$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft File: Vj8ylI68GzkPMqCqPzYUeFr858I.mft (raw, json) Hash identifier: 7peDalrPASD8WkRa5eZb/DBZGVnty+eYfrFCy+xeqBQ= Subject key identifier: 16:02:FC:31:1B:7A:DB:E5:18:AA:31:B8:07:BD:89:4C:5A:14:0C:7D Authority key identifier: 56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 Certificate issuer: /CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft Manifest number: 026D Signing time: Thu 21 Nov 2024 01:13:05 +0000 Manifest this update: Thu 21 Nov 2024 01:13:05 +0000 Manifest next update: Thu 28 Nov 2024 01:13:05 +0000 Files and hashes: 1: Vj8ylI68GzkPMqCqPzYUeFr858I.crl (hash: WZVQx6xdUAAPMv52rq/b8zN4CrDCLb6xUDtKkdoWQ3w=) 2: EA5EB99CEBBD11ECB3DAFE39C4F9AE02.roa (hash: +bhmDLl/B0RomjsU7MW7xevtY9GqNCpc/xDljwJVPAo=) 3: EB756434EBBD11ECB3DAFE39C4F9AE02.roa (hash: OqHjS/HS8e7S5i/skx8l2IsJyhS/M18aAyJkpcYv//Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC8C/serialNumber=563F32948EBC1B390F32A0AA3F3614785AFCE7C2 Validity Not Before: Nov 21 01:13:05 2024 GMT Not After : Nov 28 01:13:05 2024 GMT Subject: CN=673e8921-2fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:14:85:50:08:86:bb:ff:9a:e9:ea:c5:20: 31:e4:d7:39:5e:1d:b4:31:27:1f:b8:02:a4:4c:bc: b7:9e:b7:a9:f7:30:5d:d5:cb:64:59:86:c7:02:63: ec:19:8e:9f:99:7b:d6:c7:a8:84:cd:fc:a8:fd:09: d2:d9:a7:59:a0:2e:55:6e:21:fb:fd:08:e9:86:f6: c3:5d:81:2e:d5:85:50:9a:3f:eb:fa:d8:36:89:46: 43:01:af:09:26:c7:0a:32:69:b2:d8:7a:bf:8a:ce: 8d:a4:be:7f:0a:af:76:c2:34:0f:9f:c4:72:39:ae: c4:bd:24:95:73:21:fe:17:56:38:2b:dd:67:6f:a8: b8:35:8e:38:65:f1:98:07:a2:a7:18:f4:88:31:71: 1a:90:dc:4f:16:9d:33:5d:4a:93:39:88:2b:78:8a: 9f:1b:ea:2c:9b:e8:ca:e3:b0:b0:63:07:44:96:bf: 4d:0a:e6:d9:b0:10:f9:31:6f:cd:f1:e9:9a:3c:c9: 5c:bc:b1:98:58:d7:ec:06:bc:02:2e:97:ef:31:dd: 90:e0:2e:e8:71:87:ff:84:4f:95:61:d6:4c:cd:ab: ad:f3:cf:17:6f:2b:e0:54:aa:6e:11:b6:68:a9:cf: d2:31:50:33:d4:42:a8:e9:af:8a:89:be:19:ba:de: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:02:FC:31:1B:7A:DB:E5:18:AA:31:B8:07:BD:89:4C:5A:14:0C:7D X509v3 Authority Key Identifier: keyid:56:3F:32:94:8E:BC:1B:39:0F:32:A0:AA:3F:36:14:78:5A:FC:E7:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vj8ylI68GzkPMqCqPzYUeFr858I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC8C/89966DCAEBB911EC99E5610EC4F9AE02/Vj8ylI68GzkPMqCqPzYUeFr858I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:9c:1e:0d:a2:9b:49:b7:7f:1f:b5:51:5c:b6:36:6b:de:7e: dc:ba:33:37:3a:dd:ec:81:3f:74:1d:e6:e8:54:16:9b:cd:f6: 85:1f:9b:89:2d:e1:05:ea:35:6d:1d:2b:ac:ce:e0:61:02:d2: 1f:de:a1:50:43:fc:0e:8a:a7:b4:2d:0e:00:71:26:d7:26:ea: 0f:a4:1c:01:29:8f:d0:df:78:6b:17:e1:38:e7:dc:64:0f:e1: a5:1a:08:9e:cc:21:04:03:06:53:79:2a:0b:0c:7f:be:32:e0: e8:18:87:48:65:fc:ea:23:1f:1d:36:e8:70:21:db:9d:63:28: f1:1e:51:1d:8b:46:2b:b8:e6:6c:52:a8:85:73:4b:dd:05:a3: b1:67:00:b9:36:5e:59:a4:de:22:2e:36:2a:60:4c:18:55:84: 93:61:14:01:cc:c0:20:97:fa:72:82:6b:54:8a:95:04:c9:f6: 08:d0:5a:93:77:ec:31:84:18:a6:c2:12:47:7e:13:4f:cf:31: 7c:5a:fa:bc:ea:b5:81:40:94:90:ed:18:ca:7d:a0:2a:0e:21: a7:d9:62:bd:a2:7a:a9:31:21:fd:90:23:ad:a6:08:a3:cd:8b: 42:37:95:0c:21:e2:5e:bc:3a:01:6b:22:04:e0:ae:9b:4c:dd: 09:43:cb:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDOEMxMTAvBgNVBAUTKDU2M0YzMjk0OEVCQzFCMzkwRjMyQTBBQTNGMzYxNDc4 NUFGQ0U3QzIwHhcNMjQxMTIxMDExMzA1WhcNMjQxMTI4MDExMzA1WjAYMRYwFAYD VQQDEw02NzNlODkyMS0yZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroMUhVAIhrv/munqxSAx5Nc5Xh20MScfuAKkTLy3nrep9zBd1ctkWYbHAmPs GY6fmXvWx6iEzfyo/QnS2adZoC5VbiH7/QjphvbDXYEu1YVQmj/r+tg2iUZDAa8J JscKMmmy2Hq/is6NpL5/Cq92wjQPn8RyOa7EvSSVcyH+F1Y4K91nb6i4NY44ZfGY B6KnGPSIMXEakNxPFp0zXUqTOYgreIqfG+osm+jK47CwYwdElr9NCubZsBD5MW/N 8emaPMlcvLGYWNfsBrwCLpfvMd2Q4C7ocYf/hE+VYdZMzaut888XbyvgVKpuEbZo qc/SMVAz1EKo6a+Kib4Zut7RUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYC/DEb etvlGKoxuAe9iUxaFAx9MB8GA1UdIwQYMBaAFFY/MpSOvBs5DzKgqj82FHha/OfC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUM4Qy84OTk2NkRDQUVC QjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6a1BNcUNxUHpZVWVGcjg1 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZqOHlsSTY4R3prUE1xQ3FQellVZUZyODU4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUM4Qy84OTk2NkRDQUVCQjkxMUVDOTlFNTYxMEVDNEY5QUUwMi9Wajh5bEk2OEd6 a1BNcUNxUHpZVWVGcjg1OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRnB4NoptJt38ftVFctjZr3n7cujM3Ot3sgT90HeboVBabzfaFH5uJ LeEF6jVtHSuszuBhAtIf3qFQQ/wOiqe0LQ4AcSbXJuoPpBwBKY/Q33hrF+E459xk D+GlGgiezCEEAwZTeSoLDH++MuDoGIdIZfzqIx8dNuhwIdudYyjxHlEdi0YruOZs UqiFc0vdBaOxZwC5Nl5ZpN4iLjYqYEwYVYSTYRQBzMAgl/pygmtUipUEyfYI0FqT d+wxhBimwhJHfhNPzzF8Wvq86rWBQJSQ7RjKfaAqDiGn2WK9onqpMSH9kCOtpgij zYtCN5UMIeJevDoBayIE4K6bTN0JQ8vA -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:59 2024 by rpki-client on console-fra.rpki-client.org