$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft File: F3JfretEo_qLMf_wpjy8UVWpB9g.mft (raw, json) Hash identifier: 3EmTy3oHoPiYpEot7hh/DbwocRBjthodfBL6ovT/4RE= Subject key identifier: 50:B3:F3:41:03:D4:37:9D:02:3D:5F:A6:DE:88:C2:5A:FA:10:2C:BA Authority key identifier: 17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 Certificate issuer: /CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft Manifest number: 072A Signing time: Fri 22 Nov 2024 21:16:27 +0000 Manifest this update: Fri 22 Nov 2024 21:16:27 +0000 Manifest next update: Fri 29 Nov 2024 21:16:27 +0000 Files and hashes: 1: F3JfretEo_qLMf_wpjy8UVWpB9g.crl (hash: HxYctHJ/JeHV2kFUm4GEP7ug3NUF4lvvtfFC5D7Whlc=) 2: C6591C620DFD11EBAD63A21CC4F9AE02.roa (hash: IvwVD4Q9iLuwpemzgQpr7lRPiWqlqg1E9p3bOADAod8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0049/serialNumber=17725FADEB44A3FA8B31FFF0A63CBC5155A907D8 Validity Not Before: Nov 22 21:16:27 2024 GMT Not After : Nov 29 21:16:27 2024 GMT Subject: CN=6740f4ab-fc78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:09:38:0a:5b:5d:7d:68:64:c2:fb:ac:9e:82: f0:07:46:f8:e9:0b:e7:43:da:d9:ed:58:c3:35:b7: 0e:2b:18:73:92:07:2a:02:6e:2a:93:a1:75:08:50: 2b:73:aa:87:f1:85:1a:20:26:10:c4:3d:8b:e8:87: 2e:89:e8:1c:22:aa:4d:e8:8c:9f:3f:44:cc:c7:7c: 9d:e8:06:3b:0d:ac:58:33:df:47:ba:1e:53:e8:e4: a3:5e:d8:90:3f:cd:e5:1f:62:e7:40:10:2c:fa:d0: aa:53:75:3c:02:45:ed:08:c9:da:63:18:8d:5d:f8: ed:0b:fd:82:1c:fd:3e:2a:4c:bd:84:8f:a2:57:03: f2:8e:8e:ba:c2:23:36:9c:bf:36:02:5b:05:7b:3d: 57:01:f3:4c:d1:06:0f:6c:92:7f:6b:7b:e8:cf:0e: a2:5b:8e:39:86:6a:e9:89:40:a9:5c:b1:9a:7b:0d: e9:07:0a:41:ce:b8:e2:bc:d7:f5:4c:da:bd:21:5d: 8f:36:17:b7:44:04:df:4c:7b:49:23:25:07:1b:ce: ab:28:0d:ff:4e:e4:7b:ca:6c:d9:02:20:fc:5b:63: 0d:95:36:c8:4e:9c:2c:2e:4e:05:43:f2:8f:b0:15: ca:79:27:15:1a:23:aa:94:74:14:d3:20:90:43:cc: 1e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B3:F3:41:03:D4:37:9D:02:3D:5F:A6:DE:88:C2:5A:FA:10:2C:BA X509v3 Authority Key Identifier: keyid:17:72:5F:AD:EB:44:A3:FA:8B:31:FF:F0:A6:3C:BC:51:55:A9:07:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F3JfretEo_qLMf_wpjy8UVWpB9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0049/7EC909760DFC11EBB2F1381BC4F9AE02/F3JfretEo_qLMf_wpjy8UVWpB9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:cc:92:bf:eb:48:3e:6a:c9:d2:2d:7d:ec:87:c4:eb:2e:2c: 99:22:d9:b7:1f:41:a3:da:50:72:e6:b4:e5:07:a4:d8:b2:96: e8:ac:b4:cc:e4:e2:98:f4:cb:db:fe:8e:60:1d:0f:19:d7:19: 50:6c:49:f6:5d:62:d8:c2:91:6c:18:48:26:6f:6d:e8:d3:e7: c9:d8:08:cb:18:fd:ee:78:09:ad:93:88:0b:ad:34:d7:b3:08: 5f:bd:03:00:92:0b:3c:dc:db:3e:c0:1f:13:f2:35:79:78:ef: db:45:c7:99:32:25:40:95:47:8e:70:b8:aa:a1:3c:ca:4d:d9: f7:27:ed:bf:8f:7d:82:3a:17:bd:45:1f:33:2d:4f:ee:d4:7a: fb:ac:c8:f8:60:c3:31:de:89:a9:3a:0c:8a:07:1f:c9:34:ed: e7:8b:2e:e7:50:ba:45:f4:08:c8:7b:b4:73:17:8f:b2:27:aa: e1:51:2a:ec:fe:ae:65:24:25:3d:3e:ab:49:b8:3b:4c:52:7e: d2:bc:59:4d:d2:8f:f6:0d:04:94:6f:85:42:c8:7c:0c:4f:8b: 1e:6c:55:82:1c:b7:0b:2e:61:6d:a3:d0:7f:06:b3:57:1f:93: 6d:fc:aa:4d:29:b8:4a:87:44:11:8f:d6:c3:67:51:08:a8:96: 95:4f:12:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwNDkxMTAvBgNVBAUTKDE3NzI1RkFERUI0NEEzRkE4QjMxRkZGMEE2M0NCQzUx NTVBOTA3RDgwHhcNMjQxMTIyMjExNjI3WhcNMjQxMTI5MjExNjI3WjAYMRYwFAYD VQQDEw02NzQwZjRhYi1mYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wk4CltdfWhkwvusnoLwB0b46QvnQ9rZ7VjDNbcOKxhzkgcqAm4qk6F1CFAr c6qH8YUaICYQxD2L6IcuiegcIqpN6IyfP0TMx3yd6AY7DaxYM99Huh5T6OSjXtiQ P83lH2LnQBAs+tCqU3U8AkXtCMnaYxiNXfjtC/2CHP0+Kky9hI+iVwPyjo66wiM2 nL82AlsFez1XAfNM0QYPbJJ/a3vozw6iW445hmrpiUCpXLGaew3pBwpBzrjivNf1 TNq9IV2PNhe3RATfTHtJIyUHG86rKA3/TuR7ymzZAiD8W2MNlTbITpwsLk4FQ/KP sBXKeScVGiOqlHQU0yCQQ8wecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCz80ED 1DedAj1fpt6Iwlr6ECy6MB8GA1UdIwQYMBaAFBdyX63rRKP6izH/8KY8vFFVqQfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDA0OS83RUM5MDk3NjBE RkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9fcUxNZl93cGp5OFVWV3BC OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YzSmZyZXRFb19xTE1mX3dwank4VVZXcEI5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDA0OS83RUM5MDk3NjBERkMxMUVCQjJGMTM4MUJDNEY5QUUwMi9GM0pmcmV0RW9f cUxNZl93cGp5OFVWV3BCOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPzJK/60g+asnSLX3sh8TrLiyZItm3H0Gj2lBy5rTlB6TYspborLTM 5OKY9Mvb/o5gHQ8Z1xlQbEn2XWLYwpFsGEgmb23o0+fJ2AjLGP3ueAmtk4gLrTTX swhfvQMAkgs83Ns+wB8T8jV5eO/bRceZMiVAlUeOcLiqoTzKTdn3J+2/j32COhe9 RR8zLU/u1Hr7rMj4YMMx3ompOgyKBx/JNO3niy7nULpF9AjIe7RzF4+yJ6rhUSrs /q5lJCU9PqtJuDtMUn7SvFlN0o/2DQSUb4VCyHwMT4sebFWCHLcLLmFto9B/BrNX H5Nt/KpNKbhKh0QRj9bDZ1EIqJaVTxJ1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org