$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: lAkIW2j9BSqOWfaYBZ0NdG0TE0RHQBxJ71DafkpWm34= Subject key identifier: 07:E8:8C:61:2E:F8:79:78:25:23:1B:96:92:5C:2A:24:A1:E3:24:D9 Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 099A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0982 Signing time: Fri 22 Nov 2024 19:54:36 +0000 Manifest this update: Fri 22 Nov 2024 19:54:35 +0000 Manifest next update: Fri 29 Nov 2024 19:54:35 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: QrfhfEIg3P7bmV+VPq4CKcxyZpdot7xCZaYhmVzcpZQ=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: QybxAW0JZTcm7NugQTpG8Jw3MBZeFtzVHU/nStVlT58=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: STg8SBnaSzWjKmwuI5mayylMKelnZKOmUJFv9qSfaQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Nov 22 19:54:35 2024 GMT Not After : Nov 29 19:54:35 2024 GMT Subject: CN=6740e17b-4c87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:28:97:83:ea:48:e7:61:fa:3e:6c:3b:b3:12: 86:a1:ea:30:6c:ed:29:e7:a4:74:39:76:df:7a:63: 84:6e:96:53:1e:54:96:cf:00:1f:fb:92:8a:5a:4e: 27:c9:e0:99:8e:d2:90:66:aa:a3:4a:50:4b:f5:a9: 1e:a9:53:86:19:89:be:fd:61:b8:dd:29:53:b8:39: 55:45:18:3a:fd:6a:db:c7:6e:3e:61:76:9a:74:98: 8a:42:3d:10:a0:c1:0d:e1:31:94:47:44:a3:17:25: f6:bb:d9:fa:c9:ec:55:35:e7:9b:5b:de:7c:5c:22: 13:1e:b6:13:f5:e1:14:a5:69:18:56:55:b0:ca:56: f9:f0:c2:ef:db:dc:b4:83:7a:ba:04:25:f6:41:c1: d5:e6:99:9c:87:dd:30:3c:e6:ff:36:32:18:0a:3c: eb:64:00:b7:ed:65:b2:ab:45:45:28:00:9c:2b:4b: 19:8c:bf:21:d5:2f:b4:7f:44:1f:61:b3:7c:65:45: 0a:5c:46:73:19:ec:ca:36:24:b8:fa:c8:92:b2:a5: 06:ec:f5:b8:05:50:83:c7:a0:e2:9b:65:2b:bf:f4: de:c9:c0:62:55:85:2d:32:70:33:fd:82:d3:45:a6: aa:91:8d:87:db:62:5a:c9:4b:a1:71:1f:82:55:64: 16:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E8:8C:61:2E:F8:79:78:25:23:1B:96:92:5C:2A:24:A1:E3:24:D9 X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:71:1d:e8:d7:a2:44:f4:f1:b4:94:f4:f1:00:7f:7f:e8:69: 64:4a:b8:15:bd:e8:48:af:c3:c6:b9:28:9c:05:4b:0c:de:9e: 50:43:47:0d:9d:b1:84:00:4a:d9:24:9a:b5:74:c8:97:1f:2a: f9:43:9e:f0:1a:3d:dd:d8:41:fa:74:d9:01:51:13:04:3c:50: ce:68:43:2e:45:3e:c7:e0:04:9d:bc:ad:b7:8e:c7:03:03:68: 87:77:f4:7a:00:b0:e6:d1:8d:53:d9:af:b9:14:50:62:03:87: d4:19:d4:98:29:cf:26:4f:8f:d0:7e:0a:4f:7d:95:b9:ab:8e: 70:28:f0:66:57:fa:27:dd:0a:6c:d8:d6:07:2e:d6:de:46:15: a7:0f:67:77:3c:a9:8b:62:06:88:ca:28:42:0f:58:97:0e:09: 91:a0:d0:11:05:0a:d9:bf:51:45:d3:07:83:4e:08:4a:62:b1: a6:b1:be:0c:cf:41:18:af:dc:cf:c0:e3:a9:5a:aa:eb:bf:e1: 49:83:73:fc:e7:03:35:90:59:3d:03:00:53:6d:e7:ae:09:41: 79:82:9b:9e:78:83:d1:f6:fe:e0:1e:dc:54:90:52:12:1f:fc: 63:13:ef:7b:40:9c:95:ff:19:e0:8d:cb:23:c7:70:8e:69:f4: c4:fd:1a:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjQxMTIyMTk1NDM1WhcNMjQxMTI5MTk1NDM1WjAYMRYwFAYD VQQDEw02NzQwZTE3Yi00Yzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyiXg+pI52H6Pmw7sxKGoeowbO0p56R0OXbfemOEbpZTHlSWzwAf+5KKWk4n yeCZjtKQZqqjSlBL9akeqVOGGYm+/WG43SlTuDlVRRg6/Wrbx24+YXaadJiKQj0Q oMEN4TGUR0SjFyX2u9n6yexVNeebW958XCITHrYT9eEUpWkYVlWwylb58MLv29y0 g3q6BCX2QcHV5pmch90wPOb/NjIYCjzrZAC37WWyq0VFKACcK0sZjL8h1S+0f0Qf YbN8ZUUKXEZzGezKNiS4+siSsqUG7PW4BVCDx6Dim2Urv/TeycBiVYUtMnAz/YLT RaaqkY2H22JayUuhcR+CVWQWUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfojGEu +Hl4JSMblpJcKiSh4yTZMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1cR3o16JE9PG0lPTxAH9/6GlkSrgVvehIr8PGuSicBUsM3p5QQ0cN nbGEAErZJJq1dMiXHyr5Q57wGj3d2EH6dNkBURMEPFDOaEMuRT7H4ASdvK23jscD A2iHd/R6ALDm0Y1T2a+5FFBiA4fUGdSYKc8mT4/QfgpPfZW5q45wKPBmV/on3Qps 2NYHLtbeRhWnD2d3PKmLYgaIyihCD1iXDgmRoNARBQrZv1FF0weDTghKYrGmsb4M z0EYr9zPwOOpWqrrv+FJg3P85wM1kFk9AwBTbeeuCUF5gpueeIPR9v7gHtxUkFIS H/xjE+97QJyV/xngjcsjx3COafTE/Rpi -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org