$ rpki-client -vvf rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft File: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft (raw, json) Hash identifier: hEbdFcNcDCKSQIEDG5ENWchT42gWbF25iqB9l9p2i6s= Subject key identifier: 66:CF:2D:1B:38:A2:E7:B7:7C:EF:F9:33:5A:A8:9A:BA:4C:D0:D0:4D Authority key identifier: 76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C Certificate issuer: /CN=A9150733/serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft Manifest number: 0BC8 Signing time: Fri 22 Nov 2024 19:11:16 +0000 Manifest this update: Fri 22 Nov 2024 19:11:16 +0000 Manifest next update: Fri 29 Nov 2024 19:11:16 +0000 Files and hashes: 1: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl (hash: sS8fFWiaefY7nxnSzekYnpqCteBjpQqJwjg42Sh1D5k=) 2: DC41F9C4214411EEBC685C79C4F9AE02.roa (hash: LlmFtucv67NIV6SVDjcp+KXSQX2AmgL34grHdaVZjas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150733/serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Validity Not Before: Nov 22 19:11:16 2024 GMT Not After : Nov 29 19:11:16 2024 GMT Subject: CN=6740d754-edaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bc:80:1b:9b:24:c2:3a:6c:73:fb:20:3a:20: bd:1e:7a:e9:82:a6:d8:9f:29:76:a5:c7:30:31:d3: df:93:7b:c9:b4:c3:4e:13:59:04:6e:a7:5f:c7:ef: 70:d6:10:87:1e:a5:82:5e:9c:78:61:68:32:26:2b: 84:d9:13:fa:0c:19:81:b7:d7:56:f6:07:e4:3d:12: d0:e8:70:05:0f:a7:ee:8e:f9:62:7b:aa:78:ad:27: ac:13:be:a6:91:40:5e:ac:5a:8a:b0:bd:e5:71:95: 86:2d:ef:ee:29:26:be:9e:e9:f9:68:da:49:81:7d: 68:a5:58:06:be:c5:a8:50:d8:f6:11:57:86:04:b9: ef:49:e3:02:05:20:69:73:2f:28:3b:31:6b:49:ad: 17:ee:5d:6d:cc:57:2f:c7:e0:c7:28:f8:ed:37:24: 37:31:57:6a:dc:db:47:9c:54:55:30:ab:e3:84:e9: 39:be:12:ef:bc:27:96:e3:8a:f1:bc:79:5b:00:7e: 6d:8c:a0:72:f0:a3:0d:25:2e:54:73:e1:7f:ef:67: 7a:ee:45:f5:33:00:ca:bb:26:06:fa:89:59:62:04: c0:d0:17:23:12:89:aa:75:95:c4:4a:e0:b7:47:d3: 66:85:e9:93:1e:cc:bf:2e:cd:58:aa:24:48:9e:50: c8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CF:2D:1B:38:A2:E7:B7:7C:EF:F9:33:5A:A8:9A:BA:4C:D0:D0:4D X509v3 Authority Key Identifier: keyid:76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ef:e3:72:30:6a:40:9b:36:3f:7c:33:b5:7c:fc:13:25:25:c1: e9:df:ff:e2:ac:0d:82:e4:47:a2:cf:4e:a1:03:92:db:37:b9: 9b:81:24:ea:82:40:ba:8c:29:8f:4f:de:84:2c:f8:74:1e:b4: 42:74:2a:63:a1:f3:83:a8:34:fe:d4:47:38:26:10:8d:cb:50: 21:cf:4f:25:77:db:6a:24:df:5c:6b:ae:a4:cd:8f:8f:b3:f7: 54:3f:bf:de:04:bf:fe:d6:f9:42:eb:53:db:f3:62:00:bc:6e: d2:41:a3:03:23:86:0a:fc:bb:01:79:8b:9e:d7:c6:f0:54:7d: c1:aa:d3:43:57:84:e4:95:74:d8:7b:d9:0b:54:0b:0b:2c:92: 89:3a:af:cd:bc:02:ba:20:f4:4b:3e:60:84:f3:ba:3a:d4:bc: 57:64:88:a0:90:76:c9:e0:31:56:c4:58:89:6c:54:b0:7e:6e: 7d:4a:51:96:0b:96:d4:84:4b:15:11:cd:11:b2:07:6f:ab:50: 0c:53:d2:86:9f:85:62:84:06:ab:d9:a6:e8:2c:8f:57:70:05: 2d:76:5f:96:86:40:53:3e:2e:dd:75:a9:c0:28:5b:4a:c5:6e: 5e:51:e9:f4:43:37:ca:60:53:a2:58:09:f4:c1:64:04:8a:60: bb:9b:ed:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA3MzMxMTAvBgNVBAUTKDc2OUQ0NEQ5QjQxQ0JCQ0ZDNTM2NzEzQjlCOTUyOEY2 Q0FCODdDNUMwHhcNMjQxMTIyMTkxMTE2WhcNMjQxMTI5MTkxMTE2WjAYMRYwFAYD VQQDEw02NzQwZDc1NC1lZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoryAG5skwjpsc/sgOiC9HnrpgqbYnyl2pccwMdPfk3vJtMNOE1kEbqdfx+9w 1hCHHqWCXpx4YWgyJiuE2RP6DBmBt9dW9gfkPRLQ6HAFD6fujvlie6p4rSesE76m kUBerFqKsL3lcZWGLe/uKSa+nun5aNpJgX1opVgGvsWoUNj2EVeGBLnvSeMCBSBp cy8oOzFrSa0X7l1tzFcvx+DHKPjtNyQ3MVdq3NtHnFRVMKvjhOk5vhLvvCeW44rx vHlbAH5tjKBy8KMNJS5Uc+F/72d67kX1MwDKuyYG+olZYgTA0BcjEomqdZXESuC3 R9NmhemTHsy/Ls1YqiRInlDIiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbPLRs4 oue3fO/5M1qomrpM0NBNMB8GA1UdIwQYMBaAFHadRNm0HLvPxTZxO5uVKPbKuHxc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDczMy8yMTc4NjhDRTNE QjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4X0ZObkU3bTVVbzlzcTRm RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwMUUyYlFjdThfRk5uRTdtNVVvOXNxNGZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDczMy8yMTc4NjhDRTNEQjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4 X0ZObkU3bTVVbzlzcTRmRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDv43IwakCbNj98M7V8/BMlJcHp3//irA2C5Eeiz06hA5LbN7mbgSTq gkC6jCmPT96ELPh0HrRCdCpjofODqDT+1Ec4JhCNy1Ahz08ld9tqJN9ca66kzY+P s/dUP7/eBL/+1vlC61Pb82IAvG7SQaMDI4YK/LsBeYue18bwVH3BqtNDV4TklXTY e9kLVAsLLJKJOq/NvAK6IPRLPmCE87o61LxXZIigkHbJ4DFWxFiJbFSwfm59SlGW C5bUhEsVEc0Rsgdvq1AMU9KGn4VihAar2aboLI9XcAUtdl+WhkBTPi7ddanAKFtK xW5eUen0QzfKYFOiWAn0wWQEimC7m+1D -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org