$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: xXhQJiq4iAyDnYBDC358BYbwQVx7W+mVHLHgprpjgHQ= Subject key identifier: 42:BD:AD:B3:0C:3F:BC:4A:7F:4D:9B:A3:51:73:8F:62:B8:81:A5:AA Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 0FB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 0FAD Signing time: Fri 22 Nov 2024 17:28:57 +0000 Manifest this update: Fri 22 Nov 2024 17:28:57 +0000 Manifest next update: Fri 29 Nov 2024 17:28:57 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: 1KZpr5prJmw9g3gmAx1ktnBr/4yUemmqmi0rc5UZbNU=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: Mc3Q9wmukgUIJT3q9J5EygK6/IHcoyR/RZQ0Eut8nLU=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: rltN2xhTkn/8LBf4ssPkcwToahSO3m8NAPpsxdmLbos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4023 (0xfb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: Nov 22 17:28:57 2024 GMT Not After : Nov 29 17:28:57 2024 GMT Subject: CN=6740bf59-1a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0e:21:64:07:42:2e:82:43:f7:c6:c5:1d:9a: 1f:d8:1e:47:ba:dd:c5:8c:44:a5:7a:02:c3:37:fb: a4:0e:76:bb:98:33:22:6e:b3:84:c6:92:02:31:16: b0:34:fd:75:12:83:0e:df:28:16:5f:12:e2:c6:2b: 9f:6e:d9:ed:56:3e:f0:08:8b:ba:64:cd:f7:a3:a1: b3:31:81:e6:67:8b:f1:4d:aa:ae:5e:c3:0e:aa:af: f6:7c:f7:30:e3:f3:d5:96:11:ac:e9:11:4c:58:16: 53:14:d1:6c:fb:50:9f:59:4b:56:b3:7b:99:e6:b6: 7a:96:f0:87:3c:a7:ff:ef:70:14:1e:4b:04:2b:93: 8b:35:d2:68:6a:51:d9:5d:ee:eb:64:d2:2d:b1:52: 85:40:05:62:2f:27:48:00:5d:bb:27:6e:81:d7:f8: 63:a1:31:3d:19:30:f1:bf:57:3d:ae:50:98:51:30: 3a:32:8e:84:0c:e7:fc:09:ed:42:aa:fc:f5:0c:82: 67:da:02:2a:0e:e4:df:dd:b0:84:b8:c1:bf:62:8a: cb:8c:d1:d3:7f:f6:27:74:3e:05:b6:1e:d4:23:bb: ec:94:ad:c8:a2:08:ee:86:1f:e8:3b:d5:b8:ba:80: 59:94:61:a2:66:4e:1d:1c:8d:54:45:d0:fc:ba:b4: bf:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BD:AD:B3:0C:3F:BC:4A:7F:4D:9B:A3:51:73:8F:62:B8:81:A5:AA X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:99:9e:80:c7:33:a4:d7:96:16:73:6c:90:29:b2:27:18:e4: 45:df:83:ec:e3:86:16:0e:ca:df:fb:62:36:3b:e8:25:85:cc: 51:51:87:bd:11:92:06:d5:7a:96:17:bf:89:dd:42:b2:10:3b: 22:69:97:df:68:eb:60:d4:44:a2:c8:34:2a:42:32:d3:e8:fb: 84:ca:c1:c3:1d:5d:60:35:5a:32:8a:a5:8b:c0:71:47:e2:15: c7:19:fb:fe:a6:c9:21:08:2e:1a:d9:23:93:25:09:aa:e7:d0: 3a:27:d9:34:29:20:2a:47:cd:9e:4a:86:4d:7d:8b:10:b9:06: bc:2c:98:f6:a9:45:f2:f8:ed:0e:4a:51:3b:88:a6:be:c5:11: 40:8e:ab:ed:43:fe:c8:2b:50:41:b0:05:51:04:ba:ce:7f:02: 4a:2a:40:ba:af:ef:a5:7c:ab:9f:78:b3:d6:03:e0:a2:ce:aa: 52:8f:76:43:e9:de:30:b2:d8:13:41:94:82:2b:c4:a9:da:27: 9f:cd:05:59:25:3d:29:56:dc:a8:b8:c2:1e:a6:6f:8d:a3:17: e0:d8:3f:ad:c6:d2:16:b7:e7:5e:01:ed:53:fc:04:0d:65:d8: 50:04:c4:0e:6c:c1:62:3f:0b:d5:5a:29:c8:e8:8a:59:52:29: ee:59:cd:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjQxMTIyMTcyODU3WhcNMjQxMTI5MTcyODU3WjAYMRYwFAYD VQQDEw02NzQwYmY1OS0xYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyg4hZAdCLoJD98bFHZof2B5Hut3FjESlegLDN/ukDna7mDMibrOExpICMRaw NP11EoMO3ygWXxLixiufbtntVj7wCIu6ZM33o6GzMYHmZ4vxTaquXsMOqq/2fPcw 4/PVlhGs6RFMWBZTFNFs+1CfWUtWs3uZ5rZ6lvCHPKf/73AUHksEK5OLNdJoalHZ Xe7rZNItsVKFQAViLydIAF27J26B1/hjoTE9GTDxv1c9rlCYUTA6Mo6EDOf8Ce1C qvz1DIJn2gIqDuTf3bCEuMG/YorLjNHTf/YndD4Fth7UI7vslK3Iogjuhh/oO9W4 uoBZlGGiZk4dHI1URdD8urS/PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEK9rbMM P7xKf02bo1Fzj2K4gaWqMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1mZ6AxzOk15YWc2yQKbInGORF34Ps44YWDsrf+2I2O+glhcxRUYe9 EZIG1XqWF7+J3UKyEDsiaZffaOtg1ESiyDQqQjLT6PuEysHDHV1gNVoyiqWLwHFH 4hXHGfv+pskhCC4a2SOTJQmq59A6J9k0KSAqR82eSoZNfYsQuQa8LJj2qUXy+O0O SlE7iKa+xRFAjqvtQ/7IK1BBsAVRBLrOfwJKKkC6r++lfKufeLPWA+CizqpSj3ZD 6d4wstgTQZSCK8Sp2iefzQVZJT0pVtyouMIepm+Noxfg2D+txtIWt+deAe1T/AQN ZdhQBMQObMFiPwvVWinI6IpZUinuWc22 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org