$ rpki-client -vvf rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft File: EpTEi8aWr-ggvRWC80NnutqwJDI.mft (raw, json) Hash identifier: k/nTOxktBnujcvD1LcbHVifGMMVtZqNjA3VzgYkUioI= Subject key identifier: 81:3C:23:9E:BA:55:04:B8:62:7E:E4:F6:A9:A0:D6:C0:E1:64:E3:61 Authority key identifier: 12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 Certificate issuer: /CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft Manifest number: 0407 Signing time: Sat 23 Nov 2024 00:00:38 +0000 Manifest this update: Sat 23 Nov 2024 00:00:37 +0000 Manifest next update: Sat 30 Nov 2024 00:00:37 +0000 Files and hashes: 1: EpTEi8aWr-ggvRWC80NnutqwJDI.crl (hash: flSHZ5smCDy8gp24jDTCclTDgd74aqnaaNOhjcAiTJo=) 2: 2A84118CE0A311EC9CF2B738C4F9AE02.roa (hash: d5/NJRnIjibSymNbNk/lOaJ1Q3nAQoqs/MS6HVTtaFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117817/serialNumber=1294C48BC696AFE820BD1582F34367BADAB02432 Validity Not Before: Nov 23 00:00:37 2024 GMT Not After : Nov 30 00:00:37 2024 GMT Subject: CN=67411b25-0043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6d:70:f2:e9:f9:cd:15:b3:d0:81:f9:ef:aa: 72:5e:04:5f:e1:76:e4:53:fb:d3:b9:18:17:0f:1b: 45:d7:f6:00:bd:25:5b:11:9e:6a:61:f0:8c:61:21: 68:ed:05:67:ab:c8:d0:9a:3d:a7:9b:61:29:f4:9a: 13:83:55:a2:60:c6:12:19:f0:fb:e4:6a:54:f6:3f: 4f:17:28:48:c8:d8:41:8a:1e:a0:eb:c1:ca:11:68: 15:a1:b6:1c:54:75:db:1a:b0:92:3b:f5:41:72:ba: 46:2c:f3:da:ec:17:3f:bc:f2:0a:40:73:05:e0:9d: d3:97:0c:56:c0:f7:90:dc:80:7c:d0:4c:72:25:87: 7a:04:b3:e9:35:48:e7:10:5f:ff:cf:ec:95:60:7e: 4f:4d:f6:6f:25:a9:29:b9:c6:40:fa:4d:3d:c6:6e: fb:38:8a:01:be:5f:c8:7e:79:5a:fb:5e:a8:50:5d: a1:d8:8c:60:b3:bd:bc:df:6e:b3:1f:5c:03:63:e3: 2b:b8:b2:c5:45:91:36:f2:aa:64:0a:74:c3:57:31: 72:20:3e:2e:bd:5b:f7:05:32:47:05:cd:9f:f0:a9: 9b:40:bd:83:b8:cd:57:49:e7:ac:73:bb:e0:fc:d6: a4:6c:bb:83:bd:ef:c9:b6:6b:80:a2:36:05:77:93: 81:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3C:23:9E:BA:55:04:B8:62:7E:E4:F6:A9:A0:D6:C0:E1:64:E3:61 X509v3 Authority Key Identifier: keyid:12:94:C4:8B:C6:96:AF:E8:20:BD:15:82:F3:43:67:BA:DA:B0:24:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EpTEi8aWr-ggvRWC80NnutqwJDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117817/0683EB704DAC11EC85716023C4F9AE02/EpTEi8aWr-ggvRWC80NnutqwJDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:75:5f:ef:9b:e9:a2:a9:4f:e5:f9:0e:17:2f:a4:b0:17:ac: 34:2c:37:39:6d:81:78:71:74:09:16:c7:4e:c6:77:aa:57:03: f1:a5:6c:2b:ce:de:fa:34:25:45:c5:38:39:c4:58:c0:f5:78: 13:62:f1:6c:1d:16:a0:3b:d1:50:ab:97:68:35:44:6b:1a:78: ba:23:fc:d7:45:c9:38:b0:ab:b4:89:82:16:1b:63:2c:1c:b4: b2:b2:c7:c3:b3:6b:fa:b2:c5:b6:73:d0:12:ec:e8:b0:00:21: 34:04:2e:f0:c8:c9:57:01:31:48:c2:1a:21:2b:4c:ab:87:a4: b2:96:2e:29:20:1b:11:57:b0:eb:ff:dc:b8:8b:17:30:2a:a1: 37:9a:7e:2f:87:7c:c9:0d:75:05:40:1b:3c:95:58:b9:df:7f: 6c:81:72:4b:e6:6b:8b:17:d6:2c:09:6e:8b:2e:05:95:e7:4a: a3:18:14:2f:ec:4a:5b:34:e7:0d:ea:7d:f7:2c:dd:39:5e:55: 5a:fe:99:fc:c2:e9:e7:a6:f3:50:1d:c6:e2:1d:00:4e:19:47: 52:a5:2e:69:55:b3:cf:bc:6a:76:11:45:a9:b2:bf:0b:b7:8c: 47:e9:d1:ec:a5:80:dc:d4:ab:00:1c:41:8b:b3:71:d0:6b:c1: 0e:4e:6d:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4MTcxMTAvBgNVBAUTKDEyOTRDNDhCQzY5NkFGRTgyMEJEMTU4MkYzNDM2N0JB REFCMDI0MzIwHhcNMjQxMTIzMDAwMDM3WhcNMjQxMTMwMDAwMDM3WjAYMRYwFAYD VQQDEw02NzQxMWIyNS0wMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAum1w8un5zRWz0IH576pyXgRf4XbkU/vTuRgXDxtF1/YAvSVbEZ5qYfCMYSFo 7QVnq8jQmj2nm2Ep9JoTg1WiYMYSGfD75GpU9j9PFyhIyNhBih6g68HKEWgVobYc VHXbGrCSO/VBcrpGLPPa7Bc/vPIKQHMF4J3TlwxWwPeQ3IB80ExyJYd6BLPpNUjn EF//z+yVYH5PTfZvJakpucZA+k09xm77OIoBvl/Ifnla+16oUF2h2Ixgs728326z H1wDY+MruLLFRZE28qpkCnTDVzFyID4uvVv3BTJHBc2f8KmbQL2DuM1XSeesc7vg /NakbLuDve/JtmuAojYFd5OBFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIE8I566 VQS4Yn7k9qmg1sDhZONhMB8GA1UdIwQYMBaAFBKUxIvGlq/oIL0VgvNDZ7rasCQy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzgxNy8wNjgzRUI3MDRE QUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3ItZ2d2UldDODBObnV0cXdK REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VwVEVpOGFXci1nZ3ZSV0M4ME5udXRxd0pESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzgxNy8wNjgzRUI3MDREQUMxMUVDODU3MTYwMjNDNEY5QUUwMi9FcFRFaThhV3It Z2d2UldDODBObnV0cXdKREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBodV/vm+miqU/l+Q4XL6SwF6w0LDc5bYF4cXQJFsdOxneqVwPxpWwr zt76NCVFxTg5xFjA9XgTYvFsHRagO9FQq5doNURrGni6I/zXRck4sKu0iYIWG2Ms HLSyssfDs2v6ssW2c9AS7OiwACE0BC7wyMlXATFIwhohK0yrh6Syli4pIBsRV7Dr /9y4ixcwKqE3mn4vh3zJDXUFQBs8lVi5339sgXJL5muLF9YsCW6LLgWV50qjGBQv 7EpbNOcN6n33LN05XlVa/pn8wunnpvNQHcbiHQBOGUdSpS5pVbPPvGp2EUWpsr8L t4xH6dHspYDc1KsAHEGLs3HQa8EOTm1t -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:18 2024 by rpki-client on console-ams.rpki-client.org