$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: dVeuMQvs4tRmLNUDEQGbjzYcZw/bV3P2mCbC4pAIL6g= Subject key identifier: 66:03:C3:10:92:93:2B:0F:57:E7:2A:7D:27:42:00:4E:25:CB:83:F1 Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1B7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1B6E Signing time: Fri 22 Nov 2024 16:15:42 +0000 Manifest this update: Fri 22 Nov 2024 16:15:41 +0000 Manifest next update: Fri 29 Nov 2024 16:15:41 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: XMILvkPs1OkLkpZgjXYP3lecxFKOpLqWhxnFgY6TcM4=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7035 (0x1b7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: Nov 22 16:15:41 2024 GMT Not After : Nov 29 16:15:41 2024 GMT Subject: CN=6740ae2d-765f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3a:c4:3a:4f:eb:46:96:1c:a7:c0:8b:7b:da: fd:36:a5:90:ac:69:a6:79:a4:c6:f0:94:a5:11:00: fb:1f:2a:b6:c7:28:42:a8:6c:18:76:6f:ef:b8:a6: d6:de:93:e3:9f:b7:f1:cd:06:af:86:3b:ac:e9:1c: d3:b3:8b:54:00:f1:45:a1:e8:9c:eb:a9:b3:4e:94: 88:d6:13:f2:d3:a8:64:ba:14:b1:4a:89:c3:ae:2b: be:79:bc:3f:97:cc:ae:7e:74:2c:09:d9:34:2f:a8: 03:c8:45:e2:bf:43:0f:84:35:e7:b6:40:b1:29:33: 4b:2f:94:aa:98:be:f9:11:16:c1:4d:c8:61:24:c9: 19:37:42:2a:6f:b9:f1:bc:cf:6d:e9:45:6d:03:ec: 8b:1d:18:f3:17:52:67:95:f2:fb:ad:2a:82:26:c2: 0e:06:10:63:00:cc:27:8f:ec:66:9b:9d:79:e4:56: 19:11:63:b4:53:55:c4:06:95:50:15:cc:30:5f:65: a3:38:d8:1f:96:45:9d:63:9f:9b:a0:28:35:7c:f4: e8:46:89:06:ce:44:27:9f:df:1d:6a:73:3d:d6:fd: 35:ab:1a:a3:53:7c:e0:55:c1:88:e0:7e:99:b7:7f: c6:89:2d:70:11:5b:ff:cc:66:75:2c:cf:01:9c:83: c6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:03:C3:10:92:93:2B:0F:57:E7:2A:7D:27:42:00:4E:25:CB:83:F1 X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:79:20:99:d0:2a:6c:67:75:4b:82:01:6c:70:ce:40:21:62: 4f:31:21:a1:4c:a8:d1:3c:a5:e7:b3:79:24:20:fb:60:60:6f: e2:f5:c9:22:35:b2:1b:e6:c0:db:98:05:c2:a1:05:22:a8:ca: 17:17:45:22:a9:52:4e:45:ef:e3:32:f8:61:0a:f3:9f:45:f3: 8a:a1:49:65:35:d2:c6:c1:d9:0f:31:fb:c9:3c:fa:b9:6f:ce: 92:44:95:0f:03:67:9c:98:59:e5:93:f3:26:bb:f5:de:bc:d1: 04:95:c4:ab:6b:8d:13:5b:81:4a:21:34:5d:5b:0f:7b:d3:09: 0e:f8:00:a4:71:2e:66:aa:27:f3:a3:80:18:f1:23:a3:5f:38: 76:37:01:bc:4c:ef:a8:63:0a:86:31:bf:3c:34:ab:f8:c0:6e: c8:2e:e9:4e:df:68:2b:1c:4f:c4:30:21:31:03:ea:07:fe:83: e2:b5:fc:49:0c:f2:38:37:a2:db:3b:c9:10:61:72:a9:f8:9c: e1:cc:a1:6c:e6:f8:0f:5a:a1:4b:62:50:1f:25:8f:96:56:41: 18:91:06:02:5e:76:27:bc:c1:3c:14:69:6a:62:17:84:7c:b5: cb:cf:6c:19:c4:87:5b:b4:15:c6:99:64:07:c6:ba:b2:1f:c3: 4d:22:8e:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjQxMTIyMTYxNTQxWhcNMjQxMTI5MTYxNTQxWjAYMRYwFAYD VQQDEw02NzQwYWUyZC03NjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jrEOk/rRpYcp8CLe9r9NqWQrGmmeaTG8JSlEQD7Hyq2xyhCqGwYdm/vuKbW 3pPjn7fxzQavhjus6RzTs4tUAPFFoeic66mzTpSI1hPy06hkuhSxSonDriu+ebw/ l8yufnQsCdk0L6gDyEXiv0MPhDXntkCxKTNLL5SqmL75ERbBTchhJMkZN0Iqb7nx vM9t6UVtA+yLHRjzF1JnlfL7rSqCJsIOBhBjAMwnj+xmm5155FYZEWO0U1XEBpVQ FcwwX2WjONgflkWdY5+boCg1fPToRokGzkQnn98danM91v01qxqjU3zgVcGI4H6Z t3/GiS1wEVv/zGZ1LM8BnIPGywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYDwxCS kysPV+cqfSdCAE4ly4PxMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIeSCZ0CpsZ3VLggFscM5AIWJPMSGhTKjRPKXns3kkIPtgYG/i9cki NbIb5sDbmAXCoQUiqMoXF0UiqVJORe/jMvhhCvOfRfOKoUllNdLGwdkPMfvJPPq5 b86SRJUPA2ecmFnlk/Mmu/XevNEElcSra40TW4FKITRdWw970wkO+ACkcS5mqifz o4AY8SOjXzh2NwG8TO+oYwqGMb88NKv4wG7ILulO32grHE/EMCExA+oH/oPitfxJ DPI4N6LbO8kQYXKp+JzhzKFs5vgPWqFLYlAfJY+WVkEYkQYCXnYnvME8FGlqYheE fLXLz2wZxIdbtBXGmWQHxrqyH8NNIo5m -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org