$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: SdAFp82MSBZgXR+2pgvMocAH1QFxZTLIYLNPUZaYlyk= Subject key identifier: 9F:DF:EB:6E:D4:77:86:11:7F:5E:6F:A7:E9:EA:03:AC:8A:4F:94:30 Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0AD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0ACA Signing time: Fri 22 Nov 2024 19:09:30 +0000 Manifest this update: Fri 22 Nov 2024 19:09:29 +0000 Manifest next update: Fri 29 Nov 2024 19:09:29 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: bdKvyaCGzYTPqOo5ytPpcJrici+5b7C1HhmJS4O1sJs=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: zSM1B8wSUB+mHKY/5kPPrFTVt9OokOjyYR65igDrdV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2771 (0xad3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Nov 22 19:09:29 2024 GMT Not After : Nov 29 19:09:29 2024 GMT Subject: CN=6740d6ea-cc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:03:b8:56:16:a9:10:f3:c8:8f:d8:b0:a4:d8: b9:ec:72:e5:39:41:74:85:74:7f:db:f3:a9:87:95: 19:5e:77:b9:92:0f:c6:04:91:54:67:7f:8d:5c:46: e4:23:07:4c:97:28:01:b5:66:71:84:68:0a:42:bf: c3:98:5a:76:79:6c:d3:84:af:82:79:af:68:63:27: 96:12:27:a0:b5:fb:57:8d:e2:d1:20:ea:0b:b5:c1: ec:2f:4c:e7:47:23:4e:e9:a2:a7:c9:aa:cf:cd:06: 37:ff:60:77:c9:8a:5b:80:ce:8c:c1:29:7e:69:3a: 6a:44:54:d2:a0:15:f6:8b:10:a9:b1:ad:56:9e:c6: 16:85:fd:43:ab:03:46:8e:7f:67:70:b8:19:69:2e: bf:ef:56:e9:21:8e:e3:73:a7:5c:12:e6:04:dc:7e: 6b:eb:b1:b0:df:4c:e4:a7:52:28:df:b7:86:9d:40: 27:86:87:3b:97:ab:8f:ba:e6:e2:a6:67:cb:cf:b8: 2d:23:78:7a:de:b1:48:a3:df:05:fb:4a:5c:0b:1c: 81:e0:4a:d5:d7:52:28:27:43:2f:ca:4f:41:bf:22: bb:55:3b:ee:06:be:22:64:d6:00:e1:df:e3:da:ad: 85:21:85:16:52:55:76:8e:c5:94:86:68:97:21:bf: 8a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:DF:EB:6E:D4:77:86:11:7F:5E:6F:A7:E9:EA:03:AC:8A:4F:94:30 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f0:92:f4:a4:b9:33:24:66:8f:b8:6b:0d:8d:9a:e9:df:12: 44:5d:b1:64:b3:9b:15:37:f0:ba:1e:f7:98:c3:d9:03:d6:ee: 6b:ac:f2:e1:4f:d2:f7:39:e9:fb:95:7d:1b:c9:88:8d:be:fd: c0:11:da:4c:ab:0c:ef:8b:75:72:85:34:23:a7:cb:75:a4:c5: cf:14:e5:3f:b5:03:f4:d3:8b:a0:70:da:50:0f:17:d9:04:a4: d1:e3:20:21:93:e3:ba:49:7c:8d:66:23:2e:fc:af:cd:d5:59: 3d:c9:9d:22:e4:ba:c9:ca:2a:5e:a9:6d:21:3e:46:53:2c:2c: ae:69:4e:8c:5f:9c:8b:43:02:6d:39:80:2b:c2:38:14:43:13: 9e:7b:8f:3a:ee:98:d2:7f:74:d9:ea:df:60:86:a2:a6:d0:57: 1d:1b:16:ff:c8:31:d2:6f:f6:b4:d3:6d:58:c0:0b:c2:f2:48: fd:74:54:b8:7e:e2:44:95:b0:21:5a:d5:c6:0c:b2:b2:ec:12: ca:52:23:4f:7c:04:47:96:cb:d2:b6:9b:5f:60:ec:36:15:2f: 6d:fa:14:9c:1a:2e:3b:f7:c1:f2:8e:f8:3f:4c:aa:32:db:c1: 84:7b:12:50:da:2b:93:9d:c8:22:48:28:df:de:3e:01:41:e2: af:15:8c:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjQxMTIyMTkwOTI5WhcNMjQxMTI5MTkwOTI5WjAYMRYwFAYD VQQDEw02NzQwZDZlYS1jYzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwO4VhapEPPIj9iwpNi57HLlOUF0hXR/2/Oph5UZXne5kg/GBJFUZ3+NXEbk IwdMlygBtWZxhGgKQr/DmFp2eWzThK+Cea9oYyeWEiegtftXjeLRIOoLtcHsL0zn RyNO6aKnyarPzQY3/2B3yYpbgM6MwSl+aTpqRFTSoBX2ixCpsa1WnsYWhf1DqwNG jn9ncLgZaS6/71bpIY7jc6dcEuYE3H5r67Gw30zkp1Io37eGnUAnhoc7l6uPuubi pmfLz7gtI3h63rFIo98F+0pcCxyB4ErV11IoJ0Mvyk9BvyK7VTvuBr4iZNYA4d/j 2q2FIYUWUlV2jsWUhmiXIb+KvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/f627U d4YRf15vp+nqA6yKT5QwMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA98JL0pLkzJGaPuGsNjZrp3xJEXbFks5sVN/C6HveYw9kD1u5rrPLh T9L3Oen7lX0byYiNvv3AEdpMqwzvi3VyhTQjp8t1pMXPFOU/tQP004ugcNpQDxfZ BKTR4yAhk+O6SXyNZiMu/K/N1Vk9yZ0i5LrJyipeqW0hPkZTLCyuaU6MX5yLQwJt OYArwjgUQxOee4867pjSf3TZ6t9ghqKm0FcdGxb/yDHSb/a0021YwAvC8kj9dFS4 fuJElbAhWtXGDLKy7BLKUiNPfARHlsvStptfYOw2FS9t+hScGi4798Hyjvg/TKoy 28GEexJQ2iuTncgiSCjf3j4BQeKvFYzk -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:22 2024 by rpki-client on console-ams.rpki-client.org