$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft File: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft (raw, json) Hash identifier: UZRn3eLXcx9jlVCpMBuTJfWombZ+VXAGC3oSh5TERPo= Subject key identifier: 55:2E:D2:4D:2A:39:03:A8:E4:F2:42:B5:35:07:5F:6D:5E:DF:A6:81 Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft Manifest number: 02B3 Signing time: Sat 23 Nov 2024 01:03:25 +0000 Manifest this update: Sat 23 Nov 2024 01:03:25 +0000 Manifest next update: Sat 30 Nov 2024 01:03:25 +0000 Files and hashes: 1: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl (hash: mOKO4t8RXjnTN9SqOGS/nuPOI55+31xFj4+0gvBZ4MQ=) 2: B6EB7E8ED14511EC89527642C4F9AE02.roa (hash: Dao3wjzPku/52BEDR9fs3d2J0BLa408frm3MMRpd2w4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Nov 23 01:03:25 2024 GMT Not After : Nov 30 01:03:25 2024 GMT Subject: CN=674129dd-d7ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b8:ea:8b:e1:f6:bb:39:7d:f0:20:0b:81:85: 3b:5d:ea:27:57:e5:5a:a4:f1:2f:a0:48:2d:df:fe: 33:40:e4:6b:cc:05:38:cb:5d:0b:53:94:c0:cf:89: 69:51:3b:7a:21:4c:d2:95:2d:f4:15:6c:b6:0e:ce: d5:e6:52:3b:23:a6:bb:69:4e:5f:ad:45:57:38:63: 04:6a:bc:eb:8c:90:89:75:fd:98:af:65:b6:10:3f: cc:c3:15:31:99:e5:8c:35:82:53:c8:57:ce:b7:94: 7d:d7:45:0c:9f:77:f5:84:4f:ff:3a:dc:57:01:fd: 97:84:0c:44:58:5d:64:43:cb:20:80:2c:ab:b1:ba: 76:3d:0d:3e:5c:e7:8f:13:f6:65:d0:5c:13:97:1a: 40:72:8f:4b:30:59:d2:5c:41:73:73:34:27:f6:04: 6e:73:09:56:7a:83:af:85:76:c0:4a:0c:60:74:59: 2f:a3:0d:4d:a1:5e:fe:49:f2:0f:67:6f:49:f9:40: 5d:01:f7:b9:dc:34:00:a8:8e:0c:ad:c1:6d:91:54: 5e:25:ff:74:c0:59:e0:17:82:ea:59:bb:49:49:e7: 76:90:50:93:4a:2e:22:14:51:04:40:fa:51:8d:0c: 21:98:6d:b0:a4:c9:6e:23:38:2f:97:60:7e:0a:c9: 04:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2E:D2:4D:2A:39:03:A8:E4:F2:42:B5:35:07:5F:6D:5E:DF:A6:81 X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:31:55:16:fe:61:02:34:60:9e:6a:62:c9:65:bf:e4:a7:28: d1:61:f8:d4:56:01:ea:92:d8:9a:1f:e6:98:3c:9f:38:d4:43: 38:cc:4e:58:1e:aa:28:f8:20:c4:11:8f:c7:92:cb:35:77:3d: 4f:8a:f3:ac:f4:4f:23:ec:4f:80:cc:3c:31:38:6f:1e:ab:24: f9:5a:04:12:6f:34:85:ca:b6:01:a4:f1:f1:90:19:e6:00:47: 0a:f0:e9:f0:a1:99:c1:96:df:5f:f9:7f:ad:a4:5d:92:fb:6f: 39:e3:1a:87:e8:92:b8:10:69:5f:fb:1c:d5:e6:3b:a2:d0:b0: fa:5b:eb:e5:78:34:dc:dd:1f:c2:49:8e:8a:e8:c5:28:a2:98: 3e:fd:8f:9a:1f:17:39:f7:86:ae:ae:5b:0e:4a:4b:55:65:a0: 08:a2:26:33:9b:c2:9b:1b:20:ec:68:02:5e:b5:b8:ee:19:04: ae:c3:b1:71:72:b7:a1:d1:9a:ec:b9:5f:5f:59:8b:f3:7d:85: b5:e3:f5:5b:4e:ea:1c:d0:20:20:7e:f9:4d:2a:c4:b9:c7:28: 31:b1:80:a6:da:ed:32:f4:a1:bc:36:eb:05:bf:c4:8d:4f:1f: 4e:72:81:50:e3:6f:64:7b:07:f7:72:e2:a5:08:b2:1f:3d:81: ec:62:e5:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjQxMTIzMDEwMzI1WhcNMjQxMTMwMDEwMzI1WjAYMRYwFAYD VQQDEw02NzQxMjlkZC1kN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLjqi+H2uzl98CALgYU7XeonV+VapPEvoEgt3/4zQORrzAU4y10LU5TAz4lp UTt6IUzSlS30FWy2Ds7V5lI7I6a7aU5frUVXOGMEarzrjJCJdf2Yr2W2ED/MwxUx meWMNYJTyFfOt5R910UMn3f1hE//OtxXAf2XhAxEWF1kQ8sggCyrsbp2PQ0+XOeP E/Zl0FwTlxpAco9LMFnSXEFzczQn9gRucwlWeoOvhXbASgxgdFkvow1NoV7+SfIP Z29J+UBdAfe53DQAqI4MrcFtkVReJf90wFngF4LqWbtJSed2kFCTSi4iFFEEQPpR jQwhmG2wpMluIzgvl2B+CskE2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUu0k0q OQOo5PJCtTUHX21e36aBMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURGNS9DMjQwQjc5NEQxNDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBD UlV4WC1EN3NQazlFcDZpM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyMVUW/mECNGCeamLJZb/kpyjRYfjUVgHqktiaH+aYPJ841EM4zE5Y Hqoo+CDEEY/Hkss1dz1PivOs9E8j7E+AzDwxOG8eqyT5WgQSbzSFyrYBpPHxkBnm AEcK8OnwoZnBlt9f+X+tpF2S+2854xqH6JK4EGlf+xzV5jui0LD6W+vleDTc3R/C SY6K6MUoopg+/Y+aHxc594aurlsOSktVZaAIoiYzm8KbGyDsaAJetbjuGQSuw7Fx creh0ZrsuV9fWYvzfYW14/VbTuoc0CAgfvlNKsS5xygxsYCm2u0y9KG8NusFv8SN Tx9OcoFQ429kewf3cuKlCLIfPYHsYuVL -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org