$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft File: 9bGvaeQg85sCMjAnVBm6VPjOGos.mft (raw, json) Hash identifier: XHVvEXWMYgvjQ+4QHP4FS/yx33D6HqLip7BqXHCsqi8= Subject key identifier: 12:B2:47:28:92:22:78:2B:C3:F1:F1:44:A5:67:74:A4:E1:14:A1:DF Authority key identifier: F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B Certificate issuer: /CN=A9117CE3/serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft Manifest number: 0A Signing time: Wed 25 Dec 2024 05:07:27 +0000 Manifest this update: Wed 25 Dec 2024 05:07:27 +0000 Manifest next update: Wed 01 Jan 2025 05:07:27 +0000 Files and hashes: 1: 9bGvaeQg85sCMjAnVBm6VPjOGos.crl (hash: izqRT/zXEXRzoYHfz5CeVxJZTR8bgK1dHxRu06MFqyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CE3/serialNumber=F5B1AF69E420F39B023230275419BA54F8CE1A8B Validity Not Before: Dec 25 05:07:27 2024 GMT Not After : Jan 1 05:07:27 2025 GMT Subject: CN=676b930f-c23c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:51:3a:63:44:45:a6:91:ca:86:3f:18:d8: 44:d7:bb:02:05:85:c5:b3:f3:a2:e8:12:0e:e9:0d: 17:76:9c:77:26:93:45:e7:2a:87:95:ae:df:57:67: 52:f0:6b:ef:3a:9a:bf:ee:bb:bc:a1:4c:e5:ef:12: 09:1e:0e:85:b3:b3:74:91:8b:74:f2:14:85:a1:8d: e9:81:46:a6:83:a0:95:99:d2:95:79:6e:89:d8:5c: 3d:df:a1:97:da:d9:2f:bf:5e:b2:c5:0b:8a:43:47: a1:f6:40:6c:2d:98:4d:67:e8:34:80:c0:dd:c3:8e: 9a:92:e0:c0:86:7a:af:6b:46:2e:6f:b1:2e:ec:9d: bf:00:47:01:d7:e4:03:53:1e:25:fe:71:8e:95:1e: 41:a8:28:02:bc:10:8b:aa:21:03:5a:12:3f:ee:78: 9e:c1:86:7d:61:d8:e2:74:47:07:1a:b0:08:d7:5e: d4:0a:b9:b8:bd:25:3b:22:75:44:1c:31:e9:ce:53: f8:3f:0e:22:4f:c3:f1:13:b3:59:94:e2:02:57:ad: 84:18:02:d4:f0:af:b1:74:ce:b8:0a:c7:2c:0f:8f: 43:90:84:31:5e:8e:70:8f:90:65:5f:75:cd:94:2f: 25:11:9d:51:d4:56:a2:af:d1:25:9d:5f:a7:a8:3a: 1e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B2:47:28:92:22:78:2B:C3:F1:F1:44:A5:67:74:A4:E1:14:A1:DF X509v3 Authority Key Identifier: keyid:F5:B1:AF:69:E4:20:F3:9B:02:32:30:27:54:19:BA:54:F8:CE:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bGvaeQg85sCMjAnVBm6VPjOGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CE3/2FD45F78B45B11EF94E6745DC4F9AE02/9bGvaeQg85sCMjAnVBm6VPjOGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ca:eb:7d:9d:b0:05:19:1c:c7:3b:84:83:c0:6c:99:35:d8: a8:33:12:02:c4:d0:99:07:dd:90:ea:02:cf:21:84:1c:f6:7a: 4d:57:dc:9a:6a:81:02:be:dc:db:a2:3f:ca:58:52:8f:fd:95: fe:18:c6:88:a5:3b:78:f9:9e:20:cd:12:00:c9:1e:60:3f:d3: d9:18:6a:bf:34:0e:e2:5b:bb:17:12:a9:ea:4a:bf:a4:e1:0b: 34:58:ff:bb:2a:41:b4:24:0b:d5:85:f8:0e:e8:c1:94:88:03: bf:31:09:d0:ec:07:4b:ca:5e:61:7c:a0:e2:b2:25:8c:31:be: 03:e7:af:36:59:00:df:9e:2b:fd:f8:cd:2f:40:ef:13:23:a5: 74:27:74:25:ef:a0:e1:8e:eb:6f:48:47:5f:80:72:a0:f0:3f: a4:a8:a9:89:6d:ea:4b:cf:d8:39:d7:95:88:af:5d:a3:e0:e6: e0:45:52:27:0f:57:64:9e:f7:2b:e8:65:97:c7:fa:4a:8b:61: 7c:7e:a0:81:4f:5e:4d:6d:a7:e8:dd:28:dd:91:20:7a:1f:9e: 89:e8:61:9c:87:c3:d2:5b:32:85:3e:08:e2:be:54:47:a7:c6: f9:66:f4:46:29:c4:9a:04:ae:d5:5f:85:63:41:af:8a:09:ad: 1e:c4:99:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx N0NFMzExMC8GA1UEBRMoRjVCMUFGNjlFNDIwRjM5QjAyMzIzMDI3NTQxOUJBNTRG OENFMUE4QjAeFw0yNDEyMjUwNTA3MjdaFw0yNTAxMDEwNTA3MjdaMBgxFjAUBgNV BAMTDTY3NmI5MzBmLWMyM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0l1E6Y0RFppHKhj8Y2ETXuwIFhcWz86LoEg7pDRd2nHcmk0XnKoeVrt9XZ1Lw a+86mr/uu7yhTOXvEgkeDoWzs3SRi3TyFIWhjemBRqaDoJWZ0pV5bonYXD3foZfa 2S+/XrLFC4pDR6H2QGwtmE1n6DSAwN3DjpqS4MCGeq9rRi5vsS7snb8ARwHX5ANT HiX+cY6VHkGoKAK8EIuqIQNaEj/ueJ7Bhn1h2OJ0RwcasAjXXtQKubi9JTsidUQc MenOU/g/DiJPw/ETs1mU4gJXrYQYAtTwr7F0zrgKxywPj0OQhDFejnCPkGVfdc2U LyURnVHUVqKv0SWdX6eoOh4pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUErJHKJIi eCvD8fFEpWd0pOEUod8wHwYDVR0jBBgwFoAU9bGvaeQg85sCMjAnVBm6VPjOGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3Q0UzLzJGRDQ1Rjc4QjQ1 QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVzQ01qQW5WQm02VlBqT0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWJHdmFlUWc4NXNDTWpBblZCbTZWUGpPR29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3 Q0UzLzJGRDQ1Rjc4QjQ1QjExRUY5NEU2NzQ1REM0RjlBRTAyLzliR3ZhZVFnODVz Q01qQW5WQm02VlBqT0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACvK632dsAUZHMc7hIPAbJk12KgzEgLE0JkH3ZDqAs8hhBz2ek1X3Jpq gQK+3NuiP8pYUo/9lf4YxoilO3j5niDNEgDJHmA/09kYar80DuJbuxcSqepKv6Th CzRY/7sqQbQkC9WF+A7owZSIA78xCdDsB0vKXmF8oOKyJYwxvgPnrzZZAN+eK/34 zS9A7xMjpXQndCXvoOGO629IR1+AcqDwP6SoqYlt6kvP2DnXlYivXaPg5uBFUicP V2Se9yvoZZfH+kqLYXx+oIFPXk1tp+jdKN2RIHofnonoYZyHw9JbMoU+COK+VEen xvlm9EYpxJoErtVfhWNBr4oJrR7EmQs= -----END CERTIFICATE-----Generated at Wed Dec 25 06:14:28 2024 by rpki-client on console-ams.rpki-client.org