$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft File: aTtxpbXaYFTff5wNN5z1IMHI8pE.mft (raw, json) Hash identifier: hejS9YpZIuvdoIJKBNy6pHGT0UWQTQGM/z1kkhemuxg= Subject key identifier: 84:5C:93:FF:C9:9E:32:9F:2F:ED:8E:CA:40:43:56:BD:22:7E:94:3B Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 077A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft Manifest number: 0773 Signing time: Fri 22 Nov 2024 20:57:52 +0000 Manifest this update: Fri 22 Nov 2024 20:57:51 +0000 Manifest next update: Fri 29 Nov 2024 20:57:51 +0000 Files and hashes: 1: aTtxpbXaYFTff5wNN5z1IMHI8pE.crl (hash: rZDNeCS9TpBxgm1R/AcsxTYCblo1gx0isYLIhYmOwDc=) 2: D7A207C2F33611EAA449F44CC4F9AE02.roa (hash: 0YMqBzPvoFQA0axPjDRgV3CXDJ6fUaHaP0ohkfzBp/Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: Nov 22 20:57:51 2024 GMT Not After : Nov 29 20:57:51 2024 GMT Subject: CN=6740f04f-8907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:27:8e:39:a5:21:2e:a0:c8:6a:b4:f7:52:8f: ef:ef:0d:82:fd:20:88:28:7f:c5:4b:8d:e7:7b:38: 25:d8:46:83:40:71:04:9e:6a:30:9d:f2:2e:24:8d: 6f:d2:4a:6d:2a:d2:91:54:28:5e:dd:d7:13:bf:70: 1b:1f:f8:93:af:b7:9a:3e:4c:a6:c0:04:a2:5e:9e: 82:1b:a8:c5:dc:3f:10:1a:a9:f2:a0:49:e4:27:32: 55:76:00:ef:27:4f:af:29:9a:e9:1a:07:77:a9:cb: f7:c2:06:87:47:84:f9:77:f9:0f:76:1b:72:88:fa: 12:d8:db:d8:6b:70:88:d7:e0:ba:a2:f3:00:07:86: 00:9f:a5:63:d5:5c:07:2f:d0:2b:6b:51:53:e1:38: 9e:b2:56:79:98:2e:85:31:d3:30:76:aa:ec:aa:75: 14:d1:45:e6:bd:1c:46:73:56:03:24:29:9e:8d:b2: f6:92:53:00:7c:fb:d2:bd:e2:7b:cc:6a:e7:fb:20: bc:c3:34:fb:03:7e:c3:5f:2d:1d:9c:23:9c:e9:37: bf:c0:b7:e0:2d:12:21:6e:5c:c6:83:44:13:a8:bf: b8:9f:6e:d2:bf:2c:a7:98:f7:d4:f6:65:ba:2f:97: de:33:8d:7f:d2:75:d3:ed:ea:42:02:c8:69:a8:74: 6a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5C:93:FF:C9:9E:32:9F:2F:ED:8E:CA:40:43:56:BD:22:7E:94:3B X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:1c:36:9a:19:71:e2:2f:da:46:40:d9:04:a4:38:9a:ab:79: 9e:10:7d:ae:fc:e7:29:b5:0c:21:6c:18:01:6e:1b:9e:5a:67: 54:62:3e:c2:c7:20:7f:b0:3e:f1:09:21:17:2b:04:5c:1b:85: 51:1b:df:4b:48:91:da:21:30:42:c5:a8:b1:cb:93:66:4e:13: b4:b4:88:55:34:0a:14:b4:b5:75:a6:a9:52:df:b0:8a:5d:40: eb:4b:b9:a1:6b:4a:b3:39:38:63:fc:8e:6e:6d:72:36:2d:40: 9f:2f:f7:60:da:90:b8:a7:ef:32:77:0d:02:9e:5b:a3:a2:14: 35:e9:ee:e3:8f:be:d8:85:50:50:c9:f6:ed:d8:07:7c:8f:e3: 4f:b6:29:11:50:8c:89:7d:55:48:9d:bb:53:7b:ec:38:76:94: 0a:03:0a:30:99:62:43:e9:64:47:15:c8:b5:97:f6:f4:4c:c9: 55:78:30:c4:34:4b:3f:d5:54:bd:5f:2b:e0:a9:1e:7d:14:21: d9:61:42:79:b5:ac:f5:d7:1d:e6:da:32:61:3f:37:7e:62:c5: 7b:4a:42:1b:44:90:2b:4c:a8:38:36:aa:18:04:bb:09:f7:59: d2:bf:fc:1e:8a:bb:ec:7d:a3:2a:8d:12:9c:e1:7b:e1:c0:0b: 21:f1:87:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjQxMTIyMjA1NzUxWhcNMjQxMTI5MjA1NzUxWjAYMRYwFAYD VQQDEw02NzQwZjA0Zi04OTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CeOOaUhLqDIarT3Uo/v7w2C/SCIKH/FS43nezgl2EaDQHEEnmownfIuJI1v 0kptKtKRVChe3dcTv3AbH/iTr7eaPkymwASiXp6CG6jF3D8QGqnyoEnkJzJVdgDv J0+vKZrpGgd3qcv3wgaHR4T5d/kPdhtyiPoS2NvYa3CI1+C6ovMAB4YAn6Vj1VwH L9Ara1FT4TieslZ5mC6FMdMwdqrsqnUU0UXmvRxGc1YDJCmejbL2klMAfPvSveJ7 zGrn+yC8wzT7A37DXy0dnCOc6Te/wLfgLRIhblzGg0QTqL+4n27SvyynmPfU9mW6 L5feM41/0nXT7epCAshpqHRq2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIRck//J njKfL+2OykBDVr0ifpQ7MB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REI1Mi80NUY1NTZCRUYyODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlG VGZmNXdOTjV6MUlNSEk4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwHDaaGXHiL9pGQNkEpDiaq3meEH2u/OcptQwhbBgBbhueWmdUYj7C xyB/sD7xCSEXKwRcG4VRG99LSJHaITBCxaixy5NmThO0tIhVNAoUtLV1pqlS37CK XUDrS7mha0qzOThj/I5ubXI2LUCfL/dg2pC4p+8ydw0CnlujohQ16e7jj77YhVBQ yfbt2Ad8j+NPtikRUIyJfVVInbtTe+w4dpQKAwowmWJD6WRHFci1l/b0TMlVeDDE NEs/1VS9XyvgqR59FCHZYUJ5taz11x3m2jJhPzd+YsV7SkIbRJArTKg4NqoYBLsJ 91nSv/weirvsfaMqjRKc4XvhwAsh8YdI -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org