$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: LxQmhD5j/ka+9SNq/UPHSc9RQBHUrMntCIhIn330/j0= Subject key identifier: CB:F3:D5:31:DE:1D:F6:CE:51:56:35:A3:CE:7E:32:F2:74:89:25:28 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 033C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0333 Signing time: Thu 21 Nov 2024 00:38:00 +0000 Manifest this update: Thu 21 Nov 2024 00:38:00 +0000 Manifest next update: Thu 28 Nov 2024 00:38:00 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: 9XR0s+VaIyFGAhLzaVYgrjdsablmjRl75LP6a92wTlk=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: UVjSmdKortc7xXR2V1ZwcpHYtGMB4B0YpUSbuXMU18w=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: u4ixDiIah0HRlbgq6Gff8MvIftonQjJ2hGXt/sRAB/s=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: SaFx1B9LN0ZyNkvHhJEWt5kJgn2PgssQSYvBTUpmMDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Nov 21 00:38:00 2024 GMT Not After : Nov 28 00:38:00 2024 GMT Subject: CN=673e80e8-8302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:27:5d:4c:d5:cb:f7:05:1d:7a:4c:e6:ff:78: 02:69:e8:6a:7f:78:7a:2b:9a:24:57:4c:46:90:45: df:cf:c3:5d:e7:52:e3:47:53:c1:65:fd:fd:ce:07: 71:56:b4:a8:79:42:6d:06:c0:05:ee:97:80:39:ff: eb:30:32:7a:57:d1:29:a7:a4:74:e5:da:56:77:5d: c6:c8:e9:23:40:27:17:fe:d6:a6:3c:cc:77:64:c6: d8:22:04:72:34:da:74:f7:71:b7:db:12:29:55:60: a0:fb:2d:20:34:c2:49:7f:bd:0e:73:1c:7f:eb:a3: 92:f1:79:22:44:2d:ca:08:09:1b:28:62:4f:43:6e: 78:e4:a4:6c:54:2b:fd:64:91:3f:2c:83:6e:ec:88: 74:85:e1:17:92:c4:cf:43:b0:56:aa:e6:aa:6e:fe: 19:1d:4a:3a:81:e5:bb:97:f6:07:bc:e6:12:4a:97: 2c:ed:e7:e1:20:b2:39:c3:b0:86:ae:3c:7e:fa:05: 0c:fc:57:2f:07:67:23:f6:dd:59:cd:8b:8f:eb:4a: 88:ff:ff:a8:50:07:9e:1b:02:d0:31:34:0e:6a:e0: 5e:a3:6b:f9:de:b7:be:1c:2d:21:75:02:19:79:b8: 17:a0:36:e5:14:19:56:02:72:6e:a0:65:5f:0b:cc: b6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F3:D5:31:DE:1D:F6:CE:51:56:35:A3:CE:7E:32:F2:74:89:25:28 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:11:90:58:91:23:cb:12:4d:b1:a2:d9:de:a0:a1:5a:42:18: 5b:66:b2:b7:81:45:e5:b8:dc:3a:e3:3e:0e:b7:d0:aa:1f:f0: be:59:e5:2e:fc:48:90:a5:e4:33:69:48:85:97:e5:98:e8:ab: 4a:3e:fe:7e:0d:3d:f6:04:1a:57:28:7d:69:ca:21:11:e3:0a: ce:a2:f6:25:20:c2:e7:76:08:04:55:1d:4c:7e:86:42:5c:f2: 17:6e:a1:74:9c:8b:f3:01:bf:10:2e:80:63:2d:54:44:c7:ad: 61:90:18:10:41:21:28:e5:74:a3:f9:de:79:44:2f:11:23:75: eb:61:4a:06:0d:f5:96:ce:dd:bb:6f:17:40:64:1a:bd:df:b8: 7d:5b:7b:9f:ff:79:73:8d:40:d2:26:34:0e:27:f5:ad:9d:3c: c6:42:8c:6c:c1:63:cb:e9:75:2e:af:cb:89:26:90:1d:7c:9d: b4:22:8d:c2:f0:70:67:58:b3:b9:5f:c5:ed:48:bd:4d:c9:79: 14:9b:2c:3a:99:5d:1f:b1:d9:c2:04:53:1e:95:5a:0b:5d:06: e8:59:f8:49:86:f3:9c:f6:88:25:07:fb:32:c9:10:ec:c4:3c: 34:b0:7d:d6:b2:d4:f8:f0:2b:d5:de:30:ae:aa:2d:6d:d8:c5: c4:7e:56:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjQxMTIxMDAzODAwWhcNMjQxMTI4MDAzODAwWjAYMRYwFAYD VQQDEw02NzNlODBlOC04MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yddTNXL9wUdekzm/3gCaehqf3h6K5okV0xGkEXfz8Nd51LjR1PBZf39zgdx VrSoeUJtBsAF7peAOf/rMDJ6V9Epp6R05dpWd13GyOkjQCcX/tamPMx3ZMbYIgRy NNp093G32xIpVWCg+y0gNMJJf70Ocxx/66OS8XkiRC3KCAkbKGJPQ2545KRsVCv9 ZJE/LINu7Ih0heEXksTPQ7BWquaqbv4ZHUo6geW7l/YHvOYSSpcs7efhILI5w7CG rjx++gUM/FcvB2cj9t1ZzYuP60qI//+oUAeeGwLQMTQOauBeo2v53re+HC0hdQIZ ebgXoDblFBlWAnJuoGVfC8y2VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvz1THe HfbOUVY1o85+MvJ0iSUoMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEEZBYkSPLEk2xotneoKFaQhhbZrK3gUXluNw64z4Ot9CqH/C+WeUu /EiQpeQzaUiFl+WY6KtKPv5+DT32BBpXKH1pyiER4wrOovYlIMLndggEVR1MfoZC XPIXbqF0nIvzAb8QLoBjLVREx61hkBgQQSEo5XSj+d55RC8RI3XrYUoGDfWWzt27 bxdAZBq937h9W3uf/3lzjUDSJjQOJ/WtnTzGQoxswWPL6XUur8uJJpAdfJ20Io3C 8HBnWLO5X8XtSL1NyXkUmyw6mV0fsdnCBFMelVoLXQboWfhJhvOc9oglB/syyRDs xDw0sH3WstT48CvV3jCuqi1t2MXEflYE -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:54 2024 by rpki-client on console-fra.rpki-client.org