$ rpki-client -vvf rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft File: F_lRhEBRRIyJBhQEz7QequBHOno.mft (raw, json) Hash identifier: bilx7uTPeaWP55NdgCuwIb/n6hvftfcs9SENVTkx6Lo= Subject key identifier: 49:F5:24:3C:F8:66:A3:AE:A0:B9:F8:82:74:1C:45:E5:91:8B:99:9F Authority key identifier: 17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A Certificate issuer: /CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Certificate serial: 0E03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft Manifest number: 0DEE Signing time: Fri 22 Nov 2024 17:48:11 +0000 Manifest this update: Fri 22 Nov 2024 17:48:10 +0000 Manifest next update: Fri 29 Nov 2024 17:48:10 +0000 Files and hashes: 1: F_lRhEBRRIyJBhQEz7QequBHOno.crl (hash: S15XEF6jJ5ex7JHQ01TSft+V2EyQnrei8OVVfYLdUzI=) 2: 57F6EF0C5BD211EF992CFC15C4F9AE02.roa (hash: 3nA72tHDmFfUPzw47VV3xufiMO/gtK8JVIbiIAFnnPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3587 (0xe03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602BE/serialNumber=17F951844051448C89061404CFB41EAAE0473A7A Validity Not Before: Nov 22 17:48:10 2024 GMT Not After : Nov 29 17:48:10 2024 GMT Subject: CN=6740c3db-67c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bb:86:5e:f2:cb:8f:e7:c3:8e:2d:02:45:da: ac:65:45:d8:3a:ac:ba:84:35:62:d5:7f:9b:c5:dd: cd:33:f4:7e:cd:43:c2:37:e1:f3:f7:df:de:29:91: 3b:45:06:88:f1:3f:4d:c5:6f:aa:15:db:24:49:35: c8:0a:d1:e0:6b:61:bd:dd:f9:80:b3:4a:a6:82:94: f5:81:0c:9f:73:90:d9:58:e7:e9:14:a4:91:87:39: ac:bd:d7:62:2d:f2:9f:19:86:ac:3a:0c:32:93:56: d4:f4:2f:6b:52:f7:1f:70:80:ff:7f:a6:dc:6a:4f: b2:73:43:ca:1c:fd:49:62:dd:93:cc:61:1d:8e:a6: 86:f7:4a:08:a7:d2:94:05:56:e7:41:74:a9:f0:24: 0a:d1:40:a2:97:f6:e8:26:82:0c:39:39:ac:88:0c: 6c:57:0c:b0:22:81:06:9e:39:88:b8:47:34:e1:62: 3f:ab:1e:df:d7:43:a1:03:30:00:27:90:25:ad:32: 1b:de:1f:40:90:50:aa:a1:f5:b2:54:16:ed:f5:58: dd:ce:4a:b4:24:73:ee:b2:bb:66:fd:10:fe:33:ff: be:96:ef:eb:29:60:54:71:e2:5a:08:4c:c9:df:be: 30:28:2f:51:0f:d4:6d:24:93:57:a8:e9:65:ce:6c: e5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F5:24:3C:F8:66:A3:AE:A0:B9:F8:82:74:1C:45:E5:91:8B:99:9F X509v3 Authority Key Identifier: keyid:17:F9:51:84:40:51:44:8C:89:06:14:04:CF:B4:1E:AA:E0:47:3A:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_lRhEBRRIyJBhQEz7QequBHOno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602BE/38218332A21D11E99C9DC77DC4F9AE02/F_lRhEBRRIyJBhQEz7QequBHOno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:91:2f:2e:c5:92:3a:55:96:9a:33:67:1e:b1:7f:e8:00:a8: b7:99:c8:7f:c0:20:6b:5a:6a:f9:f2:77:cf:6e:75:18:b8:b5: 1d:ce:29:9e:59:25:6e:71:81:b1:e5:28:09:9a:80:c9:39:41: 4f:e4:5d:f6:fb:a9:8c:e3:92:b0:2d:e2:b5:32:05:39:b1:08: fb:ff:92:5b:a0:84:0a:71:8b:35:dd:56:9b:ee:9b:5b:ea:f9: cd:f4:28:21:df:b2:5d:22:cf:4b:12:3a:11:8b:90:8d:4b:56: e1:9c:f6:a0:27:48:85:91:5b:4a:46:80:8d:7e:fb:da:16:42: 5f:0a:d5:3a:56:e4:8e:90:5f:d8:d6:42:59:96:71:98:31:d8: b5:f5:a7:fc:5b:72:ca:72:ef:31:e8:e1:0a:19:39:10:48:4f: f7:ff:bf:05:4e:32:97:0f:47:a7:16:c6:a0:b1:cc:0b:62:e7: ba:b1:8d:38:ad:a3:a5:14:f9:08:6b:ff:cf:e1:c9:45:07:1f: 68:3c:a0:54:fd:7e:07:7d:f8:1e:c5:ee:2b:8e:db:86:a2:23: ea:bd:0a:1d:50:d6:b4:91:1f:6e:a6:17:1c:1f:49:82:a6:33: 3e:7b:fc:9f:6c:4a:d1:eb:fb:89:f5:d4:16:33:3b:b4:ac:fa: 64:d7:35:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyQkUxMTAvBgNVBAUTKDE3Rjk1MTg0NDA1MTQ0OEM4OTA2MTQwNENGQjQxRUFB RTA0NzNBN0EwHhcNMjQxMTIyMTc0ODEwWhcNMjQxMTI5MTc0ODEwWjAYMRYwFAYD VQQDEw02NzQwYzNkYi02N2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbuGXvLLj+fDji0CRdqsZUXYOqy6hDVi1X+bxd3NM/R+zUPCN+Hz99/eKZE7 RQaI8T9NxW+qFdskSTXICtHga2G93fmAs0qmgpT1gQyfc5DZWOfpFKSRhzmsvddi LfKfGYasOgwyk1bU9C9rUvcfcID/f6bcak+yc0PKHP1JYt2TzGEdjqaG90oIp9KU BVbnQXSp8CQK0UCil/boJoIMOTmsiAxsVwywIoEGnjmIuEc04WI/qx7f10OhAzAA J5AlrTIb3h9AkFCqofWyVBbt9Vjdzkq0JHPusrtm/RD+M/++lu/rKWBUceJaCEzJ 374wKC9RD9RtJJNXqOllzmzlMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEn1JDz4 ZqOuoLn4gnQcReWRi5mfMB8GA1UdIwQYMBaAFBf5UYRAUUSMiQYUBM+0HqrgRzp6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJCRS8zODIxODMzMkEy MUQxMUU5OUM5REM3N0RDNEY5QUUwMi9GX2xSaEVCUlJJeUpCaFFFejdRZXF1QkhP bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfbFJoRUJSUkl5SkJoUUV6N1FlcXVCSE9uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJCRS8zODIxODMzMkEyMUQxMUU5OUM5REM3N0RDNEY5QUUwMi9GX2xSaEVCUlJJ eUpCaFFFejdRZXF1QkhPbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnkS8uxZI6VZaaM2cesX/oAKi3mch/wCBrWmr58nfPbnUYuLUdzime WSVucYGx5SgJmoDJOUFP5F32+6mM45KwLeK1MgU5sQj7/5JboIQKcYs13Vab7ptb 6vnN9Cgh37JdIs9LEjoRi5CNS1bhnPagJ0iFkVtKRoCNfvvaFkJfCtU6VuSOkF/Y 1kJZlnGYMdi19af8W3LKcu8x6OEKGTkQSE/3/78FTjKXD0enFsagscwLYue6sY04 raOlFPkIa//P4clFBx9oPKBU/X4Hffgexe4rjtuGoiPqvQodUNa0kR9uphccH0mC pjM+e/yfbErR6/uJ9dQWMzu0rPpk1zUO -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org