$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: u1r2Y+rXdh9o4ZvlpPBlYhVTepSsibe1LqPFFvLUiMk= Subject key identifier: 0A:A6:4A:0A:22:63:41:C8:35:6A:FB:A4:FF:3C:54:C1:A5:11:4B:58 Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 0110 Signing time: Sat 23 Nov 2024 03:07:11 +0000 Manifest this update: Sat 23 Nov 2024 03:07:11 +0000 Manifest next update: Sat 30 Nov 2024 03:07:11 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: C/Tt/Baosm9imM7U/pBhchBHcDCkBeRD8rwyq1jCJ5Y=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: WMsnJeKRDE/E3eYU+nh3vcngfITTgAj3NVw90NWzGkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Nov 23 03:07:11 2024 GMT Not After : Nov 30 03:07:11 2024 GMT Subject: CN=674146df-70f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:95:6a:18:87:7d:ec:93:ea:37:21:d4:b2:99: ac:5d:8c:bd:e0:ec:a3:fd:ea:5a:9a:71:a8:7b:6a: 78:34:31:c4:37:48:71:1e:35:88:e9:8b:04:b6:6f: d4:7b:70:f4:93:30:59:68:5e:c7:53:ed:83:a1:e7: 36:a9:f7:76:d2:da:26:89:91:74:c3:e6:9c:35:e0: 97:72:79:6b:5a:41:96:76:a5:a0:99:0c:c0:c9:68: f7:c3:29:fc:f0:80:41:b7:5d:d7:a3:e8:29:c1:37: f6:c2:46:36:bb:0a:02:8c:93:4b:c5:24:18:72:2a: ad:11:4b:bd:4e:94:c8:4c:44:6d:a5:a8:c1:b7:c1: 56:50:54:79:78:df:f3:23:68:ac:9e:35:ae:8d:7b: 1f:2c:bb:f8:15:eb:7a:76:5e:a2:c6:d5:df:7a:ff: 6a:f1:d9:30:fd:5d:e0:e2:c0:a8:84:6d:d5:4f:03: ad:25:1a:95:84:95:a1:64:df:06:43:15:e1:fb:f5: 4a:e7:e3:e7:e6:e3:06:17:84:3c:ba:5b:4b:0c:8c: 01:01:8a:a6:06:80:18:1e:81:75:cd:c1:ef:8c:d5: 87:34:46:f9:8d:04:33:1a:0b:b6:a7:b5:43:05:69: e0:32:bc:02:b7:f2:90:90:5f:96:e1:99:9f:4f:59: c3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A6:4A:0A:22:63:41:C8:35:6A:FB:A4:FF:3C:54:C1:A5:11:4B:58 X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:92:3c:dc:65:df:97:e2:25:dc:f1:79:0d:4e:c6:51:63:6c: e1:ed:a5:55:90:4a:5d:6f:0b:7c:1c:c1:2b:37:59:73:c2:c7: f4:b1:60:84:6d:ab:5c:04:b7:cd:d3:17:bb:bd:c9:9b:71:f5: 9f:b0:0b:ce:8f:21:f8:da:3c:59:16:07:5e:de:5a:55:ef:10: 49:a7:47:75:e9:77:51:b7:67:1f:10:18:90:fa:c1:8b:12:ac: 49:d7:2d:56:58:30:c1:28:a4:7e:ae:c4:bd:a1:79:30:bc:da: c9:17:fc:57:ad:80:a9:b8:88:cc:39:5f:c8:32:17:89:2b:c4: 62:c0:b9:43:53:3c:be:87:f7:06:c0:aa:9c:28:7c:a1:2a:98: 9e:32:11:65:78:3b:b3:3b:97:95:2c:b9:c3:56:a1:64:72:4f: 62:02:38:02:e0:d6:59:27:97:3c:6c:7a:41:18:74:9c:a8:63: 11:19:55:b4:62:7d:cd:42:73:94:9a:56:04:52:94:5b:2c:1d: 79:93:a3:9f:4a:b6:81:52:d5:41:7b:ad:d3:ec:dc:eb:85:2b: 41:7f:76:29:45:98:46:7e:99:a9:17:c0:4e:8a:e4:d1:60:a0: f0:5e:17:b3:38:5d:b7:8a:03:6d:73:84:dc:65:b4:cb:cf:15: 9e:57:cc:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjQxMTIzMDMwNzExWhcNMjQxMTMwMDMwNzExWjAYMRYwFAYD VQQDEw02NzQxNDZkZi03MGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpVqGId97JPqNyHUspmsXYy94Oyj/epamnGoe2p4NDHEN0hxHjWI6YsEtm/U e3D0kzBZaF7HU+2Doec2qfd20tomiZF0w+acNeCXcnlrWkGWdqWgmQzAyWj3wyn8 8IBBt13Xo+gpwTf2wkY2uwoCjJNLxSQYciqtEUu9TpTITERtpajBt8FWUFR5eN/z I2isnjWujXsfLLv4Fet6dl6ixtXfev9q8dkw/V3g4sCohG3VTwOtJRqVhJWhZN8G QxXh+/VK5+Pn5uMGF4Q8ultLDIwBAYqmBoAYHoF1zcHvjNWHNEb5jQQzGgu2p7VD BWngMrwCt/KQkF+W4ZmfT1nD9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqmSgoi Y0HINWr7pP88VMGlEUtYMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkkjzcZd+X4iXc8XkNTsZRY2zh7aVVkEpdbwt8HMErN1lzwsf0sWCE batcBLfN0xe7vcmbcfWfsAvOjyH42jxZFgde3lpV7xBJp0d16XdRt2cfEBiQ+sGL EqxJ1y1WWDDBKKR+rsS9oXkwvNrJF/xXrYCpuIjMOV/IMheJK8RiwLlDUzy+h/cG wKqcKHyhKpieMhFleDuzO5eVLLnDVqFkck9iAjgC4NZZJ5c8bHpBGHScqGMRGVW0 Yn3NQnOUmlYEUpRbLB15k6OfSraBUtVBe63T7NzrhStBf3YpRZhGfpmpF8BOiuTR YKDwXhezOF23igNtc4TcZbTLzxWeV8z+ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org