$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft File: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft (raw, json) Hash identifier: 6QMvjXXAg7MRwxqom1oSsbdSE4g4gU6ZL+Xa32u0IeI= Subject key identifier: 2E:6C:2F:09:73:B6:9E:E3:F9:3E:95:44:77:30:6B:44:EB:D5:D6:92 Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft Manifest number: 0AAF Signing time: Fri 22 Nov 2024 19:13:08 +0000 Manifest this update: Fri 22 Nov 2024 19:13:08 +0000 Manifest next update: Fri 29 Nov 2024 19:13:08 +0000 Files and hashes: 1: FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl (hash: +NBpFV8/IkP8pCx3gOtPgHecSdqHr85C7msuWg5I+xs=) 2: B7BC4714BEF011ED9634C070C4F9AE02.roa (hash: 8B48WN3Cucj/+GbP/762W2PIVeIjbfD83vLGsoOpxzE=) 3: DCA05C0E419A11EAA5E2BA6EC4F9AE02.roa (hash: m1e+46EVW2Ru+G5LmSyDdLV24MWne8DiSGyaHbc7oyU=) 4: DC06CBC0419A11EAA5E2BA6EC4F9AE02.roa (hash: nEyyOyw7im8nWErYV8xgVjJLoHXkxaNm8iW5WtWapRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Nov 22 19:13:08 2024 GMT Not After : Nov 29 19:13:08 2024 GMT Subject: CN=6740d7c4-9b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f6:26:db:b5:e5:68:58:ec:31:64:03:53:ba: 9c:84:e0:ca:20:21:5e:90:71:da:70:c3:7b:bc:03: f4:56:9e:eb:20:4f:be:ba:2b:80:69:53:ad:b3:d4: 4d:e1:6a:46:35:6c:ca:3a:5c:71:89:b5:8b:1d:c9: 33:da:ea:17:61:60:f4:ca:e9:88:75:01:ab:bc:80: f4:5c:b1:56:1c:25:10:42:82:3a:83:5b:31:4c:30: 8c:e6:c9:c9:5a:fc:9e:ba:eb:7b:fa:b9:f0:00:b7: ab:72:1e:6c:8e:31:5f:e7:cc:ab:d4:8b:7d:cf:9e: 32:38:76:0b:d6:f6:61:ec:2b:55:90:bc:38:b7:b3: 05:87:fb:20:61:d0:94:b5:e0:ca:e4:2a:70:f2:ec: 91:45:45:11:9d:70:e3:f2:7f:31:ed:69:32:29:8b: d2:8f:38:7a:b9:51:96:bd:01:4e:48:fa:38:fb:05: 34:68:44:ab:27:ce:dd:97:38:b8:58:80:a3:56:c0: e1:2d:e8:aa:23:82:83:ae:c9:76:85:d2:33:85:68: 1e:d6:f5:57:8d:64:97:dd:b2:a0:1a:f4:ac:f7:98: 6a:52:a8:75:7b:e9:65:b0:f5:7f:ec:fe:c1:18:11: a1:d6:12:67:35:85:33:10:85:d2:cf:09:29:9c:20: 67:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6C:2F:09:73:B6:9E:E3:F9:3E:95:44:77:30:6B:44:EB:D5:D6:92 X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:09:f5:f3:07:25:87:75:cb:30:45:91:ba:de:59:4e:3e:8d: ea:b3:67:13:60:b3:ca:57:d9:99:ed:5d:e5:ac:86:99:14:d8: c0:42:0e:e2:d2:2e:a6:d7:d4:37:e8:7f:de:a7:b5:de:2e:ba: cd:87:d8:89:f8:7c:e8:24:85:97:43:93:e5:46:69:8e:b9:72: 27:d8:3c:50:58:8a:28:bb:37:0f:44:41:6f:a0:12:32:f8:4e: 5a:0c:16:bc:15:de:a1:d4:01:49:73:2c:bd:9a:7b:e7:64:3d: 35:fb:86:8b:3c:98:21:8e:60:de:0a:51:06:0e:8d:b5:c0:29: 43:13:f9:1c:68:bf:2a:8e:8b:82:e2:d2:dc:f7:a1:91:f3:47: 20:96:2c:a5:8c:49:cc:8f:96:c7:5f:50:44:64:b7:00:97:25: 0f:15:da:78:d6:9d:ca:31:26:2e:db:3a:17:92:a6:73:96:9d: a0:90:9b:54:f9:6b:5e:36:cc:25:8e:1e:f6:7d:1f:10:33:9b: 2c:55:76:48:77:06:5b:74:29:91:d8:26:f4:c1:1d:fc:0e:3f: 23:43:27:bf:21:32:e4:1e:9d:99:3b:46:3f:bc:05:2b:b0:02: 24:de:e0:64:92:69:5c:db:bf:37:49:8c:05:44:8f:9f:1d:9b: ab:45:7b:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjQxMTIyMTkxMzA4WhcNMjQxMTI5MTkxMzA4WjAYMRYwFAYD VQQDEw02NzQwZDdjNC05YjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PYm27XlaFjsMWQDU7qchODKICFekHHacMN7vAP0Vp7rIE++uiuAaVOts9RN 4WpGNWzKOlxxibWLHckz2uoXYWD0yumIdQGrvID0XLFWHCUQQoI6g1sxTDCM5snJ Wvyeuut7+rnwALerch5sjjFf58yr1It9z54yOHYL1vZh7CtVkLw4t7MFh/sgYdCU teDK5Cpw8uyRRUURnXDj8n8x7WkyKYvSjzh6uVGWvQFOSPo4+wU0aESrJ87dlzi4 WICjVsDhLeiqI4KDrsl2hdIzhWge1vVXjWSX3bKgGvSs95hqUqh1e+llsPV/7P7B GBGh1hJnNYUzEIXSzwkpnCBn9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5sLwlz tp7j+T6VRHcwa0Tr1daSMB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM0MC82MTdGMzUzNjQwRTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZy S3ZzSU95TV85bHJqMnRGWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5CfXzByWHdcswRZG63llOPo3qs2cTYLPKV9mZ7V3lrIaZFNjAQg7i 0i6m19Q36H/ep7XeLrrNh9iJ+HzoJIWXQ5PlRmmOuXIn2DxQWIoouzcPREFvoBIy +E5aDBa8Fd6h1AFJcyy9mnvnZD01+4aLPJghjmDeClEGDo21wClDE/kcaL8qjouC 4tLc96GR80cgliyljEnMj5bHX1BEZLcAlyUPFdp41p3KMSYu2zoXkqZzlp2gkJtU +WteNswljh72fR8QM5ssVXZIdwZbdCmR2Cb0wR38Dj8jQye/ITLkHp2ZO0Y/vAUr sAIk3uBkkmlc2783SYwFRI+fHZurRXu+ -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:35 2024 by rpki-client on console-ams.rpki-client.org