$ rpki-client -vvf rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft File: xwv3nojjEZrpa7dhopO7UaSGFzw.mft (raw, json) Hash identifier: pSuye+FXLf4+E/ePVF1KyNjv2kJ/GTy++8C7qDO9o/c= Subject key identifier: 38:C9:51:FE:D2:03:29:3D:3D:B8:3F:3F:FE:3E:F2:59:29:FC:C2:1B Authority key identifier: C7:0B:F7:9E:88:E3:11:9A:E9:6B:B7:61:A2:93:BB:51:A4:86:17:3C Certificate issuer: /CN=A9170ADF/serialNumber=C70BF79E88E3119AE96BB761A293BB51A486173C Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft Manifest number: 06C2 Signing time: Fri 22 Nov 2024 21:43:21 +0000 Manifest this update: Fri 22 Nov 2024 21:43:20 +0000 Manifest next update: Fri 29 Nov 2024 21:43:20 +0000 Files and hashes: 1: xwv3nojjEZrpa7dhopO7UaSGFzw.crl (hash: 7RcKvHrPlGyJjZLsNH4Tw0LqvNPYwwv6WD+OVx5TIvg=) 2: AC53A55C7B3611EBB7C5F122C4F9AE02.roa (hash: jT1Bl9P9Xz1bQ+LsPnCT+WT252pdmyLzXpTANcQlkCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.crl rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170ADF/serialNumber=C70BF79E88E3119AE96BB761A293BB51A486173C Validity Not Before: Nov 22 21:43:20 2024 GMT Not After : Nov 29 21:43:20 2024 GMT Subject: CN=6740faf8-c111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:da:2d:a4:d9:51:ca:03:f7:bc:77:a1:99:5b: 51:7c:82:69:bd:2e:86:33:8b:d4:15:63:6a:47:d2: 58:71:c0:a6:10:58:6c:42:fb:e1:6d:a7:59:b3:8e: 07:9d:49:11:12:95:b4:ca:6d:4b:3e:e2:6c:a2:61: cd:d1:98:d7:82:f3:75:7a:1f:51:7d:59:c0:94:ae: 0e:d5:b7:11:58:d7:04:6c:58:46:9f:fb:d4:19:cd: be:7b:73:62:a5:39:6f:a8:27:da:6f:23:d1:96:67: c6:7f:d5:46:dd:a3:0f:08:f8:76:17:6f:5a:0f:dc: 33:7b:4e:a7:f5:9a:17:8c:34:ed:e4:ef:37:c6:87: 07:bf:4e:0a:ff:72:db:6c:86:be:e7:7d:d1:08:f5: 33:09:1a:07:20:22:88:fc:35:96:c1:1c:86:fb:5b: 66:6a:12:2c:e2:49:d8:fb:3f:74:1a:03:e2:aa:37: 8f:1f:6c:82:55:a7:55:9c:ae:ae:34:de:0d:90:6d: c9:43:c2:b5:4f:52:2a:d5:17:fd:d3:ad:b3:6a:fd: 3f:5e:09:86:19:80:a7:2f:b6:88:52:bf:8b:f6:e7: e4:58:4a:1d:0d:da:73:66:f3:da:e9:b9:3b:89:4f: 89:29:e0:e5:9a:b3:d5:0c:0c:56:ee:f2:12:ab:96: f2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C9:51:FE:D2:03:29:3D:3D:B8:3F:3F:FE:3E:F2:59:29:FC:C2:1B X509v3 Authority Key Identifier: keyid:C7:0B:F7:9E:88:E3:11:9A:E9:6B:B7:61:A2:93:BB:51:A4:86:17:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwv3nojjEZrpa7dhopO7UaSGFzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170ADF/B85F0E8C3ACB11EBA225AD17C4F9AE02/xwv3nojjEZrpa7dhopO7UaSGFzw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:c9:0f:4d:83:76:5c:53:01:a5:93:1a:ff:64:3e:90:61:f6: 0a:2a:99:71:d8:45:76:61:0b:e7:a7:fe:d5:3f:42:68:9c:fc: d6:65:1b:16:1b:a6:53:d3:8c:81:66:5d:76:2d:65:6a:71:be: 1b:10:da:49:72:25:1e:91:d0:1e:fd:2d:44:bb:81:bd:df:5c: 03:6b:97:76:25:76:81:9e:21:93:d1:6f:66:d5:9d:58:23:6c: ab:9a:9f:43:17:53:c8:0d:a3:13:92:25:33:b1:4e:ea:1c:a4: e9:e4:2d:3b:b4:82:b4:d8:01:e3:f9:50:df:9e:a5:b8:d7:f3: ce:3b:57:63:c7:56:1f:be:87:65:62:92:a9:f0:f0:48:1b:6d: 70:e1:2f:98:57:50:8a:5d:c6:b2:77:af:b5:29:70:5f:c2:f6: 06:b8:4f:20:bc:be:69:7a:3c:62:95:0d:c8:24:be:37:5b:d7: 6b:8f:b7:b9:58:a3:ed:62:0c:ca:c7:31:e4:ff:f2:42:06:31: 5c:c0:bc:64:81:93:1c:e9:9b:f1:44:d5:59:f7:5d:1d:5f:67: 09:31:d0:a1:09:c7:42:bf:04:2d:5b:c8:42:f4:1d:78:51:1d: f3:ac:9e:16:7e:cd:a6:f7:9e:f3:6a:c0:7a:37:b6:28:8c:51: bb:e3:15:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBREYxMTAvBgNVBAUTKEM3MEJGNzlFODhFMzExOUFFOTZCQjc2MUEyOTNCQjUx QTQ4NjE3M0MwHhcNMjQxMTIyMjE0MzIwWhcNMjQxMTI5MjE0MzIwWjAYMRYwFAYD VQQDEw02NzQwZmFmOC1jMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdotpNlRygP3vHehmVtRfIJpvS6GM4vUFWNqR9JYccCmEFhsQvvhbadZs44H nUkREpW0ym1LPuJsomHN0ZjXgvN1eh9RfVnAlK4O1bcRWNcEbFhGn/vUGc2+e3Ni pTlvqCfabyPRlmfGf9VG3aMPCPh2F29aD9wze06n9ZoXjDTt5O83xocHv04K/3Lb bIa+533RCPUzCRoHICKI/DWWwRyG+1tmahIs4knY+z90GgPiqjePH2yCVadVnK6u NN4NkG3JQ8K1T1Iq1Rf9062zav0/XgmGGYCnL7aIUr+L9ufkWEodDdpzZvPa6bk7 iU+JKeDlmrPVDAxW7vISq5byfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjJUf7S Ayk9Pbg/P/4+8lkp/MIbMB8GA1UdIwQYMBaAFMcL956I4xGa6Wu3YaKTu1Gkhhc8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFERi9CODVGMEU4QzNB Q0IxMUVCQTIyNUFEMTdDNEY5QUUwMi94d3Yzbm9qakVacnBhN2Rob3BPN1VhU0dG encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3djNub2pqRVpycGE3ZGhvcE83VWFTR0Z6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFERi9CODVGMEU4QzNBQ0IxMUVCQTIyNUFEMTdDNEY5QUUwMi94d3Yzbm9qakVa cnBhN2Rob3BPN1VhU0dGencubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIyQ9Ng3ZcUwGlkxr/ZD6QYfYKKplx2EV2YQvnp/7VP0JonPzWZRsW G6ZT04yBZl12LWVqcb4bENpJciUekdAe/S1Eu4G931wDa5d2JXaBniGT0W9m1Z1Y I2yrmp9DF1PIDaMTkiUzsU7qHKTp5C07tIK02AHj+VDfnqW41/POO1djx1Yfvodl YpKp8PBIG21w4S+YV1CKXcayd6+1KXBfwvYGuE8gvL5pejxilQ3IJL43W9drj7e5 WKPtYgzKxzHk//JCBjFcwLxkgZMc6ZvxRNVZ910dX2cJMdChCcdCvwQtW8hC9B14 UR3zrJ4Wfs2m957zasB6N7YojFG74xWy -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:42 2024 by rpki-client on console-ams.rpki-client.org