$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: DPcZfEdWxQhUe5i3+HdFfS4E+eo6Zh66KSiTLqMjVsM= Subject key identifier: 90:94:B1:F3:E4:B9:EC:E7:14:F7:99:CC:18:8B:9E:F1:2C:E8:99:36 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 0763 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 074F Signing time: Fri 22 Nov 2024 21:12:19 +0000 Manifest this update: Fri 22 Nov 2024 21:12:19 +0000 Manifest next update: Fri 29 Nov 2024 21:12:19 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: jJXDfec92SyDatCTshh0fFahbTm/YhRXqTUctAYFcmA=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: Vyg6+POtNSEnTBAoWuD3J5tcnzIVlgG0O+xzvLd8qPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1891 (0x763) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Nov 22 21:12:19 2024 GMT Not After : Nov 29 21:12:19 2024 GMT Subject: CN=6740f3b3-9e61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:3e:f6:39:1d:71:a7:88:f7:d9:c4:4e:ed:d5: a1:f9:20:47:15:e6:f5:ec:14:7f:75:e1:df:0a:41: fb:6e:d9:2c:2c:97:fa:bd:bd:7b:86:b8:33:46:1c: ec:b6:02:ae:4b:45:93:00:6f:25:34:95:27:19:9a: 52:74:ee:b3:dd:c7:39:2b:8b:09:9c:46:15:c0:aa: 62:21:59:9a:64:a4:6e:c0:3e:b1:5c:cc:d7:65:0c: c0:3b:26:62:74:c2:f3:72:5a:85:be:89:35:92:c4: 9e:22:5b:85:7a:27:1f:56:21:5d:71:77:fc:74:f0: 1c:66:14:66:5a:9a:d7:af:06:72:f6:28:17:ce:88: 65:7d:7e:c2:7f:32:78:4e:df:7c:fa:c0:5b:16:63: 8b:65:00:6c:f5:7b:a6:52:1d:13:a6:1d:ce:45:2e: 9b:c5:3b:74:b9:13:78:a0:79:84:4a:29:05:06:87: 9a:b3:fd:bd:83:ae:f3:5d:80:c7:77:50:a5:13:3b: a2:74:5c:70:b7:c0:39:3e:0b:50:2a:7c:46:21:05: 05:d8:be:85:b9:9e:34:60:1c:0a:42:03:76:46:e9: a5:bc:b1:ee:29:3f:28:60:43:88:53:5d:bd:c6:22: a4:3a:95:a9:ca:7e:65:be:e5:58:10:6f:1b:a1:25: d3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:94:B1:F3:E4:B9:EC:E7:14:F7:99:CC:18:8B:9E:F1:2C:E8:99:36 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:84:80:bc:b0:2e:6a:98:61:32:e2:59:f8:5a:ad:0d:aa:50: 3c:0e:e1:3c:1d:85:96:1e:f7:bb:f5:ae:69:4a:fc:f5:14:da: 29:30:eb:f6:6d:ec:3a:4d:da:ed:de:5a:c5:02:42:04:58:16: 81:ab:6b:9a:df:c7:1d:b6:9b:41:37:23:b5:44:68:fc:f2:20: 3f:86:42:fb:20:6a:b6:3a:a1:ff:e0:25:ae:1b:70:35:ae:d6: 2d:fb:82:6b:9d:73:f5:8d:bc:ce:2f:d3:79:b8:c8:c8:91:63: 3f:a7:e3:81:87:ec:f0:76:8e:62:e6:eb:86:44:f0:8b:f4:3a: ae:9f:67:3b:e0:25:4e:d8:44:20:c3:66:d1:8b:06:3e:23:5b: f2:c9:01:36:6d:bf:46:63:72:f3:2a:ae:df:ea:2c:7e:24:0b: 51:ac:7f:28:f8:00:40:7a:6f:d7:cf:b1:96:dc:8d:40:a8:ae: 3a:15:67:ec:82:b4:a3:29:6c:5b:96:17:6f:22:4f:4e:dc:dd: 32:4a:50:5e:9c:c9:b7:b1:af:85:95:9d:78:49:ad:c5:e7:76: 92:f8:81:93:de:a5:0c:a8:41:f3:0f:39:af:7a:96:68:a0:bd: c4:3f:0e:23:db:c6:81:01:aa:e1:f2:7e:cd:f5:be:de:12:37: 51:45:07:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjQxMTIyMjExMjE5WhcNMjQxMTI5MjExMjE5WjAYMRYwFAYD VQQDEw02NzQwZjNiMy05ZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4j72OR1xp4j32cRO7dWh+SBHFeb17BR/deHfCkH7btksLJf6vb17hrgzRhzs tgKuS0WTAG8lNJUnGZpSdO6z3cc5K4sJnEYVwKpiIVmaZKRuwD6xXMzXZQzAOyZi dMLzclqFvok1ksSeIluFeicfViFdcXf8dPAcZhRmWprXrwZy9igXzohlfX7CfzJ4 Tt98+sBbFmOLZQBs9XumUh0Tph3ORS6bxTt0uRN4oHmESikFBoeas/29g67zXYDH d1ClEzuidFxwt8A5PgtQKnxGIQUF2L6FuZ40YBwKQgN2RumlvLHuKT8oYEOIU129 xiKkOpWpyn5lvuVYEG8boSXT4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCUsfPk ueznFPeZzBiLnvEs6Jk2MB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXhIC8sC5qmGEy4ln4Wq0NqlA8DuE8HYWWHve79a5pSvz1FNopMOv2 bew6Tdrt3lrFAkIEWBaBq2ua38cdtptBNyO1RGj88iA/hkL7IGq2OqH/4CWuG3A1 rtYt+4JrnXP1jbzOL9N5uMjIkWM/p+OBh+zwdo5i5uuGRPCL9Dqun2c74CVO2EQg w2bRiwY+I1vyyQE2bb9GY3LzKq7f6ix+JAtRrH8o+ABAem/Xz7GW3I1AqK46FWfs grSjKWxblhdvIk9O3N0ySlBenMm3sa+FlZ14Sa3F53aS+IGT3qUMqEHzDzmvepZo oL3EPw4j28aBAarh8n7N9b7eEjdRRQd/ -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org