$ rpki-client -vvf rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft File: 8qiUEKVLBHj2ArcxIAUVHClcc3k.mft (raw, json) Hash identifier: cwezxu+Ylkz6a/q4bQxhKFkstHGiWOri6VPl8pquC0o= Subject key identifier: DA:28:5F:C7:20:9B:D5:2D:53:46:4B:30:41:A2:A0:79:74:FF:41:29 Authority key identifier: F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79 Certificate issuer: /CN=A9175300/serialNumber=F2A89410A54B0478F602B7312005151C295C7379 Certificate serial: 0C4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft Manifest number: 0C45 Signing time: Fri 22 Nov 2024 18:09:43 +0000 Manifest this update: Fri 22 Nov 2024 18:09:43 +0000 Manifest next update: Fri 29 Nov 2024 18:09:43 +0000 Files and hashes: 1: 8qiUEKVLBHj2ArcxIAUVHClcc3k.crl (hash: /Eo2qEdKdJjXxCDvVGW/bvqy7JvZqppn5XOyLxjNkKY=) 2: 68EB3B00F18E11E997528762C4F9AE02.roa (hash: g99vYIlBB0cqZeMEiHdeFvS6arbrwduo3e2WdyIrbPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.crl rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3147 (0xc4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175300/serialNumber=F2A89410A54B0478F602B7312005151C295C7379 Validity Not Before: Nov 22 18:09:43 2024 GMT Not After : Nov 29 18:09:43 2024 GMT Subject: CN=6740c8e7-4bd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:21:35:7c:51:fe:33:4a:64:fb:1f:af:eb:7d: 97:7d:d8:4d:2e:77:52:83:15:b4:a4:93:96:1d:f1: 8f:b2:d2:c1:83:98:01:9c:3c:a4:ce:ad:7a:f4:99: a8:5e:33:e6:66:36:78:0d:cf:36:96:a9:45:3f:8b: ec:9f:10:c2:78:13:f1:2e:a1:d1:d8:0c:fb:9a:98: f1:12:e2:24:c7:f6:e2:8f:8b:d6:b7:e1:a9:f1:9c: 7e:d5:a6:cf:90:42:97:a1:26:f3:d4:a5:80:57:9e: dd:89:ba:6f:ab:24:0b:dc:71:4e:e0:e4:dc:c0:c0: 2e:16:14:90:58:1d:89:de:eb:36:83:de:d4:4d:80: b9:0e:c8:b7:40:ad:4a:14:e2:4f:eb:ea:bb:d3:c1: 4d:23:72:42:5f:c7:96:a3:b1:7b:15:31:1e:83:a4: 60:82:eb:42:35:fc:42:62:b1:1d:ca:91:f8:53:7e: ab:89:74:e0:90:04:b2:28:c1:2e:4c:cf:6b:17:4e: 94:ef:c3:c1:c5:1c:11:fe:63:5a:85:a8:5a:2d:9a: 14:f9:bd:0a:78:9a:a0:56:86:57:eb:e5:3c:dd:c6: cc:41:86:fb:cf:d5:b8:0e:09:54:59:cb:c3:43:9e: 04:ab:aa:bf:89:4f:41:cb:e1:84:e2:4c:9e:e3:58: f8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:28:5F:C7:20:9B:D5:2D:53:46:4B:30:41:A2:A0:79:74:FF:41:29 X509v3 Authority Key Identifier: keyid:F2:A8:94:10:A5:4B:04:78:F6:02:B7:31:20:05:15:1C:29:5C:73:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8qiUEKVLBHj2ArcxIAUVHClcc3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175300/5EFAD764F18D11E9AD75B860C4F9AE02/8qiUEKVLBHj2ArcxIAUVHClcc3k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:fe:96:21:8b:bc:bc:6a:41:24:e4:1b:32:e9:e6:7f:3b:85: 89:c9:bd:c7:ed:b1:85:bf:a7:5b:59:84:47:3e:13:2f:66:87: 98:cc:4f:5b:5c:00:f8:5d:ee:4c:31:5e:9f:f2:f9:28:ba:b9: 9d:73:d4:47:b2:ce:14:49:2d:c8:fb:62:b5:ae:24:f2:91:05: 8b:11:80:49:02:d3:12:2a:36:92:32:2d:de:44:40:be:a7:63: b6:8d:a6:9c:70:98:5e:35:9c:93:dc:22:74:5b:cf:e8:81:1d: d0:31:dc:5e:ea:b1:5d:ed:b3:b7:cb:49:31:e9:32:67:15:c9: 1e:ba:27:ae:00:14:b6:05:16:6a:96:8d:ea:e8:02:c0:a2:3b: 22:97:54:8b:0b:f6:be:ad:9d:26:99:d8:bc:25:9b:92:1b:48: 4a:c7:84:11:90:20:9e:e4:12:45:08:50:ab:4c:d0:f5:4e:3a: 9f:1b:2c:76:5b:2b:68:e9:1a:c3:61:04:af:2d:6f:a6:dd:47: 89:9f:60:b6:38:e9:5d:3e:8a:c9:52:fe:8d:ef:1c:fc:d3:9d: 3e:88:56:b3:a1:71:67:5a:06:d7:c1:9e:ad:34:bf:25:ad:b7: cc:d5:f5:01:9c:b4:46:19:f1:f8:e7:65:15:a7:5d:3a:28:b0: 74:a8:b2:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMDAxMTAvBgNVBAUTKEYyQTg5NDEwQTU0QjA0NzhGNjAyQjczMTIwMDUxNTFD Mjk1QzczNzkwHhcNMjQxMTIyMTgwOTQzWhcNMjQxMTI5MTgwOTQzWjAYMRYwFAYD VQQDEw02NzQwYzhlNy00YmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyE1fFH+M0pk+x+v632XfdhNLndSgxW0pJOWHfGPstLBg5gBnDykzq169Jmo XjPmZjZ4Dc82lqlFP4vsnxDCeBPxLqHR2Az7mpjxEuIkx/bij4vWt+Gp8Zx+1abP kEKXoSbz1KWAV57dibpvqyQL3HFO4OTcwMAuFhSQWB2J3us2g97UTYC5Dsi3QK1K FOJP6+q708FNI3JCX8eWo7F7FTEeg6RggutCNfxCYrEdypH4U36riXTgkASyKMEu TM9rF06U78PBxRwR/mNahahaLZoU+b0KeJqgVoZX6+U83cbMQYb7z9W4DglUWcvD Q54Eq6q/iU9By+GE4kye41j4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNooX8cg m9UtU0ZLMEGioHl0/0EpMB8GA1UdIwQYMBaAFPKolBClSwR49gK3MSAFFRwpXHN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwMC81RUZBRDc2NEYx OEQxMUU5QUQ3NUI4NjBDNEY5QUUwMi84cWlVRUtWTEJIajJBcmN4SUFVVkhDbGNj M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhxaVVFS1ZMQkhqMkFyY3hJQVVWSENsY2Mzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTMwMC81RUZBRDc2NEYxOEQxMUU5QUQ3NUI4NjBDNEY5QUUwMi84cWlVRUtWTEJI ajJBcmN4SUFVVkhDbGNjM2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv/pYhi7y8akEk5Bsy6eZ/O4WJyb3H7bGFv6dbWYRHPhMvZoeYzE9b XAD4Xe5MMV6f8vkourmdc9RHss4USS3I+2K1riTykQWLEYBJAtMSKjaSMi3eREC+ p2O2jaaccJheNZyT3CJ0W8/ogR3QMdxe6rFd7bO3y0kx6TJnFckeuieuABS2BRZq lo3q6ALAojsil1SLC/a+rZ0mmdi8JZuSG0hKx4QRkCCe5BJFCFCrTND1TjqfGyx2 Wyto6RrDYQSvLW+m3UeJn2C2OOldPorJUv6N7xz8050+iFazoXFnWgbXwZ6tNL8l rbfM1fUBnLRGGfH452UVp106KLB0qLKA -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org