$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft File: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft (raw, json) Hash identifier: cl05+v2oLy5NcuEBNJ3HGARdvhyx9xuUuJZU1OiE6/w= Subject key identifier: 35:58:DD:C7:AE:11:CB:04:21:11:01:9C:E7:9B:2C:0D:D2:F9:4D:92 Authority key identifier: F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7 Certificate issuer: /CN=A919EAAD/serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7 Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft Manifest number: 0BD3 Signing time: Fri 22 Nov 2024 18:33:34 +0000 Manifest this update: Fri 22 Nov 2024 18:33:33 +0000 Manifest next update: Fri 29 Nov 2024 18:33:33 +0000 Files and hashes: 1: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl (hash: fOd71RRgdTwJjQMlBfqNXVyT4TJoqqXaSprrKisOTs0=) 2: 97DC58040B5B11EAB69DC64FC4F9AE02.roa (hash: Va4decWdeWxreZuiKTEPDvc8po9KZonZg6UYKOuHMpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAAD/serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7 Validity Not Before: Nov 22 18:33:33 2024 GMT Not After : Nov 29 18:33:33 2024 GMT Subject: CN=6740ce7e-3876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e1:65:60:e3:27:3b:4c:9e:bc:d9:36:5e:e4: 53:2e:3b:b6:07:bf:59:55:5f:3b:d9:02:db:b8:8f: 53:88:51:3e:cc:cd:4d:75:b4:9f:d2:28:d9:d8:c3: 09:03:a0:95:86:a6:ce:26:5b:1b:4b:65:06:92:38: ca:50:76:22:10:a7:7f:fc:aa:a5:3b:49:37:5b:f6: 23:e2:8b:7c:c9:04:ba:60:e1:f7:53:e0:4d:98:e7: 27:b6:dd:f3:66:c3:75:bb:b0:3d:03:30:e9:48:bb: b2:50:2b:79:76:0f:ed:6a:6c:02:a9:9e:3f:fe:cf: d7:4d:86:35:33:76:cc:b3:bc:43:c3:93:a3:7a:06: 7c:fd:a8:ed:f7:e4:ab:a5:8f:95:4e:79:55:75:45: b9:b3:e2:b3:3a:b3:e1:7d:8a:4f:51:a4:8a:24:db: d8:74:f4:c2:44:20:88:9a:7a:58:8a:f5:a5:7b:d5: 74:9b:fe:95:60:33:c4:ee:bb:85:ce:70:5e:f7:52: eb:0d:76:4c:23:a3:45:df:28:61:66:67:36:2a:22: 2d:af:29:02:b9:21:1c:e1:e8:dc:a7:24:cc:2e:ef: ac:1d:60:be:e9:a4:15:37:74:12:eb:13:ba:07:72: bd:41:55:02:c3:3f:b5:24:68:85:e0:31:8a:51:3b: d2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:58:DD:C7:AE:11:CB:04:21:11:01:9C:E7:9B:2C:0D:D2:F9:4D:92 X509v3 Authority Key Identifier: keyid:F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:7f:df:bb:75:89:0d:e0:29:2d:07:42:37:74:d4:43:93:bc: 00:aa:35:88:1c:97:6a:6a:95:47:58:fb:62:eb:8e:72:f7:6e: 12:a1:09:28:d4:47:95:b0:db:23:d1:9b:04:a7:72:0b:05:dd: eb:cd:30:ed:22:70:47:57:ee:bd:e0:8c:48:5e:f8:a1:9e:36: 18:0d:95:49:79:ad:74:68:9b:bd:03:0f:21:12:81:89:50:78: ba:de:a4:0c:50:cb:38:b8:2a:1f:22:38:a0:a1:c0:8a:06:9d: 13:42:ad:5c:b4:b2:66:e0:eb:47:cd:23:09:92:d4:3d:f4:2c: 46:10:8e:e9:fc:a1:aa:cc:4d:b1:06:af:c5:31:8c:34:c0:58: e1:9a:7f:6c:e9:d5:60:4a:10:81:1d:ad:39:d4:7c:4b:26:3c: f5:8d:e8:b9:63:71:2c:a8:e3:e6:94:04:4a:86:e2:0a:27:3d: 0c:a1:23:bb:bc:04:ff:c4:e2:8b:a6:be:8e:b9:2d:47:07:e2: 8e:4e:7b:9e:df:e9:3b:27:f2:0f:f2:df:a9:d0:5a:47:52:c0: d6:f9:35:d2:ff:57:f8:2c:fa:d6:34:da:ec:57:0e:b9:7a:52: e7:16:9f:16:fa:f1:f3:58:b5:15:d3:73:96:61:59:1b:0f:4d: d5:91:0c:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBQUQxMTAvBgNVBAUTKEY1Mzk4M0I3QUI4Mzg2QzY5OTU4Nzg0RkZBRjBFNjk3 MjYyNDU3QTcwHhcNMjQxMTIyMTgzMzMzWhcNMjQxMTI5MTgzMzMzWjAYMRYwFAYD VQQDEw02NzQwY2U3ZS0zODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+FlYOMnO0yevNk2XuRTLju2B79ZVV872QLbuI9TiFE+zM1NdbSf0ijZ2MMJ A6CVhqbOJlsbS2UGkjjKUHYiEKd//KqlO0k3W/Yj4ot8yQS6YOH3U+BNmOcntt3z ZsN1u7A9AzDpSLuyUCt5dg/tamwCqZ4//s/XTYY1M3bMs7xDw5OjegZ8/ajt9+Sr pY+VTnlVdUW5s+KzOrPhfYpPUaSKJNvYdPTCRCCImnpYivWle9V0m/6VYDPE7ruF znBe91LrDXZMI6NF3yhhZmc2KiItrykCuSEc4ejcpyTMLu+sHWC+6aQVN3QS6xO6 B3K9QVUCwz+1JGiF4DGKUTvS4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVY3ceu EcsEIREBnOebLA3S+U2SMB8GA1UdIwQYMBaAFPU5g7erg4bGmVh4T/rw5pcmJFen MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFBRC84N0MzMTY4ODA5 RDUxMUVBQjc2QzczMTdDNEY5QUUwMi85VG1EdDZ1RGhzYVpXSGhQLXZEbWx5WWtW NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlUbUR0NnVEaHNhWldIaFAtdkRtbHlZa1Y2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFBRC84N0MzMTY4ODA5RDUxMUVBQjc2QzczMTdDNEY5QUUwMi85VG1EdDZ1RGhz YVpXSGhQLXZEbWx5WWtWNmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbf9+7dYkN4CktB0I3dNRDk7wAqjWIHJdqapVHWPti645y924SoQko 1EeVsNsj0ZsEp3ILBd3rzTDtInBHV+694IxIXvihnjYYDZVJea10aJu9Aw8hEoGJ UHi63qQMUMs4uCofIjigocCKBp0TQq1ctLJm4OtHzSMJktQ99CxGEI7p/KGqzE2x Bq/FMYw0wFjhmn9s6dVgShCBHa051HxLJjz1jei5Y3EsqOPmlARKhuIKJz0MoSO7 vAT/xOKLpr6OuS1HB+KOTnue3+k7J/IP8t+p0FpHUsDW+TXS/1f4LPrWNNrsVw65 elLnFp8W+vHzWLUV03OWYVkbD03VkQwo -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org