$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: iCjLFRnsDFycz2UPj+Yd5rIoKzBDDeYbEUbQtWFKbeY= Subject key identifier: AE:A5:DB:3F:E5:F2:A0:77:C7:9F:E6:B7:B1:95:89:8C:4F:91:80:5E Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0B9E Signing time: Fri 22 Nov 2024 18:39:20 +0000 Manifest this update: Fri 22 Nov 2024 18:39:19 +0000 Manifest next update: Fri 29 Nov 2024 18:39:19 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: rXKn28PZUr5tmAEZgeW6JjByJqQBlLMkkOydce1uHbU=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: es734osl5liZ5XtweVos6tWec0UeUjh4JQH+2AuNXUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Nov 22 18:39:19 2024 GMT Not After : Nov 29 18:39:19 2024 GMT Subject: CN=6740cfd8-5b5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c8:e3:2f:c5:54:54:6c:d9:28:ad:ab:f9:ed: 0f:a6:9a:03:2a:d7:fa:8d:e0:16:e3:0e:4d:d7:84: 34:cd:a1:c7:30:6e:6d:49:25:64:96:d4:18:86:f6: ed:b6:63:e1:c1:82:05:b2:81:e3:2a:07:92:18:cb: e4:d1:71:61:c9:da:7b:e9:80:ba:f8:5d:f2:c4:23: 90:ac:d0:d4:a0:28:6b:6d:7c:08:93:eb:e5:e3:2f: b4:26:aa:4f:91:56:2d:5e:50:01:ad:24:3f:fd:eb: d8:24:d7:c7:35:68:d6:ac:00:89:08:b1:ab:66:fa: 4f:2c:f4:67:2a:1b:2e:2d:ff:6d:c9:a5:36:d8:76: 41:94:91:20:44:f5:5f:2e:e3:ec:21:2c:89:4d:71: 5b:d6:c6:6d:37:81:f3:62:fe:d3:b7:88:d0:c0:e5: 4b:ef:0f:e1:9b:2e:75:e1:17:30:94:1d:94:98:75: c8:db:2a:af:e6:ed:ad:19:25:c9:10:93:63:5c:a7: 2d:3f:8a:2b:44:46:65:77:38:2d:d2:f3:d0:04:39: fa:c6:ef:a2:62:58:4c:5c:d3:6c:01:80:16:f2:3b: ec:8f:1d:9a:28:27:72:68:61:85:18:ad:06:ca:9e: 14:c1:e0:8d:b8:52:76:ab:17:58:50:de:8c:51:7e: 26:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A5:DB:3F:E5:F2:A0:77:C7:9F:E6:B7:B1:95:89:8C:4F:91:80:5E X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:fb:a3:f4:20:2c:d7:29:f8:b9:9d:60:e0:f5:9c:9f:cb:e7: c9:c0:ce:83:34:ca:8c:5b:56:b2:94:29:92:22:af:a9:f3:62: 2e:f8:7b:c1:b9:90:ac:f3:e7:4a:ee:53:ea:fc:a4:17:40:70: 8c:78:7a:7e:cc:db:03:91:d5:2e:fe:f8:48:33:d2:16:9b:76: dc:6b:d6:f8:24:ab:9e:43:fb:b3:4c:72:72:a2:a6:2d:b7:72: 62:14:97:c9:2e:05:e3:51:30:bd:60:a6:66:30:ac:02:fd:57: 95:41:75:dc:d3:8d:ba:0c:6e:f1:39:31:d7:47:93:19:44:a5: 73:96:ed:57:c5:17:b1:68:6f:8a:47:ab:5d:29:74:5f:01:21: 7d:d5:56:07:45:1e:5b:f4:f3:1c:0a:40:b3:90:7b:c1:fd:fd: 95:07:0e:0a:f1:41:76:c2:d4:11:df:19:56:ec:94:13:be:4b: c2:68:67:1e:72:86:07:47:48:4a:4d:a0:34:e6:c8:a6:7f:d4: eb:48:d0:af:37:b7:96:32:a2:7f:8c:20:6d:0c:2a:6c:db:65: a9:0d:75:1f:c1:57:92:18:4b:bd:9c:22:3c:15:c3:7c:96:6a: 47:ac:c8:3b:a6:b2:33:a7:96:1a:4b:21:33:b4:1f:a9:cb:13: 6c:9d:55:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjQxMTIyMTgzOTE5WhcNMjQxMTI5MTgzOTE5WjAYMRYwFAYD VQQDEw02NzQwY2ZkOC01YjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcjjL8VUVGzZKK2r+e0PppoDKtf6jeAW4w5N14Q0zaHHMG5tSSVkltQYhvbt tmPhwYIFsoHjKgeSGMvk0XFhydp76YC6+F3yxCOQrNDUoChrbXwIk+vl4y+0JqpP kVYtXlABrSQ//evYJNfHNWjWrACJCLGrZvpPLPRnKhsuLf9tyaU22HZBlJEgRPVf LuPsISyJTXFb1sZtN4HzYv7Tt4jQwOVL7w/hmy514RcwlB2UmHXI2yqv5u2tGSXJ EJNjXKctP4orREZldzgt0vPQBDn6xu+iYlhMXNNsAYAW8jvsjx2aKCdyaGGFGK0G yp4UweCNuFJ2qxdYUN6MUX4mAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6l2z/l 8qB3x5/mt7GViYxPkYBeMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4+6P0ICzXKfi5nWDg9Zyfy+fJwM6DNMqMW1aylCmSIq+p82Iu+HvB uZCs8+dK7lPq/KQXQHCMeHp+zNsDkdUu/vhIM9IWm3bca9b4JKueQ/uzTHJyoqYt t3JiFJfJLgXjUTC9YKZmMKwC/VeVQXXc0426DG7xOTHXR5MZRKVzlu1XxRexaG+K R6tdKXRfASF91VYHRR5b9PMcCkCzkHvB/f2VBw4K8UF2wtQR3xlW7JQTvkvCaGce coYHR0hKTaA05simf9TrSNCvN7eWMqJ/jCBtDCps22WpDXUfwVeSGEu9nCI8FcN8 lmpHrMg7prIzp5YaSyEztB+pyxNsnVVF -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org