$ rpki-client -vvf rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft File: 1FLGfvaHRDivqZOoStCrwYUWkhs.mft (raw, json) Hash identifier: 5fR4rhceG09O7Pp7IigSeby3SxkMto8ezMVGMDRQOds= Subject key identifier: F3:C7:5F:3A:1F:C3:72:15:EA:DA:B6:CE:3D:7A:5A:2F:F7:22:97:2A Authority key identifier: D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B Certificate issuer: /CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Certificate serial: 01B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft Manifest number: 01B1 Signing time: Sat 23 Nov 2024 01:48:51 +0000 Manifest this update: Sat 23 Nov 2024 01:48:51 +0000 Manifest next update: Sat 30 Nov 2024 01:48:51 +0000 Files and hashes: 1: 1FLGfvaHRDivqZOoStCrwYUWkhs.crl (hash: DbYd+Wms1PeJNsp+YZPXDeBoU4bUXKVkTZmLHo+lwPg=) 2: 839EEF2C35F211ED97DF4D2EC4F9AE02.roa (hash: utbaFXvYsbMawkEsGIYiJOGznLub5CBtZ08YosxwrsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FD27/serialNumber=D452C67EF6874438AFA993A84AD0ABC18516921B Validity Not Before: Nov 23 01:48:51 2024 GMT Not After : Nov 30 01:48:51 2024 GMT Subject: CN=67413483-512c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7f:01:24:36:47:55:0d:fb:c5:41:88:11:75: ea:1c:5e:37:0c:0d:84:e5:90:14:2f:e1:de:22:54: ab:23:9a:c5:6b:93:3d:94:85:4b:5b:17:1d:88:20: e2:e9:3a:83:dc:ea:a3:5f:9c:1c:0b:e5:f3:1a:23: 20:e4:30:bd:45:02:17:01:88:98:07:6d:cf:53:67: 19:8a:02:37:48:c5:52:e7:c3:2a:18:88:09:77:5a: 1d:ed:a2:bc:f8:b5:ff:35:35:b5:2e:6c:0c:83:d3: 1b:dd:11:09:b0:92:82:55:d3:46:40:11:ef:60:a2: 27:41:0b:ab:64:ba:c4:4b:37:12:d6:83:c4:09:00: fd:ff:a2:47:56:21:0d:65:e3:cf:c9:49:b4:b4:3e: 88:1d:dc:a7:a0:5b:9d:97:b7:22:d2:7b:3e:b0:7b: d5:5e:20:3c:68:10:82:95:78:68:53:44:8e:53:01: ea:41:53:df:02:73:c2:d0:5e:08:26:0f:2f:b0:0b: 39:6f:dc:a1:01:57:cd:91:eb:7b:0e:74:30:dc:e0: 03:78:9a:aa:1f:2f:5f:31:ef:cb:c6:72:14:97:75: 6b:d5:05:9d:44:bb:43:cd:0b:56:0a:ea:5f:ee:73: 45:63:b0:52:d8:4a:5d:40:a6:48:67:0a:ab:6c:23: 4b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C7:5F:3A:1F:C3:72:15:EA:DA:B6:CE:3D:7A:5A:2F:F7:22:97:2A X509v3 Authority Key Identifier: keyid:D4:52:C6:7E:F6:87:44:38:AF:A9:93:A8:4A:D0:AB:C1:85:16:92:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FLGfvaHRDivqZOoStCrwYUWkhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FD27/A80DB38235EF11ED8239AF2BC4F9AE02/1FLGfvaHRDivqZOoStCrwYUWkhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c4:24:8f:8c:01:ac:5c:9a:5a:c9:80:1e:b0:04:1d:69:e9: d4:7e:d9:f7:f4:02:dd:01:36:97:25:55:ae:69:4d:d4:ca:e7: 60:0b:d4:9e:bd:94:d5:99:ee:9a:37:56:ae:de:f4:f1:f3:be: 5f:f8:9f:ee:04:72:6e:16:14:55:4b:e5:dd:9a:75:81:3c:29: 56:09:ef:b7:4f:11:32:af:16:4b:52:50:a3:ee:a0:2f:a4:4b: b2:40:03:39:f7:18:a4:4f:79:c9:90:29:a6:e7:ec:57:b6:d4: 4d:35:99:ac:3f:b3:67:a9:b5:cc:b4:53:ea:d3:b6:77:e8:a5: 00:8d:0f:6d:71:49:48:7c:c6:1a:3c:35:1a:e5:b6:82:c6:c0: 34:3f:68:d3:8f:a5:c5:2d:8b:76:c4:26:a0:8c:2e:c6:a0:0a: 41:71:e0:96:5b:34:1b:be:01:b0:c4:6b:be:65:cb:33:a5:fc: cf:08:c8:ba:49:7f:c2:c6:2e:08:a4:99:8c:72:a0:6d:d1:30: 0d:0c:7f:04:7b:2c:96:0b:7d:2a:18:ad:4a:38:91:e0:8e:bb: e4:0b:16:dc:3e:b5:7b:ed:28:82:5c:ad:6e:b4:22:d2:37:5b: 30:5f:fa:dc:c2:52:22:bb:5e:12:fd:87:a0:17:bb:02:b6:cb: fd:54:1a:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEMjcxMTAvBgNVBAUTKEQ0NTJDNjdFRjY4NzQ0MzhBRkE5OTNBODRBRDBBQkMx ODUxNjkyMUIwHhcNMjQxMTIzMDE0ODUxWhcNMjQxMTMwMDE0ODUxWjAYMRYwFAYD VQQDEw02NzQxMzQ4My01MTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxn8BJDZHVQ37xUGIEXXqHF43DA2E5ZAUL+HeIlSrI5rFa5M9lIVLWxcdiCDi 6TqD3OqjX5wcC+XzGiMg5DC9RQIXAYiYB23PU2cZigI3SMVS58MqGIgJd1od7aK8 +LX/NTW1LmwMg9Mb3REJsJKCVdNGQBHvYKInQQurZLrESzcS1oPECQD9/6JHViEN ZePPyUm0tD6IHdynoFudl7ci0ns+sHvVXiA8aBCClXhoU0SOUwHqQVPfAnPC0F4I Jg8vsAs5b9yhAVfNket7DnQw3OADeJqqHy9fMe/LxnIUl3Vr1QWdRLtDzQtWCupf 7nNFY7BS2EpdQKZIZwqrbCNLOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPHXzof w3IV6tq2zj16Wi/3IpcqMB8GA1UdIwQYMBaAFNRSxn72h0Q4r6mTqErQq8GFFpIb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkQyNy9BODBEQjM4MjM1 RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJEaXZxWk9vU3RDcndZVVdr aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGTEdmdmFIUkRpdnFaT29TdENyd1lVV2tocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkQyNy9BODBEQjM4MjM1RUYxMUVEODIzOUFGMkJDNEY5QUUwMi8xRkxHZnZhSFJE aXZxWk9vU3RDcndZVVdraHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAxCSPjAGsXJpayYAesAQdaenUftn39ALdATaXJVWuaU3UyudgC9Se vZTVme6aN1au3vTx875f+J/uBHJuFhRVS+XdmnWBPClWCe+3TxEyrxZLUlCj7qAv pEuyQAM59xikT3nJkCmm5+xXttRNNZmsP7NnqbXMtFPq07Z36KUAjQ9tcUlIfMYa PDUa5baCxsA0P2jTj6XFLYt2xCagjC7GoApBceCWWzQbvgGwxGu+ZcszpfzPCMi6 SX/Cxi4IpJmMcqBt0TANDH8EeyyWC30qGK1KOJHgjrvkCxbcPrV77SiCXK1utCLS N1swX/rcwlIiu14S/YegF7sCtsv9VBpN -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org