$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft File: 1NfdJccT56lVTPNS2TK_gNplLeQ.mft (raw, json) Hash identifier: n3yBRi7W5dm2iVyI5oUV0jNWCa4gx7E83MQ3175fPYU= Subject key identifier: E5:41:A7:AC:4D:52:16:B5:66:E9:8A:2E:49:42:E6:02:52:56:B4:D8 Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft Manifest number: 082B Signing time: Fri 22 Nov 2024 20:32:31 +0000 Manifest this update: Fri 22 Nov 2024 20:32:30 +0000 Manifest next update: Fri 29 Nov 2024 20:32:30 +0000 Files and hashes: 1: 1NfdJccT56lVTPNS2TK_gNplLeQ.crl (hash: utmKL3OaQHYvfJE2+8d23TDovRe4QXSbJ5vRLDigg7Y=) 2: 53224C1ADDA311ECA6964F20C4F9AE02.roa (hash: MbDPgGu0QclVT9FsJP5AAT1eEmuh3d/Dz6sn+R/b6KM=) 3: F7968CA6C01411EA912AC365C4F9AE02.roa (hash: cq2+wmybE1qpMjYmMXJ1sPoAauOtHlCzziVm+2eI9Iw=) 4: 5280D466DDA311ECA6964F20C4F9AE02.roa (hash: 82RI8awYpynCWEC9v44MXxvIjgMncGXtmCbSpuF8EGw=) 5: F814A546C01411EA912AC365C4F9AE02.roa (hash: 55QHl+d6Jc6Afsomh5duijKv8tF3LE8W2FzT9OQDDqI=) 6: C21DA992E83B11EBB3231D5EC4F9AE02.roa (hash: NQcAjbSAwzYhxeooFE30slWX1sySx4pom2WdezOetYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Nov 22 20:32:30 2024 GMT Not After : Nov 29 20:32:30 2024 GMT Subject: CN=6740ea5e-8a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0c:58:28:7a:c8:7c:14:3a:78:b0:34:7d:3f: ca:d8:17:cb:d3:0e:e6:1b:62:3c:c7:1b:11:8f:19: 13:10:5a:41:a7:4d:96:80:76:2f:72:bb:f4:1e:f7: 6e:9a:7a:11:2c:41:90:25:cb:52:20:88:3b:2f:f1: 46:57:08:84:1f:28:bb:4a:93:fe:f8:68:37:93:1e: ab:7e:12:20:5c:6d:b6:60:8a:88:05:5e:92:6f:60: fd:4c:0c:fb:50:d4:a7:a6:d1:cd:7d:3d:3f:9e:f0: a1:05:3d:3f:b6:a8:f0:ef:8b:82:ef:02:9c:d8:f8: 4c:94:b7:73:dd:00:90:8c:24:c2:54:8f:4e:35:ca: f2:cc:21:8a:27:f3:58:4a:07:f7:81:e0:bb:b5:21: bb:25:54:54:9d:ea:66:1a:db:f1:39:a2:d6:1f:da: f2:2d:d2:67:6b:0d:1c:ae:04:cd:a5:05:e0:21:fc: 80:12:95:b0:b9:1b:49:4b:48:b7:ea:5f:70:86:21: 23:a1:c6:85:8b:56:ee:a8:f1:f1:ad:bc:f2:37:42: af:06:67:d2:db:51:16:14:25:07:93:ff:ec:49:df: 3d:e9:18:74:e7:15:47:d3:d0:16:dc:0c:e9:51:0a: 3c:f6:a5:6b:0f:8d:e4:c0:31:30:4a:33:f4:2d:ac: 21:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:41:A7:AC:4D:52:16:B5:66:E9:8A:2E:49:42:E6:02:52:56:B4:D8 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:92:e0:fb:94:a9:16:b0:fe:39:b1:dc:4d:5d:a0:96:3e:bd: 14:dd:38:2d:25:4e:f6:4d:31:2e:e9:ba:00:cb:32:8e:5a:90: 1a:de:61:dc:08:87:c4:0d:7d:8e:1b:28:b7:bd:4a:b5:23:59: 20:50:9e:2e:3a:98:33:a9:1f:40:d7:2d:51:98:71:77:1c:07: 4c:21:7d:54:83:4f:34:e6:77:5d:f9:d7:4a:f8:3b:74:ae:2a: c2:9e:a5:e8:9f:d6:ae:bf:75:74:56:d2:a2:8f:01:07:c5:f0: a2:43:8a:10:36:f5:9d:4b:b6:87:b6:bd:5b:50:0e:eb:8f:69: 46:22:1c:6d:c7:f7:82:17:fe:39:0f:1c:d2:a5:94:f1:62:6b: 71:57:2b:df:41:11:59:6d:69:0d:d2:1f:a7:3c:d7:a1:51:5e: 0f:12:7a:72:11:5b:3e:86:32:b7:b3:05:67:8b:67:0f:0c:8d: 9b:29:10:26:fa:ee:05:d3:6f:2a:68:32:b7:4f:53:57:0a:98: 4d:14:14:55:de:28:36:d3:35:75:ce:ac:62:a2:3c:aa:27:f6: 4c:eb:be:49:86:13:15:dc:d7:2b:38:43:2d:a3:e7:7b:98:ec: 3d:40:0a:2e:31:95:36:d0:6b:0c:28:ac:58:fc:48:59:16:8c: b0:3e:bd:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjQxMTIyMjAzMjMwWhcNMjQxMTI5MjAzMjMwWjAYMRYwFAYD VQQDEw02NzQwZWE1ZS04YTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQxYKHrIfBQ6eLA0fT/K2BfL0w7mG2I8xxsRjxkTEFpBp02WgHYvcrv0Hvdu mnoRLEGQJctSIIg7L/FGVwiEHyi7SpP++Gg3kx6rfhIgXG22YIqIBV6Sb2D9TAz7 UNSnptHNfT0/nvChBT0/tqjw74uC7wKc2PhMlLdz3QCQjCTCVI9ONcryzCGKJ/NY Sgf3geC7tSG7JVRUnepmGtvxOaLWH9ryLdJnaw0crgTNpQXgIfyAEpWwuRtJS0i3 6l9whiEjocaFi1buqPHxrbzyN0KvBmfS21EWFCUHk//sSd896Rh05xVH09AW3Azp UQo89qVrD43kwDEwSjP0LawhKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVBp6xN Uha1ZumKLklC5gJSVrTYMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTY0Ri8zQzlFMkI1Q0MwMTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2 bFZUUE5TMlRLX2dOcGxMZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrkuD7lKkWsP45sdxNXaCWPr0U3TgtJU72TTEu6boAyzKOWpAa3mHc CIfEDX2OGyi3vUq1I1kgUJ4uOpgzqR9A1y1RmHF3HAdMIX1Ug0805ndd+ddK+Dt0 rirCnqXon9auv3V0VtKijwEHxfCiQ4oQNvWdS7aHtr1bUA7rj2lGIhxtx/eCF/45 DxzSpZTxYmtxVyvfQRFZbWkN0h+nPNehUV4PEnpyEVs+hjK3swVni2cPDI2bKRAm +u4F028qaDK3T1NXCphNFBRV3ig20zV1zqxiojyqJ/ZM675JhhMV3NcrOEMto+d7 mOw9QAouMZU20GsMKKxY/EhZFoywPr0q -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org