$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: 3c6yPGA81KtVLyk0OcO4WnR6gPJ6L4eyU32lUcaKQ68= Subject key identifier: F4:BD:87:D2:98:9C:12:CF:02:82:0C:A5:12:BE:5C:E0:B1:17:28:8B Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0BE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0BDD Signing time: Fri 22 Nov 2024 18:28:15 +0000 Manifest this update: Fri 22 Nov 2024 18:28:14 +0000 Manifest next update: Fri 29 Nov 2024 18:28:14 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: Tyrhq5uj45yrRh7DrObI6KVXPV8B7wdMPC2cy8fq0Bg=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: 98z7eq8qy5jy8+qW71SkmYvKbgUCe8/WSIk7jnhoIiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3045 (0xbe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: Nov 22 18:28:14 2024 GMT Not After : Nov 29 18:28:14 2024 GMT Subject: CN=6740cd3e-3dba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:82:7f:ce:14:2e:4a:57:21:9d:60:1f:c9: 0d:6c:21:19:09:c7:58:12:22:6a:b1:4d:a3:23:db: 98:02:a4:2d:cb:8c:cb:b8:37:86:76:49:eb:98:bb: 3f:eb:9a:bd:b4:66:fc:11:f2:80:c4:be:0c:d3:d7: 44:56:1e:4e:45:3e:f7:60:f9:72:e7:cb:71:f6:db: 1a:f9:12:43:0b:81:90:94:d9:2e:95:a1:bd:76:63: 49:84:40:d8:cd:1d:29:2b:db:2e:89:3e:e2:67:f9: 4c:76:bc:13:19:4c:a4:9e:8d:23:94:34:cc:70:63: e1:c7:8c:1c:a2:ad:5d:cb:a2:9c:ba:96:e7:5e:91: 34:97:7d:bc:15:98:ca:84:73:d7:a4:3a:9d:e6:c2: eb:9d:b7:47:01:c8:36:f5:05:e7:9d:b0:e1:ae:ec: 9d:89:50:f2:15:67:a2:e3:7b:09:b0:26:97:8e:78: 45:29:18:29:4b:f3:26:e3:52:a4:56:49:39:8f:99: b4:59:81:fb:10:40:aa:1b:62:22:7c:d9:29:1c:35: 21:28:a0:c2:cd:6b:a4:db:1f:a1:88:71:51:86:36: e5:46:08:76:52:d4:2a:01:22:36:99:87:e8:4a:38: 1d:1b:dc:39:14:d3:24:c9:98:ab:69:a9:eb:eb:60: 0e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BD:87:D2:98:9C:12:CF:02:82:0C:A5:12:BE:5C:E0:B1:17:28:8B X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:e1:07:e5:76:36:de:11:ee:1e:2b:a8:5f:1c:f7:e9:81:b1: 68:fd:dd:0f:b6:3c:d6:a0:1f:ed:04:6d:24:61:a2:cd:a0:b0: bd:45:50:bc:57:41:30:72:e2:49:19:db:00:51:28:d6:2b:a1: 00:e6:6f:df:27:14:65:c5:c6:dd:bc:c4:0a:41:66:96:76:f6: b8:e3:f7:96:d3:bc:b1:d4:f6:18:f3:ce:2b:e3:86:ce:50:c1: 5a:ad:9d:51:9b:67:aa:88:4c:73:84:f9:80:0a:4f:60:37:df: 75:2a:eb:42:c3:c5:08:94:29:2e:e3:cf:6d:0f:4c:d1:45:dd: c4:c1:ae:ce:1d:7a:5e:df:cb:1e:63:b7:a1:4e:c0:5c:35:e6: 8b:ae:a4:e8:05:d5:e3:2a:89:40:dd:b1:2c:19:79:96:e8:19: 06:cc:53:d6:07:09:e4:1b:37:8b:db:72:c2:24:ca:2d:a9:2b: 32:96:e3:ae:8d:7a:0e:3d:08:d6:cb:d2:be:0a:b7:8f:34:e1: c2:0d:01:ff:bf:5e:65:63:06:36:42:ed:bf:1a:c2:24:35:c0: 45:c6:80:ab:36:98:4c:59:ee:b5:f9:34:a4:95:a1:76:ef:ed: 02:72:9f:97:8b:a0:bb:33:93:fa:dc:53:11:6e:88:86:96:94: a0:46:3f:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjQxMTIyMTgyODE0WhcNMjQxMTI5MTgyODE0WjAYMRYwFAYD VQQDEw02NzQwY2QzZS0zZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fWCf84ULkpXIZ1gH8kNbCEZCcdYEiJqsU2jI9uYAqQty4zLuDeGdknrmLs/ 65q9tGb8EfKAxL4M09dEVh5ORT73YPly58tx9tsa+RJDC4GQlNkulaG9dmNJhEDY zR0pK9suiT7iZ/lMdrwTGUykno0jlDTMcGPhx4wcoq1dy6KcupbnXpE0l328FZjK hHPXpDqd5sLrnbdHAcg29QXnnbDhruydiVDyFWei43sJsCaXjnhFKRgpS/Mm41Kk Vkk5j5m0WYH7EECqG2IifNkpHDUhKKDCzWuk2x+hiHFRhjblRgh2UtQqASI2mYfo SjgdG9w5FNMkyZiraanr62AOKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPS9h9KY nBLPAoIMpRK+XOCxFyiLMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD4QfldjbeEe4eK6hfHPfpgbFo/d0PtjzWoB/tBG0kYaLNoLC9RVC8 V0EwcuJJGdsAUSjWK6EA5m/fJxRlxcbdvMQKQWaWdva44/eW07yx1PYY884r44bO UMFarZ1Rm2eqiExzhPmACk9gN991KutCw8UIlCku489tD0zRRd3Ewa7OHXpe38se Y7ehTsBcNeaLrqToBdXjKolA3bEsGXmW6BkGzFPWBwnkGzeL23LCJMotqSsyluOu jXoOPQjWy9K+CrePNOHCDQH/v15lYwY2Qu2/GsIkNcBFxoCrNphMWe61+TSklaF2 7+0Ccp+Xi6C7M5P63FMRboiGlpSgRj9Z -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org