$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft File: FrgD2zk43LFdxZooyXcZ2h_yClM.mft (raw, json) Hash identifier: FEbERsHfk9TnoceM1keUjtaT3vGFG+oVkbpYw7WsUeY= Subject key identifier: E7:1D:C3:26:EC:4A:D1:F7:BD:2A:78:16:72:61:E5:18:EF:04:97:93 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0AE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft Manifest number: 0ADC Signing time: Fri 22 Nov 2024 19:08:03 +0000 Manifest this update: Fri 22 Nov 2024 19:08:03 +0000 Manifest next update: Fri 29 Nov 2024 19:08:03 +0000 Files and hashes: 1: FrgD2zk43LFdxZooyXcZ2h_yClM.crl (hash: 2Ku10fl+oDxvQjwihoXLmjzW1InceZMaogH5p6mYKsc=) 2: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (hash: PrjpZlh7Tuh2bb8hiFmK68isEjfllyctC7vNKOM8jnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: Nov 22 19:08:03 2024 GMT Not After : Nov 29 19:08:03 2024 GMT Subject: CN=6740d693-62f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:13:bb:9b:f3:ac:e0:96:5e:8f:9f:53:dc: 8c:97:c2:6a:ad:af:11:fa:02:13:0c:54:9e:38:94: 8c:6a:29:e2:73:76:a5:b7:24:d9:b6:f4:7e:55:f1: 72:f9:fa:ff:49:1a:da:d4:c4:82:2f:65:3a:3c:04: 9e:75:64:7d:59:71:c6:4e:c1:a9:76:26:31:d3:81: 1f:98:96:17:7a:fc:ea:cc:17:b5:a4:89:6d:f4:a0: 95:17:6e:03:72:87:ee:b6:69:48:61:8e:e7:db:71: fa:b2:64:89:b1:e9:7e:32:10:a1:f9:b0:df:44:42: b8:ad:1e:10:99:31:d5:e4:47:6b:b4:b0:01:70:28: 33:50:3f:be:5e:67:d2:bb:e1:01:39:db:0c:f6:c4: 8d:a3:06:2d:c4:ea:85:e0:74:c0:7b:fd:19:9f:d0: bd:82:53:ca:5d:07:de:5b:d5:49:86:78:e9:dd:82: c3:d4:7f:1e:f7:1b:77:d7:58:bc:1b:60:87:2f:7d: 29:3b:bc:7d:1f:b0:58:a7:b8:fa:79:29:fb:5e:07: 2d:31:7e:61:ad:bc:e1:c2:1f:8d:11:ba:9f:4c:e0: d1:3a:e7:f9:85:76:60:ef:9c:e3:48:e2:dc:48:3d: 04:09:91:f7:a4:56:09:18:24:5c:78:9e:8e:07:46: 16:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1D:C3:26:EC:4A:D1:F7:BD:2A:78:16:72:61:E5:18:EF:04:97:93 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:e4:d4:a7:2f:88:c4:74:52:33:f7:8a:39:83:b2:70:7b:b7: dd:25:23:ab:36:6c:c7:a9:43:6b:fe:8f:d6:c2:10:3e:4b:37: f2:75:b6:67:2b:9a:90:85:e2:c1:78:36:ef:d9:40:cd:8b:ef: f0:cf:84:cf:a7:ef:b2:f1:c6:15:61:0b:8f:25:bb:6e:ab:3f: dc:4e:45:7d:bd:5c:ec:e7:71:5a:4b:7b:ab:d7:26:49:a4:cb: fa:15:49:42:58:5e:f6:63:44:52:b8:fb:8d:b1:a9:48:ba:d4: 6f:30:b8:05:52:78:e6:ce:15:95:5e:6d:e8:4d:b8:a9:b7:16: 95:9c:a3:bb:c0:ea:82:47:47:03:fa:7d:e2:75:3f:9d:3e:f7: df:10:0d:55:7f:74:45:31:50:80:de:78:b0:5e:d2:1b:6b:ce: 41:09:56:62:a4:8c:2b:a0:8f:72:0f:d3:da:7a:31:46:cf:c3: b5:26:c0:0e:b0:19:15:8e:f8:f6:85:84:f9:04:d1:05:3e:e0: 50:a5:6e:64:9e:da:01:d8:1e:c7:6c:c7:e7:2a:ac:67:f7:ee: 93:79:de:d0:47:7c:d6:59:48:38:c9:e1:c5:5d:d8:0b:be:64: da:ed:62:6b:b2:d3:3f:1c:0d:90:57:b0:a6:37:67:60:63:5a: f7:54:aa:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjQxMTIyMTkwODAzWhcNMjQxMTI5MTkwODAzWjAYMRYwFAYD VQQDEw02NzQwZDY5My02MmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv70Tu5vzrOCWXo+fU9yMl8Jqra8R+gITDFSeOJSMainic3altyTZtvR+VfFy +fr/SRra1MSCL2U6PASedWR9WXHGTsGpdiYx04EfmJYXevzqzBe1pIlt9KCVF24D cofutmlIYY7n23H6smSJsel+MhCh+bDfREK4rR4QmTHV5EdrtLABcCgzUD++XmfS u+EBOdsM9sSNowYtxOqF4HTAe/0Zn9C9glPKXQfeW9VJhnjp3YLD1H8e9xt311i8 G2CHL30pO7x9H7BYp7j6eSn7XgctMX5hrbzhwh+NEbqfTODROuf5hXZg75zjSOLc SD0ECZH3pFYJGCRceJ6OB0YWyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcdwybs StH3vSp4FnJh5RjvBJeTMB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUUwRC85MDRFNzQ3RTM5MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNM RmR4Wm9veVhjWjJoX3lDbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ5NSnL4jEdFIz94o5g7Jwe7fdJSOrNmzHqUNr/o/WwhA+SzfydbZn K5qQheLBeDbv2UDNi+/wz4TPp++y8cYVYQuPJbtuqz/cTkV9vVzs53FaS3ur1yZJ pMv6FUlCWF72Y0RSuPuNsalIutRvMLgFUnjmzhWVXm3oTbiptxaVnKO7wOqCR0cD +n3idT+dPvffEA1Vf3RFMVCA3niwXtIba85BCVZipIwroI9yD9PaejFGz8O1JsAO sBkVjvj2hYT5BNEFPuBQpW5kntoB2B7HbMfnKqxn9+6Ted7QR3zWWUg4yeHFXdgL vmTa7WJrstM/HA2QV7CmN2dgY1r3VKo1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org