$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: fK+ICTP5iXpfgi8E0sD3T9bAGsscWfD751WTQCKh0xk= Subject key identifier: 01:1E:05:8D:F4:80:EC:08:66:82:F7:B8:96:4B:24:4B:AC:87:1F:69 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 09A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 09A1 Signing time: Fri 22 Nov 2024 19:48:17 +0000 Manifest this update: Fri 22 Nov 2024 19:48:17 +0000 Manifest next update: Fri 29 Nov 2024 19:48:17 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: FL7vY6VvwM02iqEAqZ0/JUzIi4FYuvxQRBONmO0Qx3I=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2472 (0x9a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Nov 22 19:48:17 2024 GMT Not After : Nov 29 19:48:17 2024 GMT Subject: CN=6740e001-1148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:35:82:9e:f7:8f:6c:60:ad:b8:21:a8:97:e6: f8:e6:b4:a9:89:f4:b1:e7:34:ea:c2:aa:7f:0b:1a: 04:6c:66:65:17:07:04:3b:06:b0:93:ed:24:8f:dc: 41:5a:8e:95:9b:5d:f0:79:55:cf:f5:a5:31:c4:7e: 59:78:29:44:8b:70:50:a1:28:fc:8d:82:ac:2b:ad: 30:97:9c:df:5a:c3:ad:06:5d:a3:eb:b1:27:e5:a7: 84:66:32:f5:24:4e:ae:87:0e:08:5b:e5:aa:03:95: 9d:98:7e:b3:be:8b:13:fa:7a:dd:6a:70:a5:9d:9a: 5a:14:30:db:af:62:71:68:92:d7:e9:d0:29:05:e4: ae:70:d7:06:de:e4:6b:33:9d:af:0b:8c:bf:f1:bf: 87:cc:39:0b:5f:a3:38:3a:c2:12:99:4b:88:4d:29: 06:ab:d1:3c:fb:70:37:ea:73:b6:0a:fe:7d:73:8c: fc:9b:8b:3e:17:47:c7:28:3c:d2:f8:d2:6e:7a:90: 53:f5:39:f6:fb:8d:fd:2c:1d:a4:1e:fb:7f:4b:ba: 2d:55:51:e3:60:b4:8e:3f:2c:d7:e2:e0:bc:38:02: 1b:1e:fe:a7:d3:25:6f:dd:cb:36:2d:1e:98:4e:90: 1a:8e:65:d6:77:ea:9f:0a:8e:1f:80:23:4d:74:5b: 47:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:1E:05:8D:F4:80:EC:08:66:82:F7:B8:96:4B:24:4B:AC:87:1F:69 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:77:9e:9b:fd:90:36:4f:7f:cc:9b:22:a9:e4:60:48:91:a5: d4:51:1c:4d:a6:b0:81:cc:3b:fe:a8:a3:bc:36:73:06:de:4a: 1c:85:3e:be:69:54:18:eb:1a:be:00:9a:b1:a4:37:2d:0c:0a: 7d:b6:f8:6f:9c:5c:c5:b4:b7:7d:05:87:f4:00:9f:ed:e1:39: 20:24:15:30:d7:70:c5:e7:b5:f3:b8:9d:c4:76:42:87:58:27: 4c:04:52:83:c7:52:22:71:8d:5d:c0:55:3c:1e:74:55:ea:3a: a7:c7:b7:e2:7f:d3:2b:44:62:91:03:d7:7e:12:9e:5b:b0:45: 7c:c1:ce:44:29:81:3d:08:49:82:04:1e:ca:d0:60:cf:f0:11: 9b:70:b8:1f:54:64:63:57:68:5c:b5:67:fb:56:03:6f:fc:69: 01:33:7a:87:d5:34:3e:0f:11:8b:ac:15:b4:c0:0a:5e:f6:56: 27:04:8e:c1:a2:cb:66:c0:de:8f:b1:92:7e:4d:ae:1f:4b:bf: e6:2a:c9:8a:fa:b2:86:0a:92:86:2d:76:e6:c2:09:6c:d8:8f: e4:93:20:d2:06:37:9e:c8:df:bc:5d:85:98:80:5e:57:4f:c6: 9a:d4:90:a7:7d:1f:2b:5a:c7:5a:84:14:77:ab:0a:56:c6:da: 50:bc:48:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjQxMTIyMTk0ODE3WhcNMjQxMTI5MTk0ODE3WjAYMRYwFAYD VQQDEw02NzQwZTAwMS0xMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjWCnvePbGCtuCGol+b45rSpifSx5zTqwqp/CxoEbGZlFwcEOwawk+0kj9xB Wo6Vm13weVXP9aUxxH5ZeClEi3BQoSj8jYKsK60wl5zfWsOtBl2j67En5aeEZjL1 JE6uhw4IW+WqA5WdmH6zvosT+nrdanClnZpaFDDbr2JxaJLX6dApBeSucNcG3uRr M52vC4y/8b+HzDkLX6M4OsISmUuITSkGq9E8+3A36nO2Cv59c4z8m4s+F0fHKDzS +NJuepBT9Tn2+439LB2kHvt/S7otVVHjYLSOPyzX4uC8OAIbHv6n0yVv3cs2LR6Y TpAajmXWd+qfCo4fgCNNdFtHUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEeBY30 gOwIZoL3uJZLJEushx9pMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJd56b/ZA2T3/MmyKp5GBIkaXUURxNprCBzDv+qKO8NnMG3kochT6+ aVQY6xq+AJqxpDctDAp9tvhvnFzFtLd9BYf0AJ/t4TkgJBUw13DF57XzuJ3EdkKH WCdMBFKDx1IicY1dwFU8HnRV6jqnx7fif9MrRGKRA9d+Ep5bsEV8wc5EKYE9CEmC BB7K0GDP8BGbcLgfVGRjV2hctWf7VgNv/GkBM3qH1TQ+DxGLrBW0wApe9lYnBI7B ostmwN6PsZJ+Ta4fS7/mKsmK+rKGCpKGLXbmwgls2I/kkyDSBjeeyN+8XYWYgF5X T8aa1JCnfR8rWsdahBR3qwpWxtpQvEgu -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org