$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft File: 7qiugNcT5rItsOxgkVfwxZpS_X8.mft (raw, json) Hash identifier: Ct+WYYmaz1ZsroZx8XTof+sKtqDr1xLpMcpMU9t9z94= Subject key identifier: A2:0D:7C:69:A8:64:42:8A:B5:E5:11:94:84:18:B9:AB:6A:CF:C7:07 Authority key identifier: EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F Certificate issuer: /CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Certificate serial: 3487 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft Manifest number: 3450 Signing time: Fri 22 Nov 2024 14:52:35 +0000 Manifest this update: Fri 22 Nov 2024 14:52:34 +0000 Manifest next update: Fri 29 Nov 2024 14:52:34 +0000 Files and hashes: 1: 7qiugNcT5rItsOxgkVfwxZpS_X8.crl (hash: kEEV4EKXGThhSKY9EzaKWoWk5g8M3brY/ivj5dfusa4=) 2: F026CE74927411EDB020A481C4F9AE02.roa (hash: 2eNq7B1oRtkvbsC2TVkQztsqFUCoR8AJK2q0jX2j5u8=) 3: 6C0C85D0A43011ECA230771BC4F9AE02.roa (hash: dUee/Bbms779/aJc/DgZhfMMYOVtsmQDkN3x2T2FOz0=) 4: 2ACF9E0C855C11EB8C076013C4F9AE02.roa (hash: 4TkDiS4BXR3T4N5XwdICjn7FuRsbCcoxM3qg2k7EAn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13447 (0x3487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6B7/serialNumber=EEA8AE80D713E6B22DB0EC609157F0C59A52FD7F Validity Not Before: Nov 22 14:52:34 2024 GMT Not After : Nov 29 14:52:34 2024 GMT Subject: CN=67409ab3-ca59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:aa:ad:fd:0e:25:c6:ae:e4:76:4b:c5:db:cf: ee:52:19:94:0a:f9:7f:63:8c:11:e0:8c:27:4b:ca: da:40:3e:bf:74:af:36:cc:73:a9:a7:b8:42:53:44: a9:3e:37:0c:10:7b:2d:de:a9:4e:28:74:9b:d5:20: b2:ec:b8:04:f7:74:db:63:a0:5a:b7:36:05:c9:d6: ee:37:64:41:61:20:22:ac:f2:5d:aa:54:c4:ba:58: 3c:14:9f:54:ef:c7:b7:df:1c:72:4e:ea:17:cd:18: 55:1b:a7:57:f8:14:eb:6e:c6:c3:81:3f:60:82:f6: 8d:cf:d2:f9:36:97:91:57:5b:df:80:ac:65:5d:bb: 51:c2:f6:22:e3:a0:92:cb:92:1b:ec:63:fe:81:65: b9:c3:1c:cd:78:37:c9:6f:53:9a:fe:6d:8d:5b:85: 8e:77:9c:f8:98:d1:d2:07:9b:0e:51:e2:19:bd:f3: 5e:a1:dc:57:d5:61:99:85:45:b2:69:8e:ee:19:57: 19:40:53:6f:fe:9f:cb:3e:57:52:af:cd:f7:b3:0e: 75:ec:5d:cb:46:20:ef:fb:66:88:ea:34:61:b2:38: ee:52:00:6f:b6:84:09:3b:1f:96:f9:4c:72:da:8a: 8a:64:1e:a0:6d:83:66:d6:6a:7d:43:75:37:62:14: 31:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0D:7C:69:A8:64:42:8A:B5:E5:11:94:84:18:B9:AB:6A:CF:C7:07 X509v3 Authority Key Identifier: keyid:EE:A8:AE:80:D7:13:E6:B2:2D:B0:EC:60:91:57:F0:C5:9A:52:FD:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qiugNcT5rItsOxgkVfwxZpS_X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6B7/1C16641C1D9711E296D0308008B02CD2/7qiugNcT5rItsOxgkVfwxZpS_X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:25:36:9c:54:80:49:21:e5:7d:8a:b3:d1:ea:92:d2:8d:62: 11:3f:5e:cf:46:09:48:d5:ec:b1:82:a7:1b:06:8e:13:5a:4f: 71:f6:c9:a2:e0:c6:84:7a:ae:c8:21:fb:5f:db:43:6e:be:95: 06:dc:ab:17:33:f5:1f:c3:bb:5b:61:08:6f:92:1a:b8:a7:bb: 5f:09:42:f1:c1:24:5b:b7:e4:16:a9:4b:39:16:b3:b7:0e:54: 11:70:1b:55:7a:41:a9:23:e7:b5:d5:ff:56:31:6d:e6:b4:4e: 78:8d:b9:5c:15:03:87:6d:75:19:a5:4a:93:64:6e:74:a2:15: 3f:52:e7:46:1f:e8:c7:57:93:f7:83:b9:2f:48:ba:81:9d:9e: 58:98:31:17:f8:b0:9e:fb:4d:a4:4d:7d:85:e1:08:2d:37:96: 6f:d0:cc:1d:d6:68:64:96:d7:84:7a:7f:34:6e:48:5e:47:05: d8:49:ea:81:96:e9:0f:cf:ec:56:98:0d:ea:67:25:8b:93:a5: ae:bc:6b:e0:93:42:7b:6d:5f:de:c8:5d:93:c4:35:96:dd:bd: 48:73:d4:14:82:84:31:60:7b:fa:0f:a3:d0:6e:ce:06:c9:63: 1b:68:f2:fc:cc:62:a8:f9:27:a9:bf:d1:29:94:8e:bc:db:e7: 6c:d0:a0:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QjcxMTAvBgNVBAUTKEVFQThBRTgwRDcxM0U2QjIyREIwRUM2MDkxNTdGMEM1 OUE1MkZEN0YwHhcNMjQxMTIyMTQ1MjM0WhcNMjQxMTI5MTQ1MjM0WjAYMRYwFAYD VQQDEw02NzQwOWFiMy1jYTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqqt/Q4lxq7kdkvF28/uUhmUCvl/Y4wR4IwnS8raQD6/dK82zHOpp7hCU0Sp PjcMEHst3qlOKHSb1SCy7LgE93TbY6BatzYFydbuN2RBYSAirPJdqlTEulg8FJ9U 78e33xxyTuoXzRhVG6dX+BTrbsbDgT9ggvaNz9L5NpeRV1vfgKxlXbtRwvYi46CS y5Ib7GP+gWW5wxzNeDfJb1Oa/m2NW4WOd5z4mNHSB5sOUeIZvfNeodxX1WGZhUWy aY7uGVcZQFNv/p/LPldSr833sw517F3LRiDv+2aI6jRhsjjuUgBvtoQJOx+W+Uxy 2oqKZB6gbYNm1mp9Q3U3YhQxNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKINfGmo ZEKKteURlIQYuatqz8cHMB8GA1UdIwQYMBaAFO6oroDXE+ayLbDsYJFX8MWaUv1/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCNy8xQzE2NjQxQzFE OTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVySXRzT3hna1Zmd3hacFNf WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxaXVnTmNUNXJJdHNPeGdrVmZ3eFpwU19YOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDZCNy8xQzE2NjQxQzFEOTcxMUUyOTZEMDMwODAwOEIwMkNEMi83cWl1Z05jVDVy SXRzT3hna1Zmd3hacFNfWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLJTacVIBJIeV9irPR6pLSjWIRP17PRglI1eyxgqcbBo4TWk9x9smi 4MaEeq7IIftf20NuvpUG3KsXM/Ufw7tbYQhvkhq4p7tfCULxwSRbt+QWqUs5FrO3 DlQRcBtVekGpI+e11f9WMW3mtE54jblcFQOHbXUZpUqTZG50ohU/UudGH+jHV5P3 g7kvSLqBnZ5YmDEX+LCe+02kTX2F4QgtN5Zv0Mwd1mhklteEen80bkheRwXYSeqB lukPz+xWmA3qZyWLk6WuvGvgk0J7bV/eyF2TxDWW3b1Ic9QUgoQxYHv6D6PQbs4G yWMbaPL8zGKo+Sepv9EplI682+ds0KCA -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:23 2024 by rpki-client on console-ams.rpki-client.org