$ rpki-client -vvf rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft File: sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft (raw, json) Hash identifier: dTWGbvu9ijb3Rij1FBAgPUOARkfGyhI/DWx4G1xlaaw= Subject key identifier: 11:75:06:2E:43:83:D3:75:63:F6:AA:22:AF:B6:F2:A1:AE:F2:69:06 Authority key identifier: B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB Certificate issuer: /CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft Manifest number: 0CB0 Signing time: Fri 22 Nov 2024 18:52:46 +0000 Manifest this update: Fri 22 Nov 2024 18:52:46 +0000 Manifest next update: Fri 29 Nov 2024 18:52:46 +0000 Files and hashes: 1: sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl (hash: HwWWg51nEYzEXG0nQv4Uul3Y9cisRZAvQ7CxMhTLVOU=) 2: 16D76086A0A811EF88ED2026C4F9AE02.roa (hash: 8Np2ddxX2fo4rhs148sR/PBqkKkRgOKwM4iRJDzvMNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FA25/serialNumber=B0014A8306C52E404F67CA2F8E586F9B868E8CAB Validity Not Before: Nov 22 18:52:46 2024 GMT Not After : Nov 29 18:52:46 2024 GMT Subject: CN=6740d2fe-bdbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4d:f9:fd:e5:54:22:ad:10:2a:24:89:d0:78: 4e:a0:fd:5a:07:2f:36:86:69:a3:07:54:3e:bb:4b: d1:be:0b:c6:3b:38:1c:ba:de:59:f8:14:53:23:19: e0:13:1d:86:03:4f:d1:34:c2:c9:8a:4e:50:1b:85: 2f:26:8e:df:a4:83:5c:6c:fe:0e:27:a7:de:06:39: f7:60:82:dc:ca:3d:35:88:7a:bf:79:04:13:92:07: 2d:bd:e3:21:1f:52:7c:26:b3:d3:50:e1:6c:39:13: b1:72:21:45:b4:aa:f1:af:03:38:84:a9:b8:0b:c4: ce:ef:ea:cf:bb:60:8d:29:d0:2e:22:ac:02:33:e3: 24:2c:25:8a:29:03:72:67:07:d7:27:0b:56:94:07: 89:12:7f:30:e5:89:b3:58:cd:1a:1d:29:e4:a4:df: f8:67:db:e1:49:9b:ef:22:78:6f:2d:a1:94:35:16: 5d:17:07:92:9a:34:f3:c2:ee:65:5b:bb:c6:51:c5: 3f:e2:c1:cb:ec:e5:2a:4a:cd:ea:e2:eb:23:a3:d0: 07:5e:35:28:df:45:b1:b2:1a:57:1a:78:42:5c:f2: 84:1a:6e:a4:cf:57:b3:24:da:1a:53:7d:57:2a:02: a5:b1:71:cf:7e:1f:5c:27:8d:1b:26:c9:91:0c:60: d2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:75:06:2E:43:83:D3:75:63:F6:AA:22:AF:B6:F2:A1:AE:F2:69:06 X509v3 Authority Key Identifier: keyid:B0:01:4A:83:06:C5:2E:40:4F:67:CA:2F:8E:58:6F:9B:86:8E:8C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FA25/2BBCBCAA1DAC11EAAF4A3763C4F9AE02/sAFKgwbFLkBPZ8ovjlhvm4aOjKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c1:ae:4a:a4:1f:44:da:3f:da:ed:11:4f:d3:20:e3:e4:1d: 4e:a5:4e:cb:09:d5:e6:2b:e3:96:11:ee:63:3d:65:5e:8e:b4: 7c:88:cf:49:11:53:31:b2:14:e8:b7:6f:62:d2:21:9e:7e:b9: 66:25:4f:9b:50:ec:b4:7b:0b:f1:b3:01:a3:ae:46:b8:eb:0c: 1d:28:44:85:e0:27:b0:5d:5c:d0:80:6d:ce:0b:bd:04:71:4a: 82:5e:8d:33:08:86:2f:17:04:c5:25:91:07:d4:20:64:60:d0: 3c:58:48:a9:58:7f:da:b4:fe:e0:1f:2c:1d:fb:b6:64:1b:76: ea:36:a2:d7:82:33:09:fd:5e:89:b1:eb:6c:6b:ce:89:1a:ef: be:2a:3f:5e:77:22:96:96:29:94:bc:78:9a:aa:33:7d:cb:5c: a5:e0:51:3e:fc:6b:c8:f6:0b:63:c4:53:fc:f5:e5:f5:21:c7: 02:11:6a:c9:d8:d8:b7:fc:d5:f1:d1:ed:a2:e2:21:b8:00:34: 7c:8b:39:e7:59:37:f9:92:68:da:60:2c:13:ff:b0:57:28:3d: 5e:0e:d8:73:0f:65:25:fe:13:20:07:cc:b5:cf:60:24:28:c6: 25:30:2f:0d:74:38:7d:4a:d9:33:e4:02:44:e9:6d:73:e7:6d: fe:3e:17:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RkEyNTExMC8GA1UEBRMoQjAwMTRBODMwNkM1MkU0MDRGNjdDQTJGOEU1ODZGOUI4 NjhFOENBQjAeFw0yNDExMjIxODUyNDZaFw0yNDExMjkxODUyNDZaMBgxFjAUBgNV BAMTDTY3NDBkMmZlLWJkYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1Tfn95VQirRAqJInQeE6g/VoHLzaGaaMHVD67S9G+C8Y7OBy63ln4FFMjGeAT HYYDT9E0wsmKTlAbhS8mjt+kg1xs/g4np94GOfdggtzKPTWIer95BBOSBy294yEf Unwms9NQ4Ww5E7FyIUW0qvGvAziEqbgLxM7v6s+7YI0p0C4irAIz4yQsJYopA3Jn B9cnC1aUB4kSfzDlibNYzRodKeSk3/hn2+FJm+8ieG8toZQ1Fl0XB5KaNPPC7mVb u8ZRxT/iwcvs5SpKzeri6yOj0AdeNSjfRbGyGlcaeEJc8oQabqTPV7Mk2hpTfVcq AqWxcc9+H1wnjRsmyZEMYNLhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEXUGLkOD 03Vj9qoir7byoa7yaQYwHwYDVR0jBBgwFoAUsAFKgwbFLkBPZ8ovjlhvm4aOjKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGQTI1LzJCQkNCQ0FBMURB QzExRUFBRjRBMzc2M0M0RjlBRTAyL3NBRktnd2JGTGtCUFo4b3ZqbGh2bTRhT2pL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0FGS2d3YkZMa0JQWjhvdmpsaHZtNGFPaktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG QTI1LzJCQkNCQ0FBMURBQzExRUFBRjRBMzc2M0M0RjlBRTAyL3NBRktnd2JGTGtC UFo4b3ZqbGh2bTRhT2pLcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHHBrkqkH0TaP9rtEU/TIOPkHU6lTssJ1eYr45YR7mM9ZV6OtHyIz0kR UzGyFOi3b2LSIZ5+uWYlT5tQ7LR7C/GzAaOuRrjrDB0oRIXgJ7BdXNCAbc4LvQRx SoJejTMIhi8XBMUlkQfUIGRg0DxYSKlYf9q0/uAfLB37tmQbduo2oteCMwn9Xomx 62xrzoka774qP153IpaWKZS8eJqqM33LXKXgUT78a8j2C2PEU/z15fUhxwIRasnY 2Lf81fHR7aLiIbgANHyLOedZN/mSaNpgLBP/sFcoPV4O2HMPZSX+EyAHzLXPYCQo xiUwLw10OH1K2TPkAkTpbXPnbf4+F3g= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org