$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: 3nRIEW7icUJeE5t5ry4whpLdnnUNI1FU0txqdCDRfvY= Subject key identifier: 69:4E:9B:1D:18:AC:41:FD:32:B9:CC:25:37:F1:99:98:E8:0A:4A:D7 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 0671 Signing time: Wed 20 Nov 2024 21:55:50 +0000 Manifest this update: Wed 20 Nov 2024 21:55:50 +0000 Manifest next update: Wed 27 Nov 2024 21:55:50 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: I6BLDjn6Vd9yO/l509IjYJ8SqxjumOWGkKaqWc9C2G0=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: P4RG3Y6nQyOth1GOf+cUq+m33EkNoZAP7s5DUsSNA08=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Nov 20 21:55:50 2024 GMT Not After : Nov 27 21:55:50 2024 GMT Subject: CN=673e5ae6-f920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cc:47:36:76:ab:36:06:a3:0b:2d:d1:cb:a4: e5:82:f2:94:93:cd:06:db:5a:a6:8d:87:a9:5a:e2: 08:dd:97:94:e6:10:4c:0e:e8:f7:20:9e:2f:2b:fa: d9:33:59:a7:00:bd:98:f3:97:60:ab:d1:c9:b6:db: 49:18:fa:44:b5:81:fc:c1:ba:8b:b5:28:22:fd:54: 79:e3:02:41:2d:79:f9:65:5d:27:8f:fb:13:cf:29: f9:4a:6b:5b:51:ad:a2:ef:d9:ef:5f:94:94:c1:2c: 27:14:b3:9d:19:cd:1a:ea:60:33:fd:5a:29:96:78: 55:a6:30:eb:55:7d:c9:cc:5d:bf:cd:c4:76:85:f7: 07:62:be:c5:3f:05:b5:ad:90:a0:9a:4a:29:05:96: 6e:8c:69:84:f3:21:e1:c0:83:79:a2:13:fd:0d:15: ea:a8:f3:6f:11:af:2d:1e:19:ba:4c:c7:5a:73:3e: b1:72:83:42:8a:ff:51:d0:37:b9:18:25:30:00:ac: 28:8b:c5:c6:43:d0:85:ea:6c:4d:ff:5c:5a:02:83: 5d:04:d5:5e:74:84:1d:64:31:c9:1e:79:b7:ce:78: b2:90:f2:bb:ab:c1:ee:a8:72:54:1d:7b:c4:27:2d: 54:5f:e1:04:4a:cd:e2:77:38:7e:e3:74:0d:6b:c6: b8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:4E:9B:1D:18:AC:41:FD:32:B9:CC:25:37:F1:99:98:E8:0A:4A:D7 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:0e:f5:61:3e:fd:47:f0:dc:38:19:43:46:7f:da:2a:e4:70: fc:0e:7b:50:8f:68:fc:45:70:56:fb:81:28:b4:fe:d7:14:f6: 55:25:d3:8b:26:4f:00:bc:0c:11:20:4f:81:9d:e1:3c:f5:3e: 1a:b7:a9:37:17:7f:f9:1e:03:bf:26:d0:f1:d0:97:28:80:c5: 2b:20:54:83:25:28:e7:68:14:72:a9:02:a0:23:ec:48:92:fb: 5f:73:3c:9f:9f:38:2a:72:be:f4:d9:66:d1:0d:cb:d2:e7:3a: 21:d8:48:a0:2d:c7:b3:bd:b6:2f:6a:26:8b:63:a7:bd:2e:58: fb:ce:6b:a8:24:3e:1a:f7:3a:89:92:c6:e5:1f:ba:67:cf:5c: c8:c4:1a:3c:0e:9c:15:1b:4c:84:81:be:79:60:56:29:e7:61: 25:99:78:68:db:b8:0a:63:e5:23:0a:54:78:c7:f4:30:1f:32: 24:31:44:16:1c:8e:8c:ce:93:fb:67:c4:55:77:78:54:83:3f: 34:37:76:26:37:65:b1:22:5a:06:f9:25:8a:ee:2a:96:1b:70: 4b:fd:5e:71:42:0f:40:c8:79:ad:eb:7a:60:81:a9:7d:bd:8e: e7:83:be:7b:3c:d5:3b:ff:99:e9:16:ec:e8:52:7f:51:d1:d9: 09:27:cb:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjQxMTIwMjE1NTUwWhcNMjQxMTI3MjE1NTUwWjAYMRYwFAYD VQQDEw02NzNlNWFlNi1mOTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sxHNnarNgajCy3Ry6TlgvKUk80G21qmjYepWuII3ZeU5hBMDuj3IJ4vK/rZ M1mnAL2Y85dgq9HJtttJGPpEtYH8wbqLtSgi/VR54wJBLXn5ZV0nj/sTzyn5Smtb Ua2i79nvX5SUwSwnFLOdGc0a6mAz/VoplnhVpjDrVX3JzF2/zcR2hfcHYr7FPwW1 rZCgmkopBZZujGmE8yHhwIN5ohP9DRXqqPNvEa8tHhm6TMdacz6xcoNCiv9R0De5 GCUwAKwoi8XGQ9CF6mxN/1xaAoNdBNVedIQdZDHJHnm3zniykPK7q8HuqHJUHXvE Jy1UX+EESs3idzh+43QNa8a4FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlOmx0Y rEH9MrnMJTfxmZjoCkrXMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlDvVhPv1H8Nw4GUNGf9oq5HD8DntQj2j8RXBW+4EotP7XFPZVJdOL Jk8AvAwRIE+BneE89T4at6k3F3/5HgO/JtDx0JcogMUrIFSDJSjnaBRyqQKgI+xI kvtfczyfnzgqcr702WbRDcvS5zoh2EigLcezvbYvaiaLY6e9Llj7zmuoJD4a9zqJ ksblH7pnz1zIxBo8DpwVG0yEgb55YFYp52ElmXho27gKY+UjClR4x/QwHzIkMUQW HI6MzpP7Z8RVd3hUgz80N3YmN2WxIloG+SWK7iqWG3BL/V5xQg9AyHmt63pggal9 vY7ng757PNU7/5npFuzoUn9R0dkJJ8t0 -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org