$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft File: xCIPUDVWR7fICyzovHEmqsLiLTc.mft (raw, json) Hash identifier: HeDJfsMxHPn9HZ4IYBV2zACoxyUDG+PEPlHPl9WdD7k= Subject key identifier: B9:8E:00:F9:D7:07:86:92:43:AE:72:2B:2E:C7:CF:12:28:B1:9B:37 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 3454 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft Manifest number: 343E Signing time: Sun 24 Nov 2024 14:18:27 +0000 Manifest this update: Sun 24 Nov 2024 14:18:27 +0000 Manifest next update: Sun 01 Dec 2024 14:18:27 +0000 Files and hashes: 1: xCIPUDVWR7fICyzovHEmqsLiLTc.crl (hash: hgnmjcUAN4acLR4G51BpD0W5YNDcTEczncng7+SVBSc=) 2: 2C5F8752A10D11EFB9BE8476C4F9AE02.roa (hash: Iv390Bd/MJyqbzwOB0bqCA/PrLBJuVtYX/m4XRUDX5k=) 3: 8C2774CA0F3511EF93020023C4F9AE02.roa (hash: jfY5GTg8hmmhErbL9iwX+gxSO1reSXWac9mVO/Xqq1g=) 4: D7ABA864DFE611ED8872DE0EC4F9AE02.roa (hash: 6UO6N8yoyg6+8CvpDMt8iCmfSbV26PbG92dRF9r0otc=) 5: F8E58782A10C11EFA3C0F375C4F9AE02.roa (hash: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM=) 6: 24C4305A7CD911EEB0B4C962C4F9AE02.roa (hash: 0Wsr5VamrOSe1PRZDclYr+ROoB9PidSlGQIwmrfuBe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13396 (0x3454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Nov 24 14:18:27 2024 GMT Not After : Dec 1 14:18:27 2024 GMT Subject: CN=674335b3-43e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7b:53:e5:f9:dd:d6:b7:37:14:c3:0a:57:6e: 19:36:34:bb:69:aa:9c:2d:30:b9:09:1b:9e:b0:fa: ee:94:0e:5a:d1:b6:ab:7c:8f:54:83:e8:86:5d:7c: 97:d5:d9:ac:6b:86:4e:83:d6:f1:df:9b:85:bb:3e: 90:99:ed:3b:34:52:3f:4c:43:c6:0a:a0:74:72:7c: 3b:ec:3c:6e:8e:7a:db:b6:00:ac:8c:18:62:aa:56: e1:4f:7f:dc:f4:cc:c6:7b:75:41:e1:4c:5a:32:f2: 81:54:07:08:fb:94:71:cc:ac:52:15:d9:dc:8a:9d: 06:8a:2d:ea:d7:5d:bb:b7:c1:f5:dc:a9:14:e6:e2: 0a:7e:df:e1:7e:51:91:97:d2:74:e7:25:25:fd:51: f9:fd:b4:99:76:e0:7c:0a:b9:5d:3b:77:25:ac:e0: e6:f9:5f:7e:3f:60:1e:95:83:bb:66:a5:e3:60:2a: bf:70:4a:da:88:09:e5:0f:f4:fc:ce:08:f9:30:ad: 42:f0:5c:ae:82:47:fd:16:ca:bf:d3:69:03:56:04: 89:1e:76:77:5a:3f:1d:2a:c7:bb:72:32:64:ed:23: 84:6e:6a:9b:1f:2a:60:b9:9e:f5:0e:5f:9b:16:bb: 3b:ce:e9:3b:26:94:2f:6d:62:ee:80:68:7c:83:1b: 41:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8E:00:F9:D7:07:86:92:43:AE:72:2B:2E:C7:CF:12:28:B1:9B:37 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:50:da:f6:f3:e9:84:30:e0:6a:1b:db:0d:21:97:e8:c6:0f: 91:2f:2f:9d:3f:a0:8f:4f:aa:80:41:20:fd:6c:32:09:e4:7a: 4b:c6:e6:16:af:d8:f6:0e:aa:04:e2:33:49:48:ce:73:56:00: 5e:28:07:47:72:ef:86:24:ba:06:ef:f0:b3:f7:15:5e:18:fc: f2:32:72:0e:4c:00:a1:a0:7f:c6:87:ff:7a:cf:b0:54:56:50: 15:c2:7a:3a:8c:4c:37:59:c9:00:ff:d5:87:b5:c1:4b:2e:1f: ad:e3:45:62:ba:44:8a:ef:cc:41:73:55:ba:1a:c7:62:4b:77: ef:16:7d:01:9f:58:35:fe:de:f8:3b:b5:c6:b2:65:a2:70:8b: 01:71:3b:bc:3f:2d:5d:9a:0e:ac:ff:95:e1:05:2b:db:f9:9a: 7a:c8:16:54:b4:fe:99:c0:a3:f8:6b:c4:0f:50:b0:e8:5c:85: 8d:19:c8:f2:ec:7c:cf:9f:62:33:1c:a1:c7:02:c4:6b:00:d1: 78:93:97:1d:46:b2:50:ec:3c:60:f7:1e:44:ad:d8:75:31:82: f8:26:e4:d3:48:55:fb:80:20:24:2c:ee:48:39:c4:cd:20:1b: 71:9d:3f:1c:b3:c3:6e:56:c4:f8:67:9b:5c:01:e5:a8:df:85: f3:4b:15:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjQxMTI0MTQxODI3WhcNMjQxMjAxMTQxODI3WjAYMRYwFAYD VQQDEw02NzQzMzViMy00M2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHtT5fnd1rc3FMMKV24ZNjS7aaqcLTC5CRuesPrulA5a0barfI9Ug+iGXXyX 1dmsa4ZOg9bx35uFuz6Qme07NFI/TEPGCqB0cnw77DxujnrbtgCsjBhiqlbhT3/c 9MzGe3VB4UxaMvKBVAcI+5RxzKxSFdncip0Gii3q1127t8H13KkU5uIKft/hflGR l9J05yUl/VH5/bSZduB8CrldO3clrODm+V9+P2AelYO7ZqXjYCq/cEraiAnlD/T8 zgj5MK1C8Fyugkf9Fsq/02kDVgSJHnZ3Wj8dKse7cjJk7SOEbmqbHypguZ71Dl+b Frs7zuk7JpQvbWLugGh8gxtBEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmOAPnX B4aSQ65yKy7HzxIosZs3MB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDY0RC9EOTMzM0ZFNDFENkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3 ZklDeXpvdkhFbXFzTGlMVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcUNr28+mEMOBqG9sNIZfoxg+RLy+dP6CPT6qAQSD9bDIJ5HpLxuYW r9j2DqoE4jNJSM5zVgBeKAdHcu+GJLoG7/Cz9xVeGPzyMnIOTAChoH/Gh/96z7BU VlAVwno6jEw3WckA/9WHtcFLLh+t40ViukSK78xBc1W6GsdiS3fvFn0Bn1g1/t74 O7XGsmWicIsBcTu8Py1dmg6s/5XhBSvb+Zp6yBZUtP6ZwKP4a8QPULDoXIWNGcjy 7HzPn2IzHKHHAsRrANF4k5cdRrJQ7Dxg9x5Erdh1MYL4JuTTSFX7gCAkLO5IOcTN IBtxnT8cs8NuVsT4Z5tcAeWo34XzSxVP -----END CERTIFICATE-----Generated at Sun Nov 24 14:56:38 2024 by rpki-client on console-fra.rpki-client.org