$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft File: s-AwGXTWpAg9ufSdWtbloVd5KgY.mft (raw, json) Hash identifier: j8C2zZNisJ0o70WGAC636mJXl2Q21jJOD1N9nSu5ijE= Subject key identifier: 06:4B:63:7F:0C:69:D9:FE:9F:13:ED:2F:9F:31:67:AB:AE:63:61:60 Authority key identifier: B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 Certificate issuer: /CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft Manifest number: 05F0 Signing time: Fri 22 Nov 2024 14:52:42 +0000 Manifest this update: Fri 22 Nov 2024 14:52:41 +0000 Manifest next update: Fri 29 Nov 2024 14:52:41 +0000 Files and hashes: 1: s-AwGXTWpAg9ufSdWtbloVd5KgY.crl (hash: dkhMfPWYc1P1UMskIu8XLiJQZIHHXCEaMS4f/Hhdw/s=) 2: 3A77AE12CB9C11EC9230F70BC4F9AE02.roa (hash: xC+lWrYZXvtadcDvxH4kaiQpqgAkUzJPZxrt2qBJSww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B43/serialNumber=B3E0301974D6A4083DB9F49D5AD6E5A157792A06 Validity Not Before: Nov 22 14:52:41 2024 GMT Not After : Nov 29 14:52:41 2024 GMT Subject: CN=67409aba-be21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:17:a1:d5:b2:8c:16:3e:52:bb:b8:a1:f8:99: 47:98:f3:64:26:5e:3d:f7:19:cd:65:ec:1a:fa:94: c4:ce:49:1d:ff:82:53:31:67:73:c3:86:28:b4:05: 51:ec:d7:e7:9d:3a:9a:6f:4b:73:da:c3:a4:4b:92: fc:35:63:70:a8:11:f0:ab:13:ca:ea:6d:e5:61:11: 79:81:f8:ad:7e:4a:4c:56:58:12:f6:c9:68:37:2b: e4:f8:f4:ce:b3:d5:a1:43:d4:65:27:c5:a2:f2:90: c2:55:07:b8:f5:aa:59:eb:e8:f7:78:80:cb:f6:c4: c8:f5:d4:fe:db:fe:0d:49:06:34:d8:2e:ed:63:a6: db:42:f1:5a:0c:be:93:29:7a:9c:50:be:6f:9d:5b: 3e:99:d8:12:1f:61:86:24:64:db:a4:95:23:c4:a7: 19:6b:88:24:80:91:1e:64:47:65:96:e9:78:e3:18: 12:f9:2b:e8:c1:1f:56:11:28:e3:84:6b:31:3d:9d: b9:29:a6:e5:75:19:6d:a8:ad:48:4a:3e:80:1e:31: c7:ec:db:d1:58:46:02:97:1e:b1:3d:1a:1a:5d:3a: 51:34:34:3e:1e:d8:28:be:b2:f5:b9:6b:d0:11:d0: 81:49:19:7d:07:0a:4d:4d:45:0f:cf:39:0f:e9:5a: 37:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:4B:63:7F:0C:69:D9:FE:9F:13:ED:2F:9F:31:67:AB:AE:63:61:60 X509v3 Authority Key Identifier: keyid:B3:E0:30:19:74:D6:A4:08:3D:B9:F4:9D:5A:D6:E5:A1:57:79:2A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-AwGXTWpAg9ufSdWtbloVd5KgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B43/59421A4E8D7C11EB8D8BD60BC4F9AE02/s-AwGXTWpAg9ufSdWtbloVd5KgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:fb:59:79:db:8f:68:8f:a8:cd:e8:92:ca:ba:a3:a5:01:06: 2e:a4:21:42:2e:ee:65:b0:35:f1:66:85:83:33:8c:58:a2:56: 59:6d:54:51:dc:e2:8d:5b:19:e8:2d:b6:e9:89:b5:ba:00:c6: 23:2d:4a:73:e7:7f:d2:ff:25:6e:ba:93:3f:bb:da:c2:23:dd: d0:f9:7c:e5:ee:2f:b0:10:0c:9d:74:ff:08:79:ee:97:a1:73: b8:16:3f:d2:a9:c0:78:f1:63:90:4f:13:9d:70:93:10:7a:a4: 95:55:cc:0f:a7:cf:f8:da:89:e4:57:54:a4:41:a9:b6:ef:68: 29:1c:5d:fe:e3:77:30:92:b8:ff:a7:34:e4:5b:e2:f5:41:7d: b3:c5:fd:ef:e5:06:ca:e6:1b:2a:42:c7:10:92:57:0c:ef:8d: 7b:26:b2:b4:67:28:bf:c6:86:fa:8d:69:b9:55:e9:00:0b:16: fd:29:90:1e:25:18:e8:14:83:97:98:7a:13:f6:92:ef:e0:bc: a8:2a:49:7e:d1:df:55:86:b3:c2:79:27:35:42:41:78:6d:e4: 01:82:72:56:f7:73:09:24:3c:43:40:3d:b0:e6:86:9a:89:39: bd:fc:76:6a:e6:9e:ad:d3:b3:04:7a:54:8a:a4:71:4f:62:a2: 40:fe:f0:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNDMxMTAvBgNVBAUTKEIzRTAzMDE5NzRENkE0MDgzREI5RjQ5RDVBRDZFNUEx NTc3OTJBMDYwHhcNMjQxMTIyMTQ1MjQxWhcNMjQxMTI5MTQ1MjQxWjAYMRYwFAYD VQQDEw02NzQwOWFiYS1iZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1heh1bKMFj5Su7ih+JlHmPNkJl499xnNZewa+pTEzkkd/4JTMWdzw4YotAVR 7NfnnTqab0tz2sOkS5L8NWNwqBHwqxPK6m3lYRF5gfitfkpMVlgS9sloNyvk+PTO s9WhQ9RlJ8Wi8pDCVQe49apZ6+j3eIDL9sTI9dT+2/4NSQY02C7tY6bbQvFaDL6T KXqcUL5vnVs+mdgSH2GGJGTbpJUjxKcZa4gkgJEeZEdllul44xgS+SvowR9WESjj hGsxPZ25KabldRltqK1ISj6AHjHH7NvRWEYClx6xPRoaXTpRNDQ+HtgovrL1uWvQ EdCBSRl9BwpNTUUPzzkP6Vo3lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZLY38M adn+nxPtL58xZ6uuY2FgMB8GA1UdIwQYMBaAFLPgMBl01qQIPbn0nVrW5aFXeSoG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI0My81OTQyMUE0RThE N0MxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9zLUF3R1hUV3BBZzl1ZlNkV3RibG9WZDVL Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MtQXdHWFRXcEFnOXVmU2RXdGJsb1ZkNUtnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkI0My81OTQyMUE0RThEN0MxMUVCOEQ4QkQ2MEJDNEY5QUUwMi9zLUF3R1hUV3BB Zzl1ZlNkV3RibG9WZDVLZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX+1l5249oj6jN6JLKuqOlAQYupCFCLu5lsDXxZoWDM4xYolZZbVRR 3OKNWxnoLbbpibW6AMYjLUpz53/S/yVuupM/u9rCI93Q+Xzl7i+wEAyddP8Iee6X oXO4Fj/SqcB48WOQTxOdcJMQeqSVVcwPp8/42onkV1SkQam272gpHF3+43cwkrj/ pzTkW+L1QX2zxf3v5QbK5hsqQscQklcM7417JrK0Zyi/xob6jWm5VekACxb9KZAe JRjoFIOXmHoT9pLv4LyoKkl+0d9VhrPCeSc1QkF4beQBgnJW93MJJDxDQD2w5oaa iTm9/HZq5p6t07MEelSKpHFPYqJA/vDt -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:12 2024 by rpki-client on console-ams.rpki-client.org