$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: bqcbVaulRX4k7JSFN2QLjSO2VFDLq3vbU36AmqStMEc= Subject key identifier: A7:DD:62:16:86:25:A6:80:95:B7:08:1B:D8:C0:A5:7D:7E:E5:F6:F7 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0CF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0CCD Signing time: Fri 22 Nov 2024 18:04:29 +0000 Manifest this update: Fri 22 Nov 2024 18:04:28 +0000 Manifest next update: Fri 29 Nov 2024 18:04:28 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: v1dEb8dYt8WARFPGNmteNHNhVB2U9z9AXsL8GFnAzBI=) 2: 11815E36135311EE94A8A114C4F9AE02.roa (hash: DQ13r92QYX16Mb/U6hPZ8guDdpni9HaQRtj9hjL00w4=) 3: 204459886A4211EDB5C5EC63C4F9AE02.roa (hash: Sq8uiyerrkKYOGJIifBc8UcljCMgS+tMTePx7O1v9zk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3314 (0xcf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Nov 22 18:04:28 2024 GMT Not After : Nov 29 18:04:28 2024 GMT Subject: CN=6740c7ac-a44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ff:79:a9:84:69:76:55:bf:ad:fa:5b:27:ee: 7b:f9:2f:a8:13:87:66:8b:b9:18:57:9b:3d:22:64: f5:94:c4:b6:26:59:f5:f3:ff:90:b5:a4:17:8c:1c: 99:18:d1:4f:e7:c1:81:d0:42:f4:0f:79:d2:85:65: ee:f1:e8:d0:73:35:5e:d3:03:53:be:eb:bc:f3:ad: b9:3c:51:68:fb:e1:48:fa:75:40:b6:c5:5d:4f:cd: 93:2a:5e:a1:99:ce:5d:77:40:44:c0:b5:1f:95:ef: ed:53:df:ce:43:67:a3:f4:ec:c1:bc:f4:b0:61:d4: 66:62:43:ea:d2:73:51:39:fc:cb:5a:7a:ba:86:61: 4c:6a:6f:fb:00:ea:aa:6b:41:45:39:f9:3f:ee:29: 33:bf:1e:08:c9:64:a7:ac:1e:39:fe:56:80:9a:8e: 25:4b:02:3b:32:96:d3:cd:dd:43:96:5f:ff:4b:dc: ff:99:7a:47:3b:1d:2d:be:14:5d:e6:bc:f7:56:aa: 16:b3:99:c5:d0:d4:4a:fe:dc:41:eb:dd:dc:58:35: 39:ad:ea:06:0d:92:2d:a4:b9:5c:5f:b6:5c:c2:03: 61:c7:46:64:60:10:0d:04:7d:d0:3b:cc:c3:40:ad: af:48:4f:33:6a:ce:19:db:36:58:c8:39:06:91:6c: 8a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DD:62:16:86:25:A6:80:95:B7:08:1B:D8:C0:A5:7D:7E:E5:F6:F7 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:09:c4:36:c7:2e:ff:e7:67:93:c2:79:40:72:f4:83:f2:89: 3b:3d:4d:0d:5d:94:53:1a:d5:2a:ed:44:b2:56:76:8c:2b:e7: b3:f3:e1:f2:d6:59:37:4d:98:39:5e:8c:7c:9a:b7:1e:2d:22: 7c:99:28:11:d1:26:2c:75:59:e9:2f:e0:29:7c:3b:82:cc:6a: 4a:8f:32:b0:37:5d:58:23:a5:6b:0b:61:8a:e5:5d:a4:87:ef: c1:04:d6:ae:00:cc:b5:23:3e:9d:3e:01:7e:0c:92:bb:fc:4d: 74:bd:50:9e:8e:0a:12:a7:68:07:58:a0:f2:3a:72:8d:08:b9: b8:4a:76:71:89:52:82:d0:a5:94:08:26:cd:21:e8:8d:c3:23: a8:d1:d7:9b:20:69:e8:72:47:6d:db:e2:82:c8:10:26:0b:60: 6f:8c:b3:bb:c1:63:da:2f:48:df:c6:77:e6:48:0b:10:4a:db: cc:a2:8f:99:6b:d3:41:c8:0a:5f:7f:ae:d4:48:11:00:ba:8c: 27:f6:9a:94:86:82:a0:a7:1a:d3:7c:13:6a:ed:01:fc:f0:27: 5a:4b:50:82:c1:18:49:80:7e:2e:06:2e:c3:42:16:92:82:45: 13:f7:4f:68:81:e6:6e:5b:30:cb:ca:29:99:49:30:aa:d6:bb: 6e:87:21:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjQxMTIyMTgwNDI4WhcNMjQxMTI5MTgwNDI4WjAYMRYwFAYD VQQDEw02NzQwYzdhYy1hNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0v95qYRpdlW/rfpbJ+57+S+oE4dmi7kYV5s9ImT1lMS2Jln18/+QtaQXjByZ GNFP58GB0EL0D3nShWXu8ejQczVe0wNTvuu88625PFFo++FI+nVAtsVdT82TKl6h mc5dd0BEwLUfle/tU9/OQ2ej9OzBvPSwYdRmYkPq0nNROfzLWnq6hmFMam/7AOqq a0FFOfk/7ikzvx4IyWSnrB45/laAmo4lSwI7MpbTzd1Dll//S9z/mXpHOx0tvhRd 5rz3VqoWs5nF0NRK/txB693cWDU5reoGDZItpLlcX7ZcwgNhx0ZkYBANBH3QO8zD QK2vSE8zas4Z2zZYyDkGkWyKlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfdYhaG JaaAlbcIG9jApX1+5fb3MB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWCcQ2xy7/52eTwnlAcvSD8ok7PU0NXZRTGtUq7USyVnaMK+ez8+Hy 1lk3TZg5Xox8mrceLSJ8mSgR0SYsdVnpL+ApfDuCzGpKjzKwN11YI6VrC2GK5V2k h+/BBNauAMy1Iz6dPgF+DJK7/E10vVCejgoSp2gHWKDyOnKNCLm4SnZxiVKC0KWU CCbNIeiNwyOo0debIGnockdt2+KCyBAmC2BvjLO7wWPaL0jfxnfmSAsQStvMoo+Z a9NByApff67USBEAuown9pqUhoKgpxrTfBNq7QH88CdaS1CCwRhJgH4uBi7DQhaS gkUT909ogeZuWzDLyimZSTCq1rtuhyG8 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org