$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft File: d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft (raw, json) Hash identifier: 3vVnFIkCjm+8NR1g+zVbqO2kQzzsLzGQJ3vbPv1wO6w= Subject key identifier: BF:D1:9A:56:5A:8A:AE:D3:D3:3E:B5:A4:69:B3:9A:2C:96:F7:D7:6A Authority key identifier: 77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 Certificate issuer: /CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft Manifest number: AA Signing time: Wed 20 Nov 2024 23:22:56 +0000 Manifest this update: Wed 20 Nov 2024 23:22:55 +0000 Manifest next update: Wed 27 Nov 2024 23:22:55 +0000 Files and hashes: 1: d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl (hash: pd5W2NkxiVkk+kJDF9XdipDBEwYFJczixP1RRd2+A5M=) 2: 7EE26732EB2411EEBDA7715FC4F9AE02.roa (hash: tvLrXzmWLi+yYUfuM7mTXsSMiwGKfb5ZJS93I35M4zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Validity Not Before: Nov 20 23:22:55 2024 GMT Not After : Nov 27 23:22:55 2024 GMT Subject: CN=673e6f50-e7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:86:95:27:ce:0b:55:de:ef:4e:ec:18:9e:81: b1:ba:83:13:16:c4:2b:d4:b0:be:8a:c7:95:46:c8: 7f:e4:d7:ef:23:a1:12:c6:a9:c2:03:f4:92:c2:15: 33:a4:21:85:81:6b:e3:df:0f:d6:06:29:99:e5:90: 61:af:ee:ca:b6:db:89:6c:1b:11:1c:14:ec:4d:12: 64:9f:58:64:1a:eb:26:7e:2e:f2:a9:e3:30:87:47: ff:53:58:29:57:e4:93:5a:7a:f3:1e:f9:74:90:c2: ee:e3:6b:e3:e0:a5:02:2e:22:1d:43:5e:af:6b:62: c1:9f:5f:fb:76:5c:f9:b3:7c:b6:71:b1:32:8c:de: f9:e2:f0:00:11:0b:e1:76:05:cd:7d:16:5b:53:5a: d6:4e:22:89:e3:ab:4a:b2:c4:2b:00:f6:4a:62:5c: e5:54:d3:06:b4:ca:26:ea:18:d1:1c:fb:c2:96:34: 09:15:21:4a:1b:ad:da:bd:33:4b:0f:07:17:da:88: 7d:13:c8:81:44:0f:96:71:ea:a2:81:ea:2d:44:0b: f9:e3:f5:4b:ce:a1:91:08:11:85:90:c5:d7:dd:0f: 71:39:fa:0a:04:5c:f9:a6:d4:07:9d:48:19:26:dc: 56:ed:b0:5c:23:e9:c3:25:77:cf:49:12:23:8a:01: bb:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D1:9A:56:5A:8A:AE:D3:D3:3E:B5:A4:69:B3:9A:2C:96:F7:D7:6A X509v3 Authority Key Identifier: keyid:77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:99:9c:aa:a0:6d:75:7b:f1:35:55:6e:de:dd:30:ea:b8:d8: b4:5d:78:03:f8:99:17:2d:de:f2:b9:f4:c8:0c:dd:12:20:4c: 91:4f:6e:02:88:fa:83:14:a8:43:3b:ba:0b:36:a0:ae:a1:0f: 65:f9:e2:4e:17:a1:0b:fd:0e:a8:fa:cf:1d:96:6f:c2:8a:41: d7:72:50:97:25:69:ae:2e:5b:73:e2:35:c6:9d:ab:fa:65:5d: 6c:d6:9c:3e:33:0f:99:c8:4e:9a:ee:51:cf:0a:1a:6a:c8:b5: 2e:a1:4e:65:7f:03:a6:fc:9a:50:4f:f2:84:b9:41:54:de:60: f1:46:da:e5:61:d9:e6:9d:4c:83:a6:80:e4:59:65:e5:37:df: 94:eb:48:91:71:df:38:02:e6:c5:b3:a4:dc:33:62:5f:24:fe: cc:a5:fd:b5:25:24:14:39:6a:ae:eb:c3:ed:7c:c7:e8:f5:a9: 07:d9:fb:d5:00:b1:f6:99:83:d9:f2:70:8b:6c:47:5f:8d:9f: 9b:e9:3c:b0:33:5c:0c:40:ba:b3:f6:19:ef:98:63:19:17:8b: e9:a8:c8:58:2e:35:4e:37:04:f3:a2:03:f0:e1:d7:b5:11:bb: da:8c:59:77:70:5a:07:39:b9:aa:6d:6a:fe:67:5c:be:26:90: 78:38:80:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDc3RUM0ODY5MkQwNDI3MDI5NzhEQ0QwQjY4RTk0MEI4 RDc3MjNFNTIwHhcNMjQxMTIwMjMyMjU1WhcNMjQxMTI3MjMyMjU1WjAYMRYwFAYD VQQDEw02NzNlNmY1MC1lN2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYaVJ84LVd7vTuwYnoGxuoMTFsQr1LC+iseVRsh/5NfvI6ESxqnCA/SSwhUz pCGFgWvj3w/WBimZ5ZBhr+7KttuJbBsRHBTsTRJkn1hkGusmfi7yqeMwh0f/U1gp V+STWnrzHvl0kMLu42vj4KUCLiIdQ16va2LBn1/7dlz5s3y2cbEyjN754vAAEQvh dgXNfRZbU1rWTiKJ46tKssQrAPZKYlzlVNMGtMom6hjRHPvCljQJFSFKG63avTNL DwcX2oh9E8iBRA+WceqigeotRAv54/VLzqGRCBGFkMXX3Q9xOfoKBFz5ptQHnUgZ JtxW7bBcI+nDJXfPSRIjigG7CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/RmlZa iq7T0z61pGmzmiyW99dqMB8GA1UdIwQYMBaAFHfsSGktBCcCl43NC2jpQLjXcj5S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC8yOEM2Q0NFNkE5 RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3S1hqYzBMYU9sQXVOZHlQ bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2QteElhUzBFSndLWGpjMExhT2xBdU5keVBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC8yOEM2Q0NFNkE5RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3 S1hqYzBMYU9sQXVOZHlQbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnmZyqoG11e/E1VW7e3TDquNi0XXgD+JkXLd7yufTIDN0SIEyRT24C iPqDFKhDO7oLNqCuoQ9l+eJOF6EL/Q6o+s8dlm/CikHXclCXJWmuLltz4jXGnav6 ZV1s1pw+Mw+ZyE6a7lHPChpqyLUuoU5lfwOm/JpQT/KEuUFU3mDxRtrlYdnmnUyD poDkWWXlN9+U60iRcd84AubFs6TcM2JfJP7Mpf21JSQUOWqu68PtfMfo9akH2fvV ALH2mYPZ8nCLbEdfjZ+b6TywM1wMQLqz9hnvmGMZF4vpqMhYLjVONwTzogPw4de1 EbvajFl3cFoHObmqbWr+Z1y+JpB4OIDh -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:54 2024 by rpki-client on console-ams.rpki-client.org