$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: dvmsJOFZe9uQwM8Rx/bpeJ2cNMe+3suYMlk4yj1gWp4= Subject key identifier: 4F:26:E7:59:3A:04:AD:5B:D7:76:81:CF:89:3D:35:01:4D:F2:66:73 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 010E Signing time: Sat 23 Nov 2024 03:07:02 +0000 Manifest this update: Sat 23 Nov 2024 03:07:01 +0000 Manifest next update: Sat 30 Nov 2024 03:07:01 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: +z6zr9OCYsiLDgbuoV7wQRsElZogHpwSZ8kcRU81Ov8=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: YBTJyFDQVecrTFPkPy4W2Dd55PMCXx4820zaNKR8/1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Nov 23 03:07:01 2024 GMT Not After : Nov 30 03:07:01 2024 GMT Subject: CN=674146d5-3741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:45:17:4b:2d:4d:80:b1:14:50:3e:de:0c:ef: 9e:37:1a:e5:13:bb:95:ed:d2:e2:f4:86:b2:0c:97: 52:e5:51:bc:91:73:be:33:91:14:68:11:76:14:32: 42:07:5d:61:e4:63:5a:5b:c8:68:8d:7c:ea:cb:40: 98:ac:42:a4:42:f7:c4:87:97:01:fc:2b:4f:94:e0: 74:b7:57:10:2d:ce:eb:ed:60:88:45:f1:91:eb:63: 2b:e0:02:63:29:f9:59:27:a5:ff:a4:93:31:74:1d: e7:e3:61:e7:07:2c:23:3f:c1:91:ee:09:02:57:7c: 66:44:81:54:d3:83:30:55:61:4f:f2:49:3d:02:0b: b4:52:d0:21:f6:23:1d:7f:6f:7d:2f:36:cb:e6:49: 92:5c:96:aa:c1:0a:4d:8c:0d:0d:5d:28:96:93:14: 7d:43:29:f1:cc:9f:67:af:cf:cc:da:19:ec:83:fd: 49:db:ee:c2:a1:ea:de:5f:c7:7e:9e:8b:bc:b1:6e: 1d:e5:52:94:0e:01:15:05:72:f2:1d:ac:45:ec:8e: b4:4a:d5:d7:78:da:17:d9:9d:fe:60:35:68:c2:a3: ab:db:69:b2:23:06:60:da:98:66:f3:87:cc:88:d3: 3d:3d:cc:d1:42:f1:15:8b:21:de:6a:a4:28:b8:03: 89:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:26:E7:59:3A:04:AD:5B:D7:76:81:CF:89:3D:35:01:4D:F2:66:73 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:7d:11:b9:82:11:48:57:21:a9:ec:4e:67:ed:b2:11:c2:3b: 8c:eb:c6:2c:30:4a:d0:54:cb:cb:58:58:53:50:b4:35:78:86: 64:df:1d:39:24:05:42:48:6e:c8:0e:5d:ba:72:ee:ce:d6:f2: af:d7:9a:ab:8b:04:0c:e0:ba:ec:80:72:cb:6d:45:2b:c5:a0: 9c:a9:b3:f5:15:35:61:20:cf:8b:c2:a8:09:53:e0:19:de:7c: 23:b6:53:17:c8:32:5d:f6:c4:41:d4:07:bd:15:62:ad:dc:78: 62:3f:7e:6d:5e:7e:53:3a:d2:c8:b9:a6:ea:21:4b:a3:c5:89: 97:04:a4:ba:86:91:6e:51:b7:77:82:6f:e5:ed:5a:b6:aa:26: fa:e1:1a:fd:d1:8a:e8:77:eb:be:a9:8a:0d:51:37:9a:e0:fb: 94:91:f2:0a:74:3d:5b:0b:0d:bc:25:96:37:c8:48:c1:e7:4a: 19:24:00:25:26:99:fc:a7:20:6b:32:fe:c9:d1:39:4d:47:b9: ff:a6:e7:5e:20:b2:7f:95:26:1b:62:d7:a9:c0:7e:be:ca:41: 74:35:89:41:94:49:e9:c5:26:c1:7d:54:69:95:a0:6b:23:f3: 2d:cd:d7:d1:ff:09:09:ae:7e:3b:2e:77:2a:ae:db:58:57:dc: a4:e4:24:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjQxMTIzMDMwNzAxWhcNMjQxMTMwMDMwNzAxWjAYMRYwFAYD VQQDEw02NzQxNDZkNS0zNzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00UXSy1NgLEUUD7eDO+eNxrlE7uV7dLi9IayDJdS5VG8kXO+M5EUaBF2FDJC B11h5GNaW8hojXzqy0CYrEKkQvfEh5cB/CtPlOB0t1cQLc7r7WCIRfGR62Mr4AJj KflZJ6X/pJMxdB3n42HnBywjP8GR7gkCV3xmRIFU04MwVWFP8kk9Agu0UtAh9iMd f299LzbL5kmSXJaqwQpNjA0NXSiWkxR9QynxzJ9nr8/M2hnsg/1J2+7CoereX8d+ nou8sW4d5VKUDgEVBXLyHaxF7I60StXXeNoX2Z3+YDVowqOr22myIwZg2phm84fM iNM9PczRQvEViyHeaqQouAOJQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE8m51k6 BK1b13aBz4k9NQFN8mZzMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7fRG5ghFIVyGp7E5n7bIRwjuM68YsMErQVMvLWFhTULQ1eIZk3x05 JAVCSG7IDl26cu7O1vKv15qriwQM4LrsgHLLbUUrxaCcqbP1FTVhIM+LwqgJU+AZ 3nwjtlMXyDJd9sRB1Ae9FWKt3HhiP35tXn5TOtLIuabqIUujxYmXBKS6hpFuUbd3 gm/l7Vq2qib64Rr90Yrod+u+qYoNUTea4PuUkfIKdD1bCw28JZY3yEjB50oZJAAl Jpn8pyBrMv7J0TlNR7n/pudeILJ/lSYbYtepwH6+ykF0NYlBlEnpxSbBfVRplaBr I/MtzdfR/wkJrn47LncqrttYV9yk5CSl -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org