$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft File: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft (raw, json) Hash identifier: t3yL4tjQ54yB7HLeSbYc2r6lSw6+zm5+ECiIxxu+rFg= Subject key identifier: B1:80:9E:16:F0:74:9F:D7:01:B0:D4:CD:38:CF:AD:68:72:26:4F:67 Authority key identifier: D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 Certificate issuer: /CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Certificate serial: 0776 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft Manifest number: 0768 Signing time: Fri 22 Nov 2024 21:00:51 +0000 Manifest this update: Fri 22 Nov 2024 21:00:51 +0000 Manifest next update: Fri 29 Nov 2024 21:00:51 +0000 Files and hashes: 1: 1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl (hash: 5sNvC3K/yx2qvp994StAvKSvFYxXHfc7UV9TakR7VnI=) 2: CB42F018F7C311EA8A722484C4F9AE02.roa (hash: zKK5aDn+ZrKrGJS54S2NjuDTAktKECh+m0VACrTa5Nk=) 3: CAB0B6B2F7C311EA8A722484C4F9AE02.roa (hash: KDUtG1J4AENbekyCq++mfX0HRm1bug372S4zxJx9wNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAAD/serialNumber=D617D4710482C7F775752057DC8682259B319C78 Validity Not Before: Nov 22 21:00:51 2024 GMT Not After : Nov 29 21:00:51 2024 GMT Subject: CN=6740f103-8a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:73:59:9c:5e:be:e2:f1:67:7b:d6:d6:e7: 80:ac:0b:08:2a:12:e5:bf:b4:cd:e5:1d:82:db:90: f6:82:a1:5c:dd:5b:bb:08:0b:97:be:59:1b:85:c6: 88:9b:81:8f:74:0f:4c:8e:9e:32:ef:99:10:22:d6: 72:1c:17:61:24:67:24:5b:fe:7e:01:f0:c4:4f:7e: da:46:9c:bc:ef:22:8f:29:29:4b:b3:b0:5a:e7:41: 13:b5:5c:00:28:bb:3d:e4:f4:05:74:3e:44:29:ba: 15:02:3f:1e:07:e6:ce:16:27:6f:7c:eb:6c:ad:ca: 5e:f2:64:cc:3b:59:bb:72:f4:61:45:4c:c1:6a:5c: 68:0a:43:f5:93:fd:9f:30:a3:fd:33:c6:ad:c0:f9: 57:f7:b3:c2:43:5f:ce:e5:57:15:b7:48:0b:b1:ee: 1c:2f:25:7e:55:01:a2:88:e2:ad:e7:65:02:c8:ae: 73:f9:a8:85:6f:59:6a:08:97:bb:d4:a9:f0:b8:51: 18:ea:4a:84:d2:1d:39:f8:aa:f1:ec:f3:f2:30:1c: 1c:f1:a1:f6:62:56:e8:0d:ad:90:1e:8f:fd:ef:34: 89:fb:e8:73:f9:5d:45:d8:11:6d:e0:01:ba:4d:ca: e9:9a:85:ae:ca:bd:0f:fe:09:b5:28:ce:4a:60:36: 06:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:80:9E:16:F0:74:9F:D7:01:B0:D4:CD:38:CF:AD:68:72:26:4F:67 X509v3 Authority Key Identifier: keyid:D6:17:D4:71:04:82:C7:F7:75:75:20:57:DC:86:82:25:9B:31:9C:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hfUcQSCx_d1dSBX3IaCJZsxnHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAAD/E3B2B644F7C111EA8275CB66C4F9AE02/1hfUcQSCx_d1dSBX3IaCJZsxnHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:39:be:c6:33:08:e6:23:04:46:2c:3a:97:c4:20:33:b2:cc: d0:a3:a7:78:d0:61:62:12:28:49:6e:37:56:32:76:d5:92:1d: 20:f2:cc:4e:0e:fe:10:1c:24:33:fa:2a:1d:ec:e0:0e:44:1d: c8:a8:0a:eb:9f:02:40:65:88:18:dc:d6:ec:6e:b2:ce:32:9d: d0:66:05:11:60:a7:87:e8:67:9f:6c:9b:9b:f0:8f:e8:0f:b3: bb:6f:51:a6:ce:60:95:7c:13:38:60:60:d1:bf:08:7c:8b:3c: 64:2d:ec:a8:28:eb:52:cd:25:f7:6c:1b:21:aa:9a:8e:b8:b9: 08:4e:22:63:0a:56:3d:85:1f:ef:74:1e:e8:bc:eb:9f:c5:28: 90:c4:cd:26:6e:c4:d1:c0:bb:5c:ff:55:50:6f:d8:cd:43:4c: 2e:11:5d:48:7f:e3:7c:b0:04:93:7b:84:18:de:40:1e:ac:58: 89:a7:9d:e7:50:4c:62:bb:38:d1:f5:8c:26:88:30:ec:1a:3a: 31:cf:85:3a:b4:97:5d:22:6b:55:64:49:6e:6e:c1:fd:42:a4: 21:eb:ab:95:ac:d0:26:3f:5e:46:dd:fc:07:4f:6c:bb:1f:61: 4e:11:bb:b2:b3:c7:b9:14:b0:1b:13:70:7b:a4:db:4f:58:32: d3:48:5a:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBQUQxMTAvBgNVBAUTKEQ2MTdENDcxMDQ4MkM3Rjc3NTc1MjA1N0RDODY4MjI1 OUIzMTlDNzgwHhcNMjQxMTIyMjEwMDUxWhcNMjQxMTI5MjEwMDUxWjAYMRYwFAYD VQQDEw02NzQwZjEwMy04YTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7hzWZxevuLxZ3vW1ueArAsIKhLlv7TN5R2C25D2gqFc3Vu7CAuXvlkbhcaI m4GPdA9Mjp4y75kQItZyHBdhJGckW/5+AfDET37aRpy87yKPKSlLs7Ba50ETtVwA KLs95PQFdD5EKboVAj8eB+bOFidvfOtsrcpe8mTMO1m7cvRhRUzBalxoCkP1k/2f MKP9M8atwPlX97PCQ1/O5VcVt0gLse4cLyV+VQGiiOKt52UCyK5z+aiFb1lqCJe7 1KnwuFEY6kqE0h05+Krx7PPyMBwc8aH2YlboDa2QHo/97zSJ++hz+V1F2BFt4AG6 TcrpmoWuyr0P/gm1KM5KYDYGRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGAnhbw dJ/XAbDUzTjPrWhyJk9nMB8GA1UdIwQYMBaAFNYX1HEEgsf3dXUgV9yGgiWbMZx4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFBRC9FM0IyQjY0NEY3 QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hfZDFkU0JYM0lhQ0pac3hu SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZlVjUVNDeF9kMWRTQlgzSWFDSlpzeG5IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFBRC9FM0IyQjY0NEY3QzExMUVBODI3NUNCNjZDNEY5QUUwMi8xaGZVY1FTQ3hf ZDFkU0JYM0lhQ0pac3huSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYOb7GMwjmIwRGLDqXxCAzsszQo6d40GFiEihJbjdWMnbVkh0g8sxO Dv4QHCQz+iod7OAORB3IqArrnwJAZYgY3NbsbrLOMp3QZgURYKeH6GefbJub8I/o D7O7b1GmzmCVfBM4YGDRvwh8izxkLeyoKOtSzSX3bBshqpqOuLkITiJjClY9hR/v dB7ovOufxSiQxM0mbsTRwLtc/1VQb9jNQ0wuEV1If+N8sASTe4QY3kAerFiJp53n UExiuzjR9YwmiDDsGjoxz4U6tJddImtVZElubsH9QqQh66uVrNAmP15G3fwHT2y7 H2FOEbuys8e5FLAbE3B7pNtPWDLTSFrP -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:09 2024 by rpki-client on console-fra.rpki-client.org