$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft File: P7GNifrzGI3OWQ98SJB3lh-CqVc.mft (raw, json) Hash identifier: H4aEEtvR9lPkXRpB7k9lDp6VaPMCpBkK329zhrs9ejg= Subject key identifier: 08:87:23:43:55:81:95:37:3C:23:07:84:04:BE:43:51:BA:CB:17:A4 Authority key identifier: 3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 Certificate issuer: /CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Certificate serial: 2A3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft Manifest number: 2A1C Signing time: Fri 22 Nov 2024 00:51:38 +0000 Manifest this update: Fri 22 Nov 2024 00:51:37 +0000 Manifest next update: Fri 29 Nov 2024 00:51:37 +0000 Files and hashes: 1: P7GNifrzGI3OWQ98SJB3lh-CqVc.crl (hash: TF4bmspYTAQH+FNLU4J+8IFpsyksrtSha4163FX4B3c=) 2: B0D1C39A182511EABDE3E142C4F9AE02.roa (hash: xxTv5lIpnKtcx9XuvXCKRrGWILL+jMEtvEZQzSqrJUg=) 3: 6FEF4E442DE011EA853E2328C4F9AE02.roa (hash: y9hlvcbbwajIefGB4Px8cK+/Wv7KVNqhLN9ui6sJIMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 20:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10811 (0x2a3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=3FB18D89FAF3188DCE590F7C489077961F82A957 Validity Not Before: Nov 22 00:51:37 2024 GMT Not After : Nov 29 00:51:37 2024 GMT Subject: CN=673fd59a-80b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:b6:8e:ca:b3:05:5b:17:2d:aa:29:2f:6a: f9:58:d5:3e:39:2a:e2:53:bb:80:9f:9a:f7:b1:62: 44:78:d7:ed:6e:2a:74:b3:02:09:ad:26:3d:1b:a5: ef:46:17:d9:46:c7:01:c0:4d:1d:ec:88:f0:e3:59: 70:79:59:5b:65:e1:78:a2:e4:0d:65:ad:d9:00:44: 21:55:6c:f1:db:61:53:e3:43:1f:80:f0:81:be:aa: df:7b:a6:1b:1c:ed:f1:0a:b4:d9:ea:ee:34:0e:2a: c6:f4:42:80:63:28:d0:61:12:89:3b:c5:bf:55:46: 5e:f2:7f:c0:2e:f8:42:0a:3f:2c:2d:a1:d7:48:c1: 2b:17:64:ed:f6:09:d7:52:18:cf:1d:7f:fd:3d:f6: 41:38:93:f6:14:c9:55:98:74:96:08:c8:6a:40:75: 8d:a8:d5:0a:20:16:1d:ce:27:2f:e1:a6:9e:fb:d4: 9b:c3:95:b6:62:1d:78:65:ec:e1:76:76:fb:0b:55: 02:ae:21:05:01:90:1d:a4:65:94:5a:7b:f6:24:9f: f0:f5:fc:b2:b7:94:36:f0:7d:af:c3:be:9a:24:4c: 6c:44:d7:94:ad:c5:a0:bd:d5:ed:33:e0:7e:89:91: 7f:8f:44:7c:bc:a6:2d:bc:fc:2b:8b:51:9c:a6:82: e1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:87:23:43:55:81:95:37:3C:23:07:84:04:BE:43:51:BA:CB:17:A4 X509v3 Authority Key Identifier: keyid:3F:B1:8D:89:FA:F3:18:8D:CE:59:0F:7C:48:90:77:96:1F:82:A9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/P7GNifrzGI3OWQ98SJB3lh-CqVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/B7F81958331A11E4AF2AB37CC4F9AE02/P7GNifrzGI3OWQ98SJB3lh-CqVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:a1:eb:7a:d9:20:54:12:ce:94:d9:5b:85:e3:be:43:76:55: f6:ad:af:00:fb:5e:17:62:8d:a4:eb:d6:1c:ee:32:1e:2f:40: 8f:2f:e9:06:6a:e1:47:ca:15:ff:d3:14:7f:77:60:6a:55:a1: 69:ff:c9:f2:03:ec:5e:7b:a4:3c:ff:9e:13:e7:73:31:48:4b: 54:fb:2c:ec:9a:e6:33:98:9f:bc:1b:f3:85:20:de:a6:90:0e: b6:4f:dc:c8:96:63:0f:10:4f:e1:4c:72:32:b2:06:3a:f9:ef: f3:c2:68:f3:18:ea:aa:43:80:ff:ff:b4:ca:1c:d4:10:7a:77: 5f:fd:ea:63:16:10:63:10:21:4f:22:74:9d:ee:af:fc:b4:0b: 68:5d:56:fc:84:f0:df:ce:f1:9f:99:4d:9f:de:25:1b:ba:7d: 47:eb:03:58:8f:97:48:d9:bd:6d:d8:43:c8:85:0b:b8:1c:77: 66:60:17:fb:56:20:0b:d7:3b:53:1b:13:13:6f:0e:5b:bd:90: 7c:4c:f3:23:9d:d4:1e:18:87:8a:78:09:17:c2:60:15:5f:7e: bc:e5:4e:16:d7:f3:ab:40:56:c7:f9:6b:9c:a3:88:14:8e:09: a6:6f:fe:c0:29:a7:1f:b1:b2:e1:09:9e:56:d3:1d:4d:19:01: 3e:dc:16:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKDNGQjE4RDg5RkFGMzE4OERDRTU5MEY3QzQ4OTA3Nzk2 MUY4MkE5NTcwHhcNMjQxMTIyMDA1MTM3WhcNMjQxMTI5MDA1MTM3WjAYMRYwFAYD VQQDEw02NzNmZDU5YS04MGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy++2jsqzBVsXLaopL2r5WNU+OSriU7uAn5r3sWJEeNftbip0swIJrSY9G6Xv RhfZRscBwE0d7Ijw41lweVlbZeF4ouQNZa3ZAEQhVWzx22FT40MfgPCBvqrfe6Yb HO3xCrTZ6u40DirG9EKAYyjQYRKJO8W/VUZe8n/ALvhCCj8sLaHXSMErF2Tt9gnX UhjPHX/9PfZBOJP2FMlVmHSWCMhqQHWNqNUKIBYdzicv4aae+9Sbw5W2Yh14Zezh dnb7C1UCriEFAZAdpGWUWnv2JJ/w9fyyt5Q28H2vw76aJExsRNeUrcWgvdXtM+B+ iZF/j0R8vKYtvPwri1GcpoLhqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiHI0NV gZU3PCMHhAS+Q1G6yxekMB8GA1UdIwQYMBaAFD+xjYn68xiNzlkPfEiQd5YfgqlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9CN0Y4MTk1ODMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJM09XUTk4U0pCM2xoLUNx VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1A3R05pZnJ6R0kzT1dROThTSkIzbGgtQ3FWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjIxNC9CN0Y4MTk1ODMzMUExMUU0QUYyQUIzN0NDNEY5QUUwMi9QN0dOaWZyekdJ M09XUTk4U0pCM2xoLUNxVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCToet62SBUEs6U2VuF475DdlX2ra8A+14XYo2k69Yc7jIeL0CPL+kG auFHyhX/0xR/d2BqVaFp/8nyA+xee6Q8/54T53MxSEtU+yzsmuYzmJ+8G/OFIN6m kA62T9zIlmMPEE/hTHIysgY6+e/zwmjzGOqqQ4D//7TKHNQQendf/epjFhBjECFP InSd7q/8tAtoXVb8hPDfzvGfmU2f3iUbun1H6wNYj5dI2b1t2EPIhQu4HHdmYBf7 ViAL1ztTGxMTbw5bvZB8TPMjndQeGIeKeAkXwmAVX3685U4W1/OrQFbH+Wuco4gU jgmmb/7AKacfsbLhCZ5W0x1NGQE+3BZ8 -----END CERTIFICATE-----Generated at Fri Nov 22 02:10:21 2024 by rpki-client on console-fra.rpki-client.org