$ rpki-client -vvf rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft File: 8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft (raw, json) Hash identifier: tG39ikeC6/tn2jde9MBgDg6DkejKQDLmRKoqQrFSuVI= Subject key identifier: AE:00:4C:C8:17:D5:AA:22:89:30:36:96:EE:61:98:16:0D:67:5D:CD Authority key identifier: F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF Certificate issuer: /CN=A916B8B3/serialNumber=F2C052E0C573AB0580EB06F3F90025646E6F32CF Certificate serial: 0F61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft Manifest number: 0F36 Signing time: Wed 20 Nov 2024 17:33:26 +0000 Manifest this update: Wed 20 Nov 2024 17:33:26 +0000 Manifest next update: Wed 27 Nov 2024 17:33:26 +0000 Files and hashes: 1: 8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl (hash: Ldf4A0wtVFpUxOCXBkIE5vRM3Pi/GfEOMwFYCgwOnt0=) 2: 6840DA0E663911EB9492E836C4F9AE02.roa (hash: sGu3ODXooc9CB+ssEdGcHv/MosZ1/dqSVTNT38zCxdM=) 3: 312806545DA611ECB01B733BC4F9AE02.roa (hash: No0IlpoVlxfwVKfFuVyGS+nVpuw81ooHig1jHXtsJNE=) 4: F26A29E8604E11EFBEBCBA78C4F9AE02.roa (hash: rwNwXJ+fMnsZN+WLt3mcn2UF1SVuwX9jPhLaFD6qBb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3937 (0xf61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B8B3/serialNumber=F2C052E0C573AB0580EB06F3F90025646E6F32CF Validity Not Before: Nov 20 17:33:26 2024 GMT Not After : Nov 27 17:33:26 2024 GMT Subject: CN=673e1d66-9503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:29:7e:15:4b:4f:92:26:61:eb:64:57:51: ef:ec:f1:a9:2b:b7:47:c7:47:91:43:38:2f:83:59: 6d:80:dd:47:70:bb:17:1f:6e:87:a9:c8:94:77:6e: 06:bb:19:4d:2f:39:ca:85:4e:f9:af:5d:31:b5:54: 3f:da:a7:2a:0d:7a:8d:32:cf:04:10:b3:c8:fb:b8: a1:ed:3b:d0:21:b1:c1:6f:9f:42:2c:65:80:55:7b: 58:ac:6d:ed:4b:d5:11:bf:29:2c:80:54:4d:e5:04: 98:16:96:02:a2:ae:cc:2e:ec:a8:f3:16:aa:ff:9b: 42:9d:2c:fd:f9:43:7a:03:36:0c:5d:33:d6:d6:88: 6d:fd:ff:7c:3c:09:34:76:d8:34:e2:ab:08:ff:a8: 79:33:1a:76:8f:f3:1e:c2:8b:10:f9:52:c1:e2:ed: bf:f5:8f:57:cb:1b:e9:89:0e:a5:86:1c:07:4a:75: 92:44:81:a5:e8:fe:23:78:c2:cd:68:dc:7a:46:af: 17:ec:e9:9c:78:1f:0c:92:80:5c:61:76:05:52:7a: b9:fe:66:f3:a4:ed:aa:b3:e7:04:23:b1:da:9c:a6: 13:6b:53:99:72:77:79:b0:a1:1c:89:c5:1b:16:6f: 20:52:28:74:c7:d8:9c:8e:99:36:6a:eb:c3:5d:3d: 8f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:00:4C:C8:17:D5:AA:22:89:30:36:96:EE:61:98:16:0D:67:5D:CD X509v3 Authority Key Identifier: keyid:F2:C0:52:E0:C5:73:AB:05:80:EB:06:F3:F9:00:25:64:6E:6F:32:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8sBS4MVzqwWA6wbz-QAlZG5vMs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B8B3/A1131D6C666611E98753E47AC4F9AE02/8sBS4MVzqwWA6wbz-QAlZG5vMs8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:76:64:3c:62:85:1c:22:ae:2d:86:6d:a7:20:65:45:60:58: 74:31:36:a2:3f:38:e6:ea:12:63:4c:71:20:2b:09:0e:c6:27: 12:ad:4e:ca:6b:8b:f0:fb:82:5f:64:3b:c9:9e:10:96:b9:83: 37:f1:e6:18:9a:74:c7:95:18:99:a8:b0:e5:e8:cb:41:82:80: 21:90:db:22:8b:3d:0d:1a:01:87:42:68:83:b6:58:20:8b:f9: ae:87:e3:0d:08:51:fa:4c:5a:c9:27:8c:45:54:ff:3f:9c:51: 4f:0c:90:8f:a6:9e:fd:83:90:cb:9e:4d:01:77:03:dc:58:80: 8c:5c:e4:0d:33:28:d3:22:25:06:6a:fc:1e:f6:a4:52:d8:c3: 4a:e3:3b:c4:b9:5b:03:bd:a1:e4:be:c0:a3:0f:8a:0f:83:fc: 3e:54:06:d0:82:5f:d1:9f:0d:89:1a:2c:1f:51:ef:f7:c7:be: 7b:ba:90:c9:f4:47:80:51:41:4d:54:ad:ae:89:65:ed:33:01: 60:ea:9c:ac:b6:95:8e:53:a3:54:a7:50:f6:e8:42:80:4c:16: 49:f0:f7:f3:72:c9:f9:c1:48:20:54:62:07:5b:00:fb:a7:20: 03:bd:4d:4d:1f:96:42:55:03:f3:73:7d:df:17:31:94:60:cc: 38:9b:97:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI4QjMxMTAvBgNVBAUTKEYyQzA1MkUwQzU3M0FCMDU4MEVCMDZGM0Y5MDAyNTY0 NkU2RjMyQ0YwHhcNMjQxMTIwMTczMzI2WhcNMjQxMTI3MTczMzI2WjAYMRYwFAYD VQQDEw02NzNlMWQ2Ni05NTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiMpfhVLT5ImYetkV1Hv7PGpK7dHx0eRQzgvg1ltgN1HcLsXH26HqciUd24G uxlNLznKhU75r10xtVQ/2qcqDXqNMs8EELPI+7ih7TvQIbHBb59CLGWAVXtYrG3t S9URvyksgFRN5QSYFpYCoq7MLuyo8xaq/5tCnSz9+UN6AzYMXTPW1oht/f98PAk0 dtg04qsI/6h5Mxp2j/MewosQ+VLB4u2/9Y9XyxvpiQ6lhhwHSnWSRIGl6P4jeMLN aNx6Rq8X7OmceB8MkoBcYXYFUnq5/mbzpO2qs+cEI7HanKYTa1OZcnd5sKEcicUb Fm8gUih0x9icjpk2auvDXT2P2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4ATMgX 1aoiiTA2lu5hmBYNZ13NMB8GA1UdIwQYMBaAFPLAUuDFc6sFgOsG8/kAJWRubzLP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjhCMy9BMTEzMUQ2QzY2 NjYxMUU5ODc1M0U0N0FDNEY5QUUwMi84c0JTNE1WenF3V0E2d2J6LVFBbFpHNXZN czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhzQlM0TVZ6cXdXQTZ3YnotUUFsWkc1dk1zOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjhCMy9BMTEzMUQ2QzY2NjYxMUU5ODc1M0U0N0FDNEY5QUUwMi84c0JTNE1WenF3 V0E2d2J6LVFBbFpHNXZNczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwdmQ8YoUcIq4thm2nIGVFYFh0MTaiPzjm6hJjTHEgKwkOxicSrU7K a4vw+4JfZDvJnhCWuYM38eYYmnTHlRiZqLDl6MtBgoAhkNsiiz0NGgGHQmiDtlgg i/muh+MNCFH6TFrJJ4xFVP8/nFFPDJCPpp79g5DLnk0BdwPcWICMXOQNMyjTIiUG avwe9qRS2MNK4zvEuVsDvaHkvsCjD4oPg/w+VAbQgl/Rnw2JGiwfUe/3x757upDJ 9EeAUUFNVK2uiWXtMwFg6pystpWOU6NUp1D26EKATBZJ8Pfzcsn5wUggVGIHWwD7 pyADvU1NH5ZCVQPzc33fFzGUYMw4m5fc -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:58 2024 by rpki-client on console-fra.rpki-client.org