$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft File: 1pYa2ozVd8wz1xqaLcgbDBklrJg.mft (raw, json) Hash identifier: UdpNFv+kRArlYaX5PhVsJKCbabcSIk8acCkF1SElngA= Subject key identifier: E4:9C:53:AD:E7:35:1C:81:76:2C:20:BB:0C:14:A5:41:DA:84:1B:C1 Authority key identifier: D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 Certificate issuer: /CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft Manifest number: 0134 Signing time: Sat 23 Nov 2024 02:47:40 +0000 Manifest this update: Sat 23 Nov 2024 02:47:40 +0000 Manifest next update: Sat 30 Nov 2024 02:47:40 +0000 Files and hashes: 1: 1pYa2ozVd8wz1xqaLcgbDBklrJg.crl (hash: EKVW2YbAt6q6MXdPR1h70POcWs28CFVcyqxxPfD8VZY=) 2: B94E87EAD44911ED88A2367FC4F9AE02.roa (hash: 95TYzLOqwMphVUCVsji8mDMvFKrsCaokY8ysHX5ZUv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Validity Not Before: Nov 23 02:47:40 2024 GMT Not After : Nov 30 02:47:40 2024 GMT Subject: CN=6741424c-090f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:77:32:47:f5:27:13:4d:36:db:ab:75:a5:f6: 2d:7c:85:ef:d2:04:97:9d:f9:b8:e3:9e:18:90:8b: 13:d3:71:cb:35:ec:a5:ff:79:75:b4:74:79:3a:8b: 51:6c:e9:c8:be:a9:a5:5e:e4:0e:2f:6f:90:ff:5f: 13:45:e1:7f:45:06:70:7f:8a:57:44:f4:21:2c:46: 1e:b0:f2:7c:f9:42:bc:cf:51:1f:3b:40:5b:e5:a5: d5:27:fa:0f:5d:d3:ce:10:26:bc:a9:f8:23:a5:77: 1d:8a:9b:b9:e8:3f:fd:7d:bb:5e:ac:87:1f:d2:29: 42:e7:6e:2b:2c:bc:d1:42:a5:ff:4f:2c:02:ed:19: f1:36:c9:48:57:5c:04:1b:00:2b:4c:08:2d:ba:7f: b3:9a:b4:87:c1:f0:e4:d2:56:41:b5:0c:9e:19:77: f7:69:09:29:87:61:c0:5c:10:e8:46:f6:9e:e8:2b: 8c:3c:b4:ba:be:84:05:aa:1a:5c:7c:ee:86:72:5f: 48:c8:e8:42:ec:28:e5:03:7d:d7:6e:0a:e6:a4:e7: f4:de:b9:f3:3b:45:86:f3:54:87:99:3b:33:49:28: 55:4b:82:6d:1c:f1:42:b1:8e:a7:12:a8:af:9e:06: f1:8e:91:14:c0:55:97:d7:b2:7e:74:ad:b8:96:e4: b9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:9C:53:AD:E7:35:1C:81:76:2C:20:BB:0C:14:A5:41:DA:84:1B:C1 X509v3 Authority Key Identifier: keyid:D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:cb:35:e5:ee:92:85:b6:d0:b1:5e:be:b5:ca:46:f6:a1:ec: 34:90:ec:27:38:da:36:47:55:5d:ab:a9:2a:85:fd:12:ef:60: 69:84:cc:3f:db:fe:a6:21:5a:3b:4e:17:c7:32:64:4c:34:68: 32:09:92:82:73:f9:e1:10:bb:c2:14:c0:60:02:98:ba:6f:98: 2d:cf:f8:50:39:d3:91:d0:a9:0c:29:12:23:ec:b5:fa:c7:35: d1:d6:6c:18:45:6b:c9:a1:f5:e3:43:43:df:6e:00:8b:90:13: c4:1a:98:88:53:ce:c4:50:1c:a5:f5:42:9e:aa:7b:70:0a:17: 59:e4:6b:4b:fc:27:18:03:7c:4a:8d:eb:22:4e:59:d7:80:73: 3d:02:f9:1f:b7:5a:b7:3b:ce:3d:d5:aa:9d:66:66:31:f8:d8: 46:e1:bd:9c:bf:fd:89:f8:ec:4d:d0:1b:dc:d1:37:ac:10:de: 2d:1d:82:c7:ff:41:a5:0c:5d:66:79:2d:0b:94:79:8a:2c:ec: bc:93:c6:3a:c1:3f:c8:49:6a:28:05:03:ce:5a:47:89:f0:9b: 0e:09:21:79:c0:1e:2b:44:8b:38:06:26:8d:3d:7c:d6:97:04: 4d:c1:66:dd:b9:91:a2:3f:b7:86:2f:a2:fc:2d:ad:e4:4c:3d: 67:8c:a1:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTgxMTAvBgNVBAUTKEQ2OTYxQURBOENENTc3Q0MzM0Q3MUE5QTJEQzgxQjBD MTkyNUFDOTgwHhcNMjQxMTIzMDI0NzQwWhcNMjQxMTMwMDI0NzQwWjAYMRYwFAYD VQQDEw02NzQxNDI0Yy0wOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzncyR/UnE00226t1pfYtfIXv0gSXnfm4454YkIsT03HLNeyl/3l1tHR5OotR bOnIvqmlXuQOL2+Q/18TReF/RQZwf4pXRPQhLEYesPJ8+UK8z1EfO0Bb5aXVJ/oP XdPOECa8qfgjpXcdipu56D/9fbterIcf0ilC524rLLzRQqX/TywC7RnxNslIV1wE GwArTAgtun+zmrSHwfDk0lZBtQyeGXf3aQkph2HAXBDoRvae6CuMPLS6voQFqhpc fO6Gcl9IyOhC7CjlA33XbgrmpOf03rnzO0WG81SHmTszSShVS4JtHPFCsY6nEqiv ngbxjpEUwFWX17J+dK24luS5YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOScU63n NRyBdiwguwwUpUHahBvBMB8GA1UdIwQYMBaAFNaWGtqM1XfMM9cami3IGwwZJayY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBOC8wNTY2MDkyNkQ0 NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4d3oxeHFhTGNnYkRCa2xy SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwWWEyb3pWZDh3ejF4cWFMY2diREJrbHJKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBOC8wNTY2MDkyNkQ0NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4 d3oxeHFhTGNnYkRCa2xySmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByyzXl7pKFttCxXr61ykb2oew0kOwnONo2R1Vdq6kqhf0S72BphMw/ 2/6mIVo7ThfHMmRMNGgyCZKCc/nhELvCFMBgApi6b5gtz/hQOdOR0KkMKRIj7LX6 xzXR1mwYRWvJofXjQ0PfbgCLkBPEGpiIU87EUByl9UKeqntwChdZ5GtL/CcYA3xK jesiTlnXgHM9Avkft1q3O8491aqdZmYx+NhG4b2cv/2J+OxN0Bvc0TesEN4tHYLH /0GlDF1meS0LlHmKLOy8k8Y6wT/ISWooBQPOWkeJ8JsOCSF5wB4rRIs4BiaNPXzW lwRNwWbduZGiP7eGL6L8La3kTD1njKGn -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org