$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft File: SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft (raw, json) Hash identifier: 3xUCiLwagfcQa5qnjBUcaZpEDUPWx4paXiTIEDbPavc= Subject key identifier: 53:0A:2F:00:5C:7E:7C:0E:92:21:36:21:40:5C:D3:89:43:82:96:B6 Authority key identifier: 48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A Certificate issuer: /CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Certificate serial: 0BB0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft Manifest number: 0BA9 Signing time: Wed 20 Nov 2024 17:09:37 +0000 Manifest this update: Wed 20 Nov 2024 17:09:36 +0000 Manifest next update: Wed 27 Nov 2024 17:09:36 +0000 Files and hashes: 1: SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl (hash: sjgsQL0llDjcdv8eJ1jSOyngr8vhiL9HJaEQ9N31wNY=) 2: AB138380985F11EEBA5D186DC4F9AE02.roa (hash: F/Rw9IBSfAAu9SS5Zj7ZXQURqKcO45qHbFvRjzx84SU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2992 (0xbb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BCDF/serialNumber=4852E8726C1448A1040CCFA043B8314AAE4C4E9A Validity Not Before: Nov 20 17:09:36 2024 GMT Not After : Nov 27 17:09:36 2024 GMT Subject: CN=673e17d1-51d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:31:a1:99:ca:35:82:92:66:9b:52:cf:20:8b: 2b:76:70:ba:a8:09:95:3f:de:4d:10:c7:e5:5a:b5: b9:6c:a7:66:3e:25:95:6f:ab:b2:2d:8b:8b:e2:75: c0:01:8b:d7:b7:37:06:7a:b3:91:d5:44:d7:7a:e8: d0:df:ed:26:88:a0:b2:e8:83:3e:e9:f5:90:d6:2f: e5:05:78:0e:44:09:89:29:12:61:6b:cd:65:cf:1a: 1f:f6:d7:99:7c:81:88:b9:da:60:15:16:96:4b:0f: ca:7f:8a:de:e4:e3:59:02:af:da:b4:b3:49:58:61: 90:78:0d:f9:bb:92:88:fd:d0:12:08:1e:b1:63:09: c2:05:74:1a:a9:80:a5:a7:8f:ff:87:0b:b5:e6:9f: b8:26:28:93:a6:7b:f6:0a:43:26:dd:00:65:93:c9: ae:f1:de:d2:c3:b0:27:62:c3:60:00:80:a8:f6:47: a4:d4:38:8e:93:27:de:48:05:48:f6:23:93:ca:0a: 48:05:79:fe:38:45:5e:10:74:54:1a:2a:a1:24:c9: 77:f5:e3:31:7c:ce:d6:13:62:12:89:59:a2:de:dd: 71:53:6e:01:d7:32:52:78:e4:2a:84:6f:d8:28:b7: 31:81:ba:db:34:fe:9c:b0:53:5c:0d:39:da:70:ed: a2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0A:2F:00:5C:7E:7C:0E:92:21:36:21:40:5C:D3:89:43:82:96:B6 X509v3 Authority Key Identifier: keyid:48:52:E8:72:6C:14:48:A1:04:0C:CF:A0:43:B8:31:4A:AE:4C:4E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/SFLocmwUSKEEDM-gQ7gxSq5MTpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/C1CB2DF210D811EA9BD1A55DC4F9AE02/SFLocmwUSKEEDM-gQ7gxSq5MTpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:30:33:46:f6:e5:d9:89:c2:8b:14:a7:f0:71:1f:88:62:71: 54:97:10:50:e4:a8:7a:9a:fa:fe:67:e9:4b:4d:76:5b:7e:90: ac:a8:1a:24:a6:e2:d2:67:4d:31:30:d2:a5:60:96:f7:79:2c: 5e:8b:b4:dd:07:6b:30:ff:d1:8c:3e:da:0b:50:eb:87:40:a4: 4d:6e:fc:d2:9a:65:a0:ac:19:05:88:8a:2e:00:96:2c:38:7f: 20:f0:85:5e:cd:a5:d6:9c:42:04:45:39:64:d9:ad:b6:27:79: 98:7f:52:7f:b5:3f:fd:53:f8:79:d9:9d:4e:38:0e:11:db:d5: 85:69:53:ce:83:0c:8f:59:36:b6:79:fa:80:c3:83:e9:77:26: ce:d7:bb:f5:05:6a:fc:45:d0:d1:ab:46:47:16:a1:f8:3b:8e: 5f:c0:9a:85:63:8b:16:fd:45:98:5d:5e:50:5a:13:f0:c4:30: f2:8c:8c:c9:6b:30:e2:01:ae:60:95:6c:fc:a4:b2:a8:f3:3e: f0:a0:fb:38:23:71:dc:00:36:7e:10:ff:b6:09:8d:62:36:5f: 27:b3:76:e9:f5:e9:cf:ff:12:0a:c4:75:c6:2c:5c:c8:a2:7a: 8f:37:ac:2a:7b:3e:17:31:31:5d:d2:a0:75:2d:5e:71:f4:f2: 0a:f6:75:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDREYxMTAvBgNVBAUTKDQ4NTJFODcyNkMxNDQ4QTEwNDBDQ0ZBMDQzQjgzMTRB QUU0QzRFOUEwHhcNMjQxMTIwMTcwOTM2WhcNMjQxMTI3MTcwOTM2WjAYMRYwFAYD VQQDEw02NzNlMTdkMS01MWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TGhmco1gpJmm1LPIIsrdnC6qAmVP95NEMflWrW5bKdmPiWVb6uyLYuL4nXA AYvXtzcGerOR1UTXeujQ3+0miKCy6IM+6fWQ1i/lBXgORAmJKRJha81lzxof9teZ fIGIudpgFRaWSw/Kf4re5ONZAq/atLNJWGGQeA35u5KI/dASCB6xYwnCBXQaqYCl p4//hwu15p+4JiiTpnv2CkMm3QBlk8mu8d7Sw7AnYsNgAICo9kek1DiOkyfeSAVI 9iOTygpIBXn+OEVeEHRUGiqhJMl39eMxfM7WE2ISiVmi3t1xU24B1zJSeOQqhG/Y KLcxgbrbNP6csFNcDTnacO2iOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMKLwBc fnwOkiE2IUBc04lDgpa2MB8GA1UdIwQYMBaAFEhS6HJsFEihBAzPoEO4MUquTE6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkNERi9DMUNCMkRGMjEw RDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNLRUVETS1nUTdneFNxNU1U cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1NGTG9jbXdVU0tFRURNLWdRN2d4U3E1TVRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkNERi9DMUNCMkRGMjEwRDgxMUVBOUJEMUE1NURDNEY5QUUwMi9TRkxvY213VVNL RUVETS1nUTdneFNxNU1UcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARMDNG9uXZicKLFKfwcR+IYnFUlxBQ5Kh6mvr+Z+lLTXZbfpCsqBok puLSZ00xMNKlYJb3eSxei7TdB2sw/9GMPtoLUOuHQKRNbvzSmmWgrBkFiIouAJYs OH8g8IVezaXWnEIERTlk2a22J3mYf1J/tT/9U/h52Z1OOA4R29WFaVPOgwyPWTa2 efqAw4PpdybO17v1BWr8RdDRq0ZHFqH4O45fwJqFY4sW/UWYXV5QWhPwxDDyjIzJ azDiAa5glWz8pLKo8z7woPs4I3HcADZ+EP+2CY1iNl8ns3bp9enP/xIKxHXGLFzI onqPN6wqez4XMTFd0qB1LV5x9PIK9nWM -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:20 2024 by rpki-client on console-ams.rpki-client.org