$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: K204MMM5RNzmISvTLDNnosALqpLoOGRyyUD0Uxk9uEo= Subject key identifier: 00:C5:3F:39:3D:B6:69:99:F7:15:D1:A5:F5:5B:F2:6C:9D:4F:DC:51 Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: 010E Signing time: Sat 23 Nov 2024 03:06:34 +0000 Manifest this update: Sat 23 Nov 2024 03:06:33 +0000 Manifest next update: Sat 30 Nov 2024 03:06:33 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: VVe7mqf/EsIGDNWM2xE7CfWEAQb6n++bpYR64k++m4I=) 2: 4CEE00EC0A8811EEA788A750C4F9AE02.roa (hash: QZB86xYAagOUVtXc6ojgleop4GqbWBDM0jf+6qBiFkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: Nov 23 03:06:33 2024 GMT Not After : Nov 30 03:06:33 2024 GMT Subject: CN=674146b9-5194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:23:7c:02:30:07:53:50:3d:94:30:33:77:e9: a6:20:0d:fb:a4:6b:7f:32:bb:66:50:ee:ed:31:0e: 41:ca:a5:70:14:fa:21:98:da:dd:37:6b:78:b2:eb: ff:1c:bc:bb:02:3c:cd:82:7d:5e:05:5b:f6:28:73: 34:00:12:86:02:b6:a8:96:c9:cf:83:96:7f:4a:20: 6e:f4:4c:ce:98:20:ef:ae:bd:f8:07:95:f5:b1:c5: ca:92:cf:88:d6:cc:e5:e1:87:ec:db:47:1e:f0:33: d9:4d:6a:0f:e6:65:89:04:f9:c7:fc:e3:5d:43:e9: d3:27:67:cf:98:bc:79:5e:bd:da:d0:8c:fb:d2:09: 3e:cd:ea:4e:ad:14:f5:62:1a:d7:28:43:ed:64:fd: b2:c8:b8:73:0c:39:83:e8:b6:e7:db:ae:24:cb:a7: 78:81:35:9e:15:53:92:a8:f0:cb:f7:9b:ce:23:0d: 32:aa:7c:22:db:8c:66:db:17:5e:7a:d9:7b:bb:ba: 1e:15:91:cf:28:9c:81:7c:f6:c1:82:d8:44:09:b4: a0:73:91:e1:42:0b:21:08:79:9c:7e:f5:43:f9:42: 6c:79:28:4f:eb:5e:86:6a:b2:73:9c:67:c5:cf:ac: 38:6d:80:95:3e:99:0f:90:e4:06:2a:b0:69:6d:fd: c6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C5:3F:39:3D:B6:69:99:F7:15:D1:A5:F5:5B:F2:6C:9D:4F:DC:51 X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:72:8c:84:06:10:82:c3:2a:bc:2c:d0:1a:ea:2b:89:3a:1a: d4:ce:a7:38:db:e8:41:b7:2c:cc:75:6c:fb:2e:b7:c4:1c:95: 4f:4d:ca:d6:ab:74:9a:62:20:c3:3c:61:75:3c:d2:47:f0:34: b0:b3:38:03:dd:66:f5:c9:7e:1d:6b:cc:5d:c3:b0:c2:92:b4: 0d:0d:25:c1:4d:a0:69:12:87:e8:76:74:bc:df:9a:f7:bc:1d: 0a:de:8a:49:be:a1:4d:1f:59:8a:4d:f8:f7:a5:4c:b3:bf:c7: 53:b8:7d:30:c7:53:98:da:c3:1c:a6:c8:50:1f:6e:83:18:d8: f4:cc:aa:cc:12:45:ff:a1:1e:1b:b3:ab:1b:87:02:e3:52:54: ba:00:4a:fa:1f:0e:17:1a:e1:57:be:7c:ac:28:af:40:55:e6: 5e:e1:96:53:a1:04:f4:76:ca:bb:eb:be:2f:2e:90:0e:7c:c3: 0b:b3:e6:bc:dc:48:ba:9a:3e:f9:10:b2:a3:dc:68:99:f8:b3: 88:ca:4c:52:14:c9:52:cd:8a:c4:93:8d:96:03:9e:2a:d1:ec: 16:0f:69:ab:96:e0:3e:d1:20:75:4c:3b:b7:3b:fc:1b:dc:9e: e3:81:de:99:d2:ac:b6:c0:da:d3:26:52:4e:a3:6c:22:67:90: b9:02:26:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjQxMTIzMDMwNjMzWhcNMjQxMTMwMDMwNjMzWjAYMRYwFAYD VQQDEw02NzQxNDZiOS01MTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yN8AjAHU1A9lDAzd+mmIA37pGt/MrtmUO7tMQ5ByqVwFPohmNrdN2t4suv/ HLy7AjzNgn1eBVv2KHM0ABKGAraolsnPg5Z/SiBu9EzOmCDvrr34B5X1scXKks+I 1szl4Yfs20ce8DPZTWoP5mWJBPnH/ONdQ+nTJ2fPmLx5Xr3a0Iz70gk+zepOrRT1 YhrXKEPtZP2yyLhzDDmD6Lbn264ky6d4gTWeFVOSqPDL95vOIw0yqnwi24xm2xde etl7u7oeFZHPKJyBfPbBgthECbSgc5HhQgshCHmcfvVD+UJseShP616GarJznGfF z6w4bYCVPpkPkOQGKrBpbf3GBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADFPzk9 tmmZ9xXRpfVb8mydT9xRMB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtcoyEBhCCwyq8LNAa6iuJOhrUzqc42+hBtyzMdWz7LrfEHJVPTcrW q3SaYiDDPGF1PNJH8DSwszgD3Wb1yX4da8xdw7DCkrQNDSXBTaBpEofodnS835r3 vB0K3opJvqFNH1mKTfj3pUyzv8dTuH0wx1OY2sMcpshQH26DGNj0zKrMEkX/oR4b s6sbhwLjUlS6AEr6Hw4XGuFXvnysKK9AVeZe4ZZToQT0dsq7674vLpAOfMMLs+a8 3Ei6mj75ELKj3GiZ+LOIykxSFMlSzYrEk42WA54q0ewWD2mrluA+0SB1TDu3O/wb 3J7jgd6Z0qy2wNrTJlJOo2wiZ5C5AiY9 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org