$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft File: 2o28OwmXQtOr0qiV3RM5iTuaj18.mft (raw, json) Hash identifier: MID43ehRh0dHEwp1yW/c3kpihA0+mVpmmEzR8v+CeFA= Subject key identifier: 89:18:3C:71:6F:04:0C:0A:9B:FD:78:AF:FD:45:C9:8C:A2:BB:94:AA Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0B1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft Manifest number: 3161 Signing time: Fri 22 Nov 2024 15:41:53 +0000 Manifest this update: Fri 22 Nov 2024 15:41:52 +0000 Manifest next update: Fri 29 Nov 2024 15:41:52 +0000 Files and hashes: 1: 2o28OwmXQtOr0qiV3RM5iTuaj18.crl (hash: h+9d4vV3ueiyuBHbECUc2CrU+uwmfZ8dFRVbtZ0tknI=) 2: 0B6054BA851E11EA86E0DF24C4F9AE02.roa (hash: MgTUngCCzikGCV51wBox1XfJC+wHmw6xDYqUAEuxnEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2843 (0xb1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: Nov 22 15:41:52 2024 GMT Not After : Nov 29 15:41:52 2024 GMT Subject: CN=6740a641-e4e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:2a:2f:1b:71:79:cc:0c:41:3d:de:2c:0a: 1f:1b:0f:fa:04:7d:51:0e:95:58:57:70:97:15:7f: 4e:34:36:9f:34:4b:4a:95:d9:0c:61:d9:f7:07:69: 33:7a:1b:2e:62:3c:00:47:cb:e5:6f:93:16:9a:71: 9f:72:f5:77:23:11:67:7f:7a:d1:75:33:96:5c:b8: 01:49:30:39:10:9c:b9:0a:bf:5c:66:e7:66:dc:3d: e7:98:e8:66:f6:cc:9b:d7:79:89:a5:ca:73:fd:08: f4:f2:32:96:bd:d6:a2:fa:0f:80:a1:9e:38:ca:6b: ea:d5:70:61:d0:77:8c:a1:d9:bb:d0:b3:94:07:c5: 74:0e:37:15:c3:b5:b7:1c:6e:ff:29:11:13:0d:b5: 2c:4b:43:9c:e5:a1:50:1a:b7:76:09:d8:e0:41:21: 86:b7:d3:05:9e:77:98:5b:dd:73:49:9d:22:fd:ca: 99:39:86:da:ca:1c:ab:31:76:a0:89:4b:ce:b8:f4: cf:fd:bc:91:23:0a:6c:61:3b:ab:95:d1:47:66:92: 69:c5:5c:e6:28:66:42:f7:a4:91:d1:7b:d2:db:1e: c8:93:8c:b5:77:87:06:90:80:76:6c:dc:e1:83:7a: de:52:d0:17:5d:14:78:d0:90:fb:ee:d7:20:69:a0: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:18:3C:71:6F:04:0C:0A:9B:FD:78:AF:FD:45:C9:8C:A2:BB:94:AA X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0b:80:1e:c3:fe:50:f4:db:f2:28:6a:63:6f:03:c4:1f:a8: 01:af:bd:79:5c:8f:b0:b4:1b:11:1a:46:98:8c:86:e3:02:45: 53:4d:b5:7c:23:f0:2e:35:2a:ff:e8:50:c6:36:a6:03:ff:7d: 13:e1:50:24:8c:62:71:2e:c6:da:fe:7a:17:0f:2d:ad:15:9a: 8f:15:06:b8:f7:5e:a3:32:0a:39:29:25:cf:fa:49:2d:bd:85: d7:f5:da:ae:de:36:29:a3:5e:93:03:45:0b:9d:65:fd:da:74: 17:ed:f6:c2:d5:a6:ae:f2:12:f6:1a:e8:d8:be:aa:a8:48:df: e7:3b:43:bb:de:9e:65:d9:6f:d9:97:93:54:f6:fb:aa:54:ae: aa:f7:69:7a:3a:60:18:29:fe:b5:a3:a0:17:75:ed:92:13:23: e7:3d:f6:17:15:2b:ab:5e:65:9f:a6:7d:cb:3b:02:73:dc:4b: 63:0d:02:c4:8d:27:6c:38:1e:85:70:19:1f:bc:9e:48:15:a1: 13:99:e7:3f:4a:a6:26:c7:98:17:7e:18:78:c8:35:65:01:7b: a7:65:dd:24:e4:2f:13:c3:32:3b:13:33:df:b2:00:f2:d2:b1: a8:34:92:12:41:ef:35:30:c3:cf:59:32:c7:cf:eb:79:9f:16: fa:1a:09:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjQxMTIyMTU0MTUyWhcNMjQxMTI5MTU0MTUyWjAYMRYwFAYD VQQDEw02NzQwYTY0MS1lNGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwwqLxtxecwMQT3eLAofGw/6BH1RDpVYV3CXFX9ONDafNEtKldkMYdn3B2kz ehsuYjwAR8vlb5MWmnGfcvV3IxFnf3rRdTOWXLgBSTA5EJy5Cr9cZudm3D3nmOhm 9syb13mJpcpz/Qj08jKWvdai+g+AoZ44ymvq1XBh0HeModm70LOUB8V0DjcVw7W3 HG7/KRETDbUsS0Oc5aFQGrd2CdjgQSGGt9MFnneYW91zSZ0i/cqZOYbayhyrMXag iUvOuPTP/byRIwpsYTurldFHZpJpxVzmKGZC96SR0XvS2x7Ik4y1d4cGkIB2bNzh g3reUtAXXRR40JD77tcgaaBkxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkYPHFv BAwKm/14r/1FyYyiu5SqMB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBBMy83MUFERTFGRUQ4MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0 T3IwcWlWM1JNNWlUdWFqMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuC4Aew/5Q9NvyKGpjbwPEH6gBr715XI+wtBsRGkaYjIbjAkVTTbV8 I/AuNSr/6FDGNqYD/30T4VAkjGJxLsba/noXDy2tFZqPFQa4916jMgo5KSXP+kkt vYXX9dqu3jYpo16TA0ULnWX92nQX7fbC1aau8hL2GujYvqqoSN/nO0O73p5l2W/Z l5NU9vuqVK6q92l6OmAYKf61o6AXde2SEyPnPfYXFSurXmWfpn3LOwJz3EtjDQLE jSdsOB6FcBkfvJ5IFaETmec/SqYmx5gXfhh4yDVlAXunZd0k5C8TwzI7EzPfsgDy 0rGoNJISQe81MMPPWTLHz+t5nxb6GglI -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:48 2024 by rpki-client on console-fra.rpki-client.org