$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft File: Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft (raw, json) Hash identifier: +m0Bp07DZLhG0hFxcCgJ+I0gm+8FzKwttKmmXf5J1wY= Subject key identifier: 39:04:07:F4:BD:81:54:EE:2A:60:74:22:39:72:1E:AF:04:7F:3F:CC Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Certificate serial: 3474 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft Manifest number: 3449 Signing time: Fri 22 Nov 2024 15:21:07 +0000 Manifest this update: Fri 22 Nov 2024 15:21:06 +0000 Manifest next update: Fri 29 Nov 2024 15:21:06 +0000 Files and hashes: 1: Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl (hash: TIfuNAd8Vi/M3uT3bjsI5AEeYmdUbkhut2XitBTU8Ok=) 2: 84BF09DCA47211EFA8AC7612C4F9AE02.roa (hash: jnE2CFwEnryv4qVtFRszCwHKLAY206wXupor+KXr4Q0=) 3: 1DECCD5252E911ED8BAAA80AC4F9AE02.roa (hash: IrJp7iMCwaqaCQTisyHX9ot6P3+bjwvrOPWL8AEixrI=) 4: 93441F8211CB11EEB8151734C4F9AE02.roa (hash: hIudSvFY2AsPTk+bMlzkhMZSMDa/NBtr6ArnMu6ko7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13428 (0x3474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Validity Not Before: Nov 22 15:21:06 2024 GMT Not After : Nov 29 15:21:06 2024 GMT Subject: CN=6740a163-8f9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:83:15:d0:4e:f5:0d:bc:43:36:b5:4c:57:5f: 7c:7e:d9:2e:1e:88:24:21:7b:0b:7d:f8:75:60:a4: 23:ec:2c:0a:14:77:94:3f:a1:76:0d:e2:07:00:a0: 63:bb:cd:34:4e:ef:15:e4:0b:bc:99:ba:d5:46:db: ef:69:66:89:7d:bb:bd:b0:2c:1e:4a:c2:3b:ae:59: e5:54:93:da:48:4b:ee:c5:2c:5d:fc:16:a1:c2:c5: d7:fb:dc:52:f1:fb:f1:03:f6:82:12:34:c6:ec:da: 5c:4c:04:8c:7e:fa:a0:15:eb:63:1f:25:4b:48:fc: 63:99:4b:4b:43:ff:c0:b3:df:bd:49:f6:65:c0:55: 83:56:3a:46:a7:30:41:a5:f2:63:f4:28:2e:e9:96: 78:30:57:cf:c2:63:dd:5d:7b:4a:58:43:55:54:9d: 44:d5:90:f8:1a:45:33:69:4b:5a:1d:c1:7c:f2:48: 5c:64:ec:a7:06:79:ab:7b:b0:a7:b2:5b:24:6b:e0: c5:2f:f4:5f:b4:2f:06:e6:ca:fc:34:e8:04:aa:11: 87:b8:7f:17:e0:2d:44:2b:57:49:ed:02:38:b5:bc: f6:4e:a9:f9:83:cd:17:c4:d3:4e:8b:b8:69:29:5f: 25:e6:86:02:f4:59:31:14:8c:0a:77:e0:46:86:70: a4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:04:07:F4:BD:81:54:EE:2A:60:74:22:39:72:1E:AF:04:7F:3F:CC X509v3 Authority Key Identifier: keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:83:43:6a:ad:b5:ed:6d:a0:ff:8d:85:00:08:e1:f1:5c:a3: 89:1a:4a:12:8d:98:7a:de:7a:d3:d1:44:25:b3:db:47:04:5c: ef:f1:cf:ba:1f:22:f8:95:4f:f8:c3:9a:be:6d:07:51:86:7e: 5e:d9:8c:2e:87:37:d5:6b:1e:34:09:1c:21:ce:c6:5d:8c:de: 5b:39:fd:13:cb:c9:fd:a5:f1:81:fd:3c:42:21:b1:10:7f:d8: 1b:ff:cd:47:d6:4e:6b:7c:04:e4:13:d7:eb:54:7f:27:ce:aa: 5f:0d:ac:43:55:d6:c5:e5:6c:6b:0b:96:2e:45:c7:a7:21:92: f6:37:11:83:9e:8b:32:34:b3:d1:de:45:20:04:f1:48:83:ca: 97:a2:22:e6:e4:c5:ed:95:56:ff:10:b8:9b:46:6c:c3:66:ce: 4f:0f:e4:83:6d:e1:4d:da:ab:21:d8:d3:39:41:77:86:49:42: 95:03:ae:ab:6a:00:89:b9:60:3e:fa:ba:24:3b:0f:b5:6f:ea: 32:d9:e5:2a:2b:78:50:71:81:7f:cc:c8:95:4d:c6:54:cf:f2: c4:e2:a2:74:63:8b:05:05:a4:c2:ea:93:9f:57:e0:4d:68:58: dc:1d:1d:af:09:a9:92:ed:4f:f0:e5:45:fd:1e:db:2e:fd:fd: 3e:bd:18:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNzYxMTAvBgNVBAUTKDYzRUM0RTYzODBGQUFFQTUxMTA3RTlDNDBDMkYxMDU4 RTA4Rjg1NkUwHhcNMjQxMTIyMTUyMTA2WhcNMjQxMTI5MTUyMTA2WjAYMRYwFAYD VQQDEw02NzQwYTE2My04ZjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIMV0E71DbxDNrVMV198ftkuHogkIXsLffh1YKQj7CwKFHeUP6F2DeIHAKBj u800Tu8V5Au8mbrVRtvvaWaJfbu9sCweSsI7rlnlVJPaSEvuxSxd/BahwsXX+9xS 8fvxA/aCEjTG7NpcTASMfvqgFetjHyVLSPxjmUtLQ//As9+9SfZlwFWDVjpGpzBB pfJj9Cgu6ZZ4MFfPwmPdXXtKWENVVJ1E1ZD4GkUzaUtaHcF88khcZOynBnmre7Cn slska+DFL/RftC8G5sr8NOgEqhGHuH8X4C1EK1dJ7QI4tbz2Tqn5g80XxNNOi7hp KV8l5oYC9FkxFIwKd+BGhnCkCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkEB/S9 gVTuKmB0IjlyHq8Efz/MMB8GA1UdIwQYMBaAFGPsTmOA+q6lEQfpxAwvEFjgj4Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY3Ni85NDRFMzg5MjFE QUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJxVVJCLW5FREM4UVdPQ1Bo VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kteE9ZNEQ2cnFVUkItbkVEQzhRV09DUGhXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkY3Ni85NDRFMzg5MjFEQUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJx VVJCLW5FREM4UVdPQ1BoVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYg0NqrbXtbaD/jYUACOHxXKOJGkoSjZh63nrT0UQls9tHBFzv8c+6 HyL4lU/4w5q+bQdRhn5e2YwuhzfVax40CRwhzsZdjN5bOf0Ty8n9pfGB/TxCIbEQ f9gb/81H1k5rfATkE9frVH8nzqpfDaxDVdbF5WxrC5YuRcenIZL2NxGDnosyNLPR 3kUgBPFIg8qXoiLm5MXtlVb/ELibRmzDZs5PD+SDbeFN2qsh2NM5QXeGSUKVA66r agCJuWA++rokOw+1b+oy2eUqK3hQcYF/zMiVTcZUz/LE4qJ0Y4sFBaTC6pOfV+BN aFjcHR2vCamS7U/w5UX9Htsu/f0+vRjz -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org