$ rpki-client -vvf rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft File: aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft (raw, json) Hash identifier: C9dH9rcKy0dYQ7UjDfDD1D0jti86cNEseN+jxwHU/PU= Subject key identifier: F8:E6:85:A7:BB:CA:22:71:8B:E1:A2:57:12:3B:BE:46:4E:5D:8C:1F Authority key identifier: 69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 Certificate issuer: /CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft Manifest number: 0682 Signing time: Fri 22 Nov 2024 21:50:27 +0000 Manifest this update: Fri 22 Nov 2024 21:50:26 +0000 Manifest next update: Fri 29 Nov 2024 21:50:26 +0000 Files and hashes: 1: aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl (hash: ZrF9lxF+s2tNhq4f2NvPlocjhys5mavsp14WFmdVvBg=) 2: 8F1629524FD411EB9F1A0673C4F9AE02.roa (hash: umfOmYx1C1o3wC/2Ke3RN9zKbrXOV6GEbkjUeV3fdUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C6D9/serialNumber=6969D150AD03482081BB1BD7C13BE5F00DC53A38 Validity Not Before: Nov 22 21:50:26 2024 GMT Not After : Nov 29 21:50:26 2024 GMT Subject: CN=6740fca2-8f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ee:38:4b:d4:aa:a6:92:0f:14:fb:95:07:56: 5d:9e:97:fb:98:04:a8:2e:93:a2:11:b5:83:22:e3: d3:28:82:3f:a0:a1:21:44:14:52:f1:82:a1:69:c7: 97:be:b5:46:46:90:91:0e:b7:76:2c:15:b5:75:92: 60:2c:cd:af:a4:3d:09:06:f3:ca:38:64:44:42:1f: f9:5b:c7:46:f4:f0:6a:64:f8:e1:71:d1:c0:fb:37: 70:cc:a6:17:fe:d6:d9:dd:6b:ec:8a:67:2e:ad:42: e2:67:c8:14:46:f5:60:da:91:2b:4c:40:11:e9:a2: 22:9d:25:9b:93:35:c5:cb:52:37:86:1b:35:fd:d9: 30:81:5d:dc:f2:9b:1a:54:78:b4:09:4b:48:78:ba: ff:e2:93:7e:ca:c2:52:b9:c4:3c:62:45:b7:95:6b: ba:5d:71:15:5e:74:e7:e3:88:c4:0e:fc:7c:9d:af: ed:36:5d:fd:cc:d8:ba:6a:c3:2e:b0:ff:69:27:24: f4:4a:97:e8:f1:ee:fd:07:96:28:e9:7d:70:14:97: 53:a9:c5:d9:0f:b1:9e:ae:22:49:89:27:6f:83:d1: 9f:61:98:5f:e4:07:6a:86:ad:a5:f6:75:27:f8:a8: 06:eb:38:3e:0f:61:c3:c5:8f:d2:2c:b8:2e:6c:29: 82:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E6:85:A7:BB:CA:22:71:8B:E1:A2:57:12:3B:BE:46:4E:5D:8C:1F X509v3 Authority Key Identifier: keyid:69:69:D1:50:AD:03:48:20:81:BB:1B:D7:C1:3B:E5:F0:0D:C5:3A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnRUK0DSCCBuxvXwTvl8A3FOjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C6D9/6A5F13244FD111EBAFB1676BC4F9AE02/aWnRUK0DSCCBuxvXwTvl8A3FOjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2e:dc:e4:e8:80:4b:74:6e:6f:9e:c1:5a:6f:27:a6:b6:b6: 26:9f:7c:61:ad:4e:24:8a:5c:7e:a1:6a:75:4b:a2:83:cc:4a: 14:0c:90:29:24:f1:65:76:f5:e5:d6:05:d3:fe:a9:bd:70:03: 2a:eb:69:13:bd:df:5f:6c:58:6b:67:a2:0e:2d:8e:a6:38:fc: a5:34:75:05:62:69:e7:5f:f3:25:63:f2:9b:ea:82:ca:ed:85: fd:dd:b1:27:7b:07:48:05:d5:72:67:09:28:a8:a2:6a:f0:48: 2a:91:10:fd:c4:eb:b4:de:00:b1:fa:c3:01:3a:1c:5c:2f:34: 5a:00:25:49:73:03:5c:79:08:d6:3e:f4:64:95:d1:5f:9d:bc: 22:6d:fe:96:07:24:85:00:24:fe:49:26:62:fa:06:28:17:cf: c7:b7:a4:bf:f8:95:a4:df:b7:dd:66:3e:11:97:75:2b:11:e4: ad:30:fb:cd:7c:5b:a9:b1:0d:54:e5:94:67:f0:fd:b6:a2:69: 41:51:5d:5d:46:33:45:05:a9:2d:57:7d:74:88:60:f2:24:20: c6:46:0f:9e:6f:c4:44:e3:5c:26:07:01:6c:74:96:7d:87:d1: 1b:63:26:b3:a1:41:70:96:4b:9e:75:f6:61:2c:28:61:c5:0c: 19:7b:8e:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2RDkxMTAvBgNVBAUTKDY5NjlEMTUwQUQwMzQ4MjA4MUJCMUJEN0MxM0JFNUYw MERDNTNBMzgwHhcNMjQxMTIyMjE1MDI2WhcNMjQxMTI5MjE1MDI2WjAYMRYwFAYD VQQDEw02NzQwZmNhMi04ZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru44S9SqppIPFPuVB1Zdnpf7mASoLpOiEbWDIuPTKII/oKEhRBRS8YKhaceX vrVGRpCRDrd2LBW1dZJgLM2vpD0JBvPKOGREQh/5W8dG9PBqZPjhcdHA+zdwzKYX /tbZ3WvsimcurULiZ8gURvVg2pErTEAR6aIinSWbkzXFy1I3hhs1/dkwgV3c8psa VHi0CUtIeLr/4pN+ysJSucQ8YkW3lWu6XXEVXnTn44jEDvx8na/tNl39zNi6asMu sP9pJyT0Spfo8e79B5Yo6X1wFJdTqcXZD7GeriJJiSdvg9GfYZhf5Adqhq2l9nUn +KgG6zg+D2HDxY/SLLgubCmCKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjmhae7 yiJxi+GiVxI7vkZOXYwfMB8GA1UdIwQYMBaAFGlp0VCtA0gggbsb18E75fANxTo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzZEOS82QTVGMTMyNDRG RDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFNDQ0J1eHZYd1R2bDhBM0ZP amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXblJVSzBEU0NDQnV4dlh3VHZsOEEzRk9qZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzZEOS82QTVGMTMyNDRGRDExMUVCQUZCMTY3NkJDNEY5QUUwMi9hV25SVUswRFND Q0J1eHZYd1R2bDhBM0ZPamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArLtzk6IBLdG5vnsFabyemtrYmn3xhrU4kilx+oWp1S6KDzEoUDJAp JPFldvXl1gXT/qm9cAMq62kTvd9fbFhrZ6IOLY6mOPylNHUFYmnnX/MlY/Kb6oLK 7YX93bEnewdIBdVyZwkoqKJq8EgqkRD9xOu03gCx+sMBOhxcLzRaACVJcwNceQjW PvRkldFfnbwibf6WBySFACT+SSZi+gYoF8/Ht6S/+JWk37fdZj4Rl3UrEeStMPvN fFupsQ1U5ZRn8P22omlBUV1dRjNFBaktV310iGDyJCDGRg+eb8RE41wmBwFsdJZ9 h9EbYyazoUFwlkuedfZhLChhxQwZe45L -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org