$ rpki-client -vvf rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft File: cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft (raw, json) Hash identifier: 87FBw4xguT6fPt/kRCtSywSTp+91YIvG5Ej0XJ86JfQ= Subject key identifier: A9:45:C0:02:65:DD:DF:D1:79:50:27:50:36:E9:77:85:63:CA:C2:8E Authority key identifier: 70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 Certificate issuer: /CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Certificate serial: 1007 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft Manifest number: 1000 Signing time: Fri 22 Nov 2024 17:24:57 +0000 Manifest this update: Fri 22 Nov 2024 17:24:55 +0000 Manifest next update: Fri 29 Nov 2024 17:24:55 +0000 Files and hashes: 1: cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl (hash: hbHMStSKb1bQRSelUZSehjGevmVSBfnOXdP19RfVo7Y=) 2: 74087358355111E99EC82E0AC4F9AE02.roa (hash: tyb0mMEVFvr0b00WBN86r+sNpOhKC86WXh33owud0/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Validity Not Before: Nov 22 17:24:55 2024 GMT Not After : Nov 29 17:24:55 2024 GMT Subject: CN=6740be68-702e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c6:ed:42:00:cd:a4:44:a9:d6:5d:70:be:b9: 97:17:17:0f:85:00:37:f3:08:e3:77:e6:1c:fa:83: 67:ff:55:bc:b1:31:89:67:82:f7:c6:5b:07:24:94: 79:71:e6:57:aa:af:0b:b8:7b:f4:7f:09:00:ed:a3: 8d:1b:0e:0f:c6:a2:08:42:55:0e:c8:4d:3a:27:09: bc:f3:ae:df:3e:fc:b2:b9:e1:b6:d3:11:87:ba:8e: fb:91:15:b5:d0:34:7d:92:1a:bf:c2:d7:c7:06:71: 4d:03:7d:51:c9:6c:91:9a:ce:80:73:ec:cd:c8:88: 3b:4b:4a:21:fd:cd:32:71:d9:ab:57:c8:45:93:b1: 2c:60:1d:89:1c:9d:69:0c:c0:28:12:81:22:fe:c4: 22:16:08:64:f2:86:a3:06:72:d3:74:28:56:d4:c2: c8:40:75:a3:eb:6e:17:8d:34:d1:c1:49:5d:8e:cf: 4b:cb:3b:a8:8f:b3:a2:14:f6:2c:24:ce:8a:fd:2d: 17:d7:91:a8:b6:45:01:5a:77:39:b1:d8:2c:9b:ff: d8:d4:2f:ed:34:71:e7:9a:a6:94:f9:e5:1f:a8:ca: d4:48:9f:7c:90:60:ea:17:2a:9d:5a:00:6e:9a:43: cc:85:a5:49:86:fa:37:83:ca:62:5f:a5:32:1a:81: 55:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:45:C0:02:65:DD:DF:D1:79:50:27:50:36:E9:77:85:63:CA:C2:8E X509v3 Authority Key Identifier: keyid:70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:38:a4:9d:49:5a:d2:d3:20:60:0f:e1:3f:5a:19:8b:46:c1: cb:a3:7e:87:40:8f:f3:9f:dd:57:22:32:81:f9:34:51:f2:df: f7:95:8f:fa:9f:c9:09:04:8d:11:9d:b5:1e:90:40:0b:f8:36: 1e:c7:a4:0f:66:ee:55:78:f8:9a:de:56:a7:d7:3e:15:66:bd: ef:9c:53:26:8c:1c:a0:92:d3:83:20:c0:af:65:d7:39:f4:d4: 8c:df:dc:3c:a4:81:ac:d5:08:aa:26:f2:de:de:10:9e:97:7f: 4f:4c:46:07:a8:25:94:8c:61:73:da:c5:81:22:58:85:cb:bb: 55:78:74:ae:88:0e:af:82:a5:f5:58:40:f6:0c:2e:6a:86:41: 70:a9:34:45:1f:22:ff:68:6b:c2:e5:eb:12:4a:98:12:de:fd: 57:91:8f:ba:d7:0a:6f:be:46:83:f2:c3:7b:58:19:9d:b4:d4: d0:7b:15:bf:56:cb:b0:85:ae:87:2f:f9:43:36:fc:00:49:d2: c3:7b:2a:5c:59:53:e0:df:0c:72:81:08:c0:3e:d7:36:a5:6e: fa:00:40:48:34:f4:08:09:43:89:7a:c6:65:5e:21:48:a3:8b: 8d:b1:31:e9:67:f1:99:38:7a:2a:f8:c6:2a:ad:60:ba:97:17: 6c:6f:0f:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ0OUYxMTAvBgNVBAUTKDcwN0Q0ODYwNUEwRDg1NzcyRjkwREM0QjExNzJCRUYz MDI5NEEwODcwHhcNMjQxMTIyMTcyNDU1WhcNMjQxMTI5MTcyNDU1WjAYMRYwFAYD VQQDEw02NzQwYmU2OC03MDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8cbtQgDNpESp1l1wvrmXFxcPhQA38wjjd+Yc+oNn/1W8sTGJZ4L3xlsHJJR5 ceZXqq8LuHv0fwkA7aONGw4PxqIIQlUOyE06Jwm8867fPvyyueG20xGHuo77kRW1 0DR9khq/wtfHBnFNA31RyWyRms6Ac+zNyIg7S0oh/c0ycdmrV8hFk7EsYB2JHJ1p DMAoEoEi/sQiFghk8oajBnLTdChW1MLIQHWj624XjTTRwUldjs9Lyzuoj7OiFPYs JM6K/S0X15GotkUBWnc5sdgsm//Y1C/tNHHnmqaU+eUfqMrUSJ98kGDqFyqdWgBu mkPMhaVJhvo3g8piX6UyGoFVzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlFwAJl 3d/ReVAnUDbpd4VjysKOMB8GA1UdIwQYMBaAFHB9SGBaDYV3L5DcSxFyvvMClKCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDQ5Ri8wQkFDODU1NjM1 NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhYY3ZrTnhMRVhLLTh3S1Vv SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIMUlZRm9OaFhjdmtOeExFWEstOHdLVW9JYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDQ5Ri8wQkFDODU1NjM1NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhY Y3ZrTnhMRVhLLTh3S1VvSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALOKSdSVrS0yBgD+E/WhmLRsHLo36HQI/zn91XIjKB+TRR8t/3lY/6 n8kJBI0RnbUekEAL+DYex6QPZu5VePia3lan1z4VZr3vnFMmjBygktODIMCvZdc5 9NSM39w8pIGs1QiqJvLe3hCel39PTEYHqCWUjGFz2sWBIliFy7tVeHSuiA6vgqX1 WED2DC5qhkFwqTRFHyL/aGvC5esSSpgS3v1XkY+61wpvvkaD8sN7WBmdtNTQexW/ Vsuwha6HL/lDNvwASdLDeypcWVPg3wxygQjAPtc2pW76AEBINPQICUOJesZlXiFI o4uNsTHpZ/GZOHoq+MYqrWC6lxdsbw90 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org