$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft File: x2h2G8gatP5_1EAVSCYcuocge-o.mft (raw, json) Hash identifier: OPPtZ/T2s0JRuEE2eitzp+4PvpPr3dfIdLavFjOe+kM= Subject key identifier: 19:DA:53:E7:11:85:69:48:1A:B5:23:9B:F6:58:E8:99:10:EB:AF:8C Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0DC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft Manifest number: 0DA5 Signing time: Sun 24 Nov 2024 17:42:23 +0000 Manifest this update: Sun 24 Nov 2024 17:42:23 +0000 Manifest next update: Sun 01 Dec 2024 17:42:23 +0000 Files and hashes: 1: x2h2G8gatP5_1EAVSCYcuocge-o.crl (hash: AZzXEVkCc34pFQ8dQyocVUCmYfu3tK1aucMY7Tn2QgQ=) 2: 127D33EC027011EB98FEC44BC4F9AE02.roa (hash: WKzAcG2HI+Rmp0I06ZjLFib0fSkn15at9z87zdNmyk8=) 3: 1C99C7E021D911EB85DAFE71C4F9AE02.roa (hash: SWjsz2ZRwBkKRs3lCM8x1HuP6oZ8eAnIrMziwftZzas=) 4: 670DF186232111EB9896B783C4F9AE02.roa (hash: Uzh2H0WzqUhAdOejeRuGcUfDdr3mQiiZM4aNaZoNZlE=) 5: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (hash: /6vaZiCWJmBFNJgiNOI49M1x4iJoUHYLtfB+8hNudBk=) 6: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (hash: E9L/TTXk+Px8nGO4KJnm/ouPNchL+BTaTG1X0znr2Rg=) 7: 1BBE249C21D911EB85DAFE71C4F9AE02.roa (hash: EwzDgqgyP+42whL7/ceKehIKyd0tgvQ5kUq+8PMWfXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Nov 24 17:42:23 2024 GMT Not After : Dec 1 17:42:23 2024 GMT Subject: CN=6743657f-8928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:64:34:0b:a4:37:fd:02:af:61:e2:83:95:38: f5:8a:21:3e:1f:8d:0f:b1:90:5a:02:8a:0c:b1:e2: 70:de:ab:5e:bc:df:a8:0f:c4:6b:4a:f2:14:0c:c9: 2c:b8:8b:0b:bc:be:a3:4b:f9:b9:57:38:ac:48:55: 7f:4a:c5:b6:69:a8:10:a3:ff:92:6f:41:9d:b8:50: ea:34:98:20:7f:89:d2:bc:48:6a:84:de:3d:f8:ef: a9:0b:cd:3d:cb:54:25:d2:93:d0:ea:9a:15:7a:6f: 8a:03:34:73:21:f8:18:48:19:24:f9:5c:55:25:92: 06:62:94:5e:9f:c6:24:5b:93:9e:3c:28:b3:27:e8: 3e:7c:cf:64:55:96:dd:ae:42:de:0a:c6:93:c7:ce: ca:2f:ff:19:c2:d7:da:30:37:d7:1a:20:9a:36:fe: 17:4d:eb:11:a6:49:4b:fa:e0:f0:d0:58:fc:90:d5: 83:66:2c:ed:e2:62:88:54:ac:e8:b4:33:1e:c6:e5: d4:11:a1:00:e5:80:03:e6:a6:32:87:c9:cc:4f:ae: a9:44:d4:94:42:5c:e8:ee:50:86:76:40:00:c3:21: 14:a9:a8:25:a1:64:66:1c:0a:b0:85:4c:32:bf:87: 0c:97:01:17:60:dc:52:eb:37:09:b7:00:93:a8:d4: f9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:DA:53:E7:11:85:69:48:1A:B5:23:9B:F6:58:E8:99:10:EB:AF:8C X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:78:71:8e:ad:de:00:c0:ff:08:8a:ed:90:c0:e3:87:c7:90: 5a:48:ce:59:a9:af:1a:87:df:17:cc:f4:9f:94:ac:72:1f:fc: a0:3e:38:59:3a:28:5c:d0:5b:d6:a9:36:3c:03:f3:ea:b3:fd: ac:6a:a4:07:c1:c7:a0:4a:40:4f:94:ba:ef:fd:40:9f:84:70: b0:04:c5:95:bc:1f:66:59:20:54:3c:8c:c0:23:0d:6e:43:d6: 98:a0:16:94:3e:79:89:e8:ad:a8:2a:d8:6d:e6:c2:f7:13:1b: dd:48:52:2d:ff:dd:92:20:60:5f:97:b1:1d:80:16:bd:5b:1a: 43:1e:5c:38:f0:af:06:c4:a9:ce:5b:d5:38:27:fe:6f:70:5f: d2:41:24:04:37:e4:81:08:e1:4c:bb:54:df:c5:d0:b1:c4:52: 04:f3:7f:c9:c3:29:ff:76:04:38:d2:c3:0c:95:bc:a6:84:5c: 84:ed:96:b4:70:3d:6b:d9:ac:f6:21:b7:a9:4d:e8:49:74:8b: 33:73:31:db:15:87:11:3a:f1:40:d3:32:af:22:42:2e:74:ef: 89:09:c5:84:4f:b0:55:5e:f7:28:c2:3b:cd:60:d3:52:02:00: c7:6a:ca:32:eb:3c:9a:ec:be:57:d1:a0:f2:7a:d7:01:48:19: a4:79:85:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjQxMTI0MTc0MjIzWhcNMjQxMjAxMTc0MjIzWjAYMRYwFAYD VQQDEw02NzQzNjU3Zi04OTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmQ0C6Q3/QKvYeKDlTj1iiE+H40PsZBaAooMseJw3qtevN+oD8RrSvIUDMks uIsLvL6jS/m5VzisSFV/SsW2aagQo/+Sb0GduFDqNJggf4nSvEhqhN49+O+pC809 y1Ql0pPQ6poVem+KAzRzIfgYSBkk+VxVJZIGYpRen8YkW5OePCizJ+g+fM9kVZbd rkLeCsaTx87KL/8ZwtfaMDfXGiCaNv4XTesRpklL+uDw0Fj8kNWDZizt4mKIVKzo tDMexuXUEaEA5YAD5qYyh8nMT66pRNSUQlzo7lCGdkAAwyEUqagloWRmHAqwhUwy v4cMlwEXYNxS6zcJtwCTqNT5hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnaU+cR hWlIGrUjm/ZY6JkQ66+MMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAyMi9DNjFDMjU2QUFEQ0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQ NV8xRUFWU0NZY3VvY2dlLW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3eHGOrd4AwP8Iiu2QwOOHx5BaSM5Zqa8ah98XzPSflKxyH/ygPjhZ Oihc0FvWqTY8A/Pqs/2saqQHwcegSkBPlLrv/UCfhHCwBMWVvB9mWSBUPIzAIw1u Q9aYoBaUPnmJ6K2oKtht5sL3ExvdSFIt/92SIGBfl7EdgBa9WxpDHlw48K8GxKnO W9U4J/5vcF/SQSQEN+SBCOFMu1TfxdCxxFIE83/Jwyn/dgQ40sMMlbymhFyE7Za0 cD1r2az2IbepTehJdIszczHbFYcROvFA0zKvIkIudO+JCcWET7BVXvcowjvNYNNS AgDHasoy6zya7L5X0aDyetcBSBmkeYWX -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:16 2024 by rpki-client on console-fra.rpki-client.org