$ rpki-client -vvf rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft (raw, json) Hash identifier: /3EPYeIvQAdQ8ZeyPqbqB6rpWe5Q4+6+V+pYQMaLWcM= Subject key identifier: 6D:3F:EB:DC:7B:57:20:3E:06:CC:99:FA:66:78:2F:3E:15:3F:83:4A Authority key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E Certificate issuer: /CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft Manifest number: 0B Signing time: Wed 25 Dec 2024 06:12:13 +0000 Manifest this update: Wed 25 Dec 2024 06:12:12 +0000 Manifest next update: Wed 01 Jan 2025 06:12:12 +0000 Files and hashes: 1: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl (hash: Td7qA4p+ZCIxEPn+KuZVqSzQXZnBDiNk+uxbaCQmkjk=) 2: 50B93FA8B5EE11EF9AC9D812C4F9AE02.roa (hash: XoqSoHkPs1ffdTh6W19ne37H+1CKa62i2t43qmhHxIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Validity Not Before: Dec 25 06:12:12 2024 GMT Not After : Jan 1 06:12:12 2025 GMT Subject: CN=676ba23c-6235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:ba:f3:e9:cd:e1:cd:4f:a8:c1:13:15:26: b6:b3:57:6e:76:8b:7f:4e:83:be:17:b3:74:18:4c: e9:77:84:5a:71:2d:1a:c7:d5:b9:b3:7a:94:1c:74: 0b:0b:c1:45:22:08:29:b5:bf:7d:a0:aa:b2:44:5c: ac:41:56:0a:9c:00:c2:79:0f:20:59:c8:ef:1d:fa: 31:42:36:49:aa:c4:42:d6:98:61:80:7e:3f:06:76: e7:f4:d3:0f:a8:99:2c:3a:a8:e0:5e:61:01:ad:f2: 39:71:33:41:c1:f8:dd:95:06:11:2a:80:78:d9:20: 10:b0:30:30:83:a6:4e:fe:73:32:bb:1a:f0:63:2b: 25:5c:64:9c:c3:71:c4:ce:83:e7:6a:20:1e:a6:95: 5d:c9:41:9e:73:dc:d0:07:15:13:08:bd:70:79:c1: ea:80:38:ce:0b:22:6c:ba:fd:e5:bb:be:a7:6d:e4: d9:5d:93:53:70:0f:a8:39:a5:e5:5c:ee:cc:c5:e9: ad:fb:09:2a:3d:62:d4:f4:1a:1a:b9:26:86:4d:16: 3e:97:85:b7:91:08:e9:80:27:e4:56:9d:ac:37:32: 5e:ac:2d:16:66:59:8c:53:40:e9:fc:9f:ab:f5:ab: c3:7f:84:df:c2:e3:32:89:97:58:9e:71:30:ea:6e: 49:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3F:EB:DC:7B:57:20:3E:06:CC:99:FA:66:78:2F:3E:15:3F:83:4A X509v3 Authority Key Identifier: keyid:DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:89:e1:1e:98:59:06:48:5c:2c:4d:8d:24:a2:68:a9:8a:81: 07:69:50:7f:bf:2a:48:c9:ba:dd:fe:7d:e8:6b:f6:00:29:7c: d6:28:04:57:22:64:07:11:53:19:21:6d:4f:8a:36:db:18:a5: 2d:ee:61:7a:ea:1b:a2:de:ff:61:91:64:ec:be:1b:dc:ef:fd: bf:8f:61:f9:29:23:15:7c:a1:09:60:85:f9:cd:92:aa:23:f7: 70:8f:f6:48:62:d1:23:66:9a:db:ed:d9:c7:c4:36:b0:4a:1b: 09:bb:85:44:90:bd:c0:8a:a2:88:97:b7:bd:ae:a6:db:14:ab: ba:6c:94:ba:a6:bf:84:34:46:ba:69:5e:39:eb:01:3a:2f:9c: ff:d0:ec:d8:ab:d7:f1:00:5d:d2:52:fc:cf:a5:3a:9c:f2:d2: 2c:1c:62:67:e1:40:1e:30:38:7f:67:57:9e:42:79:b0:25:57: 09:22:d0:3e:e3:65:6c:be:08:86:bb:c1:fb:09:39:49:e8:16: 9b:8b:b9:7e:35:63:db:c5:e1:b3:84:6f:82:49:36:8f:e9:26: c1:4e:da:c0:1d:06:b9:06:ed:4f:1d:cf:be:82:b9:70:f1:f9: 4c:98:2f:8b:6c:6d:27:18:11:aa:90:8b:1d:16:d9:aa:a0:b1: 46:0f:77:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkE5NjExMC8GA1UEBRMoREFFRkE1NDM1OEY0QkNDMEQ4NDdDQzZEQzlDQUY3OEJD NUUwOTk2RTAeFw0yNDEyMjUwNjEyMTJaFw0yNTAxMDEwNjEyMTJaMBgxFjAUBgNV BAMTDTY3NmJhMjNjLTYyMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCit7rz6c3hzU+owRMVJrazV252i39Og74Xs3QYTOl3hFpxLRrH1bmzepQcdAsL wUUiCCm1v32gqrJEXKxBVgqcAMJ5DyBZyO8d+jFCNkmqxELWmGGAfj8Gduf00w+o mSw6qOBeYQGt8jlxM0HB+N2VBhEqgHjZIBCwMDCDpk7+czK7GvBjKyVcZJzDccTO g+dqIB6mlV3JQZ5z3NAHFRMIvXB5weqAOM4LImy6/eW7vqdt5Nldk1NwD6g5peVc 7szF6a37CSo9YtT0Ghq5JoZNFj6XhbeRCOmAJ+RWnaw3Ml6sLRZmWYxTQOn8n6v1 q8N/hN/C4zKJl1iecTDqbkkHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbT/r3HtX ID4GzJn6ZngvPhU/g0owHwYDVR0jBBgwFoAU2u+lQ1j0vMDYR8xtycr3i8XgmW4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGQTk2LzhBMzUwOTBDQjVF RDExRUY5RDIwNjkwRUM0RjlBRTAyLzJ1LWxRMWowdk1EWVI4eHR5Y3IzaThYZ21X NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnUtbFExajB2TURZUjh4dHljcjNpOFhnbVc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG QTk2LzhBMzUwOTBDQjVFRDExRUY5RDIwNjkwRUM0RjlBRTAyLzJ1LWxRMWowdk1E WVI4eHR5Y3IzaThYZ21XNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJKJ4R6YWQZIXCxNjSSiaKmKgQdpUH+/KkjJut3+fehr9gApfNYoBFci ZAcRUxkhbU+KNtsYpS3uYXrqG6Le/2GRZOy+G9zv/b+PYfkpIxV8oQlghfnNkqoj 93CP9khi0SNmmtvt2cfENrBKGwm7hUSQvcCKooiXt72uptsUq7pslLqmv4Q0Rrpp XjnrATovnP/Q7Nir1/EAXdJS/M+lOpzy0iwcYmfhQB4wOH9nV55CebAlVwki0D7j ZWy+CIa7wfsJOUnoFpuLuX41Y9vF4bOEb4JJNo/pJsFO2sAdBrkG7U8dz76CuXDx +UyYL4tsbScYEaqQix0W2aqgsUYPdw8= -----END CERTIFICATE-----Generated at Wed Dec 25 08:00:01 2024 by rpki-client on console-ams.rpki-client.org