$ rpki-client -vvf rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft File: 0fxphnCiQetFTVXFZ6paY1rwoGM.mft (raw, json) Hash identifier: qJXOK2w7rZ/RDyd9rzRjQuNOd69MbXn8rG+uZXVNHTg= Subject key identifier: FB:55:EE:EE:65:C0:54:C8:F5:4C:20:DF:D6:B8:04:E1:BC:9F:2B:C0 Authority key identifier: D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 Certificate issuer: /CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft Manifest number: 0492 Signing time: Fri 22 Nov 2024 23:35:58 +0000 Manifest this update: Fri 22 Nov 2024 23:35:57 +0000 Manifest next update: Fri 29 Nov 2024 23:35:57 +0000 Files and hashes: 1: 0fxphnCiQetFTVXFZ6paY1rwoGM.crl (hash: xQG1pgejT6VpGMC469/S3V7YIHf0+eX2lwHVlkm6Mcg=) 2: 5D4D3E261A3E11ECB42D0B80C4F9AE02.roa (hash: e0KkfPde2Ts0xEPyM0nzVu8DuSx5aG7PPxte7ZOWQ/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Validity Not Before: Nov 22 23:35:57 2024 GMT Not After : Nov 29 23:35:57 2024 GMT Subject: CN=6741155e-4d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b7:23:31:49:e6:51:b4:0c:a3:ca:cc:6e:84: 5a:18:e7:a9:ab:13:47:40:6e:fc:35:40:19:6f:d7: 1f:02:78:4d:be:a6:db:a1:37:71:cd:c0:27:22:4f: 24:3d:e5:a9:23:d0:c5:6c:0a:46:8c:de:6a:3a:f0: fd:d2:58:3b:c5:46:b1:23:19:a2:e3:2e:19:0d:b7: 9f:b8:df:06:a7:b3:91:7f:d7:43:c7:34:66:ee:aa: 0d:59:1b:2c:30:ef:03:eb:df:d8:c6:9d:32:b9:48: e5:75:a0:37:1c:26:bd:bd:c4:72:d3:d7:7f:fa:6e: 25:c5:dc:d9:5d:dd:4a:44:50:ff:a3:3c:72:6c:ae: 93:1f:60:55:6a:da:8e:7e:d5:69:28:ee:67:19:68: 4f:d2:3b:c0:02:23:d9:22:07:e4:72:02:2a:53:2f: 11:3e:37:89:fe:d9:4f:d8:d5:ef:fb:fe:35:12:a7: 29:79:e4:6c:93:81:ef:3a:b9:0e:2c:42:02:93:a0: a7:17:c5:68:e1:76:c3:2d:df:eb:83:05:cb:13:7b: 19:31:71:dd:28:e3:81:fe:a3:71:bc:19:82:16:e4: f3:09:38:89:d7:8d:7f:fc:c8:5b:c5:b1:fe:ab:59: 93:40:57:1e:64:ac:06:0b:d3:5d:3e:95:4c:04:6c: 91:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:55:EE:EE:65:C0:54:C8:F5:4C:20:DF:D6:B8:04:E1:BC:9F:2B:C0 X509v3 Authority Key Identifier: keyid:D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:77:7d:d6:4a:cb:9d:c9:0e:9c:7b:c3:98:bb:99:3b:1c:f4: 00:57:b6:d8:c5:52:69:f8:2a:be:dc:ea:97:55:d7:9a:e8:36: 30:eb:ab:48:fd:0e:08:00:0f:6f:2d:58:c7:1d:8c:ec:5c:9f: a1:4b:0a:0c:67:f1:02:ac:1f:09:e3:5e:29:dc:3e:67:89:f9: 2c:49:ef:d1:82:37:be:44:3b:5d:5a:5f:db:c9:f8:ba:e9:58: ba:0c:a6:73:28:ef:39:31:11:35:54:6b:ac:4d:5f:07:19:2f: 14:cf:dc:a9:57:15:eb:00:70:4b:ed:38:95:ee:cc:66:b5:f5: 55:b6:f3:66:18:c9:14:bf:ab:f3:13:39:4e:c9:48:1d:e5:3e: cd:e8:96:f7:80:de:1b:0c:99:52:94:38:5c:f9:b8:ee:83:a5: 08:97:b8:62:6d:c4:8c:c3:34:3a:9d:bd:46:88:b5:a4:56:64: 95:2c:11:d9:c2:80:3c:36:dc:17:aa:40:95:ba:cc:48:8c:48: 65:e3:d4:d1:4c:ee:44:8d:f6:63:25:9c:94:42:d0:21:90:f3: 4d:e4:40:1d:18:46:2e:11:f9:59:8f:60:1a:f4:c8:20:e4:fd: 96:6c:7f:f2:01:48:1f:bd:bf:5e:34:52:a7:a3:27:d1:e9:de: a2:16:ab:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY4MUIxMTAvBgNVBAUTKEQxRkM2OTg2NzBBMjQxRUI0NTRENTVDNTY3QUE1QTYz NUFGMEEwNjMwHhcNMjQxMTIyMjMzNTU3WhcNMjQxMTI5MjMzNTU3WjAYMRYwFAYD VQQDEw02NzQxMTU1ZS00ZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbcjMUnmUbQMo8rMboRaGOepqxNHQG78NUAZb9cfAnhNvqbboTdxzcAnIk8k PeWpI9DFbApGjN5qOvD90lg7xUaxIxmi4y4ZDbefuN8Gp7ORf9dDxzRm7qoNWRss MO8D69/Yxp0yuUjldaA3HCa9vcRy09d/+m4lxdzZXd1KRFD/ozxybK6TH2BVatqO ftVpKO5nGWhP0jvAAiPZIgfkcgIqUy8RPjeJ/tlP2NXv+/41EqcpeeRsk4HvOrkO LEICk6CnF8Vo4XbDLd/rgwXLE3sZMXHdKOOB/qNxvBmCFuTzCTiJ141//MhbxbH+ q1mTQFceZKwGC9NdPpVMBGyRXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtV7u5l wFTI9Uwg39a4BOG8nyvAMB8GA1UdIwQYMBaAFNH8aYZwokHrRU1VxWeqWmNa8KBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjgxQi9DNDNGQkQwNjFB M0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFldEZUVlhGWjZwYVkxcndv R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmeHBobkNpUWV0RlRWWEZaNnBhWTFyd29HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjgxQi9DNDNGQkQwNjFBM0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFl dEZUVlhGWjZwYVkxcndvR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwd33WSsudyQ6ce8OYu5k7HPQAV7bYxVJp+Cq+3OqXVdea6DYw66tI /Q4IAA9vLVjHHYzsXJ+hSwoMZ/ECrB8J414p3D5nifksSe/Rgje+RDtdWl/byfi6 6Vi6DKZzKO85MRE1VGusTV8HGS8Uz9ypVxXrAHBL7TiV7sxmtfVVtvNmGMkUv6vz EzlOyUgd5T7N6Jb3gN4bDJlSlDhc+bjug6UIl7hibcSMwzQ6nb1GiLWkVmSVLBHZ woA8NtwXqkCVusxIjEhl49TRTO5EjfZjJZyUQtAhkPNN5EAdGEYuEflZj2Aa9Mgg 5P2WbH/yAUgfvb9eNFKnoyfR6d6iFqvt -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org