$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: dHACkgJgDncGIpCh5SqIYAjLb5fw49VGu+ABa8Awya8= Subject key identifier: E1:2F:9E:83:6F:AC:0F:BF:26:91:33:BC:8E:AB:D9:1E:74:08:0D:EE Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 013B Signing time: Sat 23 Nov 2024 02:42:29 +0000 Manifest this update: Sat 23 Nov 2024 02:42:28 +0000 Manifest next update: Sat 30 Nov 2024 02:42:28 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: gYK/K3jGFMo2zu7KqDbbdelsdlKt/5Kf8HF1Tal4Vqk=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: NLCu2j7NyVCfAMNadoeiUtb8mS5PqTykxmEmvgk0+vQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Nov 23 02:42:28 2024 GMT Not After : Nov 30 02:42:28 2024 GMT Subject: CN=67414114-8004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6f:86:71:41:ed:8e:d1:a8:19:0b:02:24:ab: cf:fd:41:fc:c2:9c:2d:7a:b0:58:5f:4f:e8:e0:2c: cc:32:a7:8d:1f:23:8c:a0:40:2f:df:19:3c:3e:27: 46:e0:c8:c4:0d:1f:dc:9e:fe:8c:c0:2a:96:76:44: 8a:e9:c1:e4:97:bb:01:5c:18:81:bf:6b:44:da:bd: 4b:f2:55:1d:d1:b8:02:02:34:e6:df:25:32:5c:a8: d7:74:d4:6b:ef:37:99:25:7d:0a:74:75:5b:46:b9: 8f:78:3f:e3:99:c5:54:66:97:68:76:cc:a3:18:e8: 39:da:ae:25:77:a7:f2:72:d9:ae:87:be:0b:c6:14: 22:c8:7b:e5:00:eb:a3:ba:2e:a9:ab:f4:0d:62:d2: 00:00:9b:50:03:08:72:88:23:0c:a6:a4:5b:af:56: e3:61:b8:b9:39:ee:ee:21:05:fa:cf:52:f4:dc:78: 9b:cd:d6:02:cf:a6:f0:14:ca:ff:02:ec:4e:9e:94: a3:3b:79:b5:28:30:09:53:a8:87:e7:9e:09:8c:0a: e6:04:46:4b:11:4c:93:a6:70:5b:42:80:0d:5b:bc: 7d:1a:bd:3f:17:89:a0:b3:0b:0f:17:2c:b7:4b:6f: a5:e4:24:08:ab:51:c5:d6:29:8d:43:79:2c:a3:99: 20:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2F:9E:83:6F:AC:0F:BF:26:91:33:BC:8E:AB:D9:1E:74:08:0D:EE X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d3:69:48:fc:bf:60:75:a7:c3:77:b2:d4:4f:d4:e8:13:d1: 7e:19:82:b1:59:32:b6:42:9a:f4:e2:c1:e5:45:c1:81:2d:68: d0:b3:46:98:9b:c6:cb:b2:d1:ad:a2:cc:0d:fc:cb:6f:99:97: 24:f3:b9:e9:e5:09:2a:c3:e2:a8:a2:43:d2:d7:7d:13:99:ab: 07:ca:67:5e:01:f4:de:07:e5:11:0c:cf:28:df:1a:4d:bd:7e: e9:47:4d:7f:d8:1d:9e:2b:c2:d1:3d:7c:a1:f6:56:dd:04:96: c6:0a:44:1f:1a:27:5f:af:12:9a:db:c1:ae:d9:9b:9a:42:8e: 64:86:29:e5:ac:db:15:3f:15:e1:c5:27:f1:8e:39:c9:cd:91: 2f:6e:b4:35:14:de:2c:50:5c:1e:36:ab:e4:50:86:85:5a:dc: 81:e5:94:55:66:dd:9a:0b:e2:c0:82:27:9a:5b:d2:70:57:82: c6:f2:9c:d8:77:9a:33:d5:43:a6:f1:d7:2f:0d:52:94:23:61: 8d:64:84:5e:f3:4e:48:a6:1c:5d:54:74:9f:37:2c:06:d7:f3: 73:5b:9c:e1:96:28:d5:7c:28:b9:af:48:d4:c1:49:e4:c9:85: 60:ed:16:74:d5:4c:a4:b5:a6:ad:40:2f:99:50:41:c0:da:a4: 8e:6d:34:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjQxMTIzMDI0MjI4WhcNMjQxMTMwMDI0MjI4WjAYMRYwFAYD VQQDEw02NzQxNDExNC04MDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzW+GcUHtjtGoGQsCJKvP/UH8wpwterBYX0/o4CzMMqeNHyOMoEAv3xk8PidG 4MjEDR/cnv6MwCqWdkSK6cHkl7sBXBiBv2tE2r1L8lUd0bgCAjTm3yUyXKjXdNRr 7zeZJX0KdHVbRrmPeD/jmcVUZpdodsyjGOg52q4ld6fyctmuh74LxhQiyHvlAOuj ui6pq/QNYtIAAJtQAwhyiCMMpqRbr1bjYbi5Oe7uIQX6z1L03HibzdYCz6bwFMr/ AuxOnpSjO3m1KDAJU6iH554JjArmBEZLEUyTpnBbQoANW7x9Gr0/F4mgswsPFyy3 S2+l5CQIq1HF1imNQ3kso5kgCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEvnoNv rA+/JpEzvI6r2R50CA3uMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz02lI/L9gdafDd7LUT9ToE9F+GYKxWTK2Qpr04sHlRcGBLWjQs0aY m8bLstGtoswN/MtvmZck87np5Qkqw+KookPS130TmasHymdeAfTeB+URDM8o3xpN vX7pR01/2B2eK8LRPXyh9lbdBJbGCkQfGidfrxKa28Gu2ZuaQo5khinlrNsVPxXh xSfxjjnJzZEvbrQ1FN4sUFweNqvkUIaFWtyB5ZRVZt2aC+LAgieaW9JwV4LG8pzY d5oz1UOm8dcvDVKUI2GNZIRe805IphxdVHSfNywG1/NzW5zhlijVfCi5r0jUwUnk yYVg7RZ01UyktaatQC+ZUEHA2qSObTQz -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org