$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: VxPTu0QaEgW80hD+c41g6cXr0gLXzmGVZD159q/yeWw= Subject key identifier: 2F:D9:5F:A4:A3:D6:BC:0D:FC:A8:37:EF:CD:8A:D3:40:27:F1:6F:11 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0C09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0BF2 Signing time: Fri 22 Nov 2024 18:28:37 +0000 Manifest this update: Fri 22 Nov 2024 18:28:36 +0000 Manifest next update: Fri 29 Nov 2024 18:28:36 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: 7GwSQZ+K5tSe4M4QkT+hwClMZTBkoNpv3uOWDOnCm5E=) 2: 6D8B82D0D6D811EE8BBA8938C4F9AE02.roa (hash: XbQlgJ5ij8Zawt91ZOfJM2GofSHHlhd8JxuJOM9FhXM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3081 (0xc09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Nov 22 18:28:36 2024 GMT Not After : Nov 29 18:28:36 2024 GMT Subject: CN=6740cd54-abfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d1:d4:eb:35:c3:55:43:25:93:92:51:57:3c: 2e:8a:37:c4:2e:2e:85:c3:bc:c4:97:ec:f3:0d:89: 04:eb:8c:5a:1a:d8:bb:73:f9:03:77:99:cb:85:47: 1d:8e:6f:63:8a:12:c2:b5:fa:a7:80:e7:83:a7:71: 61:16:8c:69:af:d4:5c:f7:9e:db:1c:43:31:f8:5f: c7:d0:41:19:48:ab:d3:9f:6d:3a:6c:26:b7:b0:bc: 33:9e:2d:2d:af:2b:5c:a8:44:a4:7f:52:54:2f:87: 80:49:87:68:78:1a:b8:ff:bb:1f:1c:67:74:c7:03: 71:05:c0:cc:7c:08:73:b2:dd:67:69:19:d7:0c:71: c2:6e:0d:7a:ac:2b:61:3a:05:85:fc:f2:ff:d9:80: 57:11:4f:fe:0a:b1:b3:c0:a9:7b:56:f9:0f:3d:4b: 77:19:f2:10:cb:94:57:9e:88:d2:f8:fd:5c:52:11: c8:02:5e:ea:2a:c2:7a:d8:6f:8c:1a:26:69:b6:a6: 59:35:a0:95:a6:fa:ad:2d:50:a8:b8:15:1d:ad:a7: d6:6c:59:63:f2:01:32:33:f3:9e:64:a2:63:c5:1f: 89:17:39:a5:d5:3f:be:20:e5:28:cc:75:e3:d0:72: a0:b9:42:cb:9e:6d:1e:98:07:9b:71:14:95:af:21: 80:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D9:5F:A4:A3:D6:BC:0D:FC:A8:37:EF:CD:8A:D3:40:27:F1:6F:11 X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:eb:24:f3:db:be:20:ca:ce:a3:db:a4:b0:ec:b9:a8:d8:c8: 38:f5:5c:aa:d1:84:36:e9:70:5c:52:96:c8:3e:71:39:3b:a6: 7d:3a:a3:6e:97:5b:48:c4:15:c5:6e:ee:80:1a:68:16:26:50: dd:7b:f6:42:10:62:50:b1:f3:32:3e:ce:39:96:47:44:4d:50: 0f:6f:7c:3c:74:60:8d:2c:79:b3:01:9b:32:93:50:1a:32:c7: de:a4:ba:f1:f4:9b:67:ad:5d:62:f2:f7:50:68:c5:61:91:c9: dc:0b:ba:7f:04:80:3e:e6:6b:09:a0:1e:a6:98:d1:44:45:b0: f5:12:92:72:5c:26:1b:e9:1d:1e:cb:43:2a:7f:8d:dc:90:72: a7:55:5c:73:24:04:f2:0c:4a:27:3f:bf:8c:56:75:93:6a:4d: cb:98:8a:ae:ca:b0:9f:b5:b1:ef:6c:5b:d3:b6:e9:51:b3:9b: 1d:97:e2:78:f7:95:17:0a:0c:b6:f5:60:0b:17:8d:35:9e:18: a6:f7:5c:99:05:b8:e6:a9:b3:a2:3b:75:0c:c2:c9:1a:bf:a0: e1:f4:d8:ab:59:08:91:bb:e1:0b:9d:e9:e5:6f:d6:fa:4b:ca: 0b:68:24:fd:07:28:a4:67:1a:b3:e8:bc:65:31:be:06:bd:d3: 95:2a:fd:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjQxMTIyMTgyODM2WhcNMjQxMTI5MTgyODM2WjAYMRYwFAYD VQQDEw02NzQwY2Q1NC1hYmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNHU6zXDVUMlk5JRVzwuijfELi6Fw7zEl+zzDYkE64xaGti7c/kDd5nLhUcd jm9jihLCtfqngOeDp3FhFoxpr9Rc957bHEMx+F/H0EEZSKvTn206bCa3sLwzni0t rytcqESkf1JUL4eASYdoeBq4/7sfHGd0xwNxBcDMfAhzst1naRnXDHHCbg16rCth OgWF/PL/2YBXEU/+CrGzwKl7VvkPPUt3GfIQy5RXnojS+P1cUhHIAl7qKsJ62G+M GiZptqZZNaCVpvqtLVCouBUdrafWbFlj8gEyM/OeZKJjxR+JFzml1T++IOUozHXj 0HKguULLnm0emAebcRSVryGAHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/ZX6Sj 1rwN/Kg3782K00An8W8RMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAh6yTz274gys6j26Sw7Lmo2Mg49Vyq0YQ26XBcUpbIPnE5O6Z9OqNu l1tIxBXFbu6AGmgWJlDde/ZCEGJQsfMyPs45lkdETVAPb3w8dGCNLHmzAZsyk1Aa MsfepLrx9JtnrV1i8vdQaMVhkcncC7p/BIA+5msJoB6mmNFERbD1EpJyXCYb6R0e y0Mqf43ckHKnVVxzJATyDEonP7+MVnWTak3LmIquyrCftbHvbFvTtulRs5sdl+J4 95UXCgy29WALF401nhim91yZBbjmqbOiO3UMwskav6Dh9NirWQiRu+ELnenlb9b6 S8oLaCT9ByikZxqz6LxlMb4GvdOVKv1R -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org