$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: JlVjIEiwJ4E1+d8WTiDk++4L7UQcwv4dFnxiMzFzeh4= Subject key identifier: 71:B4:07:C8:B5:B2:43:F3:F4:51:C2:8E:C6:C3:F6:64:FA:FB:23:8C Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2D26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2CBF Signing time: Fri 22 Nov 2024 15:33:08 +0000 Manifest this update: Fri 22 Nov 2024 15:33:07 +0000 Manifest next update: Fri 29 Nov 2024 15:33:07 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: mZr7scBSQkXpgtobJoqhJIppSqu7/ElLgVyJFE9v4d4=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) 4: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: kLqMqBpKEFH6/wOJjRyVhUownkqorcEZej+kQ3FiGDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11558 (0x2d26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Nov 22 15:33:07 2024 GMT Not After : Nov 29 15:33:07 2024 GMT Subject: CN=6740a434-4cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:73:bb:76:6d:2d:ab:be:20:69:52:ed:99:ae: 84:9e:28:8f:3d:fb:e0:e2:7a:22:a5:3e:ca:ee:83: 51:f3:32:02:0d:07:06:08:5f:11:b8:e2:c7:2d:0e: 64:9a:6f:3d:6e:4c:03:05:7a:34:f3:9c:c8:ed:47: 13:19:42:f7:50:94:43:66:b8:fc:80:f5:bb:48:29: ee:3f:ca:33:b3:ef:88:81:f8:d5:0e:ef:a9:c2:fa: 90:6d:5b:76:10:00:46:b8:74:fd:6a:4a:0b:2d:da: 4f:c3:90:49:50:e3:84:56:e0:f3:da:07:e6:28:82: 19:14:db:ec:98:0a:48:f5:44:7e:09:be:03:dc:5c: 23:d0:c1:dd:89:3a:7d:17:6e:ba:ae:12:fd:96:a3: a4:f7:02:0c:98:1c:d6:5e:1a:f8:78:ea:8a:bf:6d: 5d:37:d3:9f:46:26:dd:a5:14:ed:65:16:14:4e:f3: 55:26:31:93:79:35:94:04:ce:a7:38:b6:c3:e3:d2: b3:bc:0e:b1:4d:12:59:95:f7:1d:00:41:84:cb:d9: c4:f9:ec:3e:71:4a:27:c1:f4:20:2f:4d:c2:f2:0a: bd:93:73:35:17:4c:d6:9c:d5:38:51:c7:67:3f:35: 73:7d:18:3b:21:8e:98:38:42:c7:76:81:81:4b:24: d5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B4:07:C8:B5:B2:43:F3:F4:51:C2:8E:C6:C3:F6:64:FA:FB:23:8C X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:27:2e:fb:c6:e7:95:57:87:39:30:f9:a0:39:e8:bf:58:be: f6:e0:29:45:36:d3:96:b8:d8:69:53:dd:0b:9f:1e:78:79:c0: c9:92:f3:7d:1d:fc:f4:1d:41:0a:d5:fe:12:0b:d2:37:cb:ca: 9b:8c:b5:e7:17:c2:0c:ff:be:cf:0a:ec:15:c2:5e:b1:26:b4: 10:b0:d6:b4:7c:97:1f:21:b2:5f:3e:49:0a:6e:03:59:2d:1d: 1a:e2:62:01:72:7f:56:98:48:ec:03:71:cf:ca:97:a1:d0:d0: 35:8a:df:e0:f7:3f:b9:b5:93:00:13:73:2c:2e:fd:40:ec:94: be:ad:5d:13:97:bf:41:32:7d:78:6c:ef:99:3e:9c:e9:20:e4: 93:b0:65:03:28:f2:98:ec:cd:a7:84:e8:df:e0:5d:90:da:7e: 95:00:08:5f:7b:94:27:6a:6a:2c:13:bc:7c:74:84:a2:d2:c1: b1:ea:b5:cd:57:1e:43:80:98:73:e6:d7:16:3b:fa:b2:c8:28: 2b:35:de:12:b7:a8:3e:72:61:79:c9:ae:c4:d9:dc:57:4a:68: 8a:a4:20:da:3c:75:d7:74:79:fa:e6:0b:bb:42:0f:35:43:be: 04:ad:b1:59:66:3a:cd:5a:c9:f3:76:e3:06:6a:13:2f:10:18: 96:1b:0b:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjQxMTIyMTUzMzA3WhcNMjQxMTI5MTUzMzA3WjAYMRYwFAYD VQQDEw02NzQwYTQzNC00Y2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynO7dm0tq74gaVLtma6EniiPPfvg4noipT7K7oNR8zICDQcGCF8RuOLHLQ5k mm89bkwDBXo085zI7UcTGUL3UJRDZrj8gPW7SCnuP8ozs++IgfjVDu+pwvqQbVt2 EABGuHT9akoLLdpPw5BJUOOEVuDz2gfmKIIZFNvsmApI9UR+Cb4D3Fwj0MHdiTp9 F266rhL9lqOk9wIMmBzWXhr4eOqKv21dN9OfRibdpRTtZRYUTvNVJjGTeTWUBM6n OLbD49KzvA6xTRJZlfcdAEGEy9nE+ew+cUonwfQgL03C8gq9k3M1F0zWnNU4Ucdn PzVzfRg7IY6YOELHdoGBSyTV8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHG0B8i1 skPz9FHCjsbD9mT6+yOMMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Jy77xueVV4c5MPmgOei/WL724ClFNtOWuNhpU90Lnx54ecDJkvN9 Hfz0HUEK1f4SC9I3y8qbjLXnF8IM/77PCuwVwl6xJrQQsNa0fJcfIbJfPkkKbgNZ LR0a4mIBcn9WmEjsA3HPypeh0NA1it/g9z+5tZMAE3MsLv1A7JS+rV0Tl79BMn14 bO+ZPpzpIOSTsGUDKPKY7M2nhOjf4F2Q2n6VAAhfe5QnamosE7x8dISi0sGx6rXN Vx5DgJhz5tcWO/qyyCgrNd4St6g+cmF5ya7E2dxXSmiKpCDaPHXXdHn65gu7Qg81 Q74ErbFZZjrNWsnzduMGahMvEBiWGwvd -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org