$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft File: aFEZgfy52vrY49MDBLtBqW-5p28.mft (raw, json) Hash identifier: SO+8xwJbi9HsL5swYWkWdC4rVhwE0y1RvudgnRq0Z0Q= Subject key identifier: 7A:8F:4E:C0:67:80:3B:E8:E8:B2:F0:C1:38:ED:BF:D4:CF:38:3A:E4 Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft Manifest number: 0428 Signing time: Fri 22 Nov 2024 23:54:11 +0000 Manifest this update: Fri 22 Nov 2024 23:54:11 +0000 Manifest next update: Fri 29 Nov 2024 23:54:11 +0000 Files and hashes: 1: aFEZgfy52vrY49MDBLtBqW-5p28.crl (hash: 6C3DlpJd7Zp39cwVwwH6LJJPFzrvwMsJGiVUpp5sr3U=) 2: 3E60217E42D211EC956C7F65C4F9AE02.roa (hash: O2wCYnsWMsNh26QO49KbMD5OdQ0wQy2zxz9/0Bjc24k=) 3: 2E971452411311EC88F4A813C4F9AE02.roa (hash: BJkoemMT/+xpo5406DrYJzR7xcCQChxSufm253c8Bjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Nov 22 23:54:11 2024 GMT Not After : Nov 29 23:54:11 2024 GMT Subject: CN=674119a3-d7eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:68:47:06:f6:eb:d2:6c:b0:4f:c0:04:8e:f6: 41:4f:6a:c4:8d:ce:74:a2:d1:8d:39:86:fc:9b:42: 5a:8e:af:e9:5f:f0:bc:34:93:69:83:fb:09:35:23: 29:62:f8:7c:23:8d:47:dd:c8:3c:b3:af:24:f7:88: 36:92:9f:97:c0:72:21:13:4a:71:12:75:f7:b8:9b: ae:40:49:12:25:b3:f3:5b:5b:a5:df:b1:b8:3a:6e: fb:77:35:0a:c2:b0:d1:64:25:a8:96:d7:30:66:bc: 2e:11:55:7f:12:33:02:39:c9:57:08:12:00:d0:cc: eb:ab:ef:86:b7:64:35:01:95:17:82:bc:da:2b:ac: 9e:21:90:22:36:ae:4b:57:f2:02:98:0e:a0:d7:39: b9:73:09:59:5b:e5:4e:67:ec:3e:9f:60:a6:75:c1: 00:27:36:6c:1a:78:ea:c8:5b:4d:42:bc:86:87:c0: 8f:54:b1:e9:ef:86:b0:6f:a8:93:d2:51:f8:52:a6: 21:f7:b7:06:93:80:87:63:7d:a5:8a:11:b1:2b:1f: 2e:80:db:66:ac:2e:3d:38:1d:80:1a:2b:91:ee:1e: 60:ca:92:89:c5:c6:b1:c2:cf:f3:0b:87:09:d6:a0: 52:76:25:b8:fb:0a:66:b8:57:1b:e9:aa:33:b8:be: 87:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8F:4E:C0:67:80:3B:E8:E8:B2:F0:C1:38:ED:BF:D4:CF:38:3A:E4 X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:00:ea:54:06:47:ba:14:1b:16:9d:b3:26:5a:45:3b:f1:ab: 5d:d1:e4:31:58:52:0c:ff:42:0c:24:38:1e:cd:4f:a0:7d:8b: d0:b8:f5:b8:57:5c:94:99:17:dd:9a:df:64:e7:b3:0b:18:09: 2c:9b:9b:db:e9:5b:27:1d:d5:5a:79:f6:be:1b:04:65:b6:f7: 8d:b0:cc:6c:df:54:8e:e0:dd:f3:ff:44:e9:bb:7d:79:b5:f9: 4c:0a:74:c3:f5:34:0e:d0:97:b3:e9:51:80:57:93:50:7d:1d: 3c:2a:67:fc:11:8b:c5:53:32:f1:62:4a:be:a1:77:cf:b0:cf: ce:0b:1e:3a:41:bc:e2:3a:09:69:50:82:e3:94:9a:f1:1c:5d: f4:4a:fb:c8:5e:aa:ef:d9:72:29:5d:e9:ee:35:c2:16:c5:0c: 81:ac:b7:ea:fb:64:05:ee:38:ec:29:27:7a:18:e5:ef:05:1c: b5:7f:81:77:e3:a3:59:07:d1:24:50:a9:6d:db:89:22:d7:d2: 9e:86:90:a3:97:55:eb:b8:d3:aa:4e:e5:b7:40:12:db:18:9e: 4f:7a:40:e0:9a:e5:ad:c2:fd:1d:11:2c:5c:f7:e1:fc:75:70: 03:de:7a:f2:bd:49:54:c7:ca:6b:70:6d:20:77:3a:62:d1:fe: 30:e7:15:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjQxMTIyMjM1NDExWhcNMjQxMTI5MjM1NDExWjAYMRYwFAYD VQQDEw02NzQxMTlhMy1kN2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA62hHBvbr0mywT8AEjvZBT2rEjc50otGNOYb8m0Jajq/pX/C8NJNpg/sJNSMp Yvh8I41H3cg8s68k94g2kp+XwHIhE0pxEnX3uJuuQEkSJbPzW1ul37G4Om77dzUK wrDRZCWoltcwZrwuEVV/EjMCOclXCBIA0Mzrq++Gt2Q1AZUXgrzaK6yeIZAiNq5L V/ICmA6g1zm5cwlZW+VOZ+w+n2CmdcEAJzZsGnjqyFtNQryGh8CPVLHp74awb6iT 0lH4UqYh97cGk4CHY32lihGxKx8ugNtmrC49OB2AGiuR7h5gypKJxcaxws/zC4cJ 1qBSdiW4+wpmuFcb6aozuL6HswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqPTsBn gDvo6LLwwTjtv9TPODrkMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTk2RC82MjAyQUEzRTQxMTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2 clk0OU1EQkx0QnFXLTVwMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhAOpUBke6FBsWnbMmWkU78atd0eQxWFIM/0IMJDgezU+gfYvQuPW4 V1yUmRfdmt9k57MLGAksm5vb6VsnHdVaefa+GwRltveNsMxs31SO4N3z/0Tpu315 tflMCnTD9TQO0Jez6VGAV5NQfR08Kmf8EYvFUzLxYkq+oXfPsM/OCx46QbziOglp UILjlJrxHF30SvvIXqrv2XIpXenuNcIWxQyBrLfq+2QF7jjsKSd6GOXvBRy1f4F3 46NZB9EkUKlt24ki19KehpCjl1XruNOqTuW3QBLbGJ5PekDgmuWtwv0dESxc9+H8 dXAD3nryvUlUx8prcG0gdzpi0f4w5xVq -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org