$ rpki-client -vvf rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft File: PcXSlD7UrPqSa3dnapi-yLPJea4.mft (raw, json) Hash identifier: Z2OpbPEMnFKkWIvoySGkkZXXjZ1/pMvGW1mqQ5trG7I= Subject key identifier: 5A:AF:07:9B:59:33:B7:A8:64:98:93:AE:FC:EE:41:F8:4E:50:23:FC Authority key identifier: 3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE Certificate issuer: /CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Certificate serial: 070E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft Manifest number: 0707 Signing time: Fri 22 Nov 2024 21:26:18 +0000 Manifest this update: Fri 22 Nov 2024 21:26:17 +0000 Manifest next update: Fri 29 Nov 2024 21:26:17 +0000 Files and hashes: 1: PcXSlD7UrPqSa3dnapi-yLPJea4.crl (hash: 36+u1CFJPuw5/KJBkj7bv1H4BR43+cgiabKvao60Dgk=) 2: 499DE3FC1C1611EB8BD35065C4F9AE02.roa (hash: yZHf3tOWc+sxyzq57J+zRtrh1h68qCw13SKQG5RmD88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1806 (0x70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AF8E/serialNumber=3DC5D2943ED4ACFA926B77676A98BEC8B3C979AE Validity Not Before: Nov 22 21:26:17 2024 GMT Not After : Nov 29 21:26:17 2024 GMT Subject: CN=6740f6fa-113a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ee:9a:c8:1c:57:dc:85:22:d7:e4:c5:db:16: e0:db:35:3c:f4:98:a1:c8:82:ce:48:df:87:e0:33: 64:b9:8d:c6:e9:3a:51:0e:4b:ff:0d:06:af:7b:22: fb:08:2c:8b:e7:16:8f:0b:0d:07:56:a9:3d:3a:6e: 57:cf:31:f1:ce:2f:9b:76:70:4d:33:80:23:3c:bd: 1b:20:0e:f8:ed:c8:0f:47:41:3b:46:f1:74:ba:6f: 53:c4:81:75:59:78:e9:1d:96:ef:c5:6f:43:43:67: 6d:26:a3:9f:c0:0e:fe:bb:27:37:79:78:73:b1:ba: f9:ae:a0:f5:6c:99:e8:df:9d:ae:22:69:77:53:89: 55:0d:de:7d:14:13:4f:06:85:cf:18:5b:d5:02:ac: 7e:9b:96:30:4d:a7:d5:0c:4d:f5:12:b7:0c:7e:37: 33:bb:d0:42:b6:77:6a:97:e0:f4:52:7f:6c:04:00: dd:87:df:f5:f2:39:2a:59:a5:4d:72:26:e0:17:f2: ce:e5:4a:c6:50:d7:aa:04:89:6d:df:83:af:05:37: f3:c4:4d:7b:c0:82:28:53:b8:91:13:a3:a8:e5:f8: 11:97:1f:43:2e:86:23:76:2d:e5:ce:9c:a1:ac:e8: 60:89:19:61:9a:e3:58:5e:40:ca:f6:90:e3:c5:e3: 03:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AF:07:9B:59:33:B7:A8:64:98:93:AE:FC:EE:41:F8:4E:50:23:FC X509v3 Authority Key Identifier: keyid:3D:C5:D2:94:3E:D4:AC:FA:92:6B:77:67:6A:98:BE:C8:B3:C9:79:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PcXSlD7UrPqSa3dnapi-yLPJea4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AF8E/D94A75941C1411EBB036DC63C4F9AE02/PcXSlD7UrPqSa3dnapi-yLPJea4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:43:11:1e:3e:cc:42:ce:16:2e:b9:b1:38:fd:80:b4:80:09: 5a:40:d9:19:99:6c:f3:19:3d:de:52:dc:fb:c9:9f:d0:b9:cf: 3f:c8:1e:f1:f0:95:dc:7a:d2:8d:c7:2e:c7:d6:1c:4d:29:43: 9d:c5:db:90:6a:2a:e4:db:e9:66:80:9d:59:54:37:67:f5:69: 40:b0:f2:14:70:b9:86:ca:b3:51:70:ac:56:2a:fc:8d:8f:76: be:0a:8e:98:3b:ce:ea:3a:d3:07:e4:c5:0f:77:f5:51:1f:c9: 6e:fa:e6:ca:84:b2:5f:1d:4d:4a:ad:28:44:30:6a:80:5b:06: 9e:b5:0f:7c:23:17:d3:f1:ca:6c:5e:95:9c:03:46:dd:38:e6: 6a:98:37:3e:1b:a3:9c:ac:df:42:a7:f5:b9:f4:c9:54:f2:36: c2:48:e2:62:2e:f8:22:2b:40:02:79:dd:f8:50:0e:74:67:cd: ff:24:64:5c:52:35:14:47:4a:ff:7b:8c:d2:b0:d6:ad:13:d8: 65:6d:d6:db:5f:0f:39:0c:08:a7:65:df:7c:a4:1a:23:8e:8a: 0d:f0:8f:dc:46:3b:ba:f8:61:7b:11:07:6b:26:5c:9f:f1:17: 45:9c:df:d5:07:11:0b:e8:16:1f:3c:ce:ce:44:d1:a7:35:70: 66:aa:48:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFGOEUxMTAvBgNVBAUTKDNEQzVEMjk0M0VENEFDRkE5MjZCNzc2NzZBOThCRUM4 QjNDOTc5QUUwHhcNMjQxMTIyMjEyNjE3WhcNMjQxMTI5MjEyNjE3WjAYMRYwFAYD VQQDEw02NzQwZjZmYS0xMTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0u6ayBxX3IUi1+TF2xbg2zU89JihyILOSN+H4DNkuY3G6TpRDkv/DQaveyL7 CCyL5xaPCw0HVqk9Om5XzzHxzi+bdnBNM4AjPL0bIA747cgPR0E7RvF0um9TxIF1 WXjpHZbvxW9DQ2dtJqOfwA7+uyc3eXhzsbr5rqD1bJno352uIml3U4lVDd59FBNP BoXPGFvVAqx+m5YwTafVDE31ErcMfjczu9BCtndql+D0Un9sBADdh9/18jkqWaVN cibgF/LO5UrGUNeqBIlt34OvBTfzxE17wIIoU7iRE6Oo5fgRlx9DLoYjdi3lzpyh rOhgiRlhmuNYXkDK9pDjxeMD4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqvB5tZ M7eoZJiTrvzuQfhOUCP8MB8GA1UdIwQYMBaAFD3F0pQ+1Kz6kmt3Z2qYvsizyXmu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUY4RS9EOTRBNzU5NDFD MTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQcVNhM2RuYXBpLXlMUEpl YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BjWFNsRDdVclBxU2EzZG5hcGkteUxQSmVhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUY4RS9EOTRBNzU5NDFDMTQxMUVCQjAzNkRDNjNDNEY5QUUwMi9QY1hTbEQ3VXJQ cVNhM2RuYXBpLXlMUEplYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIQxEePsxCzhYuubE4/YC0gAlaQNkZmWzzGT3eUtz7yZ/Quc8/yB7x 8JXcetKNxy7H1hxNKUOdxduQairk2+lmgJ1ZVDdn9WlAsPIUcLmGyrNRcKxWKvyN j3a+Co6YO87qOtMH5MUPd/VRH8lu+ubKhLJfHU1KrShEMGqAWwaetQ98IxfT8cps XpWcA0bdOOZqmDc+G6OcrN9Cp/W59MlU8jbCSOJiLvgiK0ACed34UA50Z83/JGRc UjUUR0r/e4zSsNatE9hlbdbbXw85DAinZd98pBojjooN8I/cRju6+GF7EQdrJlyf 8RdFnN/VBxEL6BYfPM7ORNGnNXBmqki5 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org