$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft File: VFjEVinBBKqnpYcoaG-NHihyqSo.mft (raw, json) Hash identifier: sh+RiDrClD/j4eDDxeNjG7noOiB9On4ADDIuBw2ESZA= Subject key identifier: 5F:AE:5B:F0:6B:67:7D:28:96:E2:BF:9C:88:0D:98:22:64:CA:FF:50 Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0C01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft Manifest number: 0BFA Signing time: Fri 22 Nov 2024 18:19:07 +0000 Manifest this update: Fri 22 Nov 2024 18:19:06 +0000 Manifest next update: Fri 29 Nov 2024 18:19:06 +0000 Files and hashes: 1: VFjEVinBBKqnpYcoaG-NHihyqSo.crl (hash: yu2xFFAz32bad2HjbPhbTI+Csoq1XTp5OeATX0VTTmA=) 2: DB020E9C010D11EAA82AD83CC4F9AE02.roa (hash: +B4wRbVeWeDezTIkkroNJ7PsGuvGeraooCbcmlsSOW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3073 (0xc01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Validity Not Before: Nov 22 18:19:06 2024 GMT Not After : Nov 29 18:19:06 2024 GMT Subject: CN=6740cb1a-f859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d4:ec:0b:e3:99:02:1e:db:66:4a:1a:4e:b2: 4c:a4:ed:4b:66:9a:4b:d2:61:ab:ac:42:93:88:3d: 45:6e:bd:aa:b1:7f:35:02:88:4d:25:d6:79:8d:23: a9:c2:49:1d:63:74:23:72:48:94:bc:c9:50:2c:a2: 7b:d3:2e:14:6a:ec:a0:dd:19:75:fc:ac:da:74:1b: 75:4c:c1:8a:cc:0e:2b:9b:91:85:44:d5:96:68:42: 4b:4c:52:d4:b9:7b:4e:66:42:02:c6:a2:fa:d4:ce: ef:4d:a0:af:46:f0:9b:91:dd:c6:58:77:64:7e:b8: 4d:24:b2:d4:dc:e5:47:77:60:cf:b6:1c:ed:3c:9e: 74:4c:fc:b6:22:a9:af:25:7a:47:26:e6:65:52:31: 50:6c:0c:8b:a7:b6:f4:17:a9:6f:1f:23:18:79:cc: 00:a7:ce:51:7b:20:82:d2:dd:81:4d:39:53:5c:87: 4e:04:ad:1e:aa:3e:6e:19:dd:f4:15:1d:a5:b8:be: 7f:73:8d:7b:e3:5b:1d:26:d6:c8:91:9d:21:27:55: 88:75:66:ab:17:cd:02:39:f9:f7:ce:08:c3:68:45: 92:61:f3:37:b3:d0:1f:98:59:7b:85:db:99:da:d4: 1e:75:b1:19:6f:d1:33:43:0b:9c:5b:bb:11:c6:08: 49:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:AE:5B:F0:6B:67:7D:28:96:E2:BF:9C:88:0D:98:22:64:CA:FF:50 X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:32:6b:3b:56:7b:04:d4:d0:97:ad:fb:78:1f:65:e7:1f:62: cc:53:8a:cd:32:2d:67:d6:71:46:a7:c2:b2:d6:3d:7c:9e:5f: ed:1b:9f:5d:1d:75:95:2f:55:01:a0:6e:00:07:6c:01:80:34: 54:15:55:1e:fc:79:3f:bf:ff:65:61:c9:26:06:5d:fb:b2:0b: 26:31:37:bd:1c:c3:02:42:7e:7e:b9:8b:2c:9f:ee:ab:cd:e8: c2:c0:5f:b9:9b:7c:69:ba:f7:2d:d6:d0:a1:9a:44:34:17:54: 91:15:ac:1b:50:c9:89:ea:2c:68:6b:f2:39:bd:02:cf:e7:9e: c2:8b:d4:b7:c1:ff:e3:da:b7:7a:b1:fb:86:1c:07:b0:f5:c9: 55:46:ca:ef:f2:7a:4c:25:a6:66:ea:6b:1b:d2:96:89:5d:df: a0:9c:28:86:70:b6:6c:82:47:cd:0c:89:b4:6a:f9:e4:5c:28: 58:fc:4e:5d:99:13:16:d0:27:8f:4a:c5:2f:b2:62:8f:03:d0: 74:00:61:3c:43:34:7d:50:c6:03:b7:c7:2c:4b:23:ad:4f:51: 64:56:b1:85:d1:99:d7:28:d8:db:35:d3:e4:c0:e8:06:6a:31: 83:35:00:be:f2:cf:df:f9:e9:b8:c1:71:1a:2c:5b:78:b2:4f: 66:bf:61:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjQxMTIyMTgxOTA2WhcNMjQxMTI5MTgxOTA2WjAYMRYwFAYD VQQDEw02NzQwY2IxYS1mODU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9TsC+OZAh7bZkoaTrJMpO1LZppL0mGrrEKTiD1Fbr2qsX81AohNJdZ5jSOp wkkdY3QjckiUvMlQLKJ70y4Uauyg3Rl1/KzadBt1TMGKzA4rm5GFRNWWaEJLTFLU uXtOZkICxqL61M7vTaCvRvCbkd3GWHdkfrhNJLLU3OVHd2DPthztPJ50TPy2Iqmv JXpHJuZlUjFQbAyLp7b0F6lvHyMYecwAp85ReyCC0t2BTTlTXIdOBK0eqj5uGd30 FR2luL5/c41741sdJtbIkZ0hJ1WIdWarF80COfn3zgjDaEWSYfM3s9AfmFl7hduZ 2tQedbEZb9EzQwucW7sRxghJZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+uW/Br Z30oluK/nIgNmCJkyv9QMB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0MyNy82NUJCNDg5QzAwNEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJL cW5wWWNvYUctTkhpaHlxU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtMms7VnsE1NCXrft4H2XnH2LMU4rNMi1n1nFGp8Ky1j18nl/tG59d HXWVL1UBoG4AB2wBgDRUFVUe/Hk/v/9lYckmBl37sgsmMTe9HMMCQn5+uYssn+6r zejCwF+5m3xpuvct1tChmkQ0F1SRFawbUMmJ6ixoa/I5vQLP557Ci9S3wf/j2rd6 sfuGHAew9clVRsrv8npMJaZm6msb0paJXd+gnCiGcLZsgkfNDIm0avnkXChY/E5d mRMW0CePSsUvsmKPA9B0AGE8QzR9UMYDt8csSyOtT1FkVrGF0ZnXKNjbNdPkwOgG ajGDNQC+8s/f+em4wXEaLFt4sk9mv2Hd -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org