$ rpki-client -vvf rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft File: 9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft (raw, json) Hash identifier: aqfkiv73bnERA7BskdtOsbzbokuC9W7kaPlO2W1DXiE= Subject key identifier: EC:E8:FD:1B:A6:55:10:2E:83:51:3E:4C:5E:A6:61:17:E1:5F:3A:C4 Authority key identifier: F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4 Certificate issuer: /CN=A919834A/serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4 Certificate serial: 198F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft Manifest number: 1951 Signing time: Sun 24 Nov 2024 16:18:51 +0000 Manifest this update: Sun 24 Nov 2024 16:18:51 +0000 Manifest next update: Sun 01 Dec 2024 16:18:51 +0000 Files and hashes: 1: 9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl (hash: 74QqmCXB50PQWNxX4ipM4tde22G91Lx3roTi8SaSioo=) 2: 48EE1EC6A80311EBA56CEC52C4F9AE02.roa (hash: ycf4uNB94KvPwxW8YXzbudskFauWyZrYISPykOvSjI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6543 (0x198f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919834A/serialNumber=F625D6BFCD421BD3DB97C6959414BC70946EABC4 Validity Not Before: Nov 24 16:18:51 2024 GMT Not After : Dec 1 16:18:51 2024 GMT Subject: CN=674351eb-5538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cd:13:10:78:8c:16:8b:af:6b:2c:fe:b9:5c: d2:cb:1a:a7:8d:d7:76:71:da:75:6e:96:dd:e2:80: 21:8f:25:40:10:bd:0a:45:f8:b6:82:f9:8c:6f:11: ad:ea:2f:3c:c0:39:fa:ab:79:fc:15:33:cf:97:fe: 8b:85:1d:42:de:85:0e:ac:b9:fb:05:c8:8f:f7:43: 6b:f7:91:4d:96:b3:16:4f:15:e2:b6:44:46:0a:93: 3f:47:4f:d1:30:64:8b:10:58:c1:37:a0:3d:1d:72: 51:28:ce:38:62:98:a0:de:6b:7d:6c:41:a0:bc:3b: 3a:cd:9f:a2:c0:09:80:1c:f6:c5:d3:2f:7e:a4:90: eb:09:f9:ef:3e:c0:81:c3:81:ef:ad:0a:6a:4d:75: 12:18:ac:e7:1e:6b:e6:60:f6:56:ed:21:34:d0:a4: ba:0d:fd:28:da:cf:c2:90:be:da:88:0c:8b:10:ce: ef:fb:7f:fa:e3:5c:13:b3:c8:78:2e:af:89:2b:13: dd:08:a4:a1:57:28:30:bf:1a:db:fe:7f:45:b8:85: 4c:65:ff:dd:79:5a:68:da:40:8c:57:7c:90:a9:08: 9e:b1:97:aa:cc:a9:9b:0a:9a:33:ec:d4:a1:03:d0: b6:9e:f0:65:d7:87:74:a2:73:b6:b3:0e:2e:08:11: b7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E8:FD:1B:A6:55:10:2E:83:51:3E:4C:5E:A6:61:17:E1:5F:3A:C4 X509v3 Authority Key Identifier: keyid:F6:25:D6:BF:CD:42:1B:D3:DB:97:C6:95:94:14:BC:70:94:6E:AB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919834A/2C0474746E3511E782DEFE55C4F9AE02/9iXWv81CG9Pbl8aVlBS8cJRuq8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:55:05:7a:df:b5:d4:54:d4:5a:2d:3e:36:9a:f7:50:13:14: 0a:79:f0:b1:06:56:5e:f5:25:63:ce:b3:16:69:bb:93:25:35: ef:07:00:95:7c:30:8c:40:83:51:15:19:d2:e5:94:95:df:33: b0:a2:74:5d:fa:10:d3:b3:f6:e7:93:bf:9a:5c:65:ef:b7:ba: 6c:85:63:d1:c3:42:15:76:04:a1:38:be:4d:95:42:1b:82:eb: 54:ae:7d:ab:8c:28:20:d8:ba:5b:af:87:84:23:26:bb:e0:f5: 2a:82:72:fe:25:16:aa:2b:3b:55:0d:f1:ef:eb:bc:f9:eb:d0: 26:cd:33:f7:bc:14:df:e1:7c:e3:a9:9e:4e:e7:03:ea:99:e0: e2:2f:7f:40:12:5e:43:53:64:9d:b6:e0:a3:5f:d2:95:a1:11: e5:9a:6a:7b:12:52:c1:b9:eb:77:d7:6e:08:e6:0a:67:6a:0e: 73:a3:ae:ee:e4:9c:bb:29:ec:40:86:e0:66:99:3e:b0:3a:00: aa:c0:e4:58:89:bf:64:9f:68:a6:d4:fc:a5:a8:b8:4a:93:42: b0:96:91:72:21:2d:c1:24:fd:32:c2:c1:e4:b2:fd:9f:94:ed: 08:02:18:5e:df:c9:ca:20:27:9d:5d:19:4a:6a:6e:00:9f:02: 26:51:22:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgzNEExMTAvBgNVBAUTKEY2MjVENkJGQ0Q0MjFCRDNEQjk3QzY5NTk0MTRCQzcw OTQ2RUFCQzQwHhcNMjQxMTI0MTYxODUxWhcNMjQxMjAxMTYxODUxWjAYMRYwFAYD VQQDEw02NzQzNTFlYi01NTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts0TEHiMFouvayz+uVzSyxqnjdd2cdp1bpbd4oAhjyVAEL0KRfi2gvmMbxGt 6i88wDn6q3n8FTPPl/6LhR1C3oUOrLn7BciP90Nr95FNlrMWTxXitkRGCpM/R0/R MGSLEFjBN6A9HXJRKM44Ypig3mt9bEGgvDs6zZ+iwAmAHPbF0y9+pJDrCfnvPsCB w4HvrQpqTXUSGKznHmvmYPZW7SE00KS6Df0o2s/CkL7aiAyLEM7v+3/641wTs8h4 Lq+JKxPdCKShVygwvxrb/n9FuIVMZf/deVpo2kCMV3yQqQiesZeqzKmbCpoz7NSh A9C2nvBl14d0onO2sw4uCBG3XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzo/Rum VRAug1E+TF6mYRfhXzrEMB8GA1UdIwQYMBaAFPYl1r/NQhvT25fGlZQUvHCUbqvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODM0QS8yQzA0NzQ3NDZF MzUxMUU3ODJERUZFNTVDNEY5QUUwMi85aVhXdjgxQ0c5UGJsOGFWbEJTOGNKUnVx OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlpWFd2ODFDRzlQYmw4YVZsQlM4Y0pSdXE4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODM0QS8yQzA0NzQ3NDZFMzUxMUU3ODJERUZFNTVDNEY5QUUwMi85aVhXdjgxQ0c5 UGJsOGFWbEJTOGNKUnVxOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsVQV637XUVNRaLT42mvdQExQKefCxBlZe9SVjzrMWabuTJTXvBwCV fDCMQINRFRnS5ZSV3zOwonRd+hDTs/bnk7+aXGXvt7pshWPRw0IVdgShOL5NlUIb gutUrn2rjCgg2Lpbr4eEIya74PUqgnL+JRaqKztVDfHv67z569AmzTP3vBTf4Xzj qZ5O5wPqmeDiL39AEl5DU2SdtuCjX9KVoRHlmmp7ElLBuet3124I5gpnag5zo67u 5Jy7KexAhuBmmT6wOgCqwORYib9kn2im1PylqLhKk0KwlpFyIS3BJP0ywsHksv2f lO0IAhhe38nKICedXRlKam4AnwImUSKB -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org