$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft File: 2v3gvG4K06iVvHVtbDGh5httODs.mft (raw, json) Hash identifier: XWRyAf7ffZOSvePDSH/7IW6BW3q/5fLv0tPiJpqPTZQ= Subject key identifier: 67:73:94:E9:C3:14:03:1C:21:3E:AC:72:1C:11:C9:8F:57:82:7D:92 Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft Manifest number: 07F2 Signing time: Fri 22 Nov 2024 20:40:29 +0000 Manifest this update: Fri 22 Nov 2024 20:40:28 +0000 Manifest next update: Fri 29 Nov 2024 20:40:28 +0000 Files and hashes: 1: 2v3gvG4K06iVvHVtbDGh5httODs.crl (hash: Csq3acwzKoDkaFnvq5uw05kj3LVS68lMVAqc+lxFzWs=) 2: 311DA6AA78F611EFAFD81B5BC4F9AE02.roa (hash: N273KJZBVvsgocX2roxdV3igs8iuW9HGezq7GTon2t0=) 3: 312D1714A6F211EFBD311B19C4F9AE02.roa (hash: 3WiuON+DZCyyzbg9J4hxbgh73YCM3rOmSlSP3M274IM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B Validity Not Before: Nov 22 20:40:28 2024 GMT Not After : Nov 29 20:40:28 2024 GMT Subject: CN=6740ec3c-3955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a6:6b:33:b4:9e:20:7d:98:1e:6a:80:77:8a: 2f:11:72:56:48:07:16:07:48:12:c8:7b:21:e5:0b: 9c:21:d1:8c:b7:83:a3:93:99:7e:be:98:f2:d6:61: d9:8a:1d:e3:0a:6c:df:2b:cb:be:f6:1d:f3:5a:61: 63:82:80:69:5f:1f:34:21:96:d0:75:1e:5d:38:4a: f4:7f:74:b5:39:a5:70:5e:23:d6:3a:12:65:0f:63: 11:d8:84:98:4c:3e:ce:20:d3:29:00:4d:11:92:57: 16:4c:8f:8f:16:ed:37:18:21:02:03:54:aa:aa:71: da:8e:a6:cd:31:04:bf:a0:4f:98:21:43:0f:07:0f: b6:d1:4c:b5:76:72:9d:f4:76:7c:ff:91:e5:cc:ae: d2:ea:51:cf:78:24:f3:f8:f4:47:7c:89:01:e1:e1: 19:5b:3f:e2:09:95:13:19:0b:2b:ed:af:37:d3:d2: 8d:e0:8e:d5:aa:a9:62:95:02:bb:dd:63:4b:a7:a5: 4e:9f:dc:2c:3d:95:a7:ff:87:b6:aa:97:a9:6e:f9: 6f:b9:50:7b:da:46:02:96:cd:70:dc:55:f9:38:b1: 82:90:a5:7c:9f:8a:7f:91:ed:e1:d2:0d:13:e1:20: e2:6a:be:b7:62:e0:c3:5e:33:4f:07:9e:a8:0d:17: 48:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:73:94:E9:C3:14:03:1C:21:3E:AC:72:1C:11:C9:8F:57:82:7D:92 X509v3 Authority Key Identifier: keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:65:d9:20:82:23:d8:61:d5:ed:0a:8e:ff:4d:54:0c:f8:b6: ed:11:53:fa:85:4c:33:73:7e:dc:a2:d4:4d:6a:71:79:cc:db: 2c:be:67:1e:17:b3:d9:2a:6a:05:94:1a:7a:90:36:95:bf:fb: 74:ee:94:31:33:b9:2e:5b:f4:d3:a1:de:3a:8d:9b:89:4f:51: 59:1c:fe:94:b4:76:47:7f:a7:89:0b:12:b7:1a:0b:02:a9:05: 49:29:ec:e4:2d:b1:4f:9e:95:fa:d6:04:63:fe:83:a8:a5:e2: fa:c7:e1:e3:2b:fa:d0:ef:61:c8:da:3a:1a:60:ed:40:5b:5d: fb:10:54:eb:57:a7:0f:ca:57:4c:76:88:48:91:af:a1:9c:86: d7:2a:04:61:5e:7f:3e:0c:ff:bc:18:d4:01:d8:57:b2:09:d0: 72:3d:94:77:f7:cf:b9:fc:a4:1e:f7:f2:4a:4a:ec:85:94:92: c5:18:eb:eb:f2:5c:3c:55:5f:51:f7:f3:42:34:a5:bc:b7:29: 73:1e:51:74:b2:3d:b6:0e:51:22:bd:48:d4:01:6c:d3:ae:7d: 8d:8d:82:5f:06:8a:fc:73:d5:6c:c6:51:9a:4e:08:0e:6e:bf: ba:54:9f:00:d1:9b:48:cd:d4:f3:84:7e:fa:90:4e:a0:c7:8d: 25:46:28:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDRTIxMTAvBgNVBAUTKERBRkRFMEJDNkUwQUQzQTg5NUJDNzU2RDZDMzFBMUU2 MUI2RDM4M0IwHhcNMjQxMTIyMjA0MDI4WhcNMjQxMTI5MjA0MDI4WjAYMRYwFAYD VQQDEw02NzQwZWMzYy0zOTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KZrM7SeIH2YHmqAd4ovEXJWSAcWB0gSyHsh5QucIdGMt4Ojk5l+vpjy1mHZ ih3jCmzfK8u+9h3zWmFjgoBpXx80IZbQdR5dOEr0f3S1OaVwXiPWOhJlD2MR2ISY TD7OINMpAE0RklcWTI+PFu03GCECA1SqqnHajqbNMQS/oE+YIUMPBw+20Uy1dnKd 9HZ8/5HlzK7S6lHPeCTz+PRHfIkB4eEZWz/iCZUTGQsr7a8309KN4I7VqqlilQK7 3WNLp6VOn9wsPZWn/4e2qpepbvlvuVB72kYCls1w3FX5OLGCkKV8n4p/ke3h0g0T 4SDiar63YuDDXjNPB56oDRdILwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdzlOnD FAMcIT6schwRyY9Xgn2SMB8GA1UdIwQYMBaAFNr94LxuCtOolbx1bWwxoeYbbTg7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkNFMi82MTgwQzBBMkNE NkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2aVZ2SFZ0YkRHaDVodHRP RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ2M2d2RzRLMDZpVnZIVnRiREdoNWh0dE9Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkNFMi82MTgwQzBBMkNENkYxMUVBOTc1NDgwNDNDNEY5QUUwMi8ydjNndkc0SzA2 aVZ2SFZ0YkRHaDVodHRPRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByZdkggiPYYdXtCo7/TVQM+LbtEVP6hUwzc37cotRNanF5zNssvmce F7PZKmoFlBp6kDaVv/t07pQxM7kuW/TTod46jZuJT1FZHP6UtHZHf6eJCxK3GgsC qQVJKezkLbFPnpX61gRj/oOopeL6x+HjK/rQ72HI2joaYO1AW137EFTrV6cPyldM dohIka+hnIbXKgRhXn8+DP+8GNQB2FeyCdByPZR398+5/KQe9/JKSuyFlJLFGOvr 8lw8VV9R9/NCNKW8tylzHlF0sj22DlEivUjUAWzTrn2NjYJfBor8c9VsxlGaTggO br+6VJ8A0ZtIzdTzhH76kE6gx40lRiiR -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:35 2024 by rpki-client on console-ams.rpki-client.org