$ rpki-client -vvf rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft File: 2RBlAbU10PfK1XyOenR8oGnQTVk.mft (raw, json) Hash identifier: SsuZ5AwQnjRulXysWOHHAiuUHQD8Vg18xqHgVdKu98M= Subject key identifier: 00:25:A5:D3:D4:14:BD:C9:95:E5:8E:A9:99:11:30:BB:FC:19:D1:2C Authority key identifier: D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 Certificate issuer: /CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Certificate serial: 0354 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft Manifest number: 0351 Signing time: Sat 23 Nov 2024 00:33:11 +0000 Manifest this update: Sat 23 Nov 2024 00:33:10 +0000 Manifest next update: Sat 30 Nov 2024 00:33:10 +0000 Files and hashes: 1: 2RBlAbU10PfK1XyOenR8oGnQTVk.crl (hash: gGZcuRHP7ZDICmfKQAZSZcUHFtzVOCdCXcGpMqiZqkE=) 2: 97D35382924311EC927C972FC4F9AE02.roa (hash: T7ZKyg9ZQs7UBfFtzhidJlbPJJuQY3xnnVMdulYDZMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 852 (0x354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FACB/serialNumber=D9106501B535D0F7CAD57C8E7A747CA069D04D59 Validity Not Before: Nov 23 00:33:10 2024 GMT Not After : Nov 30 00:33:10 2024 GMT Subject: CN=674122c7-0fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6c:0c:22:75:6d:12:fe:ea:8f:34:3d:68:18: 4e:07:aa:62:11:31:fe:2e:c5:1f:d4:eb:9c:0e:c9: 52:91:a1:b5:99:e3:df:33:65:b0:5a:11:32:c2:bc: 46:90:00:70:22:28:af:40:d4:4c:39:8b:76:68:db: 28:4b:f5:4e:e0:ee:46:19:e9:bc:77:93:64:88:22: a0:fe:e1:55:f3:47:b1:73:f5:c1:a6:c0:99:c8:fb: b8:88:49:b6:ba:e1:3e:e8:78:6f:2e:c4:94:c1:c6: 9e:2e:33:6f:2a:49:2d:e6:31:f8:94:db:92:83:f8: 8c:92:5b:ba:7b:5c:1b:8d:44:e9:7e:e7:69:fc:a9: 5f:4c:29:27:64:bb:39:80:b9:98:ba:bf:1d:d7:ce: 0f:5e:7c:4d:b3:13:97:e8:4c:9b:1e:22:b7:44:7e: 99:e1:ec:05:00:5d:40:51:ce:2d:2d:7b:5b:d1:38: 91:95:c5:e5:63:fd:3a:e2:2b:a2:bf:c4:aa:98:e6: a9:99:c9:4a:69:45:dc:13:0b:0b:08:68:98:3a:29: 6e:a1:9c:22:f6:81:74:d8:2a:15:42:a9:81:c9:2a: b9:4c:d1:a3:98:62:1b:6d:ad:85:6c:8f:f1:f6:ca: 0c:1f:bb:c6:fe:40:d2:4b:c2:f5:a3:03:db:14:2a: e0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:25:A5:D3:D4:14:BD:C9:95:E5:8E:A9:99:11:30:BB:FC:19:D1:2C X509v3 Authority Key Identifier: keyid:D9:10:65:01:B5:35:D0:F7:CA:D5:7C:8E:7A:74:7C:A0:69:D0:4D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2RBlAbU10PfK1XyOenR8oGnQTVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FACB/F5598D08924011ECBED4DA2CC4F9AE02/2RBlAbU10PfK1XyOenR8oGnQTVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c8:2e:3e:4e:03:3c:53:10:1c:fe:1a:f3:df:94:fb:34:92: a4:22:98:cf:8a:71:47:1c:6b:5d:90:10:32:27:ea:64:10:c5: 8e:a4:8f:7e:11:3a:a5:09:15:a9:aa:ed:ad:cb:a0:7d:f3:e3: 2b:b9:f7:89:11:47:65:b4:8d:16:d6:43:c9:01:e8:d8:07:f7: c2:37:2f:ad:aa:75:6b:72:39:f5:1a:3c:56:17:b3:24:eb:f1: 56:a1:d0:07:bd:fe:0e:23:f4:79:2b:6d:bd:bf:8b:80:4c:54: 50:6e:0e:f1:dd:74:75:b2:ff:1c:10:75:be:26:0d:47:bb:23: 8f:e8:ae:e5:63:05:2d:37:bb:f1:10:bd:ca:f8:62:94:e5:f5: a2:39:a0:fe:ec:1d:81:46:48:dc:c6:99:d3:9c:27:cf:2e:87: 82:51:2b:ac:e6:17:b3:2e:d7:6b:dd:af:d9:16:36:1a:5e:a8: 2e:3e:a7:61:59:96:b5:8c:ca:49:b9:40:3f:6b:b7:af:8d:40: 4c:3f:7f:26:02:d2:67:e1:83:36:0f:91:27:c7:cb:9a:35:53: 18:e2:ab:69:1a:4f:2d:35:05:af:24:60:33:9a:e2:d6:46:16: ee:3e:4a:09:23:64:a3:8b:24:3a:42:eb:0f:b8:0d:18:7a:c5: f5:d3:d8:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBQ0IxMTAvBgNVBAUTKEQ5MTA2NTAxQjUzNUQwRjdDQUQ1N0M4RTdBNzQ3Q0Ew NjlEMDRENTkwHhcNMjQxMTIzMDAzMzEwWhcNMjQxMTMwMDAzMzEwWjAYMRYwFAYD VQQDEw02NzQxMjJjNy0wZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WwMInVtEv7qjzQ9aBhOB6piETH+LsUf1OucDslSkaG1mePfM2WwWhEywrxG kABwIiivQNRMOYt2aNsoS/VO4O5GGem8d5NkiCKg/uFV80exc/XBpsCZyPu4iEm2 uuE+6HhvLsSUwcaeLjNvKkkt5jH4lNuSg/iMklu6e1wbjUTpfudp/KlfTCknZLs5 gLmYur8d184PXnxNsxOX6EybHiK3RH6Z4ewFAF1AUc4tLXtb0TiRlcXlY/064iui v8SqmOapmclKaUXcEwsLCGiYOiluoZwi9oF02CoVQqmBySq5TNGjmGIbba2FbI/x 9soMH7vG/kDSS8L1owPbFCrgTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAlpdPU FL3JleWOqZkRMLv8GdEsMB8GA1UdIwQYMBaAFNkQZQG1NdD3ytV8jnp0fKBp0E1Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkFDQi9GNTU5OEQwODky NDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQZksxWHlPZW5SOG9HblFU VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJSQmxBYlUxMFBmSzFYeU9lblI4b0duUVRWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkFDQi9GNTU5OEQwODkyNDAxMUVDQkVENERBMkNDNEY5QUUwMi8yUkJsQWJVMTBQ ZksxWHlPZW5SOG9HblFUVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHyC4+TgM8UxAc/hrz35T7NJKkIpjPinFHHGtdkBAyJ+pkEMWOpI9+ ETqlCRWpqu2ty6B98+MrufeJEUdltI0W1kPJAejYB/fCNy+tqnVrcjn1GjxWF7Mk 6/FWodAHvf4OI/R5K229v4uATFRQbg7x3XR1sv8cEHW+Jg1HuyOP6K7lYwUtN7vx EL3K+GKU5fWiOaD+7B2BRkjcxpnTnCfPLoeCUSus5hezLtdr3a/ZFjYaXqguPqdh WZa1jMpJuUA/a7evjUBMP38mAtJn4YM2D5Enx8uaNVMY4qtpGk8tNQWvJGAzmuLW RhbuPkoJI2SjiyQ6QusPuA0YesX109jE -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org