$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft File: 7bQ_87hP5VlboMvE9ruHNxPkG7I.mft (raw, json) Hash identifier: bSwiWB0Mzai0C60Iio7VrsqKkgSGA4W1UhYk0/4LpmU= Subject key identifier: A6:1C:8F:36:75:0C:B0:DF:47:B3:C3:91:3F:FB:22:3D:82:29:8D:C3 Authority key identifier: ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 Certificate issuer: /CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Certificate serial: 0642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft Manifest number: 063B Signing time: Fri 22 Nov 2024 22:03:47 +0000 Manifest this update: Fri 22 Nov 2024 22:03:46 +0000 Manifest next update: Fri 29 Nov 2024 22:03:46 +0000 Files and hashes: 1: 7bQ_87hP5VlboMvE9ruHNxPkG7I.crl (hash: x86EXSl3f1JXY5UNf1Gd6M8bxUdZhkGr9bUXmO+DKFo=) 2: 44E9156C730811EC89C1CE31C4F9AE02.roa (hash: 3P7zE+Wtx98FiHeFJ5MpJ+Mdyi0A3n8ttsX2hYFO/Pg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Validity Not Before: Nov 22 22:03:46 2024 GMT Not After : Nov 29 22:03:46 2024 GMT Subject: CN=6740ffc2-4323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7e:51:87:89:23:1b:79:24:ff:b0:5f:82:13: 6d:de:ca:f3:ee:8b:cf:85:44:7c:27:5b:c4:2a:eb: 8d:b2:59:e6:86:9b:39:a4:ba:af:7d:72:87:a4:e7: 46:91:6d:07:e1:80:79:e4:24:0f:61:ea:31:24:9a: c0:f9:f0:40:ca:24:2f:72:c7:6e:0f:94:c5:db:cc: 88:3a:d4:39:8b:45:1a:87:ee:9c:e9:ab:37:29:b6: cc:ec:d2:63:ce:44:9f:a6:09:47:69:32:ab:8f:5b: cc:6b:36:37:16:d0:84:e2:8e:e9:7f:01:d4:54:c2: e8:9c:50:f1:9f:2b:40:11:30:c0:7c:46:83:d6:d7: c3:f7:bb:fa:e3:49:8a:2a:1b:5f:1b:36:12:f5:ab: cd:97:02:39:19:83:8f:bb:60:b9:9b:79:39:12:8e: cc:f8:1a:58:9d:21:1d:aa:06:01:cd:1c:ec:f6:a6: f5:75:e9:5c:7f:f9:bf:d3:ad:bb:51:2c:6a:33:3c: 8c:dc:89:05:4e:ee:24:d6:ae:df:64:b2:b4:eb:1b: cf:58:c8:a6:63:10:cd:a2:62:d8:92:c1:ea:cb:9a: 95:3c:62:b2:e6:92:ef:96:f1:36:92:a8:35:b1:2e: 38:b7:76:31:c5:e8:c9:af:de:67:81:eb:c4:73:a6: 05:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1C:8F:36:75:0C:B0:DF:47:B3:C3:91:3F:FB:22:3D:82:29:8D:C3 X509v3 Authority Key Identifier: keyid:ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:2e:3c:96:fb:88:eb:51:45:d9:6a:fe:0f:ae:b5:36:8b:2e: d9:05:f8:57:74:80:17:76:27:3b:1c:e9:27:34:db:b8:ee:98: 05:45:3f:c6:61:bd:15:79:66:66:2e:07:97:24:a4:59:0b:f3: c0:ad:03:c6:32:77:c2:40:b7:a1:2b:de:27:ff:2e:2e:f8:c1: 6e:d0:a9:f4:a0:ac:53:b4:e3:ca:f8:e0:71:92:72:a5:ed:65: 41:8f:63:0e:c0:1d:20:6d:dc:94:19:e0:13:ff:6d:32:54:6f: 2f:33:65:5a:de:18:62:3e:57:18:5e:e7:fc:e3:c5:5a:09:ca: 69:22:80:6c:7b:87:06:f5:52:0b:ca:dc:b8:cc:82:48:6b:10: db:4d:73:1d:ca:b1:6f:9f:08:5f:7c:6e:5b:fc:06:a9:a7:a0: 9e:13:67:0d:37:2c:f4:ac:7b:30:9e:51:71:14:73:3c:da:c4: 66:e3:8f:51:92:c1:b2:1f:0d:92:95:53:6e:39:cd:f8:0c:e9: 1d:8f:37:79:cb:57:36:98:9a:81:cd:72:13:1d:ea:f4:f0:6a: 52:d5:00:f7:ac:b1:2b:94:b1:7e:87:4c:80:6f:95:5f:40:af: e0:a0:96:f5:73:06:54:32:fd:2d:92:f0:39:9a:56:44:1e:ce: 6a:c1:ef:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEODUxMTAvBgNVBAUTKEVEQjQzRkYzQjg0RkU1NTk1QkEwQ0JDNEY2QkI4NzM3 MTNFNDFCQjIwHhcNMjQxMTIyMjIwMzQ2WhcNMjQxMTI5MjIwMzQ2WjAYMRYwFAYD VQQDEw02NzQwZmZjMi00MzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsn5Rh4kjG3kk/7BfghNt3srz7ovPhUR8J1vEKuuNslnmhps5pLqvfXKHpOdG kW0H4YB55CQPYeoxJJrA+fBAyiQvcsduD5TF28yIOtQ5i0Uah+6c6as3KbbM7NJj zkSfpglHaTKrj1vMazY3FtCE4o7pfwHUVMLonFDxnytAETDAfEaD1tfD97v640mK KhtfGzYS9avNlwI5GYOPu2C5m3k5Eo7M+BpYnSEdqgYBzRzs9qb1delcf/m/0627 USxqMzyM3IkFTu4k1q7fZLK06xvPWMimYxDNomLYksHqy5qVPGKy5pLvlvE2kqg1 sS44t3YxxejJr95ngevEc6YFIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYcjzZ1 DLDfR7PDkT/7Ij2CKY3DMB8GA1UdIwQYMBaAFO20P/O4T+VZW6DLxPa7hzcT5Buy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0Q4NS83MUE2RjdENDZD NkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVWbGJvTXZFOXJ1SE54UGtH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdiUV84N2hQNVZsYm9NdkU5cnVITnhQa0c3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0Q4NS83MUE2RjdENDZDNkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVW bGJvTXZFOXJ1SE54UGtHN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWLjyW+4jrUUXZav4PrrU2iy7ZBfhXdIAXdic7HOknNNu47pgFRT/G Yb0VeWZmLgeXJKRZC/PArQPGMnfCQLehK94n/y4u+MFu0Kn0oKxTtOPK+OBxknKl 7WVBj2MOwB0gbdyUGeAT/20yVG8vM2Va3hhiPlcYXuf848VaCcppIoBse4cG9VIL yty4zIJIaxDbTXMdyrFvnwhffG5b/Aapp6CeE2cNNyz0rHswnlFxFHM82sRm449R ksGyHw2SlVNuOc34DOkdjzd5y1c2mJqBzXITHer08GpS1QD3rLErlLF+h0yAb5Vf QK/goJb1cwZUMv0tkvA5mlZEHs5qwe9G -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org