$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft File: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft (raw, json) Hash identifier: sIvf8OstdIIZZOkOI/sQAaNAAAhGZFCBXYVL91HUJQw= Subject key identifier: 67:60:F0:8B:F6:F2:45:12:4E:A8:EC:B1:FF:CC:CC:C3:5C:FA:15:32 Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 08D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft Manifest number: 08CF Signing time: Fri 22 Nov 2024 20:12:27 +0000 Manifest this update: Fri 22 Nov 2024 20:12:26 +0000 Manifest next update: Fri 29 Nov 2024 20:12:26 +0000 Files and hashes: 1: 2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl (hash: VHzZq1PlO8Hw4UQe7zDSKnwkGU312deWHQ8NgR6YhDk=) 2: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (hash: E+f0SdnPuYjXdcqeEk9/03VnnRNadS7Ituz6hla4mX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2263 (0x8d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Nov 22 20:12:26 2024 GMT Not After : Nov 29 20:12:26 2024 GMT Subject: CN=6740e5aa-cdc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:62:95:1d:14:7b:dc:ef:6a:75:ea:8b:00:63: 7a:32:af:4e:ef:83:91:8a:b3:92:2b:56:aa:c0:38: 06:be:a9:f7:b1:4b:17:dd:87:19:25:ef:17:9f:a8: 9a:71:45:54:95:d1:e9:cb:cd:cf:45:13:c0:91:19: d7:11:a1:40:df:9c:53:af:5f:a5:f8:ea:cf:51:56: ec:fc:6a:be:97:7c:5e:16:e7:e2:99:df:50:8d:ee: 2a:54:0f:82:35:58:f0:2e:fc:7f:7c:33:bd:4f:71: 80:3a:38:0a:1e:2d:26:37:a4:1d:40:8a:7b:06:69: ae:ac:61:05:9d:a0:8b:43:11:de:cc:83:fa:94:54: bb:42:b5:81:a4:19:22:1b:c2:15:1b:3f:ae:9b:55: 3f:96:70:92:46:d6:49:11:42:f9:0b:97:11:b1:ae: 5c:46:60:22:56:cb:ae:77:6e:8f:76:a5:aa:b6:be: 6d:9e:8b:96:55:e2:84:20:d7:d8:32:b6:bf:c1:e6: be:bf:7a:ba:fe:dc:89:03:d9:4c:06:dc:2d:10:7a: 5a:55:75:ba:eb:06:80:64:99:82:cc:8e:bf:d6:7a: 08:d3:c8:5a:f6:af:91:6e:2f:f8:ac:80:4d:2a:7a: af:e1:a8:ab:ce:fe:9e:15:47:a3:71:09:8d:8d:e2: 5e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:60:F0:8B:F6:F2:45:12:4E:A8:EC:B1:FF:CC:CC:C3:5C:FA:15:32 X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:db:19:ba:50:a5:9a:6c:e4:9e:8a:02:77:11:31:91:94:ed: dd:a9:e9:2a:ac:23:82:91:10:0a:e7:b9:99:82:1b:73:39:ea: 79:20:c3:47:ac:22:fb:32:9b:fe:40:58:b2:bf:ba:c3:0d:d7: e1:fe:e0:01:60:01:e6:be:f1:fc:35:5f:de:be:6c:88:c1:4c: 72:55:8b:37:15:24:a6:12:2d:66:9a:d0:83:db:79:0b:09:c3: 03:fd:b8:6e:72:f8:cb:1d:d1:d8:4f:73:e3:17:fd:d3:f9:cd: c8:6b:86:19:2b:c3:91:e7:cb:e9:7c:c2:61:af:cd:66:55:f8: e8:68:d4:85:9e:6b:d3:19:4e:cc:a2:33:3f:f5:2e:b1:32:e9: 04:0c:40:65:69:1b:89:52:7a:3d:d0:6e:e9:d7:17:aa:e7:e1: c3:a1:96:12:36:16:96:7d:3b:43:f7:72:de:5e:7e:1f:3e:a0: 55:c8:e7:b1:80:71:c2:d9:ff:1e:0a:41:22:74:1d:f5:1f:7f: 9b:3f:f2:cd:ef:4f:b3:a2:90:fb:57:27:cb:1a:b2:7b:a1:14: 09:78:1c:69:5b:2c:29:c8:23:0a:95:66:b7:d1:87:ef:2b:80: ca:96:47:c6:06:32:85:c4:11:fe:ee:a2:5f:c7:86:3f:58:c0: 74:dd:9c:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjQxMTIyMjAxMjI2WhcNMjQxMTI5MjAxMjI2WjAYMRYwFAYD VQQDEw02NzQwZTVhYS1jZGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2KVHRR73O9qdeqLAGN6Mq9O74ORirOSK1aqwDgGvqn3sUsX3YcZJe8Xn6ia cUVUldHpy83PRRPAkRnXEaFA35xTr1+l+OrPUVbs/Gq+l3xeFufimd9Qje4qVA+C NVjwLvx/fDO9T3GAOjgKHi0mN6QdQIp7BmmurGEFnaCLQxHezIP6lFS7QrWBpBki G8IVGz+um1U/lnCSRtZJEUL5C5cRsa5cRmAiVsuud26PdqWqtr5tnouWVeKEINfY Mra/wea+v3q6/tyJA9lMBtwtEHpaVXW66waAZJmCzI6/1noI08ha9q+Rbi/4rIBN Knqv4airzv6eFUejcQmNjeJe6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdg8Iv2 8kUSTqjssf/MzMNc+hUyMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDY4Ny83NkI0M0I2NDlGNDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQt WlhiQUdCQVNVc3NMU0ZmMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP2xm6UKWabOSeigJ3ETGRlO3dqekqrCOCkRAK57mZghtzOep5IMNH rCL7Mpv+QFiyv7rDDdfh/uABYAHmvvH8NV/evmyIwUxyVYs3FSSmEi1mmtCD23kL CcMD/bhucvjLHdHYT3PjF/3T+c3Ia4YZK8OR58vpfMJhr81mVfjoaNSFnmvTGU7M ojM/9S6xMukEDEBlaRuJUno90G7p1xeq5+HDoZYSNhaWfTtD93LeXn4fPqBVyOex gHHC2f8eCkEidB31H3+bP/LN70+zopD7VyfLGrJ7oRQJeBxpWywpyCMKlWa30Yfv K4DKlkfGBjKFxBH+7qJfx4Y/WMB03Zwh -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org