: 65:c4:c6:af:d6:85:ef:b1:b3:06:e3:79:52:8f:e6:fb:40:0f: d6:24:dd:77:c9:a3:34:cb:47:44:6e:60:38:01:d5:88:d7:29: 9b:56:cb:7a:61:03:d0:fa:64:58:e3:af:fe:09:ce:27:bc:64: 9c:7d:2e:0c:97:22:17:f0:20:94:53:81:78:13:9d:69:d9:95: 0b:c3:17:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjgxMTAvBgNVBAUTKDQ3MTYwNjc4NUIzMkY0REYzRUM5NDNGMkE3ODdEQkEy MTI2OTZFMUYwHhcNMjQxMTI0MTUzOTUyWhcNMjQxMjAxMTUzOTUyWjAYMRYwFAYD VQQDEw02NzQzNDhjOC01YjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs6uwv76xWGgPNElOR3Xr83vmIeet5xajxLYC6m85Z2K6Y+9bd/Tg77khdSc utg+xLTvMKgbCFSRz04fq+3UzAdkXXnHCvfeuBMDL44vciFQjHvPE3Op9Uoyzc+0 MnCCF851WQOGJ/7DRqZZEStNgxPpwx4j/sBbfmWS/rd+Vnml0MR9pEOU01uZL5OG 1kqWfhRSSCM269/qJfEaPmrUfsnPLxhrC92nL7AQ28yeQJvI/rpjgyNhGp80ZccV rAuOQaIoABorwVJFTfdaKtPffaVlS4m0klk0V32YslJ0HiH+InDex4DGAJCxP7/X H+VkzhQuRCk6+XRs00h0BKwTCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9PRPqL /QIxv5KH3WpKCpU8Wt7sMB8GA1UdIwQYMBaAFEcWBnhbMvTfPslD8qeH26ISaW4f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyOC9GQUVGOENCRTEz NDMxMUU1OTZGNTQwMUVDNEY5QUUwMi9SeFlHZUZzeTlOOC15VVB5cDRmYm9oSnBi aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J4WUdlRnN5OU44LXlVUHlwNGZib2hKcGJoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkIyOC9GQUVGOENCRTEzNDMxMUU1OTZGNTQwMUVDNEY5QUUwMi9SeFlHZUZzeTlO OC15VVB5cDRmYm9oSnBiaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPH8Auv6MfkepzH22Y1g5L8wsG1+DvSpIl7Xt0OM10qflDrnPANXZe 8ux7mrQUwjJpog72apQ/ft1kYf9UnG4UWWlN9f5WDo9198psXze+JjqN7sB5M1JB j9otN5NOX2352jKqfpgPvVAEEVmr60lIVO/bHaCJFBJ69G9v+xRJe/pq9M36boNT qLOZDihsShDaT3odxl3AwpD4FlB+UDiglx0rzW1X7/CG+wAQIsDWoNhrWrBlxMav 1oXvsbMG43lSj+b7QA/WJN13yaM0y0dEbmA4AdWI1ymbVst6YQPQ+mRY46/+Cc4n vGScfS4MlyIX8CCUU4F4E51p2ZULwxfg -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:02 2024 by rpki-client on console-fra.rpki-client.org