$ rpki-client -vvf rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft File: ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft (raw, json) Hash identifier: /26VnvIob9Yv7dlHi4p3Df/gBIcLBibKt/zluQUFaWY= Subject key identifier: 1A:B1:C9:60:7D:59:7B:0E:A5:15:FE:D5:74:D3:32:52:73:4E:D1:F6 Authority key identifier: 6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 Certificate issuer: /CN=A919C451/serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Certificate serial: 0BE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft Manifest number: 0BDA Signing time: Fri 22 Nov 2024 18:29:34 +0000 Manifest this update: Fri 22 Nov 2024 18:29:33 +0000 Manifest next update: Fri 29 Nov 2024 18:29:33 +0000 Files and hashes: 1: ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl (hash: 9XdoRIQHiJCuuVLBVplWMWZFx4DN3UY3+hLlCVidxtQ=) 2: F0208B2012BC11EBB3294950C4F9AE02.roa (hash: eaM5ERmLR+NewtcyA9NoXbFVJmh3ke0mtpONHl7mYGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C451/serialNumber=6A185BF417A2EB02A12E19D57590AD8D118475F7 Validity Not Before: Nov 22 18:29:33 2024 GMT Not After : Nov 29 18:29:33 2024 GMT Subject: CN=6740cd8d-e509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:59:54:3a:f0:7a:12:0d:c5:18:60:5d:36:d0: da:72:0a:11:ce:35:ff:f9:ee:cf:f3:67:cb:19:34: be:06:b8:2a:08:1e:a2:83:45:f3:40:c0:05:d0:88: ec:3e:11:8f:60:cd:ee:54:3e:8b:57:42:2a:ab:ff: 08:6e:06:ee:bd:a2:fa:5b:95:3e:0f:b8:21:57:e0: 2e:e4:86:ec:f6:70:a3:46:c5:a6:eb:bb:c8:86:b4: ee:68:6b:74:8b:58:88:bf:82:4f:aa:63:a6:13:7f: 0c:38:9a:e4:ec:5e:ea:6b:1e:42:67:43:86:e3:40: 59:e7:3c:73:d9:fd:c0:ed:a8:11:95:cc:2f:f4:07: c0:2c:29:92:f9:f7:58:05:48:08:f3:9a:d8:6a:80: 2c:f7:9e:21:65:7d:45:80:be:67:92:15:25:c3:cb: 41:42:1e:0d:b4:0d:65:31:50:70:83:83:4e:22:42: be:34:69:d7:ba:ec:79:36:96:29:bb:0d:62:44:4a: 5e:4c:95:04:92:42:1f:27:d3:59:99:b2:90:90:e6: ad:f2:cc:9f:2c:fe:6e:49:ee:22:f2:42:73:6c:fa: 25:b1:c1:e3:15:e8:13:8e:0e:99:c6:3e:9d:db:65: 20:c9:d6:98:24:6a:33:45:30:38:1e:2d:9e:80:05: 48:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B1:C9:60:7D:59:7B:0E:A5:15:FE:D5:74:D3:32:52:73:4E:D1:F6 X509v3 Authority Key Identifier: keyid:6A:18:5B:F4:17:A2:EB:02:A1:2E:19:D5:75:90:AD:8D:11:84:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahhb9Bei6wKhLhnVdZCtjRGEdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C451/B934937A06D011EA8D438C3FC4F9AE02/ahhb9Bei6wKhLhnVdZCtjRGEdfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:90:df:c4:5c:0b:7a:54:f3:cb:79:27:58:60:27:6b:7a:e7: 4e:10:e6:b1:76:fe:e7:53:39:4e:40:50:84:c1:42:6e:b7:07: 38:f8:3a:44:a9:59:d5:b4:86:8d:4e:ea:1a:42:50:89:0a:5f: 49:85:80:d7:b1:07:47:46:a0:f2:51:28:e9:33:75:18:6f:2a: 8a:8a:7c:7b:27:54:c4:71:25:d0:aa:57:d8:d6:eb:e5:12:9c: 2e:fe:d5:83:4e:aa:47:79:30:7a:3f:05:93:25:0b:cc:ab:b9: 82:93:a0:85:15:49:d8:23:a3:9a:95:f6:45:00:21:30:ac:b1: ca:87:f1:bc:e7:cf:6f:ff:f7:75:09:c9:5b:d3:74:30:9d:34: df:42:b2:13:a8:ba:8d:26:fc:8d:18:3d:14:35:6d:f0:dd:3a: f9:1c:7a:2e:af:9c:d9:86:ac:c1:f0:a9:86:08:7d:6f:67:50: 4c:4d:6e:3b:16:ad:b1:35:dc:8b:7f:56:c5:0b:64:75:5a:b2: ab:51:89:9b:13:40:43:e1:04:64:e4:79:05:76:62:85:40:2e: 2c:ac:5e:7b:3e:eb:d4:46:91:1f:51:35:16:3c:c5:34:5a:c1: 09:68:09:1a:87:23:13:b9:c4:dd:eb:2c:b1:58:d2:91:85:ee: 6f:7c:f5:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0NTExMTAvBgNVBAUTKDZBMTg1QkY0MTdBMkVCMDJBMTJFMTlENTc1OTBBRDhE MTE4NDc1RjcwHhcNMjQxMTIyMTgyOTMzWhcNMjQxMTI5MTgyOTMzWjAYMRYwFAYD VQQDEw02NzQwY2Q4ZC1lNTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1llUOvB6Eg3FGGBdNtDacgoRzjX/+e7P82fLGTS+BrgqCB6ig0XzQMAF0Ijs PhGPYM3uVD6LV0Iqq/8IbgbuvaL6W5U+D7ghV+Au5Ibs9nCjRsWm67vIhrTuaGt0 i1iIv4JPqmOmE38MOJrk7F7qax5CZ0OG40BZ5zxz2f3A7agRlcwv9AfALCmS+fdY BUgI85rYaoAs954hZX1FgL5nkhUlw8tBQh4NtA1lMVBwg4NOIkK+NGnXuux5NpYp uw1iREpeTJUEkkIfJ9NZmbKQkOat8syfLP5uSe4i8kJzbPolscHjFegTjg6Zxj6d 22UgydaYJGozRTA4Hi2egAVIzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqxyWB9 WXsOpRX+1XTTMlJzTtH2MB8GA1UdIwQYMBaAFGoYW/QXousCoS4Z1XWQrY0RhHX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ1MS9COTM0OTM3QTA2 RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3S2hMaG5WZFpDdGpSR0Vk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoaGI5QmVpNndLaExoblZkWkN0alJHRWRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ1MS9COTM0OTM3QTA2RDAxMUVBOEQ0MzhDM0ZDNEY5QUUwMi9haGhiOUJlaTZ3 S2hMaG5WZFpDdGpSR0VkZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOkN/EXAt6VPPLeSdYYCdreudOEOaxdv7nUzlOQFCEwUJutwc4+DpE qVnVtIaNTuoaQlCJCl9JhYDXsQdHRqDyUSjpM3UYbyqKinx7J1TEcSXQqlfY1uvl Epwu/tWDTqpHeTB6PwWTJQvMq7mCk6CFFUnYI6OalfZFACEwrLHKh/G8589v//d1 Cclb03QwnTTfQrITqLqNJvyNGD0UNW3w3Tr5HHour5zZhqzB8KmGCH1vZ1BMTW47 Fq2xNdyLf1bFC2R1WrKrUYmbE0BD4QRk5HkFdmKFQC4srF57PuvURpEfUTUWPMU0 WsEJaAkahyMTucTd6yyxWNKRhe5vfPXG -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org