$ rpki-client -vvf rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft File: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft (raw, json) Hash identifier: m4v/DjZWkNJmBlZDqiYrCY1iXUHrJD//fcHR26oF19A= Subject key identifier: EC:17:5D:50:7D:F7:61:F5:10:B3:6F:B7:8D:2A:E0:44:28:43:65:13 Authority key identifier: 91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 Certificate issuer: /CN=A917408F/serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft Manifest number: 0B Signing time: Wed 25 Dec 2024 06:13:33 +0000 Manifest this update: Wed 25 Dec 2024 06:13:32 +0000 Manifest next update: Wed 01 Jan 2025 06:13:32 +0000 Files and hashes: 1: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl (hash: wlWfeclMtjTL6cGjoD+OYOYZeflJz6SFb0wnRR7xcO0=) 2: 9CEF2622B76E11EF8FCC9767C4F9AE02.roa (hash: 2R62YAvpAuupePKvyUwfJfetCOhCrZjNgarawDnuvxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917408F/serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Validity Not Before: Dec 25 06:13:32 2024 GMT Not After : Jan 1 06:13:32 2025 GMT Subject: CN=676ba28d-e278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c3:fb:00:f3:5b:e9:78:e1:69:74:65:92:60: fe:67:74:cf:7f:10:48:16:b7:4b:14:39:5a:6c:d5: 1e:eb:16:02:19:1e:da:e4:59:64:93:b2:f4:af:bf: eb:d0:98:e7:5e:61:5d:a5:3d:7e:e3:47:ec:3f:32: e9:18:29:0d:c6:e1:58:10:65:c3:f4:f6:66:f1:e1: 41:a8:e6:6a:09:99:fb:49:3b:bd:a6:5f:64:91:9f: 6d:e4:21:ed:af:9b:79:53:93:81:e4:30:a4:a8:4b: 4e:18:ac:f0:da:49:f3:cb:b5:51:6a:ba:07:2c:aa: bb:c4:88:34:85:9f:cb:aa:14:5b:93:88:d1:b1:dd: 0f:eb:a6:43:08:08:de:e5:9d:88:22:e5:04:a1:ee: 67:f5:37:c8:5f:38:83:84:62:6d:db:17:76:1c:13: c4:82:68:26:88:51:15:e7:c0:fa:8f:26:62:5b:3c: 08:61:74:d8:d2:88:de:43:69:be:07:f5:db:4a:aa: 0d:0b:c3:6a:a8:31:bc:fc:09:b3:5a:66:14:0c:cb: 8f:d4:46:91:7b:a4:4a:b6:81:d7:ed:fc:75:dd:ce: 5a:18:a0:a2:7b:d2:69:8d:29:f6:53:91:32:f9:52: 75:8d:48:d1:34:42:74:f8:9b:4f:6c:27:36:cf:1f: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:17:5D:50:7D:F7:61:F5:10:B3:6F:B7:8D:2A:E0:44:28:43:65:13 X509v3 Authority Key Identifier: keyid:91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:45:86:cc:90:d0:2c:c5:76:df:dd:86:49:27:5f:48:08:53: f4:a0:10:2a:e1:a5:78:93:5d:59:69:4a:80:1f:b4:41:8f:52: ae:a5:d5:ed:cf:22:2f:d2:14:e8:d7:30:eb:61:91:3b:f5:6c: c0:37:b4:cb:da:4d:ca:e0:7e:ff:5c:5e:50:f2:e8:4b:e0:b1: 31:a6:fb:46:4e:d3:61:5a:b3:f5:fd:5c:c4:95:69:c5:68:cb: be:dd:9b:6a:9b:19:7f:63:77:61:1a:37:f7:86:de:90:5d:59: 49:a6:a7:0e:8c:e9:90:0c:07:57:8a:7a:56:ba:9d:b3:8d:d5: be:40:74:c4:15:df:e0:b8:36:cf:57:c0:12:89:bb:65:4b:c9: 69:4e:be:bd:7a:f1:97:da:50:11:0a:b0:c6:7f:be:5c:1a:86: 2f:ca:9d:ef:c7:07:a9:b0:c1:66:4e:97:75:a7:2e:a6:74:d2: c6:3a:34:82:93:98:b7:6e:3e:f9:01:b6:37:25:fa:55:ec:fc: 06:a0:81:01:12:a4:0e:59:52:b1:d1:3e:aa:7a:98:f5:e1:f5: 2a:c7:68:4f:1d:0d:84:2a:8b:b0:1e:d8:4f:bf:b7:65:58:b0: 05:ce:6a:03:ce:00:9e:3c:43:69:a1:7a:32:92:ce:54:a5:00: 25:60:03:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NDA4RjExMC8GA1UEBRMoOTEwRjJGNDE0MDhFMTNEQUVEN0MyMURDNDcyREM1QzU4 QzQ1ODgzNjAeFw0yNDEyMjUwNjEzMzJaFw0yNTAxMDEwNjEzMzJaMBgxFjAUBgNV BAMTDTY3NmJhMjhkLWUyNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjw/sA81vpeOFpdGWSYP5ndM9/EEgWt0sUOVps1R7rFgIZHtrkWWSTsvSvv+vQ mOdeYV2lPX7jR+w/MukYKQ3G4VgQZcP09mbx4UGo5moJmftJO72mX2SRn23kIe2v m3lTk4HkMKSoS04YrPDaSfPLtVFqugcsqrvEiDSFn8uqFFuTiNGx3Q/rpkMICN7l nYgi5QSh7mf1N8hfOIOEYm3bF3YcE8SCaCaIURXnwPqPJmJbPAhhdNjSiN5Dab4H 9dtKqg0Lw2qoMbz8CbNaZhQMy4/URpF7pEq2gdft/HXdzloYoKJ70mmNKfZTkTL5 UnWNSNE0QnT4m09sJzbPH1jzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7BddUH33 YfUQs2+3jSrgRChDZRMwHwYDVR0jBBgwFoAUkQ8vQUCOE9rtfCHcRy3FxYxFiDYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0MDhGLzE2Q0Q5ODU4Qjc2 RTExRUZBQ0YwRjg2NUM0RjlBRTAyL2tROHZRVUNPRTlydGZDSGNSeTNGeFl4RmlE WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1E4dlFVQ09FOXJ0ZkNIY1J5M0Z4WXhGaURZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 MDhGLzE2Q0Q5ODU4Qjc2RTExRUZBQ0YwRjg2NUM0RjlBRTAyL2tROHZRVUNPRTly dGZDSGNSeTNGeFl4RmlEWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAARFhsyQ0CzFdt/dhkknX0gIU/SgECrhpXiTXVlpSoAftEGPUq6l1e3P Ii/SFOjXMOthkTv1bMA3tMvaTcrgfv9cXlDy6EvgsTGm+0ZO02Fas/X9XMSVacVo y77dm2qbGX9jd2EaN/eG3pBdWUmmpw6M6ZAMB1eKela6nbON1b5AdMQV3+C4Ns9X wBKJu2VLyWlOvr168ZfaUBEKsMZ/vlwahi/Kne/HB6mwwWZOl3WnLqZ00sY6NIKT mLduPvkBtjcl+lXs/AaggQESpA5ZUrHRPqp6mPXh9SrHaE8dDYQqi7Ae2E+/t2VY sAXOagPOAJ48Q2mhejKSzlSlACVgA40= -----END CERTIFICATE-----Generated at Wed Dec 25 08:01:17 2024 by rpki-client on console-fra.rpki-client.org