$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft File: R2lFsh8liffnEnUf50f6IUOlI1s.mft (raw, json) Hash identifier: PqL5RRLpowaZxDUZS2S+xktG+1SRtU9I0x6eMx0kaMo= Subject key identifier: 97:D6:ED:EA:2B:47:95:E2:1B:0E:AC:DD:FB:09:BB:6A:B9:E5:2A:5A Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft Manifest number: 0200 Signing time: Sat 23 Nov 2024 01:37:26 +0000 Manifest this update: Sat 23 Nov 2024 01:37:25 +0000 Manifest next update: Sat 30 Nov 2024 01:37:25 +0000 Files and hashes: 1: R2lFsh8liffnEnUf50f6IUOlI1s.crl (hash: UH/1/f9fyFWKhdtn8gq22i0pUAPuEB+WAG6tU0NH0uw=) 2: A917D87217A711ED8D17FC7CC4F9AE02.roa (hash: Zl1OdprsSbZO6kJ93156dFn5LZrbdumG7KQVdLYJ1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Nov 23 01:37:25 2024 GMT Not After : Nov 30 01:37:25 2024 GMT Subject: CN=674131d6-9d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2b:a1:c7:cc:ac:c4:3b:79:38:af:82:9d:4d: 9f:f8:d4:2f:83:67:d9:08:2c:fc:27:52:9f:42:6c: 3a:8d:95:0b:1a:35:8f:57:f4:1c:5a:e1:f9:53:30: 70:a3:4d:c2:19:a3:51:1f:cf:b2:d2:1f:ba:87:24: 86:52:4b:c3:14:09:0c:08:60:bf:be:5c:f8:f1:e0: 6f:6a:e1:76:61:8e:aa:a6:1f:29:52:8e:a3:0e:e4: a9:ef:72:17:d4:49:02:78:be:3e:73:35:16:34:be: 11:ab:5c:9a:ef:69:b1:0e:6d:16:f3:df:d6:ec:9c: a9:85:59:40:86:39:0b:11:3c:0b:a7:de:35:24:79: db:5a:db:16:cc:08:75:88:63:a3:c8:03:ee:e1:d0: 01:d4:2f:c3:ca:d1:88:b9:8c:11:62:c2:68:15:79: a9:cc:fe:0c:dd:2b:c9:53:cd:78:a5:d1:74:40:a0: 99:f3:8c:dc:52:0b:82:ce:e4:c7:a7:0a:3b:33:6e: 00:0e:6d:e6:67:64:9b:d3:7f:f0:45:3d:5c:5c:66: b6:16:7a:11:bf:75:93:12:d4:d0:61:0e:35:8b:c8: f7:6d:35:81:c3:16:d8:95:11:29:7c:e8:a3:23:2a: 17:0b:cd:e3:83:5a:de:c0:93:24:63:19:4a:5d:0c: 23:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D6:ED:EA:2B:47:95:E2:1B:0E:AC:DD:FB:09:BB:6A:B9:E5:2A:5A X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:2e:c4:55:fd:34:cf:c1:e7:cd:7a:5d:70:2a:e9:7f:13:e6: 72:97:b0:3e:72:f7:91:a2:93:58:7e:33:95:eb:25:b1:11:83: 48:6b:e6:6c:f7:a2:ad:a6:cc:d3:3c:59:6d:a0:28:e2:f0:71: 37:9d:6f:20:f6:d1:73:8f:e6:a4:8d:2c:a7:e1:5c:f3:01:bf: 7a:ba:59:58:63:7e:b3:55:23:1f:52:b4:5c:e2:bf:cd:2b:ca: 62:cb:51:e4:64:be:8a:ef:8f:80:50:95:d3:5e:aa:b7:9f:49: fc:e7:7c:21:43:1a:c4:d2:58:81:18:d8:16:58:7d:0a:0e:ba: 8b:55:eb:73:36:a2:d6:d4:0c:fc:01:09:12:31:73:6e:e9:4c: c2:c4:7e:23:15:14:38:77:12:5e:b8:b2:6e:99:97:bd:61:47: 5b:94:c4:17:4c:9d:8d:7f:20:9f:18:80:0a:61:e6:c7:7c:3d: 8d:db:da:df:43:c5:c8:d5:56:7a:4a:ff:94:46:03:d6:22:09: 12:69:49:12:99:25:9c:bc:4d:d0:7a:1f:98:a5:c8:b6:dd:e2: cc:22:42:64:d5:1f:03:eb:94:e4:cb:3d:1a:df:70:aa:e3:31: 9f:b2:a6:15:f8:9c:5f:19:ef:73:4e:f3:42:e2:b4:c5:12:4f: c9:e9:db:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjQxMTIzMDEzNzI1WhcNMjQxMTMwMDEzNzI1WjAYMRYwFAYD VQQDEw02NzQxMzFkNi05ZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySuhx8ysxDt5OK+CnU2f+NQvg2fZCCz8J1KfQmw6jZULGjWPV/QcWuH5UzBw o03CGaNRH8+y0h+6hySGUkvDFAkMCGC/vlz48eBvauF2YY6qph8pUo6jDuSp73IX 1EkCeL4+czUWNL4Rq1ya72mxDm0W89/W7JyphVlAhjkLETwLp941JHnbWtsWzAh1 iGOjyAPu4dAB1C/DytGIuYwRYsJoFXmpzP4M3SvJU814pdF0QKCZ84zcUguCzuTH pwo7M24ADm3mZ2Sb03/wRT1cXGa2FnoRv3WTEtTQYQ41i8j3bTWBwxbYlREpfOij IyoXC83jg1rewJMkYxlKXQwjZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfW7eor R5XiGw6s3fsJu2q55SpaMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkIxRC8zMDIwM0VEMDE3QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlm Zm5FblVmNTBmNklVT2xJMXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwLsRV/TTPwefNel1wKul/E+Zyl7A+cveRopNYfjOV6yWxEYNIa+Zs 96KtpszTPFltoCji8HE3nW8g9tFzj+akjSyn4VzzAb96ullYY36zVSMfUrRc4r/N K8piy1HkZL6K74+AUJXTXqq3n0n853whQxrE0liBGNgWWH0KDrqLVetzNqLW1Az8 AQkSMXNu6UzCxH4jFRQ4dxJeuLJumZe9YUdblMQXTJ2NfyCfGIAKYebHfD2N29rf Q8XI1VZ6Sv+URgPWIgkSaUkSmSWcvE3Qeh+Ypci23eLMIkJk1R8D65Tkyz0a33Cq 4zGfsqYV+JxfGe9zTvNC4rTFEk/J6dtq -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org