$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: iOexBPfHMfr1KMiBkrjgaiNIKtZQBGTgjx3gkRn2ocE= Subject key identifier: 4B:57:BB:82:03:4F:46:1A:EE:7C:EC:62:89:36:7C:F9:3C:6A:BD:D0 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 0339 Signing time: Sat 23 Nov 2024 00:38:08 +0000 Manifest this update: Sat 23 Nov 2024 00:38:07 +0000 Manifest next update: Sat 30 Nov 2024 00:38:07 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: W5jdwq6mXI80WG3DgahVzWRECEV0U1xfILu8yq2e4lE=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: guTq71O2LSxBtq9wp1j3np+TPnuYZq23yDrd9yyvAgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: Nov 23 00:38:07 2024 GMT Not After : Nov 30 00:38:07 2024 GMT Subject: CN=674123ef-fc5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0a:61:66:0d:9f:30:c6:11:52:4c:c7:12:31: 84:68:c1:3e:73:56:4d:e7:4c:32:cf:7b:1e:b9:7e: 16:a3:c6:48:c8:ac:a7:31:0a:3a:cf:a8:08:1d:b1: 18:ca:3f:77:2f:75:68:f0:69:a5:39:ba:69:85:a1: 10:5f:6d:b8:ba:f4:72:91:46:79:e8:e0:72:34:33: 55:b9:6d:d7:2b:89:86:0c:42:98:87:43:dc:c1:e0: 25:d2:9c:61:75:51:6e:48:67:11:c4:9b:73:39:72: c8:aa:db:71:4f:1b:95:64:f4:27:14:7d:54:79:4d: 81:f5:6b:82:37:20:38:df:92:a7:59:ba:82:93:fb: d8:18:c7:40:80:62:0e:3e:be:c0:ab:a4:b5:c3:d7: 64:d2:5f:aa:ae:64:a5:57:3e:7a:0c:b8:19:f2:80: 78:08:4d:47:35:7b:b0:52:a0:2c:f6:cb:54:7d:53: f2:f0:ed:cd:54:c9:08:a7:06:39:3b:94:8f:8f:00: 99:62:0d:68:94:b0:8b:b5:6a:91:34:8f:34:f1:a4: fd:96:e4:18:51:d1:9b:0e:d2:64:e9:a7:33:f5:7d: ef:43:77:41:03:ed:b0:90:0a:72:1e:39:30:17:96: 5e:b6:69:63:a9:d6:e9:33:4e:bf:0d:67:ac:ca:9a: 48:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:57:BB:82:03:4F:46:1A:EE:7C:EC:62:89:36:7C:F9:3C:6A:BD:D0 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:7b:01:b6:32:65:10:96:f2:59:6d:30:21:99:23:8a:d9:6c: 24:11:8d:2c:a5:b0:06:a0:52:9b:31:d7:49:c1:25:e9:6a:76: 8c:e4:13:a7:8d:fe:36:0c:51:69:42:7c:a0:c8:9a:7c:37:f4: 1f:d6:f3:db:cf:12:c3:68:9a:1c:51:e9:8c:a6:c5:17:dc:9d: 81:50:5f:d9:16:b3:08:6d:fa:24:9a:14:5c:23:b5:af:56:1e: fa:b7:61:e7:63:97:3b:98:6c:e9:fe:c7:2f:12:f5:a0:50:d4: 7b:21:30:50:d0:5b:a7:82:67:77:47:e6:29:96:e7:e5:45:91: 84:a9:02:bb:a8:5a:b5:67:eb:51:8f:6d:ef:a2:b7:b5:44:35: 66:21:c0:1a:cc:f5:ab:29:17:99:02:15:d7:47:af:ba:c8:cc: 29:a8:da:21:5d:be:0d:c9:22:bf:86:6a:f9:f9:67:23:97:2c: a9:f3:f0:e9:5d:ab:b2:7b:dc:af:06:ec:e8:1c:64:89:0e:79: 10:12:1d:62:37:e9:d2:5e:51:be:aa:8c:fb:4c:70:7a:f7:48: 99:56:bf:c8:18:17:62:61:58:8e:9f:aa:c8:9f:e9:6c:57:66: 74:a0:2c:ac:61:19:4a:ea:ae:d7:29:d6:2b:58:09:92:4c:6b: 2f:8a:b2:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjQxMTIzMDAzODA3WhcNMjQxMTMwMDAzODA3WjAYMRYwFAYD VQQDEw02NzQxMjNlZi1mYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAphZg2fMMYRUkzHEjGEaME+c1ZN50wyz3seuX4Wo8ZIyKynMQo6z6gIHbEY yj93L3Vo8GmlObpphaEQX224uvRykUZ56OByNDNVuW3XK4mGDEKYh0PcweAl0pxh dVFuSGcRxJtzOXLIqttxTxuVZPQnFH1UeU2B9WuCNyA435KnWbqCk/vYGMdAgGIO Pr7Aq6S1w9dk0l+qrmSlVz56DLgZ8oB4CE1HNXuwUqAs9stUfVPy8O3NVMkIpwY5 O5SPjwCZYg1olLCLtWqRNI808aT9luQYUdGbDtJk6acz9X3vQ3dBA+2wkApyHjkw F5ZetmljqdbpM06/DWesyppI7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtXu4ID T0Ya7nzsYok2fPk8ar3QMB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKewG2MmUQlvJZbTAhmSOK2WwkEY0spbAGoFKbMddJwSXpanaM5BOn jf42DFFpQnygyJp8N/Qf1vPbzxLDaJocUemMpsUX3J2BUF/ZFrMIbfokmhRcI7Wv Vh76t2HnY5c7mGzp/scvEvWgUNR7ITBQ0Fungmd3R+YpluflRZGEqQK7qFq1Z+tR j23vore1RDVmIcAazPWrKReZAhXXR6+6yMwpqNohXb4NySK/hmr5+Wcjlyyp8/Dp Xauye9yvBuzoHGSJDnkQEh1iN+nSXlG+qoz7THB690iZVr/IGBdiYViOn6rIn+ls V2Z0oCysYRlK6q7XKdYrWAmSTGsvirJa -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:18 2024 by rpki-client on console-ams.rpki-client.org