$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: 1518qzwU25KoPHyLVnA60tSTGGdRiOkkBrSsjUSXTjc= Subject key identifier: B5:2F:41:A0:71:BB:F8:14:95:EF:B8:40:4D:8B:9F:F9:B3:99:F9:FE Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 0969 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 0961 Signing time: Fri 22 Nov 2024 19:55:47 +0000 Manifest this update: Fri 22 Nov 2024 19:55:47 +0000 Manifest next update: Fri 29 Nov 2024 19:55:47 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: t0Naazo0RwrzlZiFCh8VgTUaB3jgGlhfPPE7erkvVys=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: 8aW0SKFCuzpKiRgqZbEn9MAhCjT3ayoMsYjGk6vj7OA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2409 (0x969) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Nov 22 19:55:47 2024 GMT Not After : Nov 29 19:55:47 2024 GMT Subject: CN=6740e1c3-0c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3b:34:3c:2d:04:c1:06:be:6e:bd:63:6a:1b: 7c:ad:5e:4d:09:1f:bd:13:75:31:ca:f5:d5:ed:9a: cf:3a:fe:af:7b:c3:8b:5a:1c:80:cc:29:fd:20:e4: c8:f5:71:0c:40:17:d7:82:18:42:3c:f8:84:ca:3e: 34:4f:9f:b5:cf:84:61:98:7c:ce:35:ac:0d:47:69: 65:0e:73:fe:27:6b:35:54:8e:37:ab:ea:2d:f8:86: f5:5a:aa:29:a4:df:12:a2:80:a9:36:0c:56:f9:b4: 3c:05:ad:d6:1e:eb:9e:d4:19:d5:3d:8f:e8:93:20: ca:74:9b:f8:46:aa:e4:44:de:4e:61:37:46:4a:4b: 13:21:6c:b9:54:fb:c0:2e:d2:23:d5:8b:b7:be:37: c2:c4:26:cc:af:fd:56:bd:af:5d:26:ab:04:f9:26: 36:0e:31:fb:3a:46:52:6b:28:9c:75:81:3b:28:dc: 22:de:61:7c:6c:7a:9a:da:46:57:04:ec:24:d9:08: ca:65:8c:61:20:6c:7f:81:72:18:e2:e9:4a:be:a0: 90:2a:81:d2:3d:80:e2:d8:d5:42:e9:18:35:ba:be: 84:c0:b7:0e:85:2d:05:56:d3:79:88:a8:93:a9:6d: 35:cd:78:c1:cc:b3:00:46:b6:d5:a0:92:b6:7f:de: af:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2F:41:A0:71:BB:F8:14:95:EF:B8:40:4D:8B:9F:F9:B3:99:F9:FE X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:27:b5:05:86:44:33:e8:54:c1:2c:74:02:63:49:9d:f1:bc: 34:d1:b5:d4:ba:16:04:70:fc:36:ae:f2:50:1f:14:65:81:11: 5f:05:38:b8:a8:bb:4a:45:93:cf:28:7f:6d:a0:0d:fa:68:9b: 4f:7f:e8:a4:9b:10:e6:7b:c6:fc:7e:48:06:60:2a:39:23:29: af:91:29:59:22:ee:56:f8:4c:2e:4c:5d:d8:31:85:f7:fd:a4: 62:d2:bf:9f:95:0c:a6:cf:69:c3:dd:66:33:2a:91:c3:98:6f: bc:11:cd:3f:9a:1c:99:1a:9e:b8:b2:59:87:9e:bb:9b:77:50: 19:a1:4e:ca:ec:63:ff:4f:e6:ec:44:82:e2:79:b0:b6:4e:93: 28:e5:9e:f4:04:5a:11:d3:1e:67:0b:1e:fe:42:cb:25:00:3b: 6a:ae:0c:e5:5d:2a:9a:d0:80:dd:5b:27:24:3b:f2:b2:9f:99: ae:a5:4a:bc:e3:ea:ee:76:b4:fe:96:09:85:32:15:bb:c5:4e: 5c:a9:80:dc:60:72:38:32:7a:fa:9f:26:96:ce:d4:81:6f:9b: 9e:53:50:fd:67:14:65:c2:57:1e:8b:59:c2:3e:f2:2d:ed:9b: b2:42:2b:2f:24:b9:5a:81:5a:85:57:c2:bc:ed:68:17:b1:e3: 49:c5:18:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjQxMTIyMTk1NTQ3WhcNMjQxMTI5MTk1NTQ3WjAYMRYwFAYD VQQDEw02NzQwZTFjMy0wYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDs0PC0EwQa+br1jaht8rV5NCR+9E3UxyvXV7ZrPOv6ve8OLWhyAzCn9IOTI 9XEMQBfXghhCPPiEyj40T5+1z4RhmHzONawNR2llDnP+J2s1VI43q+ot+Ib1Wqop pN8SooCpNgxW+bQ8Ba3WHuue1BnVPY/okyDKdJv4RqrkRN5OYTdGSksTIWy5VPvA LtIj1Yu3vjfCxCbMr/1Wva9dJqsE+SY2DjH7OkZSayicdYE7KNwi3mF8bHqa2kZX BOwk2QjKZYxhIGx/gXIY4ulKvqCQKoHSPYDi2NVC6Rg1ur6EwLcOhS0FVtN5iKiT qW01zXjBzLMARrbVoJK2f96vDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUvQaBx u/gUle+4QE2Ln/mzmfn+MB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYJ7UFhkQz6FTBLHQCY0md8bw00bXUuhYEcPw2rvJQHxRlgRFfBTi4 qLtKRZPPKH9toA36aJtPf+ikmxDme8b8fkgGYCo5IymvkSlZIu5W+EwuTF3YMYX3 /aRi0r+flQymz2nD3WYzKpHDmG+8Ec0/mhyZGp64slmHnrubd1AZoU7K7GP/T+bs RILiebC2TpMo5Z70BFoR0x5nCx7+QsslADtqrgzlXSqa0IDdWyckO/Kyn5mupUq8 4+rudrT+lgmFMhW7xU5cqYDcYHI4Mnr6nyaWztSBb5ueU1D9ZxRlwlcei1nCPvIt 7ZuyQisvJLlagVqFV8K87WgXseNJxRhJ -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:22 2024 by rpki-client on console-ams.rpki-client.org