$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: cHZtORG0vci4ZEv7oWFZwXKJIaMf7EuOmYnJ2+cRPnQ= Subject key identifier: 19:F1:22:8F:8C:0A:5B:6E:BF:81:F6:73:FB:38:4B:1A:93:A3:EF:B7 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1D24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1D1C Signing time: Fri 22 Nov 2024 16:09:08 +0000 Manifest this update: Fri 22 Nov 2024 16:09:07 +0000 Manifest next update: Fri 29 Nov 2024 16:09:07 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: LhNzBH5sspmbKTR44dWFE35Vl1iEsrxzjMkFGMpLdls=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: X5h8vQiP6tB103ZWi1RDruZWJP5MBROBXJX+od9NULg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7460 (0x1d24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Nov 22 16:09:07 2024 GMT Not After : Nov 29 16:09:07 2024 GMT Subject: CN=6740aca3-2a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e1:b1:a2:3f:3e:eb:c7:5d:8a:bb:3d:c2:38: ba:6a:0b:c5:21:e2:53:b5:47:ca:68:14:b7:d3:6f: d5:fb:73:ed:38:68:c7:c0:72:a6:4c:a0:33:3c:d5: 8b:d7:72:3d:2c:68:65:00:59:3e:87:d3:bb:1d:4b: bb:f3:73:73:b6:2e:c6:71:b0:3c:23:37:b9:8d:81: f9:55:86:e5:e1:4e:81:ee:b9:82:ba:5a:a5:5e:0e: e2:43:53:60:e0:0f:99:5a:cc:70:15:e9:cc:f6:e9: 17:b2:6f:1e:ec:6a:f6:42:7a:e3:0d:db:f0:96:c7: 6c:67:a0:6b:23:2b:04:07:58:6a:8f:00:0a:f4:9b: 94:87:4d:5b:3a:c0:e9:7d:eb:15:0a:14:46:bc:ed: ff:65:ee:0e:ac:06:d0:06:73:54:38:c4:5e:4f:66: 83:22:d9:36:1b:54:25:f1:74:e1:2b:6f:5a:12:d3: 06:44:77:77:b8:d9:e8:dc:28:a2:e6:3a:5e:4c:02: 45:f5:94:39:ad:77:50:c8:b9:be:fd:ba:78:f2:5f: b7:9d:4d:f0:9f:32:5a:6e:94:3c:1a:01:15:c8:d9: b3:bf:94:b0:68:f3:74:f3:46:1e:be:6f:f5:ff:58: 47:a0:d0:2d:10:3e:ed:b1:b1:a3:e0:33:1d:90:71: 2b:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:F1:22:8F:8C:0A:5B:6E:BF:81:F6:73:FB:38:4B:1A:93:A3:EF:B7 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:40:6c:d6:af:44:a8:ca:bc:fc:a4:33:20:6d:d2:98:66:bb: 1b:40:40:82:f8:c5:6a:5e:7f:04:78:55:92:e4:47:b8:df:2e: 9d:42:e7:77:06:c9:84:b4:3c:97:10:60:bf:df:fb:a9:76:45: bb:e9:c0:13:f6:8c:c3:c3:08:0e:49:99:eb:7b:c5:d1:15:d0: 48:81:7d:a5:6f:38:89:83:1b:c4:96:c2:b2:9e:50:5b:5e:06: e2:8b:ae:99:94:f1:fe:9f:9e:7d:3d:4c:d8:f7:81:4b:7a:4e: 0a:b9:98:86:95:ef:48:a1:44:35:cb:02:bd:d4:f9:b0:d1:65: 33:58:e5:3f:e2:b2:fa:8b:21:39:9e:eb:6b:52:8c:6f:04:f9: 42:a9:f9:cd:9a:15:fd:e6:fc:ed:fa:31:1b:b3:35:67:9b:ba: 01:34:dd:8a:0b:ac:4c:4f:59:d2:09:22:81:cc:a9:cb:ec:81: 5c:21:ee:11:3b:af:9d:23:f1:d4:39:ce:e1:36:de:d6:28:a3: 52:87:3e:83:f9:67:41:5d:ae:6d:09:88:5f:a8:f0:52:d6:58: 8d:fb:8f:54:cf:c8:5d:55:26:02:3b:b6:1f:a3:e8:fa:62:83: 37:36:1a:d6:c4:3e:2b:47:84:5a:b4:8a:52:6a:f2:71:d3:24: de:2f:21:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjQxMTIyMTYwOTA3WhcNMjQxMTI5MTYwOTA3WjAYMRYwFAYD VQQDEw02NzQwYWNhMy0yYTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOGxoj8+68ddirs9wji6agvFIeJTtUfKaBS302/V+3PtOGjHwHKmTKAzPNWL 13I9LGhlAFk+h9O7HUu783Nzti7GcbA8Ize5jYH5VYbl4U6B7rmCulqlXg7iQ1Ng 4A+ZWsxwFenM9ukXsm8e7Gr2QnrjDdvwlsdsZ6BrIysEB1hqjwAK9JuUh01bOsDp fesVChRGvO3/Ze4OrAbQBnNUOMReT2aDItk2G1Ql8XThK29aEtMGRHd3uNno3Cii 5jpeTAJF9ZQ5rXdQyLm+/bp48l+3nU3wnzJabpQ8GgEVyNmzv5SwaPN080Yevm/1 /1hHoNAtED7tsbGj4DMdkHErTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnxIo+M Cltuv4H2c/s4SxqTo++3MB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCQGzWr0Soyrz8pDMgbdKYZrsbQECC+MVqXn8EeFWS5Ee43y6dQud3 BsmEtDyXEGC/3/updkW76cAT9ozDwwgOSZnre8XRFdBIgX2lbziJgxvElsKynlBb Xgbii66ZlPH+n559PUzY94FLek4KuZiGle9IoUQ1ywK91Pmw0WUzWOU/4rL6iyE5 nutrUoxvBPlCqfnNmhX95vzt+jEbszVnm7oBNN2KC6xMT1nSCSKBzKnL7IFcIe4R O6+dI/HUOc7hNt7WKKNShz6D+WdBXa5tCYhfqPBS1liN+49Uz8hdVSYCO7Yfo+j6 YoM3NhrWxD4rR4RatIpSavJx0yTeLyHb -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org