$ rpki-client -vvf rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft File: FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft (raw, json) Hash identifier: A3AN5EJAvc/zVcUg2vrX1s0rRkPeH6Ygydpm5NstxSo= Subject key identifier: 50:2E:53:DA:9A:89:E0:24:3D:41:94:6F:C7:09:3B:4E:4D:63:F5:D0 Authority key identifier: 14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D Certificate issuer: /CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft Manifest number: 9D Signing time: Thu 21 Nov 2024 03:35:12 +0000 Manifest this update: Thu 21 Nov 2024 03:35:11 +0000 Manifest next update: Thu 28 Nov 2024 03:35:11 +0000 Files and hashes: 1: FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl (hash: I3zocnO6lCJs4vPee//sRC/orYLM9m/OSYK6IM5+NFo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E343/serialNumber=14E55EC3428E3D2BA4DC71C159E5F6061F163C6D Validity Not Before: Nov 21 03:35:11 2024 GMT Not After : Nov 28 03:35:11 2024 GMT Subject: CN=673eaa6f-ce63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0a:7e:7a:a4:cb:42:2f:77:86:96:cf:96:f9: a3:63:49:6a:c7:22:a6:fb:66:2b:14:24:26:06:ac: a6:4f:35:7d:7f:0a:d4:d2:01:c3:73:5a:88:b6:10: 3e:47:45:ea:a0:ce:9c:3f:3a:2d:17:49:3a:ae:77: b3:15:c2:37:0b:af:d3:83:41:91:d7:2c:b3:da:59: cf:39:de:a3:fa:e9:16:ca:66:0c:4e:4b:9f:aa:d7: 10:c6:aa:44:80:16:1f:e5:c3:81:be:b8:25:19:e1: bf:f4:ec:cf:99:01:f4:62:0f:c0:39:b3:9b:05:55: 60:34:1d:b2:a6:a2:46:e6:66:cf:7b:06:92:a5:98: 51:a4:db:8f:91:bc:a8:4d:96:59:44:48:65:8b:b6: dd:6f:e2:cd:5e:d3:5f:b8:88:5b:3f:cd:70:02:6d: bc:a5:4f:be:b5:ff:c4:5a:cb:53:b3:ec:41:5f:9b: d6:f6:5a:b0:a6:9b:a3:4b:ec:a9:1d:e4:ea:9a:77: 24:94:a0:55:92:66:ea:b4:57:cd:76:4c:00:da:35: b7:be:10:82:2c:c0:39:02:1d:41:50:07:3a:59:52: cb:5f:39:d1:13:2d:a2:57:49:ec:57:bd:0e:71:6a: 46:07:9a:8d:32:c2:78:4d:3c:49:95:16:93:87:91: b8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2E:53:DA:9A:89:E0:24:3D:41:94:6F:C7:09:3B:4E:4D:63:F5:D0 X509v3 Authority Key Identifier: keyid:14:E5:5E:C3:42:8E:3D:2B:A4:DC:71:C1:59:E5:F6:06:1F:16:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FOVew0KOPSuk3HHBWeX2Bh8WPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E343/3AE739AEB97E11EEB3C22955C4F9AE02/FOVew0KOPSuk3HHBWeX2Bh8WPG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:b4:e8:57:c1:f1:91:43:07:cf:94:f6:f0:f2:e2:c3:7e:68: 63:bf:b0:ac:f8:0f:d8:59:f5:fe:82:78:fe:17:e4:5d:4b:b2: c4:0d:7c:bc:a6:60:cd:65:9f:71:73:f0:34:59:d7:2a:aa:0c: 8b:e3:65:60:b4:32:f7:3f:9c:8d:a4:2b:55:83:ff:ea:3c:7f: af:cc:d7:e3:11:e4:33:0a:87:f3:e4:5b:8b:88:0d:74:57:52: 96:73:31:8c:b6:06:24:7e:41:1d:8b:24:41:9f:87:8a:4f:c2: 9f:fd:64:99:5a:9b:19:1d:3b:30:9b:f0:8d:a1:3e:bc:80:ab: 60:c3:29:e7:9e:b0:b4:9c:05:d3:a0:a5:fc:78:3d:1d:76:27: 3f:81:b3:03:1c:1a:ab:0f:17:62:37:b4:c5:ba:77:42:86:7c: 09:04:54:f0:9b:0e:44:7b:b6:b1:ac:a9:3e:2d:3c:1c:9c:00: aa:37:5c:ce:41:ee:bc:69:49:97:86:57:2e:d7:1a:5c:14:0b: ea:6d:20:56:9a:88:ab:61:31:46:ea:53:a9:a9:7d:ce:57:a5: c4:85:5b:da:6c:65:ba:c5:7c:62:67:b0:0b:61:12:e8:60:02: 24:6d:a4:25:d5:b5:04:f1:95:f8:60:53:a0:43:22:61:0b:7e: 3a:1b:6b:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkUzNDMxMTAvBgNVBAUTKDE0RTU1RUMzNDI4RTNEMkJBNERDNzFDMTU5RTVGNjA2 MUYxNjNDNkQwHhcNMjQxMTIxMDMzNTExWhcNMjQxMTI4MDMzNTExWjAYMRYwFAYD VQQDEw02NzNlYWE2Zi1jZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlAp+eqTLQi93hpbPlvmjY0lqxyKm+2YrFCQmBqymTzV9fwrU0gHDc1qIthA+ R0XqoM6cPzotF0k6rnezFcI3C6/Tg0GR1yyz2lnPOd6j+ukWymYMTkufqtcQxqpE gBYf5cOBvrglGeG/9OzPmQH0Yg/AObObBVVgNB2ypqJG5mbPewaSpZhRpNuPkbyo TZZZREhli7bdb+LNXtNfuIhbP81wAm28pU++tf/EWstTs+xBX5vW9lqwppujS+yp HeTqmncklKBVkmbqtFfNdkwA2jW3vhCCLMA5Ah1BUAc6WVLLXznREy2iV0nsV70O cWpGB5qNMsJ4TTxJlRaTh5G4jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAuU9qa ieAkPUGUb8cJO05NY/XQMB8GA1UdIwQYMBaAFBTlXsNCjj0rpNxxwVnl9gYfFjxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTM0My8zQUU3MzlBRUI5 N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BTdWszSEhCV2VYMkJoOFdQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZPVmV3MEtPUFN1azNISEJXZVgyQmg4V1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTM0My8zQUU3MzlBRUI5N0UxMUVFQjNDMjI5NTVDNEY5QUUwMi9GT1ZldzBLT1BT dWszSEhCV2VYMkJoOFdQRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUtOhXwfGRQwfPlPbw8uLDfmhjv7Cs+A/YWfX+gnj+F+RdS7LEDXy8 pmDNZZ9xc/A0WdcqqgyL42VgtDL3P5yNpCtVg//qPH+vzNfjEeQzCofz5FuLiA10 V1KWczGMtgYkfkEdiyRBn4eKT8Kf/WSZWpsZHTswm/CNoT68gKtgwynnnrC0nAXT oKX8eD0ddic/gbMDHBqrDxdiN7TFundChnwJBFTwmw5Ee7axrKk+LTwcnACqN1zO Qe68aUmXhlcu1xpcFAvqbSBWmoirYTFG6lOpqX3OV6XEhVvabGW6xXxiZ7ALYRLo YAIkbaQl1bUE8ZX4YFOgQyJhC346G2s1 -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:06 2024 by rpki-client on console-ams.rpki-client.org