$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: OI1hH/LyHF6fcTxS4JyhaYVPZJBdWVdywnRgI2utHjk= Subject key identifier: 99:6E:58:FC:CA:4C:37:1B:CA:AA:C8:0D:75:08:70:1E:AC:CC:FF:47 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 077C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 076E Signing time: Fri 22 Nov 2024 20:59:04 +0000 Manifest this update: Fri 22 Nov 2024 20:59:03 +0000 Manifest next update: Fri 29 Nov 2024 20:59:03 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: DLrTuePodzKRvGmhgnC77zd4Cba8LwxI266/iss41G8=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: Es/KgzPMe1zYauziZBRZHyjZJ35reOpMCOBV6MckhCs=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: Ka3pUjVhAjV8Jw2bqRS1fw1Jl4NqlRDOjR/Fjs/H0+M=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: OhYJKozvfID8ylqYGKB5GjbLkxxbmKyR5Jo0rIME+Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1916 (0x77c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Nov 22 20:59:03 2024 GMT Not After : Nov 29 20:59:03 2024 GMT Subject: CN=6740f097-8e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f0:0e:89:39:1f:59:37:07:d8:ce:d8:9c:65: df:9b:4c:37:4a:dd:32:bf:6f:41:9b:1d:d6:55:6b: 92:ab:a9:81:ed:6d:a9:3f:0f:ef:c2:3f:f0:01:9d: 50:7f:39:22:0d:2a:f6:8d:b4:c5:0e:a8:b0:7a:50: 3a:2c:ac:b1:b8:18:01:b0:ca:ec:e1:c4:f8:07:2a: 87:ae:02:8b:33:47:e5:d9:57:ed:e8:ef:e5:7b:ab: f4:7a:e0:62:a8:31:54:40:85:7e:83:cc:26:9a:4f: f5:78:d4:30:d3:42:dc:52:62:60:0a:40:29:c3:2b: 58:a6:91:2c:2f:10:a9:9f:8d:d4:0c:63:67:e5:00: 78:84:1e:85:1e:2b:7c:51:4b:92:30:3e:fd:fb:28: a2:53:b5:da:29:ac:54:0e:ab:a6:54:12:a6:90:9b: 39:f5:39:3f:d6:6c:c7:aa:a7:cf:84:34:9b:46:4b: 4c:0f:e7:d3:e0:b5:7b:c2:35:a5:c2:1a:39:8f:e2: fc:a7:8f:50:4d:32:05:93:55:2f:f3:fa:b4:45:19: 0b:aa:46:39:4a:40:ba:6b:eb:ae:ee:0f:71:d0:00: 6a:e8:0f:07:10:bc:25:f0:04:32:95:bd:5c:34:85: c7:2f:bd:ef:44:a1:cf:ab:b2:c3:c8:3c:d2:dc:6b: 2c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6E:58:FC:CA:4C:37:1B:CA:AA:C8:0D:75:08:70:1E:AC:CC:FF:47 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:59:e3:3a:4f:51:6d:16:99:f4:7c:74:2e:6b:64:ff:6f:c5: 73:78:85:5a:48:23:17:bc:92:7d:f9:27:6a:b7:ff:eb:bf:54: 65:5e:11:1d:54:48:4c:90:a2:81:87:71:f5:9d:82:f2:40:09: 40:05:9f:42:be:0c:a9:42:1b:ca:13:40:f0:d4:2b:f4:c6:58: 7d:d9:49:9c:81:a8:f3:6b:88:10:24:af:d4:43:db:d5:ea:ee: 05:61:3c:a2:87:77:29:10:23:c7:30:3d:e6:dd:c8:45:65:d4: 3b:11:b7:3d:96:cb:97:9f:3f:ed:f8:01:42:49:89:92:22:ea: 66:d7:9e:54:30:32:d6:9e:74:96:48:fb:30:41:6d:7d:e3:b9: 70:63:af:ec:35:a3:22:d0:ac:9d:3e:48:28:e1:62:82:7c:80: 95:ab:2d:56:99:01:b0:5b:1a:65:ba:61:53:12:c1:25:d7:e2: 69:7e:a2:ee:4d:31:24:bd:32:eb:fe:53:ef:74:79:ab:b7:bf: 60:53:56:a1:56:e2:60:7e:3d:10:dd:2e:32:83:69:d4:04:fb: f8:58:98:fd:1e:f4:dc:fe:25:77:87:04:f8:b8:be:76:ae:99: 63:df:e0:28:14:b2:fb:a1:6f:54:0d:92:bd:95:17:07:34:06: c3:dc:67:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjQxMTIyMjA1OTAzWhcNMjQxMTI5MjA1OTAzWjAYMRYwFAYD VQQDEw02NzQwZjA5Ny04ZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfAOiTkfWTcH2M7YnGXfm0w3St0yv29Bmx3WVWuSq6mB7W2pPw/vwj/wAZ1Q fzkiDSr2jbTFDqiwelA6LKyxuBgBsMrs4cT4ByqHrgKLM0fl2Vft6O/le6v0euBi qDFUQIV+g8wmmk/1eNQw00LcUmJgCkApwytYppEsLxCpn43UDGNn5QB4hB6FHit8 UUuSMD79+yiiU7XaKaxUDqumVBKmkJs59Tk/1mzHqqfPhDSbRktMD+fT4LV7wjWl who5j+L8p49QTTIFk1Uv8/q0RRkLqkY5SkC6a+uu7g9x0ABq6A8HELwl8AQylb1c NIXHL73vRKHPq7LDyDzS3GssqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJluWPzK TDcbyqrIDXUIcB6szP9HMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYWeM6T1FtFpn0fHQua2T/b8VzeIVaSCMXvJJ9+Sdqt//rv1RlXhEd VEhMkKKBh3H1nYLyQAlABZ9CvgypQhvKE0Dw1Cv0xlh92Umcgajza4gQJK/UQ9vV 6u4FYTyih3cpECPHMD3m3chFZdQ7Ebc9lsuXnz/t+AFCSYmSIupm155UMDLWnnSW SPswQW1947lwY6/sNaMi0KydPkgo4WKCfICVqy1WmQGwWxplumFTEsEl1+JpfqLu TTEkvTLr/lPvdHmrt79gU1ahVuJgfj0Q3S4yg2nUBPv4WJj9HvTc/iV3hwT4uL52 rplj3+AoFLL7oW9UDZK9lRcHNAbD3Geq -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org