$ rpki-client -vvf rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft File: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft (raw, json) Hash identifier: y6EPixD6+ASFx2JVtvinMkjGZnS8ytPLTEHFs8S9fSw= Subject key identifier: 95:EE:7E:AE:35:79:D0:D2:15:7E:96:0F:92:C8:42:4A:02:F9:FB:88 Authority key identifier: FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 Certificate issuer: /CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Certificate serial: 0BE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft Manifest number: 0BE0 Signing time: Fri 22 Nov 2024 18:26:16 +0000 Manifest this update: Fri 22 Nov 2024 18:26:16 +0000 Manifest next update: Fri 29 Nov 2024 18:26:16 +0000 Files and hashes: 1: _YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl (hash: ZhZhp0YF4UqW8Y9jgpTKdzw7ujuB6zLC7RFi0B0QRu0=) 2: A2A3D38A05CE11EA80526530C4F9AE02.roa (hash: 5qzdMRlHADmRGjRZ80Eu6WYWmObO/9cRl46Cear7KnU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171064/serialNumber=FD827C026B3967E2A140D4D2314E2B0E9C047430 Validity Not Before: Nov 22 18:26:16 2024 GMT Not After : Nov 29 18:26:16 2024 GMT Subject: CN=6740ccc8-7199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0f:e8:c3:ec:d3:9b:56:82:23:24:74:c3:92: e6:60:9d:9e:f9:f1:9e:67:25:3f:0a:c0:86:3f:42: 46:19:99:31:3c:02:b8:fc:75:a6:68:e6:e3:3f:2a: 0f:6a:6e:11:c2:fa:7d:4b:61:02:fc:70:3e:e4:18: 27:f8:35:ee:4a:ac:59:65:38:6d:5d:4e:da:2f:56: 5d:0e:ac:4d:35:0c:6f:41:ad:55:79:3c:47:cc:16: 2f:60:e6:d8:15:8f:1a:32:56:d8:fe:ca:b6:5d:0a: 29:47:fe:73:36:d2:5f:c3:af:26:5d:dc:1a:84:3e: 91:eb:0f:21:f4:08:40:ec:3e:e2:2c:4d:79:41:6a: d7:a6:d5:09:a2:5c:25:87:61:5b:b2:4a:a4:ba:31: 9e:3d:4b:69:a8:0a:28:cd:74:2e:ba:70:ea:ef:7e: 9b:b0:12:01:ff:29:36:3f:ca:ea:7b:dd:e5:5c:c1: 44:69:95:0b:cf:4b:4d:a8:b0:93:86:d7:e1:43:9f: 5f:7e:7f:2c:d3:ab:d9:9d:f8:ad:72:f9:45:b1:23: 74:6d:21:70:44:2d:24:88:08:7f:4e:6b:51:63:8f: e7:6c:9f:42:27:4f:3e:70:57:df:9e:23:3e:f6:b6: 78:b2:2b:ff:48:59:cb:f5:e9:a8:31:8c:1f:2c:97: 99:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EE:7E:AE:35:79:D0:D2:15:7E:96:0F:92:C8:42:4A:02:F9:FB:88 X509v3 Authority Key Identifier: keyid:FD:82:7C:02:6B:39:67:E2:A1:40:D4:D2:31:4E:2B:0E:9C:04:74:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171064/07639620052F11EA8A9E3947C4F9AE02/_YJ8Ams5Z-KhQNTSMU4rDpwEdDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:f0:44:da:36:22:b2:38:90:95:ac:57:53:c2:4c:61:46:99: 66:a3:8c:db:bc:5a:0f:67:c3:bb:e5:ab:a7:4c:b4:68:37:61: e0:76:95:a2:0c:a1:e4:d5:a7:ae:67:77:45:80:f6:6a:4d:90: e0:c9:eb:b4:1a:44:51:18:dc:75:f8:13:5c:b7:ef:39:bc:2a: 36:c1:08:ba:47:2c:65:78:0c:64:0e:63:b4:b6:4d:6e:b7:3d: 4b:ea:23:66:9f:9e:98:37:44:43:e4:78:ac:f2:43:96:62:3d: cc:78:8b:c9:e1:84:85:55:41:ea:d2:88:17:bf:a7:f5:ac:6b: e8:46:18:b3:20:a9:a4:ec:45:54:4b:9d:8a:21:0a:a8:d0:e8: 62:af:e1:58:2e:0c:8f:62:23:a6:8b:6a:5c:54:f0:bd:01:46: 6a:7e:49:a6:68:f9:fb:bc:f3:68:04:c0:24:0a:04:d8:7f:b7: 05:88:a4:b1:94:87:58:70:e7:13:d0:f6:2e:0e:3e:14:f2:61: 52:ae:f0:c0:c1:41:79:b7:52:17:2d:c4:3d:23:35:83:0a:a6: bc:20:42:84:40:67:38:e0:fa:8c:a2:8a:ad:63:bd:63:67:70: fc:b3:2f:4d:be:a2:29:f2:d4:7e:94:9e:5c:c2:e2:de:6c:74: 2a:e2:49:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEwNjQxMTAvBgNVBAUTKEZEODI3QzAyNkIzOTY3RTJBMTQwRDREMjMxNEUyQjBF OUMwNDc0MzAwHhcNMjQxMTIyMTgyNjE2WhcNMjQxMTI5MTgyNjE2WjAYMRYwFAYD VQQDEw02NzQwY2NjOC03MTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA/ow+zTm1aCIyR0w5LmYJ2e+fGeZyU/CsCGP0JGGZkxPAK4/HWmaObjPyoP am4Rwvp9S2EC/HA+5Bgn+DXuSqxZZThtXU7aL1ZdDqxNNQxvQa1VeTxHzBYvYObY FY8aMlbY/sq2XQopR/5zNtJfw68mXdwahD6R6w8h9AhA7D7iLE15QWrXptUJolwl h2FbskqkujGePUtpqAoozXQuunDq736bsBIB/yk2P8rqe93lXMFEaZULz0tNqLCT htfhQ59ffn8s06vZnfitcvlFsSN0bSFwRC0kiAh/TmtRY4/nbJ9CJ08+cFffniM+ 9rZ4siv/SFnL9emoMYwfLJeZFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJXufq41 edDSFX6WD5LIQkoC+fuIMB8GA1UdIwQYMBaAFP2CfAJrOWfioUDU0jFOKw6cBHQw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTA2NC8wNzYzOTYyMDA1 MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVotS2hRTlRTTVU0ckRwd0Vk REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZSjhBbXM1Wi1LaFFOVFNNVTRyRHB3RWREQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTA2NC8wNzYzOTYyMDA1MkYxMUVBOEE5RTM5NDdDNEY5QUUwMi9fWUo4QW1zNVot S2hRTlRTTVU0ckRwd0VkREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo8ETaNiKyOJCVrFdTwkxhRplmo4zbvFoPZ8O75aunTLRoN2HgdpWi DKHk1aeuZ3dFgPZqTZDgyeu0GkRRGNx1+BNct+85vCo2wQi6RyxleAxkDmO0tk1u tz1L6iNmn56YN0RD5His8kOWYj3MeIvJ4YSFVUHq0ogXv6f1rGvoRhizIKmk7EVU S52KIQqo0Ohir+FYLgyPYiOmi2pcVPC9AUZqfkmmaPn7vPNoBMAkCgTYf7cFiKSx lIdYcOcT0PYuDj4U8mFSrvDAwUF5t1IXLcQ9IzWDCqa8IEKEQGc44PqMooqtY71j Z3D8sy9NvqIp8tR+lJ5cwuLebHQq4kmF -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org