$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: LDlfb5WXif/cNXsObbWIsPhyk7/L7Jxq4xq5OteesiU= Subject key identifier: 22:22:79:B4:79:76:2E:49:C8:B5:87:4D:F6:2D:E4:19:5D:ED:B4:31 Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 0585 Signing time: Fri 22 Nov 2024 22:48:02 +0000 Manifest this update: Fri 22 Nov 2024 22:48:01 +0000 Manifest next update: Fri 29 Nov 2024 22:48:01 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: Hj0Wdj8LxFZh+YY/lA52gtkYlR+pVSZYt3t/03PfVlY=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: Nov 22 22:48:01 2024 GMT Not After : Nov 29 22:48:01 2024 GMT Subject: CN=67410a22-01ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ff:7d:db:7f:53:2b:47:43:20:6b:aa:11:3e: 17:d7:ff:96:70:1f:ad:90:dc:51:c9:19:2a:0c:0f: 8c:b5:3d:c9:70:cb:21:c7:fd:ed:c6:87:f1:ba:13: 04:b0:27:e9:71:6d:5d:29:f7:cc:43:88:66:13:4f: ce:b4:03:75:77:ef:b0:c8:32:4b:42:4b:d5:3c:b7: 34:d0:5a:b0:e1:46:ec:4d:56:d7:26:06:36:be:d4: 8b:2d:6b:98:3c:f6:2e:02:08:c7:11:52:11:ee:48: 6e:2c:bc:91:ec:94:64:7d:00:7b:e8:07:90:e6:12: 5e:a0:3a:88:24:75:9c:01:99:c7:08:80:3f:8e:94: 28:ab:c9:17:d4:87:cf:c1:f1:a3:6b:52:46:18:73: 64:97:2b:2f:91:60:80:e8:3c:eb:cf:ce:41:4e:7d: 26:16:fa:41:2f:82:86:1e:64:31:57:fa:72:76:5d: 6d:07:c7:06:c2:22:b4:1e:d8:9b:05:6b:5c:ee:eb: 3c:a7:10:c8:93:0d:6a:83:57:4a:5e:b1:8f:c5:50: 63:d3:bd:77:d0:0a:03:69:21:02:ef:25:cd:f9:c0: 5f:e2:1d:f8:ca:75:52:3d:6f:a3:32:30:bd:cb:af: b0:20:71:08:e5:cb:84:d3:a6:4e:8d:2a:f2:82:9c: c8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:22:79:B4:79:76:2E:49:C8:B5:87:4D:F6:2D:E4:19:5D:ED:B4:31 X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:6f:1c:1a:57:e5:53:65:16:e8:55:08:45:3e:ad:d5:7b:e4: 0f:24:e4:aa:89:28:b5:3b:69:c9:97:9b:46:73:0f:34:4a:53: 4c:30:89:fc:d3:56:73:3a:bf:27:98:1b:f5:37:cd:ab:fb:00: bb:b1:ed:e4:3b:22:fa:aa:3d:dc:92:2b:36:69:4d:2b:d0:9c: 10:eb:c7:1d:ad:59:6f:b2:f3:07:8f:77:e9:c7:36:6a:89:2f: 3f:71:81:b4:08:28:fd:3a:21:aa:c1:f0:72:94:b7:b0:b0:24: a9:4d:da:28:8a:59:22:99:c4:56:54:84:06:aa:2d:80:ce:fc: 6b:69:ce:33:81:6d:07:7b:62:25:53:1a:af:a6:da:10:2f:29: 1d:52:08:93:3f:37:cc:c7:b6:d2:d4:39:b1:d0:e4:b2:dd:18: cb:12:fb:79:4b:cc:e3:4f:66:4d:77:58:45:94:a2:40:88:e5: 78:9f:11:ab:db:27:93:fe:1a:4b:b8:c4:f4:1f:9d:4f:23:2c: 2c:b9:39:1d:9b:8d:3b:56:ae:d0:4c:54:f3:e9:fc:45:9f:b0: 5d:5b:94:9a:ef:f9:70:e6:25:9c:a4:47:2c:15:32:c2:af:b1: de:b4:ea:a3:72:4c:97:41:34:f4:a1:31:e3:52:4a:85:96:8e: 34:fa:1d:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjQxMTIyMjI0ODAxWhcNMjQxMTI5MjI0ODAxWjAYMRYwFAYD VQQDEw02NzQxMGEyMi0wMWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P99239TK0dDIGuqET4X1/+WcB+tkNxRyRkqDA+MtT3JcMshx/3txofxuhME sCfpcW1dKffMQ4hmE0/OtAN1d++wyDJLQkvVPLc00Fqw4UbsTVbXJgY2vtSLLWuY PPYuAgjHEVIR7khuLLyR7JRkfQB76AeQ5hJeoDqIJHWcAZnHCIA/jpQoq8kX1IfP wfGja1JGGHNklysvkWCA6Dzrz85BTn0mFvpBL4KGHmQxV/pydl1tB8cGwiK0Htib BWtc7us8pxDIkw1qg1dKXrGPxVBj07130AoDaSEC7yXN+cBf4h34ynVSPW+jMjC9 y6+wIHEI5cuE06ZOjSrygpzI3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIiebR5 di5JyLWHTfYt5Bld7bQxMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6bxwaV+VTZRboVQhFPq3Ve+QPJOSqiSi1O2nJl5tGcw80SlNMMIn8 01ZzOr8nmBv1N82r+wC7se3kOyL6qj3ckis2aU0r0JwQ68cdrVlvsvMHj3fpxzZq iS8/cYG0CCj9OiGqwfBylLewsCSpTdooilkimcRWVIQGqi2Azvxrac4zgW0He2Il UxqvptoQLykdUgiTPzfMx7bS1Dmx0OSy3RjLEvt5S8zjT2ZNd1hFlKJAiOV4nxGr 2yeT/hpLuMT0H51PIywsuTkdm407Vq7QTFTz6fxFn7BdW5Sa7/lw5iWcpEcsFTLC r7HetOqjckyXQTT0oTHjUkqFlo40+h0L -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org