$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: vbkDrHxfHzdepJLyDo3pjzuccImZgUpuCRiQ6mNhOvM= Subject key identifier: CE:3E:8B:A3:47:58:4B:3B:1E:B4:F3:66:6F:23:09:DA:0D:A4:3F:BD Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 12A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1298 Signing time: Fri 22 Nov 2024 17:05:58 +0000 Manifest this update: Fri 22 Nov 2024 17:05:57 +0000 Manifest next update: Fri 29 Nov 2024 17:05:57 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: osDsEHW1LsUya8w3NzB+7GRYoQEHnxC1oaPeeeaMut8=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4776 (0x12a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Nov 22 17:05:57 2024 GMT Not After : Nov 29 17:05:57 2024 GMT Subject: CN=6740b9f6-2fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:83:11:30:54:c2:0b:5c:bd:01:fd:16:c0:b4: 62:66:71:64:32:af:83:1b:0a:7a:db:eb:b6:9c:af: 0f:a1:f0:ce:d0:a2:c8:b3:87:cd:ec:91:67:62:dc: ff:ea:2e:a9:dc:5d:f8:5f:30:0e:1f:36:41:b9:a3: a5:38:60:07:03:90:60:93:de:3b:64:3e:45:e5:89: 8e:12:d6:02:68:94:56:b1:31:d2:23:65:a1:2a:64: a8:b3:5d:07:6c:e5:0a:f5:94:dc:09:f6:f0:c4:88: 26:8d:2d:4a:b4:ba:71:11:c9:15:4e:1d:30:a8:85: 4d:fb:dd:4e:5c:0a:91:f6:a7:bf:00:9f:ff:14:a1: 3b:5d:a0:9a:64:62:5a:0d:49:06:32:64:13:1c:ac: f2:20:81:b2:e3:9f:cd:f2:4b:23:67:51:ce:d6:7a: 28:6d:14:f6:55:a7:6a:a0:ab:30:c0:e9:6a:b8:3c: 9d:b6:4a:37:4d:49:7b:7f:8a:05:28:48:dc:48:af: 13:b6:15:d4:d8:d2:08:5a:11:ee:7f:5a:ca:da:eb: 6a:a6:59:d7:f6:6e:e2:38:34:fa:a7:6e:28:3f:31: 48:23:ef:d6:41:e7:81:e7:9b:37:27:ca:68:e2:67: 79:59:05:b4:c9:c1:6b:31:fa:1a:3a:e9:46:93:b1: be:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3E:8B:A3:47:58:4B:3B:1E:B4:F3:66:6F:23:09:DA:0D:A4:3F:BD X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:54:18:c2:e9:af:74:6a:64:0a:ca:ac:9b:e0:bc:3a:61:cc: 90:3f:55:25:77:8e:a1:1b:1b:04:10:bc:e4:43:1a:92:49:7d: 97:e1:d3:59:05:c9:a0:56:cd:e8:42:9b:b2:9c:67:93:5f:a6: 20:ef:31:bb:d5:47:3c:db:08:a9:5f:2f:f1:61:d8:c8:45:dd: d4:70:c2:93:3f:1b:a3:38:f2:a7:56:34:31:85:fb:47:e5:f1: ae:2b:39:44:4b:bf:d9:97:d7:5a:39:fd:ec:e5:f6:7c:0d:19: de:ac:2a:59:bf:3b:5b:d3:d1:17:99:36:9d:12:2c:81:c3:d3: 1e:7a:c6:45:33:07:16:c2:f0:8a:f0:2f:1e:76:80:54:26:f2: 6e:b9:9c:a6:26:0a:28:dc:47:a7:80:b8:ed:b0:de:c7:83:e7: ab:e3:48:6a:3e:73:7e:94:f3:c1:b5:03:cc:89:6d:2e:0b:5e: 03:bf:d0:76:e2:7c:fe:86:14:b7:ad:9f:8b:5b:53:49:3d:78: b6:38:64:23:36:03:d0:f9:a7:00:d8:1a:00:df:61:d7:e0:71: aa:7a:25:54:f0:d0:bc:70:b8:45:de:be:bd:5f:9b:08:00:24: 03:90:10:b5:f5:ab:ca:d2:99:1a:43:39:98:b3:a3:0d:50:2c: 21:fb:b8:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjQxMTIyMTcwNTU3WhcNMjQxMTI5MTcwNTU3WjAYMRYwFAYD VQQDEw02NzQwYjlmNi0yZmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44MRMFTCC1y9Af0WwLRiZnFkMq+DGwp62+u2nK8PofDO0KLIs4fN7JFnYtz/ 6i6p3F34XzAOHzZBuaOlOGAHA5Bgk947ZD5F5YmOEtYCaJRWsTHSI2WhKmSos10H bOUK9ZTcCfbwxIgmjS1KtLpxEckVTh0wqIVN+91OXAqR9qe/AJ//FKE7XaCaZGJa DUkGMmQTHKzyIIGy45/N8ksjZ1HO1noobRT2VadqoKswwOlquDydtko3TUl7f4oF KEjcSK8TthXU2NIIWhHuf1rK2utqplnX9m7iODT6p24oPzFII+/WQeeB55s3J8po 4md5WQW0ycFrMfoaOulGk7G+qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4+i6NH WEs7HrTzZm8jCdoNpD+9MB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZVBjC6a90amQKyqyb4Lw6YcyQP1Uld46hGxsEELzkQxqSSX2X4dNZ BcmgVs3oQpuynGeTX6Yg7zG71Uc82wipXy/xYdjIRd3UcMKTPxujOPKnVjQxhftH 5fGuKzlES7/Zl9daOf3s5fZ8DRnerCpZvztb09EXmTadEiyBw9MeesZFMwcWwvCK 8C8edoBUJvJuuZymJgoo3EengLjtsN7Hg+er40hqPnN+lPPBtQPMiW0uC14Dv9B2 4nz+hhS3rZ+LW1NJPXi2OGQjNgPQ+acA2BoA32HX4HGqeiVU8NC8cLhF3r69X5sI ACQDkBC19avK0pkaQzmYs6MNUCwh+7hL -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org