$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: H0ubmvIBPjK/0snoPrkqDCEG7nN1XFxo5lta+7xLA6M= Subject key identifier: 48:13:69:10:C9:E3:47:06:E7:A0:35:26:6E:F1:0F:5D:94:C8:87:7B Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2361 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 2334 Signing time: Fri 22 Nov 2024 15:50:17 +0000 Manifest this update: Fri 22 Nov 2024 15:50:16 +0000 Manifest next update: Fri 29 Nov 2024 15:50:16 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: cZc7UYIFIvu5sKqVGSDD2FM5LNXueRmmKdhP8yM0Pn8=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: vb5cHcm55U7pljjzoO4g9FNB1flb1KgvWDDtM0SHGvU=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: SI+LLofCjizJ4ADDiYbKrAg1//cncoxs2Ga5Zj0MMu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9057 (0x2361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Nov 22 15:50:16 2024 GMT Not After : Nov 29 15:50:16 2024 GMT Subject: CN=6740a838-5303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:e3:16:29:ac:3d:68:74:e2:4e:35:07:9f: a2:de:76:d2:3d:a8:87:e0:27:b9:de:47:a6:a4:b5: 74:3f:8d:c5:55:51:ae:37:cd:ba:a6:18:b4:7a:91: 0b:7e:cc:a0:84:00:2d:04:a5:55:76:55:a9:ee:74: 83:22:0f:3f:b5:3e:ac:01:71:37:b5:bc:bb:ca:92: bb:e6:4e:72:25:52:63:d8:41:ea:e8:88:43:38:57: c7:67:d2:9a:25:f9:3c:d2:a2:68:07:a1:e7:a2:c3: 0d:44:94:f6:8c:dd:de:3f:c1:e5:f4:f3:99:ac:2a: b5:67:86:5a:57:8a:27:a3:df:ae:85:92:70:75:a0: 3a:2b:08:a3:30:f9:86:43:9c:20:76:26:f1:e3:3d: d3:ae:22:bd:4b:e7:2b:df:0a:19:3a:ab:00:3b:eb: df:fa:7e:d3:7a:a5:a8:c4:0d:68:c3:d8:78:91:d8: 61:51:d7:7e:d5:2b:03:35:06:00:ac:7d:98:30:da: 37:8e:0c:4e:bf:d4:66:9b:36:6f:c6:79:df:02:d7: 99:72:8a:55:36:a6:9a:54:57:23:52:31:b9:5b:e6: b5:73:54:ad:b6:59:c3:23:d7:af:f1:0f:c5:20:04: 42:68:f9:54:37:e0:71:b9:ec:d4:48:13:27:8d:3e: de:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:13:69:10:C9:E3:47:06:E7:A0:35:26:6E:F1:0F:5D:94:C8:87:7B X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:6e:2a:1b:8c:3e:36:02:f4:30:75:25:ce:80:7b:41:79:39: 01:b2:ee:73:5b:93:aa:5c:e2:e3:ab:45:af:3b:6a:e7:02:42: 27:0d:ec:e2:b3:48:d5:ab:05:2f:3d:e4:03:09:ae:76:fe:84: 69:22:df:d4:45:cf:92:cb:47:8e:23:ab:60:aa:36:cf:d1:f2: 1e:51:42:2a:37:3e:5f:18:59:be:df:15:8c:2c:f9:60:4c:25: 67:32:85:75:93:6b:38:42:d0:ef:eb:b8:df:cf:59:2a:98:80: 1b:3e:0b:c2:74:40:ce:e5:ec:38:3f:48:f4:e8:5d:c1:b4:e2: 61:6d:31:7c:a4:1f:7c:5a:6e:40:9d:c7:12:25:d6:eb:f7:94: 82:14:2d:32:53:ef:61:94:7f:76:ae:e2:10:7b:99:de:ce:33: a6:dc:c8:cf:77:ed:65:d4:b6:47:bc:5e:3d:c4:bd:09:45:4f: f2:c3:22:44:38:52:8d:7f:a1:44:ea:3e:55:72:ae:e5:4d:ef: b0:6d:e0:72:b1:dd:e2:01:9b:2e:17:39:27:e5:f5:e4:f3:25: dc:61:eb:16:2d:0f:03:5a:e3:1a:90:d9:e0:50:5b:45:68:b2: 3f:e1:a2:e1:8e:57:f0:ae:e7:c3:c4:23:d4:f3:ba:34:93:cd: 6c:8b:9e:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjQxMTIyMTU1MDE2WhcNMjQxMTI5MTU1MDE2WjAYMRYwFAYD VQQDEw02NzQwYTgzOC01MzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/njFimsPWh04k41B5+i3nbSPaiH4Ce53kempLV0P43FVVGuN826phi0epEL fsyghAAtBKVVdlWp7nSDIg8/tT6sAXE3tby7ypK75k5yJVJj2EHq6IhDOFfHZ9Ka Jfk80qJoB6HnosMNRJT2jN3eP8Hl9POZrCq1Z4ZaV4ono9+uhZJwdaA6KwijMPmG Q5wgdibx4z3TriK9S+cr3woZOqsAO+vf+n7TeqWoxA1ow9h4kdhhUdd+1SsDNQYA rH2YMNo3jgxOv9RmmzZvxnnfAteZcopVNqaaVFcjUjG5W+a1c1SttlnDI9ev8Q/F IARCaPlUN+BxuezUSBMnjT7eXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgTaRDJ 40cG56A1Jm7xD12UyId7MB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjbiobjD42AvQwdSXOgHtBeTkBsu5zW5OqXOLjq0WvO2rnAkInDezi s0jVqwUvPeQDCa52/oRpIt/URc+Sy0eOI6tgqjbP0fIeUUIqNz5fGFm+3xWMLPlg TCVnMoV1k2s4QtDv67jfz1kqmIAbPgvCdEDO5ew4P0j06F3BtOJhbTF8pB98Wm5A nccSJdbr95SCFC0yU+9hlH92ruIQe5nezjOm3MjPd+1l1LZHvF49xL0JRU/ywyJE OFKNf6FE6j5Vcq7lTe+wbeBysd3iAZsuFzkn5fXk8yXcYesWLQ8DWuMakNngUFtF aLI/4aLhjlfwrufDxCPU87o0k81si57j -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org