$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft File: svBcLOw1UNLTyetRODn0egAqhy4.mft (raw, json) Hash identifier: c0LFWCClIqjt4S71lfgc3T8G1U2lCKdZzg+IglY6uu8= Subject key identifier: D3:C7:DC:09:82:BB:B1:7C:E5:3C:67:DD:3F:C1:8A:6C:36:6D:B4:82 Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 0354 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft Manifest number: 034F Signing time: Thu 21 Nov 2024 00:33:12 +0000 Manifest this update: Thu 21 Nov 2024 00:33:11 +0000 Manifest next update: Thu 28 Nov 2024 00:33:11 +0000 Files and hashes: 1: svBcLOw1UNLTyetRODn0egAqhy4.crl (hash: VTzOwCt+30XKRXhdWAteQjgBTB5kBDGA5tyEv/CZtZU=) 2: D118AD20820911EDAC2FD360C4F9AE02.roa (hash: ixpGpZxeJE6MjqJE4TZF5F7RqpJksuo4R/FnZcP/pPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 852 (0x354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Validity Not Before: Nov 21 00:33:11 2024 GMT Not After : Nov 28 00:33:11 2024 GMT Subject: CN=673e7fc8-b83b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f6:96:ca:b2:9a:1f:4c:c1:1b:83:5c:49:88: b3:4e:66:5e:24:84:61:c3:6b:0e:56:73:78:cc:8f: e2:63:08:e4:8f:2d:7f:5f:40:10:6c:00:30:fc:8b: db:09:63:61:0d:2c:87:d2:a7:e6:8a:a0:61:b6:2e: 11:10:96:d6:7d:7c:db:6b:b2:f8:1b:78:16:57:4f: 3a:18:c2:66:90:4d:98:5b:62:29:9d:d1:71:e5:57: 63:59:42:2f:62:86:55:96:5c:76:0a:e8:05:4d:80: db:c8:20:34:5e:a5:aa:23:b6:f1:ae:40:90:1c:df: 7f:87:dc:8f:a3:a8:b5:fc:ac:23:03:2c:ff:fc:b9: dc:f0:09:2d:5b:1e:98:2c:d3:c5:5b:bc:eb:92:be: e4:ed:20:bb:45:4d:78:39:c7:95:cc:81:ea:49:61: bd:87:28:71:92:ac:d9:c8:b4:48:0b:9a:3b:55:88: 6a:96:46:28:64:29:72:86:3f:04:c0:a3:87:9c:6b: 61:b7:57:fe:1e:50:79:af:e5:56:33:8e:83:82:06: d1:02:29:66:f9:8e:8c:f3:35:7d:31:a6:b2:32:d3: 7b:38:fc:a9:e2:88:64:5b:80:d9:73:36:5a:3a:dc: 26:89:43:d8:3f:1c:fb:f2:52:80:d9:69:d4:b9:5e: 16:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C7:DC:09:82:BB:B1:7C:E5:3C:67:DD:3F:C1:8A:6C:36:6D:B4:82 X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:63:12:70:e8:f4:91:bc:12:7c:6b:c5:f6:6c:a1:45:6e:16: ef:60:7a:28:97:15:a9:16:68:4e:04:4f:01:6b:ff:e8:b0:39: 25:c5:db:93:da:a6:f3:08:0e:05:83:fc:f7:61:a0:13:4e:da: 89:55:0b:51:09:10:6f:bd:15:37:0c:db:e9:db:d9:d0:c8:00: 0f:c7:37:b4:ab:e2:a8:d9:76:71:3d:f2:34:ad:1c:b9:f3:87: 43:6d:60:6c:80:cd:4c:1a:8f:4a:2f:a5:3c:e3:ca:21:26:03: 9d:c8:ad:44:a4:c2:c9:c8:c1:f3:7e:3b:b3:73:87:9c:87:0f: c5:c6:de:e2:ee:5a:65:d3:31:bc:b0:2d:1b:65:64:23:d7:8a: 41:71:f4:3e:89:52:c3:95:c1:a1:d3:07:bd:54:91:25:c1:d5: 00:0b:1e:1c:84:b7:b4:e4:c1:a2:2b:3e:e0:7d:ce:4d:27:0f: 74:c5:63:5a:0e:9d:03:b8:71:06:ac:dd:5e:4d:af:67:3f:2c: 5b:a6:78:1d:cd:bd:f8:81:77:4a:bb:3b:09:d7:39:5d:5a:ea: 96:9b:e6:92:e7:b9:87:43:f5:04:d6:8a:5a:b1:c6:af:88:d5: f4:0e:40:a8:d6:0f:c3:9d:ac:a3:d2:72:49:bd:fa:79:75:66: 1e:4f:0d:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjQxMTIxMDAzMzExWhcNMjQxMTI4MDAzMzExWjAYMRYwFAYD VQQDEw02NzNlN2ZjOC1iODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/aWyrKaH0zBG4NcSYizTmZeJIRhw2sOVnN4zI/iYwjkjy1/X0AQbAAw/Ivb CWNhDSyH0qfmiqBhti4REJbWfXzba7L4G3gWV086GMJmkE2YW2IpndFx5VdjWUIv YoZVllx2CugFTYDbyCA0XqWqI7bxrkCQHN9/h9yPo6i1/KwjAyz//Lnc8AktWx6Y LNPFW7zrkr7k7SC7RU14OceVzIHqSWG9hyhxkqzZyLRIC5o7VYhqlkYoZClyhj8E wKOHnGtht1f+HlB5r+VWM46DggbRAilm+Y6M8zV9MaayMtN7OPyp4ohkW4DZczZa OtwmiUPYPxz78lKA2WnUuV4WeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPH3AmC u7F85Txn3T/Bimw2bbSCMB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ4OC9GMUI3RUFCQTkzQUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVO TFR5ZXRST0RuMGVnQXFoeTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPYxJw6PSRvBJ8a8X2bKFFbhbvYHoolxWpFmhOBE8Ba//osDklxduT 2qbzCA4Fg/z3YaATTtqJVQtRCRBvvRU3DNvp29nQyAAPxze0q+Ko2XZxPfI0rRy5 84dDbWBsgM1MGo9KL6U848ohJgOdyK1EpMLJyMHzfjuzc4echw/Fxt7i7lpl0zG8 sC0bZWQj14pBcfQ+iVLDlcGh0we9VJElwdUACx4chLe05MGiKz7gfc5NJw90xWNa Dp0DuHEGrN1eTa9nPyxbpngdzb34gXdKuzsJ1zldWuqWm+aS57mHQ/UE1opascav iNX0DkCo1g/Dnayj0nJJvfp5dWYeTw1e -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:55 2024 by rpki-client on console-fra.rpki-client.org