$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: iFnULA+Wd5z/rGjRnU0tZ4H27Xz9jmLJUDgwjVhCCas= Subject key identifier: FF:4F:B7:8C:08:34:A2:45:3F:AC:22:36:5A:8F:8F:4E:F2:31:6B:FB Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 08D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 08B7 Signing time: Fri 22 Nov 2024 20:18:28 +0000 Manifest this update: Fri 22 Nov 2024 20:18:28 +0000 Manifest next update: Fri 29 Nov 2024 20:18:28 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: JcMfb1bZdWhOdYCO7ohDwzOrYFRncwLxFu76KrIMawo=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: LGFMxkvmdVELBOkg0tqQjRMiBrTGNLnJnZeQEwD+enQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2259 (0x8d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: Nov 22 20:18:28 2024 GMT Not After : Nov 29 20:18:28 2024 GMT Subject: CN=6740e714-71fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9a:1e:e2:a7:1c:45:97:61:f5:ae:19:37:94: 40:24:cb:eb:a0:78:38:02:78:18:62:8b:74:36:57: 97:dd:16:df:d4:d6:16:21:a3:7f:ab:1c:74:79:d8: 23:35:90:5c:83:1f:93:1d:5b:1f:3d:b1:02:4f:c7: 5a:a3:25:1f:a2:4f:01:21:e5:b6:0f:8f:a3:1f:f9: 94:ce:12:88:ec:c5:e2:1e:45:d1:35:1b:83:61:4f: f9:c7:85:d3:57:ff:c6:4b:b6:86:8a:3f:53:c5:ef: 4c:e9:d3:28:4c:a7:fd:6c:7c:be:15:e6:1c:34:da: 3f:bd:fc:c4:33:f9:29:c4:fe:59:92:e6:31:a9:28: 0b:50:27:6d:9c:54:8e:64:86:98:54:93:75:96:8e: c2:47:4a:f2:c4:2f:21:4c:05:ad:f9:02:f3:24:7c: 05:9d:5e:a4:1a:a0:55:22:33:b2:09:65:45:5e:f0: 9f:6b:ca:d1:42:20:0a:19:c1:15:a2:cb:d3:c9:48: 47:91:65:0c:4f:93:2d:f5:9f:17:14:e4:1b:2e:0b: b7:21:75:bb:e5:96:bc:88:1b:36:66:9f:0c:51:3b: 34:64:d0:94:7f:64:cc:4d:3d:c2:b4:4c:93:8b:08: 18:ed:96:5b:38:08:20:86:3b:a5:31:4f:f4:d7:a6: 9d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:4F:B7:8C:08:34:A2:45:3F:AC:22:36:5A:8F:8F:4E:F2:31:6B:FB X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:f4:d1:7e:ef:31:b0:5d:00:05:21:08:9f:7e:bd:5e:9c:9a: 35:12:cf:87:da:5e:c8:ae:04:9d:f3:67:9a:f0:eb:fa:81:3c: f1:91:62:3c:8e:80:81:d9:7d:7f:75:eb:98:36:72:97:5d:96: 7f:d2:b9:1d:b9:31:c3:3a:38:11:86:68:d1:f9:63:7e:c8:43: a6:2e:53:d7:64:3b:bb:b4:83:17:cd:f9:0a:b7:df:9c:8e:24: 93:d8:e7:15:66:5d:85:9f:fd:f1:7f:47:f5:81:81:b1:a6:d5: b4:d2:81:18:0e:cc:7b:d0:01:9d:d2:d0:47:3f:78:71:fe:92: da:02:4c:c8:6e:67:b7:09:81:2f:25:9f:c5:a9:f1:95:27:1b: bd:33:73:74:73:3c:2d:dc:b9:5f:27:b1:6b:85:04:37:96:86: cb:b1:a2:b2:88:36:86:13:cc:5c:80:d9:80:9b:ee:02:dd:d8: 78:16:44:3d:e7:07:d4:a0:e6:96:a4:31:91:11:6e:f9:26:72: e2:29:76:6c:3c:58:90:46:c6:14:8b:c2:3c:a2:c9:b9:50:41: 43:e0:a0:65:b5:52:1a:26:26:03:65:d0:07:a5:25:e5:2e:b4: 79:c0:54:90:4d:c2:d6:b1:49:e6:ae:b6:54:26:e1:cf:2c:a7: 3c:d1:d8:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjQxMTIyMjAxODI4WhcNMjQxMTI5MjAxODI4WjAYMRYwFAYD VQQDEw02NzQwZTcxNC03MWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Zoe4qccRZdh9a4ZN5RAJMvroHg4AngYYot0NleX3Rbf1NYWIaN/qxx0edgj NZBcgx+THVsfPbECT8daoyUfok8BIeW2D4+jH/mUzhKI7MXiHkXRNRuDYU/5x4XT V//GS7aGij9Txe9M6dMoTKf9bHy+FeYcNNo/vfzEM/kpxP5ZkuYxqSgLUCdtnFSO ZIaYVJN1lo7CR0ryxC8hTAWt+QLzJHwFnV6kGqBVIjOyCWVFXvCfa8rRQiAKGcEV osvTyUhHkWUMT5Mt9Z8XFOQbLgu3IXW75Za8iBs2Zp8MUTs0ZNCUf2TMTT3CtEyT iwgY7ZZbOAgghjulMU/016ad1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9Pt4wI NKJFP6wiNlqPj07yMWv7MB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ9NF+7zGwXQAFIQiffr1enJo1Es+H2l7IrgSd82ea8Ov6gTzxkWI8 joCB2X1/deuYNnKXXZZ/0rkduTHDOjgRhmjR+WN+yEOmLlPXZDu7tIMXzfkKt9+c jiST2OcVZl2Fn/3xf0f1gYGxptW00oEYDsx70AGd0tBHP3hx/pLaAkzIbme3CYEv JZ/FqfGVJxu9M3N0czwt3LlfJ7FrhQQ3lobLsaKyiDaGE8xcgNmAm+4C3dh4FkQ9 5wfUoOaWpDGREW75JnLiKXZsPFiQRsYUi8I8osm5UEFD4KBltVIaJiYDZdAHpSXl LrR5wFSQTcLWsUnmrrZUJuHPLKc80dgU -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org