$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: jihAORA/+tdoIE6gLe+BwvDOQj9Xdo1YUmsovh8y0Q0= Subject key identifier: 5D:3C:B4:AE:87:7B:89:6B:5A:35:5D:44:C2:07:60:8A:21:51:00:BC Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: A6 Signing time: Sat 23 Nov 2024 04:14:32 +0000 Manifest this update: Sat 23 Nov 2024 04:14:32 +0000 Manifest next update: Sat 30 Nov 2024 04:14:32 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: nWThHf3ckwZYBQhKsxy3TEUBdYnxBXWtqKf7inpTip0=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: Q9BAL6epupu20AGfMtifky/Z08LCKLMPntK7hc+eQCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Nov 23 04:14:32 2024 GMT Not After : Nov 30 04:14:32 2024 GMT Subject: CN=674156a8-7c01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dc:e6:87:e0:78:72:97:f1:38:96:9d:aa:63: fd:c5:25:8a:34:ed:c7:cf:9c:09:28:38:3b:4e:90: 0b:18:96:19:d2:09:60:ae:6b:02:a2:85:5e:4c:9a: e6:e2:4a:31:2a:5d:32:d0:36:e8:51:13:72:4f:a2: 3d:85:e8:cc:eb:01:96:45:c0:1d:c3:65:18:de:42: a9:1d:0b:e0:3e:f1:6a:f0:c0:a1:98:60:dd:87:26: ac:78:b1:10:2e:49:85:36:03:c7:c9:e5:6f:21:fb: 8d:af:d0:3c:5b:79:6b:33:0f:b2:bc:9e:60:fa:25: 2f:93:7a:ca:a3:39:d2:57:05:2c:3e:df:76:43:dd: 35:5c:ab:73:86:81:75:b9:43:f7:45:f2:ed:1e:32: 50:bd:3b:70:06:60:ca:be:f6:64:29:0c:0c:95:4b: b4:d1:a7:58:86:fd:ae:b5:ac:92:35:4d:e3:c8:38: db:ca:dd:af:86:af:da:3f:be:33:08:34:6f:40:10: 7c:64:2e:1d:1e:d4:8b:d8:3a:f3:4e:68:4c:e4:e4: ac:37:17:26:b0:7e:ac:7a:04:36:e7:95:a3:b8:93: 3b:3a:1c:d6:f7:7f:65:89:9a:a5:2e:3e:b7:b3:ce: bd:e6:f3:1f:36:64:3c:11:95:88:94:c4:24:59:f0: a3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:3C:B4:AE:87:7B:89:6B:5A:35:5D:44:C2:07:60:8A:21:51:00:BC X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ee:14:8b:13:9a:eb:8d:2f:0d:32:67:f0:a7:77:e5:db:90: be:ce:7a:3a:51:de:59:32:6e:2a:73:cf:a4:42:7f:90:21:b5: 4f:15:f2:b7:de:c5:45:79:0d:29:9e:a9:c6:75:27:75:d0:18: de:37:cf:ea:a1:b8:e3:22:75:7c:78:6e:65:94:66:dc:6b:cc: 96:ef:6b:c0:09:91:7e:42:c7:6b:60:81:b1:ff:30:41:25:78: ba:e8:ba:69:22:d2:2e:82:08:e2:1c:3e:2d:af:4f:f7:eb:8c: b2:4a:5f:10:9c:75:12:2d:46:75:50:d7:3b:f3:c5:5d:91:37: d3:49:16:f0:b8:a4:ff:dc:e3:59:fa:75:2b:b2:ad:37:a4:61: d8:a3:fd:a0:cb:2e:e6:28:0a:a6:f7:15:74:8f:12:1a:33:a3: 96:57:5d:b0:83:b9:bc:00:bb:bf:56:15:65:3e:eb:84:f5:2b: 1d:80:23:eb:ec:a0:62:ed:57:b5:6b:c4:1b:b4:d2:d5:aa:07: d3:ac:41:72:df:a9:ac:12:b3:51:fe:03:a2:13:84:c4:a9:34: 14:a0:e1:e6:cd:51:69:97:6b:de:10:23:76:69:ec:7d:bb:aa: a0:4c:e0:cb:e8:c5:5d:74:73:77:ea:ed:a4:f7:4e:03:1e:33: eb:f9:25:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjQxMTIzMDQxNDMyWhcNMjQxMTMwMDQxNDMyWjAYMRYwFAYD VQQDEw02NzQxNTZhOC03YzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNzmh+B4cpfxOJadqmP9xSWKNO3Hz5wJKDg7TpALGJYZ0glgrmsCooVeTJrm 4koxKl0y0DboURNyT6I9hejM6wGWRcAdw2UY3kKpHQvgPvFq8MChmGDdhyaseLEQ LkmFNgPHyeVvIfuNr9A8W3lrMw+yvJ5g+iUvk3rKoznSVwUsPt92Q901XKtzhoF1 uUP3RfLtHjJQvTtwBmDKvvZkKQwMlUu00adYhv2utaySNU3jyDjbyt2vhq/aP74z CDRvQBB8ZC4dHtSL2DrzTmhM5OSsNxcmsH6segQ255WjuJM7OhzW939liZqlLj63 s8695vMfNmQ8EZWIlMQkWfCjVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF08tK6H e4lrWjVdRMIHYIohUQC8MB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL7hSLE5rrjS8NMmfwp3fl25C+zno6Ud5ZMm4qc8+kQn+QIbVPFfK3 3sVFeQ0pnqnGdSd10BjeN8/qobjjInV8eG5llGbca8yW72vACZF+QsdrYIGx/zBB JXi66LppItIuggjiHD4tr0/364yySl8QnHUSLUZ1UNc788VdkTfTSRbwuKT/3ONZ +nUrsq03pGHYo/2gyy7mKAqm9xV0jxIaM6OWV12wg7m8ALu/VhVlPuuE9SsdgCPr 7KBi7Ve1a8QbtNLVqgfTrEFy36msErNR/gOiE4TEqTQUoOHmzVFpl2veECN2aex9 u6qgTODL6MVddHN36u2k904DHjPr+SWM -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:43 2024 by rpki-client on console-fra.rpki-client.org