$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: vYISbx22Yb79hFdZLQxt4QYhHD+SU0UO151Iu2ammfg= Subject key identifier: 4F:37:31:FD:C5:04:A7:01:11:D9:7A:9E:39:70:F5:C3:EC:0C:D9:20 Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 035B Signing time: Thu 21 Nov 2024 00:32:21 +0000 Manifest this update: Thu 21 Nov 2024 00:32:21 +0000 Manifest next update: Thu 28 Nov 2024 00:32:21 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: bMKRsqS/GPrGPKwAzbTYb0IvpnqiNCYxQANQkyPx1B8=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: QtSrx3oUF/ad9/RO+OgA9B79y6pDw1XGRWidX/XgA/o=) 3: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: N8c1rSXK+JX9bAMRW/13KcQ620z4/zQjS+AST+v9G50=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: cdCSroyK5NaH86UWTZp1A50DBpPNefJMH+Nhzc4lYoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Nov 21 00:32:21 2024 GMT Not After : Nov 28 00:32:21 2024 GMT Subject: CN=673e7f95-fa61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dd:89:d0:33:28:ef:45:72:8b:1d:ed:88:a5: 93:5c:ba:bb:97:30:9e:82:e7:8c:f2:ea:d9:b4:8b: 97:5b:d3:fa:c6:97:f4:53:d6:1e:b1:3a:ae:2f:79: 88:e5:a9:b1:13:b1:ce:cb:e9:2e:7d:0d:e8:d0:98: d3:14:31:64:ab:49:8c:bb:58:56:b9:8e:bf:9b:5e: e1:42:28:51:d9:54:01:e0:aa:11:cb:44:d9:df:ce: c5:e8:51:4e:fa:1a:2b:c1:bc:ca:14:65:c1:7e:b5: 8c:5c:c7:f0:b3:e0:f4:c7:c5:18:54:fd:30:9e:1f: 69:49:98:a6:c9:3c:91:ed:9a:ab:35:01:a2:b1:99: 47:96:12:a1:41:95:6d:6a:48:96:c1:7c:92:4e:a5: 0d:91:30:aa:0f:99:95:0f:a8:93:e8:eb:65:5c:b7: 11:3b:0c:c2:5f:78:79:52:87:16:03:d7:bd:e1:c7: 4a:b5:46:b6:8d:04:f5:43:6d:95:70:4c:b1:88:c8: 6d:b7:a9:1f:11:e2:a2:48:40:68:35:7d:8d:19:8a: cd:bd:8f:c1:66:4a:b0:9b:5f:a0:5e:3f:22:99:3c: 9c:33:8a:f9:af:b1:f8:f3:48:05:ec:21:5b:02:8a: 71:dd:b5:5c:c9:81:20:ea:7a:81:b7:33:54:2b:21: ab:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:37:31:FD:C5:04:A7:01:11:D9:7A:9E:39:70:F5:C3:EC:0C:D9:20 X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:07:a7:4b:d3:2f:de:b3:14:ab:e5:5a:02:6c:c5:32:ba:64: dc:c8:5d:48:49:43:40:ab:37:a9:d7:93:46:e6:78:13:c9:2f: 87:1c:37:5e:8d:72:bb:25:f8:07:58:7b:2d:9a:ac:06:ca:b8: 87:44:9b:88:1d:84:29:f7:9a:4c:70:22:90:c5:a4:fc:08:05: 91:e2:97:4c:d0:e9:35:ae:5c:0d:8d:ac:2e:e2:c1:cf:70:08: df:81:4e:0d:6a:ae:d5:61:7d:33:1f:85:45:8b:35:81:2c:51: 10:2c:26:d9:08:0e:ae:36:f6:8d:c7:4e:ab:0e:36:7f:77:c4: 5c:d8:65:b9:05:e1:58:9a:22:69:ce:8e:e9:9c:7e:fd:e2:45: 5f:63:99:22:f7:ea:97:31:da:cb:d0:27:14:83:83:44:d2:9e: d0:80:a4:f7:0b:ca:38:89:2a:f8:dc:ae:8b:14:44:6e:87:03: 61:9c:af:9b:ff:d5:8a:f6:05:68:f3:fc:40:79:a2:59:69:be: 30:ba:4b:50:61:c4:e5:c2:cf:d1:82:6b:0c:76:d1:d0:78:c5: a7:24:c4:d4:79:bd:d8:af:8f:d1:0d:7f:71:09:61:92:cd:6a: 41:81:d2:4c:f1:70:08:01:b2:76:5c:b6:65:5e:5b:db:7b:ea: 3e:24:df:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjQxMTIxMDAzMjIxWhcNMjQxMTI4MDAzMjIxWjAYMRYwFAYD VQQDEw02NzNlN2Y5NS1mYTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwd2J0DMo70Vyix3tiKWTXLq7lzCegueM8urZtIuXW9P6xpf0U9YesTquL3mI 5amxE7HOy+kufQ3o0JjTFDFkq0mMu1hWuY6/m17hQihR2VQB4KoRy0TZ387F6FFO +horwbzKFGXBfrWMXMfws+D0x8UYVP0wnh9pSZimyTyR7ZqrNQGisZlHlhKhQZVt akiWwXySTqUNkTCqD5mVD6iT6OtlXLcROwzCX3h5UocWA9e94cdKtUa2jQT1Q22V cEyxiMhtt6kfEeKiSEBoNX2NGYrNvY/BZkqwm1+gXj8imTycM4r5r7H480gF7CFb Aopx3bVcyYEg6nqBtzNUKyGriwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE83Mf3F BKcBEdl6njlw9cPsDNkgMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKB6dL0y/esxSr5VoCbMUyumTcyF1ISUNAqzep15NG5ngTyS+HHDde jXK7JfgHWHstmqwGyriHRJuIHYQp95pMcCKQxaT8CAWR4pdM0Ok1rlwNjawu4sHP cAjfgU4Naq7VYX0zH4VFizWBLFEQLCbZCA6uNvaNx06rDjZ/d8Rc2GW5BeFYmiJp zo7pnH794kVfY5ki9+qXMdrL0CcUg4NE0p7QgKT3C8o4iSr43K6LFERuhwNhnK+b /9WK9gVo8/xAeaJZab4wuktQYcTlws/RgmsMdtHQeMWnJMTUeb3Yr4/RDX9xCWGS zWpBgdJM8XAIAbJ2XLZlXlvbe+o+JN8X -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:56 2024 by rpki-client on console-fra.rpki-client.org