$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: CVpKVhD7x81X9NuqMtipkk4zZ3KJiPTNcORCf//INKQ= Subject key identifier: 04:91:BD:BD:95:10:7B:2A:4E:92:84:E5:A2:A1:64:83:7D:D4:98:8F Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 0184 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 0180 Signing time: Sat 23 Nov 2024 02:02:18 +0000 Manifest this update: Sat 23 Nov 2024 02:02:17 +0000 Manifest next update: Sat 30 Nov 2024 02:02:17 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: bMwZQLWb9JeLpH3uvDTuY9HPkyjooTTagawBAlwivlg=) 2: A22C70A2601F11ED93695875C4F9AE02.roa (hash: Ww7RD/il6zMRdeDCAnlgsDDjrkoiV5raMfrc20SL4oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Nov 23 02:02:17 2024 GMT Not After : Nov 30 02:02:17 2024 GMT Subject: CN=674137a9-0254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4e:d5:f3:79:6b:ec:cb:42:2b:a6:94:bb:c5: 2d:b1:ee:c7:bf:5f:ea:22:97:10:50:ba:2a:1b:8f: fe:09:56:63:fa:ee:b9:d7:e8:bb:ea:b3:76:ef:4f: 5d:d2:a9:f2:8e:0c:2d:23:98:a0:71:5d:e0:53:a9: 06:e3:5a:06:f0:34:54:1a:60:a9:be:d1:9c:b4:67: bc:4f:c4:ea:46:0f:4e:c4:44:2b:32:55:68:0c:b5: 84:64:cc:37:4f:2c:e6:a7:c8:ad:89:f5:4b:e2:6e: d3:25:9d:cc:e8:f7:24:62:4f:b1:29:69:41:4f:ac: 99:7e:76:f8:e8:37:27:bd:9c:fc:a5:4a:2b:cd:4a: 7e:a3:79:d4:5c:9c:e3:82:3c:0b:67:9b:48:11:53: 2b:d7:6f:29:43:47:7b:1e:5f:89:76:ca:b4:bb:58: 92:47:20:26:d3:27:43:7e:f0:cc:c5:d7:c1:2f:6c: e7:29:a5:bf:54:1e:1a:a0:c6:73:3a:d8:83:16:36: 46:90:fe:5d:87:32:66:43:6a:24:bd:e2:86:62:a5: 13:f4:bd:95:7d:bc:69:12:f7:42:3c:9a:91:da:c1: b3:f2:b7:5b:db:e4:d8:20:dd:b1:70:3f:c1:10:5a: 36:4e:11:c0:40:29:eb:7d:26:b4:2a:bf:83:71:c0: 51:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:91:BD:BD:95:10:7B:2A:4E:92:84:E5:A2:A1:64:83:7D:D4:98:8F X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:1f:a4:14:e4:e1:cd:41:7e:39:6a:8d:2c:39:46:e4:d9:ff: 6b:9a:bd:8b:d3:b4:b0:02:28:e0:33:27:22:be:06:d4:07:9b: 6b:7d:ed:6a:e3:88:67:49:1b:9b:ca:34:84:8f:e1:f4:0f:f5: 3f:27:c1:18:e7:bf:6b:52:20:e6:23:e3:17:b2:87:e6:28:9f: d5:22:46:42:a6:ee:94:e8:3b:a3:d2:7a:26:c6:d3:e5:59:d0: 15:74:12:89:9a:e2:a1:58:3f:bd:90:e3:3f:7a:08:64:55:aa: 4c:73:e7:ca:b8:a7:98:97:e8:6c:35:b3:db:77:54:9f:f1:af: 34:56:ac:2d:de:09:ae:a3:56:41:83:2a:e3:9d:60:ee:a8:c8: 88:41:b0:be:02:87:ce:58:1f:ec:4c:5b:d0:ec:22:bc:99:27: 35:30:4b:09:f7:d4:50:6c:ac:51:0c:7e:ba:7d:7f:00:19:76: 72:86:0a:a5:90:24:ad:7b:61:13:6b:0c:6f:78:3e:a2:50:e4: 83:3c:44:b3:69:55:96:a8:4c:1e:0d:e6:9e:1e:63:04:1b:95: 6e:92:71:a1:2a:73:22:b4:c7:8a:90:ab:a9:5c:f7:0c:0d:17: 69:15:c6:27:bc:16:4c:2a:e3:82:59:20:51:da:fc:19:0e:91: 14:9b:6a:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjQxMTIzMDIwMjE3WhcNMjQxMTMwMDIwMjE3WjAYMRYwFAYD VQQDEw02NzQxMzdhOS0wMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3E7V83lr7MtCK6aUu8Utse7Hv1/qIpcQULoqG4/+CVZj+u651+i76rN2709d 0qnyjgwtI5igcV3gU6kG41oG8DRUGmCpvtGctGe8T8TqRg9OxEQrMlVoDLWEZMw3 Tyzmp8itifVL4m7TJZ3M6PckYk+xKWlBT6yZfnb46DcnvZz8pUorzUp+o3nUXJzj gjwLZ5tIEVMr128pQ0d7Hl+Jdsq0u1iSRyAm0ydDfvDMxdfBL2znKaW/VB4aoMZz OtiDFjZGkP5dhzJmQ2okveKGYqUT9L2VfbxpEvdCPJqR2sGz8rdb2+TYIN2xcD/B EFo2ThHAQCnrfSa0Kr+DccBRQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASRvb2V EHsqTpKE5aKhZIN91JiPMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYH6QU5OHNQX45ao0sOUbk2f9rmr2L07SwAijgMycivgbUB5trfe1q 44hnSRubyjSEj+H0D/U/J8EY579rUiDmI+MXsofmKJ/VIkZCpu6U6Duj0nomxtPl WdAVdBKJmuKhWD+9kOM/eghkVapMc+fKuKeYl+hsNbPbd1Sf8a80Vqwt3gmuo1ZB gyrjnWDuqMiIQbC+AofOWB/sTFvQ7CK8mSc1MEsJ99RQbKxRDH66fX8AGXZyhgql kCSte2ETawxveD6iUOSDPESzaVWWqEweDeaeHmMEG5VuknGhKnMitMeKkKupXPcM DRdpFcYnvBZMKuOCWSBR2vwZDpEUm2o8 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org