$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: J7XjC5kLmxasQx3Pch+GI5DyVk9+njq6VyFdiUJIBCY= Subject key identifier: 0B:5B:BA:D0:3E:2A:A1:05:DF:45:9D:A1:39:39:70:02:C9:1C:7C:13 Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 01FF Signing time: Sat 23 Nov 2024 01:36:36 +0000 Manifest this update: Sat 23 Nov 2024 01:36:36 +0000 Manifest next update: Sat 30 Nov 2024 01:36:36 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: hEaEeRaESLW5Gez4Xf7Iwlf7gqoZ5Cn6T9U94kYKBWg=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: 9+/uK3UhO6sPq3a6D0tmdFb5UgMPGW/QyQl9kJEknrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: Nov 23 01:36:36 2024 GMT Not After : Nov 30 01:36:36 2024 GMT Subject: CN=674131a4-bf3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:7b:44:d2:7e:92:d5:15:36:97:00:ae:07: 45:34:00:77:5d:45:84:aa:a7:b3:cc:3c:ef:b8:41: 28:8d:cf:dc:56:31:0b:b7:a4:bb:54:2e:0a:51:5a: e1:01:5c:e5:91:78:00:04:5e:d0:93:7a:b6:0d:06: 72:4d:c1:e4:db:a3:15:b0:f9:68:20:61:cc:ff:6c: a2:1c:9d:6a:f1:bd:f7:51:d5:52:bb:86:ad:4c:3f: f2:4d:af:e2:2c:16:cd:03:4e:19:67:0b:50:87:dd: 6b:41:ec:24:38:f7:23:c3:8b:d0:70:8a:16:53:86: 32:65:93:04:8c:2c:d2:b2:73:15:0a:b6:2d:20:99: 2a:0a:70:a6:2a:ab:7c:0b:1c:00:e3:53:69:59:5b: 70:8c:74:d4:da:78:36:ca:bd:f9:93:f6:51:be:15: bc:5c:0f:bc:14:19:58:20:01:0b:96:ab:bb:da:2e: a7:61:68:3e:98:af:22:b5:26:5b:67:d0:c1:34:3f: ba:a9:6c:44:89:72:2a:0e:bd:7e:fc:ef:96:b3:db: 85:5b:83:8d:52:40:93:62:45:e4:3a:60:2a:22:0a: ca:6b:11:7d:43:1d:7e:1b:e1:d3:66:e7:ff:f6:53: 6d:20:45:b2:08:05:7d:db:76:24:5f:61:9a:cf:ca: 25:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:5B:BA:D0:3E:2A:A1:05:DF:45:9D:A1:39:39:70:02:C9:1C:7C:13 X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:ee:2d:b8:40:88:2b:b0:07:ca:4a:45:ed:23:c4:de:c6:1e: 23:19:20:e4:b0:e9:60:30:e4:cf:e0:2b:b8:42:79:4e:f7:44: 8b:31:3d:96:3e:2f:9b:07:e6:db:e9:1c:dc:34:84:e3:e0:51: 98:fe:cc:9b:57:47:20:7e:1b:3d:a8:54:84:60:94:10:4f:84: bd:ae:a1:ac:c0:bf:7a:4a:01:07:26:40:ae:cb:0a:3e:84:42: 43:1d:4b:1b:e1:6e:4d:61:46:f3:bd:78:93:5b:a0:e3:88:02: 68:cf:ec:47:30:b8:a0:3b:ed:37:07:85:a6:27:21:f7:bd:2c: 9d:c3:00:be:73:9a:85:9b:79:4a:a8:4e:60:90:c2:38:a5:cc: 84:c6:11:4e:0f:ab:09:93:92:95:94:65:4e:75:5c:77:61:20: 35:ce:e3:d0:a5:f4:d4:77:74:cd:a7:13:35:df:0f:07:c0:1b: 53:38:9b:c6:c4:46:d2:e8:ba:d2:b7:3e:db:ba:46:ec:8c:00: 20:08:57:37:fc:84:6d:f9:4c:ec:46:d8:55:06:d9:0b:da:46: 0a:f2:d7:06:32:8d:76:c8:4b:f0:d4:aa:41:38:67:70:01:c7: cc:63:e9:91:37:3c:f9:0b:3f:8c:e4:b1:2d:81:36:11:15:02: 11:71:73:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjQxMTIzMDEzNjM2WhcNMjQxMTMwMDEzNjM2WjAYMRYwFAYD VQQDEw02NzQxMzFhNC1iZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08V7RNJ+ktUVNpcArgdFNAB3XUWEqqezzDzvuEEojc/cVjELt6S7VC4KUVrh AVzlkXgABF7Qk3q2DQZyTcHk26MVsPloIGHM/2yiHJ1q8b33UdVSu4atTD/yTa/i LBbNA04ZZwtQh91rQewkOPcjw4vQcIoWU4YyZZMEjCzSsnMVCrYtIJkqCnCmKqt8 CxwA41NpWVtwjHTU2ng2yr35k/ZRvhW8XA+8FBlYIAELlqu72i6nYWg+mK8itSZb Z9DBND+6qWxEiXIqDr1+/O+Ws9uFW4ONUkCTYkXkOmAqIgrKaxF9Qx1+G+HTZuf/ 9lNtIEWyCAV923YkX2Gaz8ol1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtbutA+ KqEF30WdoTk5cALJHHwTMB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi7i24QIgrsAfKSkXtI8Texh4jGSDksOlgMOTP4Cu4QnlO90SLMT2W Pi+bB+bb6RzcNITj4FGY/sybV0cgfhs9qFSEYJQQT4S9rqGswL96SgEHJkCuywo+ hEJDHUsb4W5NYUbzvXiTW6DjiAJoz+xHMLigO+03B4WmJyH3vSydwwC+c5qFm3lK qE5gkMI4pcyExhFOD6sJk5KVlGVOdVx3YSA1zuPQpfTUd3TNpxM13w8HwBtTOJvG xEbS6LrStz7bukbsjAAgCFc3/IRt+UzsRthVBtkL2kYK8tcGMo12yEvw1KpBOGdw AcfMY+mRNzz5Cz+M5LEtgTYRFQIRcXOI -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org