$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: 6ZNCZTdiuBWoTcWeSCF+UHfooSchFvIQphXYOkN1dXk= Subject key identifier: 2D:89:DB:4B:F5:52:BA:58:E8:B6:C1:8A:07:95:7F:B7:09:65:C4:43 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 0457 Signing time: Fri 22 Nov 2024 23:43:29 +0000 Manifest this update: Fri 22 Nov 2024 23:43:29 +0000 Manifest next update: Fri 29 Nov 2024 23:43:29 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: OVm0OgH5oGDftQU0UeEe7myVvtvT4LqXMND64EdpbJ4=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: Pxv8dePi1EpNPNL4ZdJ0nYxVU1Z8dZuP+ncTQy+eHOw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Qsapn7T7BSoVN2a752N9muKYuA54q3bOkNtfwyaphBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Nov 22 23:43:29 2024 GMT Not After : Nov 29 23:43:29 2024 GMT Subject: CN=67411721-d0eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:be:e7:29:43:47:60:46:8d:ed:53:13:f4: 71:d8:a7:c2:5f:3e:0d:03:a4:3c:ad:89:af:73:a2: 2b:24:b4:71:99:cb:e7:a8:74:8c:b9:3a:53:1a:f0: d1:9f:95:f7:c7:bc:b4:0b:c5:a5:c0:1f:a8:6e:9d: 1e:13:4d:84:f0:8b:2c:1e:be:3d:61:68:4d:bb:7a: 89:b1:4c:87:8b:7c:54:87:52:6d:fd:09:d2:db:1f: f7:d3:b9:85:d1:30:02:d9:66:dc:77:30:a2:88:db: 57:98:2a:6a:64:5a:df:a7:66:19:e1:40:06:fe:85: ef:2d:96:c1:52:26:17:e7:72:f2:8a:ad:e6:2d:30: 79:1e:78:cf:65:96:44:9b:a4:94:6f:56:f2:5f:39: 92:26:1c:66:f6:b3:0a:f5:b7:0d:e8:05:e9:a7:62: 63:a4:63:80:cc:1c:70:81:9a:c4:59:c7:e8:fc:ac: 8d:5f:3b:f5:cd:fb:41:e8:20:78:f7:ec:96:c7:81: 3e:74:d1:6b:e4:49:80:2c:73:8d:ba:68:58:70:82: 01:ac:a4:77:8c:46:27:59:00:69:0e:f8:40:09:4b: df:be:b4:cc:3a:b7:c1:1d:1e:5d:a1:f2:2c:d2:a7: 71:82:fd:0a:23:cd:d3:c7:9a:50:84:b2:5e:f2:06: c5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:89:DB:4B:F5:52:BA:58:E8:B6:C1:8A:07:95:7F:B7:09:65:C4:43 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:e8:85:72:14:c3:7c:93:9e:c5:6c:55:8e:80:46:3a:04:17: b6:f7:18:e8:de:db:99:63:6b:7d:e7:fe:98:4e:af:cf:58:54: f5:23:33:06:eb:ba:a5:13:49:ee:94:3f:ff:7e:d8:4a:b1:6d: 6a:a5:d1:67:c4:6f:96:8a:f2:26:2e:3a:7c:1a:1a:a2:06:94: 0a:f4:73:42:a3:cf:0e:90:19:56:79:13:da:3e:88:b5:ff:f5: a7:c7:17:ee:1f:95:00:0e:40:72:6e:0c:3f:9b:44:8d:18:86: 34:15:29:ee:9b:57:95:6e:94:ea:10:06:48:31:00:08:9f:0a: a6:e4:23:6b:53:25:ea:49:66:de:e7:41:21:29:fa:c0:e3:a1: 80:72:d9:5a:ef:4d:b6:69:e5:39:b4:af:5f:91:f0:cc:ce:4a: c8:1d:61:76:47:df:33:65:65:df:5a:cb:96:40:a6:94:45:17: 07:1c:8d:a0:4e:58:ff:89:c9:67:f5:5a:22:01:76:54:c2:fa: 3b:3f:a0:53:ae:90:2e:40:63:32:03:07:62:68:ac:df:35:5b: 14:7c:07:88:8b:88:e8:dc:9e:74:c6:a2:10:35:46:48:40:6a: 69:bc:9a:85:6c:ea:59:9e:ec:18:9a:69:96:74:b9:78:c9:bf: 2a:84:41:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjQxMTIyMjM0MzI5WhcNMjQxMTI5MjM0MzI5WjAYMRYwFAYD VQQDEw02NzQxMTcyMS1kMGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSa+5ylDR2BGje1TE/Rx2KfCXz4NA6Q8rYmvc6IrJLRxmcvnqHSMuTpTGvDR n5X3x7y0C8WlwB+obp0eE02E8IssHr49YWhNu3qJsUyHi3xUh1Jt/QnS2x/307mF 0TAC2WbcdzCiiNtXmCpqZFrfp2YZ4UAG/oXvLZbBUiYX53Lyiq3mLTB5HnjPZZZE m6SUb1byXzmSJhxm9rMK9bcN6AXpp2JjpGOAzBxwgZrEWcfo/KyNXzv1zftB6CB4 9+yWx4E+dNFr5EmALHONumhYcIIBrKR3jEYnWQBpDvhACUvfvrTMOrfBHR5dofIs 0qdxgv0KI83Tx5pQhLJe8gbFVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2J20v1 UrpY6LbBigeVf7cJZcRDMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJ6IVyFMN8k57FbFWOgEY6BBe29xjo3tuZY2t95/6YTq/PWFT1IzMG 67qlE0nulD//fthKsW1qpdFnxG+WivImLjp8GhqiBpQK9HNCo88OkBlWeRPaPoi1 //WnxxfuH5UADkBybgw/m0SNGIY0FSnum1eVbpTqEAZIMQAInwqm5CNrUyXqSWbe 50EhKfrA46GActla7022aeU5tK9fkfDMzkrIHWF2R98zZWXfWsuWQKaURRcHHI2g Tlj/icln9VoiAXZUwvo7P6BTrpAuQGMyAwdiaKzfNVsUfAeIi4jo3J50xqIQNUZI QGppvJqFbOpZnuwYmmmWdLl4yb8qhEEb -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org