$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: 0fWpLpPq0cKYHKSbYv5xFFGo2HZlWwRPBwzPiNvXa3Y= Subject key identifier: B8:9D:26:D9:BD:17:62:5D:C4:95:7C:99:B5:77:45:1F:45:31:1D:36 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 06B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2C3F Signing time: Fri 22 Nov 2024 15:43:31 +0000 Manifest this update: Fri 22 Nov 2024 15:43:31 +0000 Manifest next update: Fri 29 Nov 2024 15:43:31 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: 7+PUSAkI7ZwaLcvBhpwSO1+PMcw0RFQtjrswfTIlfWU=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: Mse2fnTgzH7IcGff7hL/OaUafi6TDhnPkojb8Rkr2XY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Nov 22 15:43:31 2024 GMT Not After : Nov 29 15:43:31 2024 GMT Subject: CN=6740a6a3-9925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:5b:58:26:4a:43:61:78:3a:e6:96:2c:c8: 10:8c:9a:c5:12:89:ec:c8:6d:33:dd:19:e3:70:ee: 19:cc:2e:73:90:b1:15:f7:9c:35:5d:52:eb:d0:f0: 98:33:79:64:34:81:66:da:94:5e:35:cf:80:af:d9: fd:eb:4e:17:6b:6b:28:31:f2:7b:8b:8a:26:d4:d0: 21:91:8e:0b:94:79:0b:03:e8:fc:70:be:ba:b0:b1: f3:0f:a4:1e:f7:6a:25:87:7f:3a:a7:bb:e2:b4:ce: c2:6c:9e:3c:c5:96:bb:3e:75:6c:94:21:d3:36:5b: 85:89:98:bf:b3:4d:3f:92:69:55:53:46:65:fc:e8: b2:2d:73:e3:48:d4:86:df:b1:57:20:94:7a:60:a8: a0:b3:7e:1f:5a:f8:41:f8:16:18:b5:84:0b:d6:e9: 81:cf:ba:c3:cb:7b:72:7d:b5:b4:99:e0:db:e3:98: 62:6e:ab:34:3c:8c:01:8f:34:7b:94:b6:d9:d2:49: c8:b3:d2:f6:c5:7a:8a:3f:d7:8e:5e:e4:ed:45:c7: 30:29:2d:44:c8:bd:f6:26:8a:ad:e0:1e:8d:ed:60: 7a:cc:3e:34:0e:d0:66:dd:cb:38:fd:d1:f5:eb:fd: ef:b8:ac:49:d8:be:fc:91:7e:9a:03:02:5e:f9:a6: ab:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9D:26:D9:BD:17:62:5D:C4:95:7C:99:B5:77:45:1F:45:31:1D:36 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:42:ba:77:85:46:96:05:95:7f:d5:55:cd:b2:4c:16:b1:2a: 69:02:18:e5:8f:3f:16:72:7a:fb:a8:4d:56:69:4d:a5:3a:1d: 9c:7b:5a:ac:2f:48:7e:b6:ac:4b:5c:a2:72:c0:22:3a:4f:0b: 38:73:fd:c8:4d:4d:59:a5:86:c1:50:3f:15:7b:3f:41:b4:84: 18:8e:a7:55:56:72:1b:c9:71:0f:00:1e:2f:69:46:26:bb:da: 4e:96:42:39:c9:ed:5b:06:9f:8c:34:05:60:bf:be:e9:a1:3a: 04:1a:ca:d2:26:0a:f0:09:fd:70:f7:0e:c5:52:25:f6:35:44: 9c:79:25:8d:43:d3:70:78:35:4e:48:dc:f9:04:c9:2d:dc:01: 13:24:1a:8e:51:b8:92:c6:dc:b9:b0:bc:50:2c:b2:53:4a:06: 0c:5a:04:8d:2f:d2:39:36:ce:8e:a5:c3:3b:67:6f:12:e1:a5: 07:4a:cd:79:75:40:12:73:bd:88:88:ad:44:21:a0:f4:49:5b: 99:dd:d1:3c:de:0a:de:8a:6d:9e:65:4d:59:f2:b3:39:9e:da: b0:25:81:74:db:86:df:b3:9b:f2:1e:aa:43:82:a1:49:11:be: a0:1d:14:e9:d0:40:40:f7:6b:18:0a:62:92:c3:fb:54:30:09: 1d:fe:01:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjQxMTIyMTU0MzMxWhcNMjQxMTI5MTU0MzMxWjAYMRYwFAYD VQQDEw02NzQwYTZhMy05OTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOxbWCZKQ2F4OuaWLMgQjJrFEonsyG0z3RnjcO4ZzC5zkLEV95w1XVLr0PCY M3lkNIFm2pReNc+Ar9n9604Xa2soMfJ7i4om1NAhkY4LlHkLA+j8cL66sLHzD6Qe 92olh386p7vitM7CbJ48xZa7PnVslCHTNluFiZi/s00/kmlVU0Zl/OiyLXPjSNSG 37FXIJR6YKigs34fWvhB+BYYtYQL1umBz7rDy3tyfbW0meDb45hibqs0PIwBjzR7 lLbZ0knIs9L2xXqKP9eOXuTtRccwKS1EyL32Joqt4B6N7WB6zD40DtBm3cs4/dH1 6/3vuKxJ2L78kX6aAwJe+aarqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLidJtm9 F2JdxJV8mbV3RR9FMR02MB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbQrp3hUaWBZV/1VXNskwWsSppAhjljz8Wcnr7qE1WaU2lOh2ce1qs L0h+tqxLXKJywCI6Tws4c/3ITU1ZpYbBUD8Vez9BtIQYjqdVVnIbyXEPAB4vaUYm u9pOlkI5ye1bBp+MNAVgv77poToEGsrSJgrwCf1w9w7FUiX2NUSceSWNQ9NweDVO SNz5BMkt3AETJBqOUbiSxty5sLxQLLJTSgYMWgSNL9I5Ns6OpcM7Z28S4aUHSs15 dUASc72IiK1EIaD0SVuZ3dE83greim2eZU1Z8rM5ntqwJYF024bfs5vyHqpDgqFJ Eb6gHRTp0EBA92sYCmKSw/tUMAkd/gFj -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org