$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft File: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft (raw, json) Hash identifier: cIb6td4HNqh/R3oKN+IHYIIzV5776zu+Ou4Fpsj6Ejs= Subject key identifier: 19:15:9D:A8:4B:9D:58:E6:A3:50:55:4F:97:21:27:59:6E:AA:D1:BE Authority key identifier: EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 Certificate issuer: /CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Certificate serial: 0773 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft Manifest number: 076D Signing time: Fri 22 Nov 2024 20:59:11 +0000 Manifest this update: Fri 22 Nov 2024 20:59:11 +0000 Manifest next update: Fri 29 Nov 2024 20:59:11 +0000 Files and hashes: 1: 7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl (hash: JiFXlQhfNVPm0Ix7g/uvl6LyCQzY+DBV+zcw2n0gkRA=) 2: D3EE2024F42211EA8FE7AE53C4F9AE02.roa (hash: lRCubr7EYku0VIB1rDtAT6Aai84rlwXyTT83KuJ/9/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D8B/serialNumber=EF1A96D112DE1622B11C8C7E94AEB040EDD6AB00 Validity Not Before: Nov 22 20:59:11 2024 GMT Not After : Nov 29 20:59:11 2024 GMT Subject: CN=6740f09f-0b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7e:6f:43:a0:60:1e:64:0e:25:1e:d5:0d:c3: 78:7c:1c:3c:d7:07:80:68:70:8e:d1:6a:4c:42:f0: 88:3f:9c:38:cf:a6:db:67:a5:81:d8:0c:c1:85:07: 54:b1:83:99:b5:34:85:d7:7f:d9:81:b9:e4:97:ea: 1c:66:48:38:ba:a0:3e:f4:3b:30:40:2e:15:1a:00: 8d:9e:a4:7d:f7:f4:ad:21:3a:10:1b:da:9c:eb:30: 29:25:8d:97:6e:e9:1a:b6:04:4f:77:5e:54:e0:84: d8:81:37:0c:f9:d5:ed:04:c5:df:63:51:cc:c0:4b: bb:33:17:ae:e8:76:04:b0:55:fb:7a:3a:ba:9d:2c: 69:69:cb:e1:bd:43:a2:3c:df:7d:39:97:50:19:94: 19:e8:ec:b2:71:22:9d:d3:ec:a6:24:2b:bf:4e:36: fe:a9:6f:c4:55:d3:a9:d9:95:1a:cf:49:ce:17:7d: b3:cf:23:3f:f2:5b:19:e3:1c:72:4e:32:c0:c5:40: 30:5f:42:98:e2:69:cf:93:a6:90:17:2c:3b:9c:91: 0a:ba:e4:d4:d2:d7:fb:57:40:fa:b7:83:6e:a7:13: 41:07:d6:ef:10:82:55:a5:2d:08:7c:fc:86:87:f3: 0e:4e:b2:b9:3b:60:67:0a:88:1e:34:8b:c2:61:d3: 50:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:15:9D:A8:4B:9D:58:E6:A3:50:55:4F:97:21:27:59:6E:AA:D1:BE X509v3 Authority Key Identifier: keyid:EF:1A:96:D1:12:DE:16:22:B1:1C:8C:7E:94:AE:B0:40:ED:D6:AB:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7xqW0RLeFiKxHIx-lK6wQO3WqwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D8B/D00AA85CF42111EA921EFB52C4F9AE02/7xqW0RLeFiKxHIx-lK6wQO3WqwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:5f:89:fd:f4:f8:13:55:d8:67:81:62:05:92:79:2c:31:ef: 9f:a9:8b:98:d5:2d:f5:d4:4a:5b:2c:ac:ac:08:2d:be:f6:89: fb:e3:1e:fb:e5:1e:b5:4b:b3:a0:fc:2a:88:aa:24:5d:ac:ed: d5:65:69:64:8e:37:04:86:a0:9a:87:fc:58:ce:98:1c:e3:af: c0:ef:79:a2:9a:31:a8:23:5f:22:0c:18:13:18:e4:c6:89:df: a2:b8:36:ec:84:7b:d5:29:63:09:2e:c4:1d:a0:e7:c0:1d:ac: 62:b6:85:1c:ce:43:70:0c:fa:56:f3:99:e3:19:04:05:d9:67: ce:37:66:7b:d0:1e:67:7b:b0:d6:b5:89:0d:fa:d3:63:fc:b0: b1:7f:70:ff:56:bc:1e:31:ed:dd:7a:e8:1e:7f:16:dd:b2:98: 8b:55:60:a0:92:7d:50:ae:d6:f9:a1:3f:cf:b1:2c:b9:be:63: 2b:4d:6d:e4:7b:82:7f:51:c0:ee:92:6f:d9:72:ff:7f:dd:1e: 66:04:58:ca:37:73:f4:22:80:3a:a7:07:29:83:4b:c8:9e:ed: ea:23:d5:ef:e9:13:e3:7a:05:3c:64:b2:37:e0:7e:42:7d:5b: 8a:5a:7b:2f:37:31:37:f9:a2:f4:a8:b2:35:a1:f5:0d:ea:a3: da:79:59:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEOEIxMTAvBgNVBAUTKEVGMUE5NkQxMTJERTE2MjJCMTFDOEM3RTk0QUVCMDQw RURENkFCMDAwHhcNMjQxMTIyMjA1OTExWhcNMjQxMTI5MjA1OTExWjAYMRYwFAYD VQQDEw02NzQwZjA5Zi0wYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvX5vQ6BgHmQOJR7VDcN4fBw81weAaHCO0WpMQvCIP5w4z6bbZ6WB2AzBhQdU sYOZtTSF13/Zgbnkl+ocZkg4uqA+9DswQC4VGgCNnqR99/StIToQG9qc6zApJY2X bukatgRPd15U4ITYgTcM+dXtBMXfY1HMwEu7Mxeu6HYEsFX7ejq6nSxpacvhvUOi PN99OZdQGZQZ6OyycSKd0+ymJCu/Tjb+qW/EVdOp2ZUaz0nOF32zzyM/8lsZ4xxy TjLAxUAwX0KY4mnPk6aQFyw7nJEKuuTU0tf7V0D6t4NupxNBB9bvEIJVpS0IfPyG h/MOTrK5O2BnCogeNIvCYdNQzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkVnahL nVjmo1BVT5chJ1luqtG+MB8GA1UdIwQYMBaAFO8altES3hYisRyMfpSusEDt1qsA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ4Qi9EMDBBQTg1Q0Y0 MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZpS3hISXgtbEs2d1FPM1dx d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd4cVcwUkxlRmlLeEhJeC1sSzZ3UU8zV3F3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ4Qi9EMDBBQTg1Q0Y0MjExMUVBOTIxRUZCNTJDNEY5QUUwMi83eHFXMFJMZUZp S3hISXgtbEs2d1FPM1dxd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjX4n99PgTVdhngWIFknksMe+fqYuY1S311EpbLKysCC2+9on74x77 5R61S7Og/CqIqiRdrO3VZWlkjjcEhqCah/xYzpgc46/A73mimjGoI18iDBgTGOTG id+iuDbshHvVKWMJLsQdoOfAHaxitoUczkNwDPpW85njGQQF2WfON2Z70B5ne7DW tYkN+tNj/LCxf3D/VrweMe3deugefxbdspiLVWCgkn1Qrtb5oT/PsSy5vmMrTW3k e4J/UcDukm/Zcv9/3R5mBFjKN3P0IoA6pwcpg0vInu3qI9Xv6RPjegU8ZLI34H5C fVuKWnsvNzE3+aL0qLI1ofUN6qPaeVnt -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org