$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: Yvsji4tepBtS3WvqV/1m/IOXOvZTpfPDB0pOvOJx3WY= Subject key identifier: 7E:2F:EA:27:80:FE:07:6B:EC:DB:17:38:5E:68:58:3B:55:7A:FB:7D Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 067C Signing time: Fri 22 Nov 2024 21:50:54 +0000 Manifest this update: Fri 22 Nov 2024 21:50:53 +0000 Manifest next update: Fri 29 Nov 2024 21:50:53 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: JkXP8rv+3qtfxjOJ1iN22QpuIDtQMCp3d/+OmfyVr/g=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: IGp9m0I02TJLhAdlVsf0KHi4zQC5JAuBW0+B+EgeGqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Nov 22 21:50:53 2024 GMT Not After : Nov 29 21:50:53 2024 GMT Subject: CN=6740fcbd-f9cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:14:63:a0:ca:7b:7c:4e:98:3a:3b:97:f2:ad: 1c:ba:10:95:eb:7a:b2:98:f1:77:0a:4a:86:8a:66: e4:a3:3d:33:5b:39:fc:17:13:32:1d:39:08:44:04: fc:e9:31:62:3d:db:f6:db:4a:a5:1a:36:f8:73:17: a3:24:71:54:80:11:e1:08:23:af:19:e2:98:70:bc: 5d:25:b8:cd:1a:b8:17:e0:8b:1b:ff:50:5e:d2:ce: c4:42:b5:5f:b5:4c:c9:b5:bc:ab:e8:53:85:ed:94: f4:02:08:bb:87:d1:9b:bb:f4:37:e3:1f:b4:5e:e0: 9d:31:55:f6:2e:d1:ba:bd:26:c7:28:c5:64:7e:ad: 23:77:21:a6:26:89:0f:a8:91:1c:ea:f1:f4:82:b8: e2:1a:11:80:8b:72:0f:79:68:55:d6:ee:3e:f0:f7: 9a:a6:ab:61:37:1f:29:65:f9:ed:64:d1:ed:98:df: 1f:00:3f:8f:49:f6:a1:e2:37:61:1c:67:30:3c:36: 75:e7:f7:17:6f:9d:45:d0:02:f3:32:dc:0f:7c:e9: bf:e1:c6:27:24:86:3e:ef:44:04:74:26:2d:47:17: 9a:e3:20:98:3c:71:4c:9f:37:fc:ac:f6:79:bd:1a: e1:88:f6:05:7f:19:3b:4c:b8:c1:bb:a7:18:8b:3f: 95:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2F:EA:27:80:FE:07:6B:EC:DB:17:38:5E:68:58:3B:55:7A:FB:7D X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:bc:5a:3f:b0:ba:a7:1a:ab:b5:58:0b:58:e9:bf:47:5b:20: a7:11:e1:af:50:e5:c1:ec:cd:48:ac:2e:6b:32:c9:0d:2c:c3: 54:8c:d5:00:82:9b:83:40:59:5f:2e:86:14:7e:4c:c1:2a:2d: 3a:54:04:9d:33:0b:c9:3d:bc:9a:32:f8:63:19:6e:95:29:2c: 12:ae:90:c2:4e:07:9e:35:48:9b:4c:3f:2d:d0:c3:38:8d:92: 70:e1:b0:c5:20:ca:65:a9:58:74:76:1a:9a:e5:07:76:44:31: f2:70:a9:91:42:91:03:49:72:bf:5a:64:c4:bc:27:38:54:34: 8d:e0:5d:44:8c:4f:48:f5:7c:eb:29:0d:4a:bf:f3:d2:9b:e3: 5b:e0:6a:7f:ff:55:65:f9:be:36:ed:13:66:8a:a1:b0:ee:8d: f6:60:cb:7e:03:28:8a:ba:dc:c1:64:81:65:f0:49:a8:d1:f6: ec:69:cb:bc:00:2b:05:4d:09:3e:79:0a:df:40:04:c1:3d:ab: 7f:66:7f:b7:d5:71:a6:ad:47:0b:f6:e5:c3:74:28:62:31:7a: b3:09:10:50:e2:cf:65:8d:69:1f:67:4f:af:14:93:5d:8f:de: ad:59:ab:9d:74:84:ed:58:ba:23:aa:12:0d:d4:1d:95:aa:d6: 78:1c:7c:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjQxMTIyMjE1MDUzWhcNMjQxMTI5MjE1MDUzWjAYMRYwFAYD VQQDEw02NzQwZmNiZC1mOWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRRjoMp7fE6YOjuX8q0cuhCV63qymPF3CkqGimbkoz0zWzn8FxMyHTkIRAT8 6TFiPdv220qlGjb4cxejJHFUgBHhCCOvGeKYcLxdJbjNGrgX4Isb/1Be0s7EQrVf tUzJtbyr6FOF7ZT0Agi7h9Gbu/Q34x+0XuCdMVX2LtG6vSbHKMVkfq0jdyGmJokP qJEc6vH0grjiGhGAi3IPeWhV1u4+8PeapqthNx8pZfntZNHtmN8fAD+PSfah4jdh HGcwPDZ15/cXb51F0ALzMtwPfOm/4cYnJIY+70QEdCYtRxea4yCYPHFMnzf8rPZ5 vRrhiPYFfxk7TLjBu6cYiz+VkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4v6ieA /gdr7NsXOF5oWDtVevt9MB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9vFo/sLqnGqu1WAtY6b9HWyCnEeGvUOXB7M1IrC5rMskNLMNUjNUA gpuDQFlfLoYUfkzBKi06VASdMwvJPbyaMvhjGW6VKSwSrpDCTgeeNUibTD8t0MM4 jZJw4bDFIMplqVh0dhqa5Qd2RDHycKmRQpEDSXK/WmTEvCc4VDSN4F1EjE9I9Xzr KQ1Kv/PSm+Nb4Gp//1Vl+b427RNmiqGw7o32YMt+AyiKutzBZIFl8Emo0fbsacu8 ACsFTQk+eQrfQATBPat/Zn+31XGmrUcL9uXDdChiMXqzCRBQ4s9ljWkfZ0+vFJNd j96tWauddITtWLojqhIN1B2VqtZ4HHwn -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org