$ rpki-client -vvf rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft File: SdD0BpcqgFseep_CD7OpzLdmKs4.mft (raw, json) Hash identifier: E/vePA36Xk+pHJCQNFTIIm9MEHXQNOcQmaPDiA5U5mk= Subject key identifier: BB:B5:AD:D4:96:88:A5:8E:7A:0D:52:2E:52:BC:E9:68:F8:52:9C:80 Authority key identifier: 49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE Certificate issuer: /CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft Manifest number: 0120 Signing time: Sat 23 Nov 2024 02:55:25 +0000 Manifest this update: Sat 23 Nov 2024 02:55:25 +0000 Manifest next update: Sat 30 Nov 2024 02:55:25 +0000 Files and hashes: 1: SdD0BpcqgFseep_CD7OpzLdmKs4.crl (hash: cGBWWGshNa+SDQZzDhEtcX4xr7jW0dwvRyYqmH/VIu0=) 2: 110CB61EEFA211ED87AD1F0BC4F9AE02.roa (hash: OT72MMgKSPDbNHQQE4AMbGRkKD5eLVLU+dZ8YQ0oh54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D396/serialNumber=49D0F406972A805B1E7A9FC20FB3A9CCB7662ACE Validity Not Before: Nov 23 02:55:25 2024 GMT Not After : Nov 30 02:55:25 2024 GMT Subject: CN=6741441d-aaf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:57:f0:57:65:ab:53:6e:b5:d3:c9:3e:f0:77: de:78:2a:70:4d:3b:69:41:d5:f6:e0:cb:ad:8b:f6: d9:9e:e7:08:0d:73:ac:a0:ca:7b:64:70:93:a9:84: 1a:54:05:f5:62:ac:ca:57:74:15:d1:f1:79:b1:91: b4:c9:da:04:0b:53:c9:56:6e:a6:03:62:1e:ee:ce: 7c:8a:9d:45:58:e1:08:fe:b9:89:9d:6f:5c:78:33: 31:4c:22:c5:ae:9e:ec:01:00:02:54:68:f6:de:e7: c5:d2:6c:31:1a:4a:f6:ff:02:3e:6b:5e:4e:7e:ad: b0:6b:ad:01:f9:5a:e6:1d:7e:17:ce:6d:b6:2f:d5: b8:1b:83:46:28:27:50:71:51:f8:e2:c9:e6:09:54: 1f:55:4a:8a:2c:e9:fd:8a:b4:94:60:8a:16:1b:0d: de:9a:f5:d9:f4:3f:77:ad:be:20:31:88:cd:92:11: 73:25:e0:f7:90:13:ad:98:69:52:ff:73:cb:93:5f: 26:3f:38:6b:b6:ef:00:29:17:58:8e:d2:79:91:78: 37:4e:16:5c:8e:d3:bd:da:cc:8b:50:52:9c:52:f8: 65:b5:46:6f:96:01:a7:31:9b:78:da:5a:f7:0c:ab: c2:b5:1f:39:f2:a8:5c:51:2c:fc:0f:5a:b4:00:63: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B5:AD:D4:96:88:A5:8E:7A:0D:52:2E:52:BC:E9:68:F8:52:9C:80 X509v3 Authority Key Identifier: keyid:49:D0:F4:06:97:2A:80:5B:1E:7A:9F:C2:0F:B3:A9:CC:B7:66:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SdD0BpcqgFseep_CD7OpzLdmKs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D396/95D0DF7AEF9C11ED9BF63B86C4F9AE02/SdD0BpcqgFseep_CD7OpzLdmKs4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:89:15:06:19:b7:63:2d:80:25:23:a9:12:ef:fb:8a:a5:eb: ea:93:fd:b2:31:b2:bb:70:33:0c:5a:77:f6:c0:74:b7:1e:55: d2:1a:9a:f9:94:71:09:ed:04:44:3d:3a:93:31:02:67:e8:b6: 4c:8c:df:5c:08:c2:61:87:9d:69:3c:ab:85:bb:d0:1e:a4:46: 87:bc:df:93:cd:59:00:02:a6:ac:8b:96:75:02:0a:65:f7:bd: f7:18:76:e7:39:ff:b6:4b:45:c4:db:6c:35:ad:52:79:9c:4a: 7e:cc:ac:2f:0e:16:8e:76:3e:c2:4a:26:12:68:79:28:6e:bf: 08:78:fd:47:fd:1e:51:25:0e:79:8b:65:ad:07:c7:ce:e3:08: 81:8e:93:c2:ac:de:3d:42:59:4e:af:8a:37:a7:ac:31:db:9e: 1c:9e:94:02:ba:62:df:ee:71:af:92:ce:8b:d4:1f:32:4d:87: 88:26:c9:bd:94:b5:9c:78:7d:60:c9:31:40:35:98:d6:20:80: 69:18:6e:c2:89:6b:3e:f5:e8:1f:61:95:dd:73:ad:9e:1a:76: eb:76:76:94:35:73:76:ec:a2:84:1f:a7:98:c3:99:bd:22:c0: 0c:71:db:bd:27:b6:e7:78:03:14:75:2f:05:8d:3c:3a:67:ec: 0d:73:df:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzOTYxMTAvBgNVBAUTKDQ5RDBGNDA2OTcyQTgwNUIxRTdBOUZDMjBGQjNBOUND Qjc2NjJBQ0UwHhcNMjQxMTIzMDI1NTI1WhcNMjQxMTMwMDI1NTI1WjAYMRYwFAYD VQQDEw02NzQxNDQxZC1hYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVfwV2WrU26108k+8HfeeCpwTTtpQdX24Muti/bZnucIDXOsoMp7ZHCTqYQa VAX1YqzKV3QV0fF5sZG0ydoEC1PJVm6mA2Ie7s58ip1FWOEI/rmJnW9ceDMxTCLF rp7sAQACVGj23ufF0mwxGkr2/wI+a15Ofq2wa60B+VrmHX4Xzm22L9W4G4NGKCdQ cVH44snmCVQfVUqKLOn9irSUYIoWGw3emvXZ9D93rb4gMYjNkhFzJeD3kBOtmGlS /3PLk18mPzhrtu8AKRdYjtJ5kXg3ThZcjtO92syLUFKcUvhltUZvlgGnMZt42lr3 DKvCtR858qhcUSz8D1q0AGNriwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLu1rdSW iKWOeg1SLlK86Wj4UpyAMB8GA1UdIwQYMBaAFEnQ9AaXKoBbHnqfwg+zqcy3ZirO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDM5Ni85NUQwREY3QUVG OUMxMUVEOUJGNjNCODZDNEY5QUUwMi9TZEQwQnBjcWdGc2VlcF9DRDdPcHpMZG1L czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkRDBCcGNxZ0ZzZWVwX0NEN09wekxkbUtzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDM5Ni85NUQwREY3QUVGOUMxMUVEOUJGNjNCODZDNEY5QUUwMi9TZEQwQnBjcWdG c2VlcF9DRDdPcHpMZG1LczQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEiRUGGbdjLYAlI6kS7/uKpevqk/2yMbK7cDMMWnf2wHS3HlXSGpr5 lHEJ7QREPTqTMQJn6LZMjN9cCMJhh51pPKuFu9AepEaHvN+TzVkAAqasi5Z1Agpl 9733GHbnOf+2S0XE22w1rVJ5nEp+zKwvDhaOdj7CSiYSaHkobr8IeP1H/R5RJQ55 i2WtB8fO4wiBjpPCrN49QllOr4o3p6wx254cnpQCumLf7nGvks6L1B8yTYeIJsm9 lLWceH1gyTFANZjWIIBpGG7CiWs+9egfYZXdc62eGnbrdnaUNXN27KKEH6eYw5m9 IsAMcdu9J7bneAMUdS8FjTw6Z+wNc9+t -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org