$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: 3uQHaISt7/FDwVwJ/uYKQtZLcO1Lh5ojSc0owdXCBLY= Subject key identifier: BA:5C:29:34:B1:34:3D:BE:EE:E8:44:08:91:69:F2:9B:D7:AC:9A:C5 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 02E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 02E6 Signing time: Sat 23 Nov 2024 00:52:38 +0000 Manifest this update: Sat 23 Nov 2024 00:52:37 +0000 Manifest next update: Sat 30 Nov 2024 00:52:37 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: Lsnz9hCA7mLoOqHJ613lcXH2pGPUa/mh1OdvkDu8czA=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: M8EeCK4wseDGRAVaayv2SdcAD2UENUp0dQWvk3BdYlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Nov 23 00:52:37 2024 GMT Not After : Nov 30 00:52:37 2024 GMT Subject: CN=67412756-8185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:c2:24:10:62:68:55:17:f7:14:d0:e1:ee: 72:af:9d:a3:b5:9c:29:5d:1d:e1:7e:d3:09:64:d0: 86:cb:41:ae:ad:7a:5a:82:44:bb:94:b8:0b:cb:6c: 3c:59:1c:c4:fd:3b:d9:d7:72:e2:05:11:0e:26:8c: ce:0d:58:58:d7:28:80:38:b6:3c:75:f8:32:8f:37: 7c:95:5c:a7:4f:0e:33:21:fa:ac:cf:35:80:34:06: fb:22:81:eb:c4:4e:72:bb:75:58:41:51:20:0d:5d: ce:5c:45:69:e4:ca:97:29:f8:74:36:6e:08:ad:f8: b5:f4:31:31:d0:f8:df:44:a3:0f:f9:69:d6:80:b6: 4a:ad:90:06:bb:24:58:3f:7e:81:d9:3e:db:48:2a: 15:80:62:17:6b:71:e9:1b:3e:0b:ca:52:ad:cb:c8: 77:5a:80:5e:2d:5c:55:eb:a2:15:db:5a:6a:f2:7f: b5:d6:64:0f:bc:b7:68:a1:db:90:2b:37:2d:2a:b0: 6c:88:07:14:97:87:3a:e1:e2:17:a1:95:47:41:65: 10:56:c5:d7:c7:9e:5a:7a:87:02:b7:25:2c:98:bc: 32:c6:8d:96:5b:9b:ec:55:c7:c1:ee:99:92:44:d2: 40:21:ab:10:25:14:a9:47:35:b3:d1:4d:65:a4:36: 40:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:5C:29:34:B1:34:3D:BE:EE:E8:44:08:91:69:F2:9B:D7:AC:9A:C5 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:80:a2:dc:26:b3:e6:64:8c:5e:26:00:14:5f:35:0e:56:d9: 90:d2:1c:85:63:0a:c9:63:f2:35:22:46:6b:95:fe:25:c1:e1: a4:17:c7:bd:ce:6f:39:6a:32:54:be:61:72:e6:f9:b2:5f:c9: 3c:76:08:e1:6c:d1:e3:d2:e2:93:8a:26:f0:c2:fc:38:39:1b: 2f:c9:04:97:3c:13:15:0e:a8:7a:34:81:ee:88:2f:8c:4d:49: 97:4f:4b:60:d3:e7:51:15:f7:49:69:a8:46:b1:0e:69:01:1f: 49:5c:ed:db:bf:5a:4e:50:9a:d8:09:a2:2e:78:b7:2e:43:aa: bc:f7:ac:cc:28:78:ea:33:cd:1f:c8:99:c9:cd:89:28:1c:d7: 09:79:34:70:91:ba:65:30:0b:6d:26:02:2a:24:93:ce:d9:7e: 89:89:82:b8:50:5c:3a:8e:ca:bd:cb:69:9f:d6:42:29:16:c0: aa:2b:7c:f5:e2:4e:26:fe:2a:ef:1d:9d:77:36:7d:d5:88:aa: 1f:a4:d0:08:47:11:03:77:dc:e1:24:d5:33:69:d5:3e:c5:fd: c0:f8:4d:fc:be:2e:4b:96:39:bb:dd:7a:c7:15:d0:b2:69:b9: 73:e4:44:5e:66:4b:6f:6b:56:07:c5:20:8e:45:49:ff:44:91: f6:e3:fe:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjQxMTIzMDA1MjM3WhcNMjQxMTMwMDA1MjM3WjAYMRYwFAYD VQQDEw02NzQxMjc1Ni04MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx7CJBBiaFUX9xTQ4e5yr52jtZwpXR3hftMJZNCGy0GurXpagkS7lLgLy2w8 WRzE/TvZ13LiBREOJozODVhY1yiAOLY8dfgyjzd8lVynTw4zIfqszzWANAb7IoHr xE5yu3VYQVEgDV3OXEVp5MqXKfh0Nm4Irfi19DEx0PjfRKMP+WnWgLZKrZAGuyRY P36B2T7bSCoVgGIXa3HpGz4LylKty8h3WoBeLVxV66IV21pq8n+11mQPvLdooduQ KzctKrBsiAcUl4c64eIXoZVHQWUQVsXXx55aeocCtyUsmLwyxo2WW5vsVcfB7pmS RNJAIasQJRSpRzWz0U1lpDZA/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpcKTSx ND2+7uhECJFp8pvXrJrFMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkgKLcJrPmZIxeJgAUXzUOVtmQ0hyFYwrJY/I1IkZrlf4lweGkF8e9 zm85ajJUvmFy5vmyX8k8dgjhbNHj0uKTiibwwvw4ORsvyQSXPBMVDqh6NIHuiC+M TUmXT0tg0+dRFfdJaahGsQ5pAR9JXO3bv1pOUJrYCaIueLcuQ6q896zMKHjqM80f yJnJzYkoHNcJeTRwkbplMAttJgIqJJPO2X6JiYK4UFw6jsq9y2mf1kIpFsCqK3z1 4k4m/irvHZ13Nn3ViKofpNAIRxEDd9zhJNUzadU+xf3A+E38vi5Lljm73XrHFdCy ablz5EReZktva1YHxSCORUn/RJH24/4X -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org