$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: KcWrXtM55Th0xDMxC9vE84M+Mj05D+ukmagtK0Q0OEo= Subject key identifier: 14:23:5E:7E:18:35:10:88:61:8F:8B:E2:B5:98:33:C9:5F:49:78:5C Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 05A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 05A3 Signing time: Wed 20 Nov 2024 22:43:07 +0000 Manifest this update: Wed 20 Nov 2024 22:43:07 +0000 Manifest next update: Wed 27 Nov 2024 22:43:07 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: HZYjBPEhXnYp9PTUEl77DmL2kvCdU0i+3vZhilWr1yI=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: VQCVLpNqfWDjo91C5wVq3XZaJfc6UnpFTN8P8OxpyeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: Nov 20 22:43:07 2024 GMT Not After : Nov 27 22:43:07 2024 GMT Subject: CN=673e65fb-00f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:d1:a2:a9:6f:be:5f:70:73:5a:30:90:b1: fc:81:17:1a:1b:84:7b:62:1b:80:ee:d6:41:6b:d6: 07:6a:f7:7b:04:b9:da:a9:8d:2b:d1:6b:6c:0b:d9: 8d:32:21:2a:21:42:30:9a:76:5b:16:52:a6:88:ad: cd:d8:ea:3d:48:50:9c:02:64:1a:5a:39:88:91:2c: 65:13:7d:0c:f3:70:38:08:89:bb:2f:cf:f8:78:ee: db:52:95:8f:95:68:fb:02:69:39:8d:79:3e:2f:95: 2d:f0:9a:b2:e1:c8:87:8a:ff:a1:26:27:1b:c2:58: d3:9f:5d:d0:c5:b0:a4:54:30:ff:16:5a:2f:25:6e: 67:56:c5:18:07:95:eb:48:cd:01:80:8c:e9:13:68: cc:f9:9b:c9:51:e4:a6:ee:b0:07:14:d7:c5:d3:ee: 61:de:96:cb:04:91:93:48:15:df:60:57:17:22:2b: 65:68:34:04:b8:eb:73:5d:62:1c:63:ac:fa:5f:e8: 07:ea:b7:10:01:d4:48:e7:25:1e:8c:4b:4e:4f:f4: d3:f6:d7:7c:e9:fd:c5:85:41:8c:fd:4d:d8:ec:aa: e9:77:74:6b:f2:00:90:47:45:bd:f6:12:74:21:c7: be:7a:22:99:c2:63:c8:8d:7e:cb:3b:6d:a5:5d:65: c5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:23:5E:7E:18:35:10:88:61:8F:8B:E2:B5:98:33:C9:5F:49:78:5C X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:1e:8c:6e:d3:22:e1:4f:c8:be:b4:c5:af:50:03:d8:7f:c8: 1b:52:39:43:24:31:28:4e:e7:38:97:f3:03:b9:d5:dc:85:03: eb:07:ec:12:f1:d6:ea:4a:5e:28:6b:8b:55:c9:94:91:26:10: 35:4a:ca:d1:19:5f:26:79:57:bd:b4:4c:eb:7c:80:c9:da:e7: fa:31:08:c9:8e:bf:6f:cc:8b:a8:e9:46:6d:c9:27:5f:f2:41: 6f:da:35:eb:d6:16:54:6a:41:3e:02:23:be:fb:c8:33:5b:eb: 07:09:4c:56:33:e4:ef:33:0d:ea:05:3e:77:cb:6b:7e:3c:bc: cf:cc:42:56:05:47:18:db:44:7b:be:9c:76:36:2e:a1:23:4d: a3:30:0e:85:c4:2e:98:fd:25:d5:45:ad:b9:11:16:0f:32:c4: 8a:63:3c:8a:bc:fd:0b:18:45:e5:ee:35:1d:5e:ae:d3:96:7d: ac:e5:1e:99:7f:fd:7d:0c:20:2c:14:c4:9a:ab:87:67:46:4b: a0:8d:75:9d:99:83:ec:e3:90:9f:f3:7b:b7:84:43:65:f6:9d: ee:71:9f:24:d0:d9:61:22:65:08:0c:e0:bf:a2:1d:37:1c:19: 3a:51:c6:60:b1:17:e2:13:ee:60:b9:4d:84:30:d3:96:d8:53: 71:c7:c1:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjQxMTIwMjI0MzA3WhcNMjQxMTI3MjI0MzA3WjAYMRYwFAYD VQQDEw02NzNlNjVmYi0wMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xnRoqlvvl9wc1owkLH8gRcaG4R7YhuA7tZBa9YHavd7BLnaqY0r0WtsC9mN MiEqIUIwmnZbFlKmiK3N2Oo9SFCcAmQaWjmIkSxlE30M83A4CIm7L8/4eO7bUpWP lWj7Amk5jXk+L5Ut8Jqy4ciHiv+hJicbwljTn13QxbCkVDD/FlovJW5nVsUYB5Xr SM0BgIzpE2jM+ZvJUeSm7rAHFNfF0+5h3pbLBJGTSBXfYFcXIitlaDQEuOtzXWIc Y6z6X+gH6rcQAdRI5yUejEtOT/TT9td86f3FhUGM/U3Y7Krpd3Rr8gCQR0W99hJ0 Ice+eiKZwmPIjX7LO22lXWXFAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQjXn4Y NRCIYY+L4rWYM8lfSXhcMB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFHoxu0yLhT8i+tMWvUAPYf8gbUjlDJDEoTuc4l/MDudXchQPrB+wS 8dbqSl4oa4tVyZSRJhA1SsrRGV8meVe9tEzrfIDJ2uf6MQjJjr9vzIuo6UZtySdf 8kFv2jXr1hZUakE+AiO++8gzW+sHCUxWM+TvMw3qBT53y2t+PLzPzEJWBUcY20R7 vpx2Ni6hI02jMA6FxC6Y/SXVRa25ERYPMsSKYzyKvP0LGEXl7jUdXq7Tln2s5R6Z f/19DCAsFMSaq4dnRkugjXWdmYPs45Cf83u3hENl9p3ucZ8k0NlhImUIDOC/oh03 HBk6UcZgsRfiE+5guU2EMNOW2FNxx8Hi -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:46 2024 by rpki-client on console-ams.rpki-client.org