$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json) Hash identifier: A2FXdPzjeWsZKrEuEWWuNsL1KNVdvMjLB/yHe0cnThs= Subject key identifier: 4A:91:AF:DA:01:B8:F6:09:6C:D8:63:E7:03:8E:23:AA:C6:BD:49:27 Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft Manifest number: 0F Signing time: Wed 23 Oct 2024 06:44:23 +0000 Manifest this update: Wed 23 Oct 2024 06:44:22 +0000 Manifest next update: Wed 30 Oct 2024 06:44:22 +0000 Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: 0GPjZ8Ira1ZEcMpakG7cWcrT6Ekd4AH6KCiVRu6VldY=) 2: 2F7418BE7C8B11EFAD8D8E0AC4F9AE02.roa (hash: h9tFx8Htu/ZVPPbnRxQ9oK5FTvx0iapWbfo7s/yq9F4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Validity Not Before: Oct 23 06:44:22 2024 GMT Not After : Oct 30 06:44:22 2024 GMT Subject: CN=67189b46-6b9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:df:26:e3:85:26:cc:30:d5:79:81:01:c1: fe:be:67:d6:52:bd:b7:47:b7:a1:96:d8:23:5c:b0: 1b:24:78:81:dc:b2:ca:2e:64:be:89:65:e3:7c:3a: f4:65:55:37:4a:48:76:fc:a1:32:af:d2:fc:80:74: 8a:d5:28:cf:d8:9d:a0:6e:b3:21:71:a5:8f:93:b3: 13:c2:38:36:5a:15:2e:30:08:90:4a:05:2e:8b:d4: 58:74:e1:30:d5:54:fb:aa:29:0b:c3:7a:d4:06:56: cc:1c:91:d1:f6:53:9f:fb:ef:9c:13:c8:95:0f:22: 25:7a:86:79:40:21:99:8a:ee:08:45:06:2b:5e:d2: f1:c5:be:2e:1e:a0:14:74:64:5a:f2:67:af:f5:54: 41:a6:a2:70:ea:c0:c2:dd:51:5c:83:41:ee:a5:eb: bc:6a:ab:a9:c4:70:6c:d6:d9:bf:e0:f8:c2:40:d2: 3c:f2:1a:bd:f7:be:64:aa:3a:d5:83:05:5c:73:f3: 57:f2:55:31:35:16:7b:5d:9f:27:df:cc:86:d3:a1: f7:58:db:13:8a:b9:e0:df:a4:8a:8e:34:f0:5c:c5: d9:02:e5:22:a1:81:0c:ec:b4:de:11:1c:34:cb:43: 7d:92:79:4a:e8:aa:3c:62:9f:d7:53:74:1e:bb:54: 40:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:91:AF:DA:01:B8:F6:09:6C:D8:63:E7:03:8E:23:AA:C6:BD:49:27 X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:02:f6:a8:fe:9e:7a:56:1d:40:a7:28:92:06:8c:23:f3:50: 02:13:3d:76:1a:79:32:14:27:01:b8:81:e6:f8:0f:04:0e:2d: 25:84:1d:5c:be:0d:ae:c6:1b:34:bc:94:61:e7:d3:67:28:29: 5a:9e:63:87:77:9a:c2:1c:2a:f8:c9:13:5f:c5:db:0a:a0:15: a4:d2:8e:47:f9:45:55:78:da:a7:e3:ad:15:c4:79:39:c8:af: 5f:08:96:6a:91:93:61:08:64:db:ba:ad:79:75:d9:b5:ea:e2: 09:fc:7e:79:32:27:7b:fb:fe:a0:10:24:70:14:93:1d:77:90: 55:20:80:0e:4c:f9:f6:a0:97:e6:cd:85:17:e9:1b:7a:24:56: 0f:bb:39:35:69:cd:80:fe:e0:84:1d:d4:aa:58:b0:a9:bd:0c: 12:d1:c8:f7:4b:88:b7:73:9b:54:7e:73:55:52:27:b8:54:2b: c8:e7:b8:97:1b:91:c7:de:cc:4c:07:7d:fa:42:2f:8a:91:07: 0b:d1:d8:11:a7:43:a7:3a:a6:69:28:f8:b7:1b:f5:06:ea:d2: d9:1e:67:7d:66:9b:f5:96:87:58:80:27:36:a7:83:9c:c0:6d: 27:71:a3:b5:50:a9:0a:14:69:a4:88:3a:19:7c:8e:37:a4:fc: b8:2c:fe:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEEwNTExMC8GA1UEBRMoMTRERDg2ODQyOTRGMUIzM0EzMTNBRkI4RjBFQkExQzhB MDAzNzgwOTAeFw0yNDEwMjMwNjQ0MjJaFw0yNDEwMzAwNjQ0MjJaMBgxFjAUBgNV BAMTDTY3MTg5YjQ2LTZiOWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3Xd8m44UmzDDVeYEBwf6+Z9ZSvbdHt6GW2CNcsBskeIHcssouZL6JZeN8OvRl VTdKSHb8oTKv0vyAdIrVKM/YnaBusyFxpY+TsxPCODZaFS4wCJBKBS6L1Fh04TDV VPuqKQvDetQGVswckdH2U5/775wTyJUPIiV6hnlAIZmK7ghFBite0vHFvi4eoBR0 ZFryZ6/1VEGmonDqwMLdUVyDQe6l67xqq6nEcGzW2b/g+MJA0jzyGr33vmSqOtWD BVxz81fyVTE1FntdnyffzIbTofdY2xOKueDfpIqONPBcxdkC5SKhgQzstN4RHDTL Q32SeUroqjxin9dTdB67VEDBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSpGv2gG4 9gls2GPnA44jqsa9SScwHwYDVR0jBBgwFoAUFN2GhClPGzOjE6+48OuhyKADeAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQTA1L0QxN0M4ODY4N0M4 QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRk4yR2hDbFBHek9qRTYtNDhPdWh5S0FEZUFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw QTA1L0QxN0M4ODY4N0M4QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pP akU2LTQ4T3VoeUtBRGVBay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAUC9qj+nnpWHUCnKJIGjCPzUAITPXYaeTIUJwG4geb4DwQOLSWEHVy+ Da7GGzS8lGHn02coKVqeY4d3msIcKvjJE1/F2wqgFaTSjkf5RVV42qfjrRXEeTnI r18IlmqRk2EIZNu6rXl12bXq4gn8fnkyJ3v7/qAQJHAUkx13kFUggA5M+fagl+bN hRfpG3okVg+7OTVpzYD+4IQd1KpYsKm9DBLRyPdLiLdzm1R+c1VSJ7hUK8jnuJcb kcfezEwHffpCL4qRBwvR2BGnQ6c6pmko+Lcb9Qbq0tkeZ31mm/WWh1iAJzang5zA bSdxo7VQqQoUaaSIOhl8jjek/Lgs/lQ= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:20 2024 by rpki-client on console-fra.rpki-client.org