$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: LB0C1mSb/1kA5QbjlznDkU1SOrz0YiXsYaGLyGFS724= Subject key identifier: E9:A8:FC:79:D2:72:61:41:90:9D:01:D5:B3:74:34:BB:56:47:DD:23 Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 2239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 2209 Signing time: Fri 22 Nov 2024 15:52:57 +0000 Manifest this update: Fri 22 Nov 2024 15:52:56 +0000 Manifest next update: Fri 29 Nov 2024 15:52:56 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: EmcFXRiCH9tk/Ae7PECNFQJejktbMFbA/RulbHlNEqo=) 2: 16D9F79EE1DE11EEA385B763C4F9AE02.roa (hash: cczU69wISt7/AR5yeZ1XveY0HlidI8LzNJiDO6ld4tc=) 3: 93C4474E085411EBB9F0635DC4F9AE02.roa (hash: r4oGdwh1wAA/HZZJFxAlSneBYqCxvrvBZTgJ6fejU+A=) 4: 079604B0A61711EE8BA59F82C4F9AE02.roa (hash: dtcFzj+VwSVoFg70xLTgFsl+ZSL0ZYc+/CB+JFv535A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:52:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8761 (0x2239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: Nov 22 15:52:56 2024 GMT Not After : Nov 29 15:52:56 2024 GMT Subject: CN=6740a8d8-c5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a2:15:b2:ec:4c:c3:bb:84:b9:9e:ba:21:27: 95:af:28:1f:11:fe:94:a0:ad:6d:3c:11:31:20:6e: 6f:ea:7e:de:c5:0e:60:75:d0:59:bc:99:84:5c:dc: 48:dd:7c:45:7c:85:aa:26:b7:ee:d2:8a:1d:58:bd: 01:ec:96:95:1e:c9:38:3a:55:09:b3:a4:35:16:8c: cb:2a:23:9f:1a:63:50:89:ca:3f:89:6b:eb:db:d5: b8:e1:28:e6:c8:cd:34:c0:96:0f:9f:f0:8c:b0:c5: f0:49:37:f1:87:04:2e:90:c6:4e:17:d7:31:f0:69: 32:85:2e:0e:9b:67:5e:53:51:cc:2d:24:c5:1b:ea: 8a:5d:80:ab:29:af:19:5f:16:9c:5d:8f:2b:f8:62: cd:cb:d4:a3:f3:27:2f:04:65:fc:80:da:c6:71:67: 30:af:6a:5d:1a:b4:b2:39:18:cb:40:15:1e:cc:49: ca:da:09:65:14:21:46:f9:27:ee:70:36:0e:61:b6: 66:53:1d:4e:6e:e0:ce:a2:e6:16:8a:6d:03:55:51: ab:c1:72:8e:66:4a:cd:09:7d:20:83:1a:6b:10:ab: 92:c2:86:28:04:b3:a6:a6:6e:f5:5b:9f:bc:1c:60: 5f:17:a1:0e:71:99:77:22:3e:d0:17:5b:de:64:50: ef:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A8:FC:79:D2:72:61:41:90:9D:01:D5:B3:74:34:BB:56:47:DD:23 X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c7:c6:36:a6:5b:c5:55:f0:34:b5:d6:86:ec:14:2b:e0:05: ec:da:30:ba:8a:e1:5b:f6:9e:6e:f7:37:97:99:3d:f0:4d:75: 70:bb:c5:f6:97:9c:93:c3:12:4d:7f:28:1e:02:08:2c:e4:d5: ab:7b:7b:78:5d:ab:aa:4f:b7:e2:f0:4b:26:ec:36:a3:03:44: 83:f1:b9:b9:03:ca:d1:60:f6:63:fe:3a:93:e5:fc:51:e5:42: 0f:a9:e5:4c:d6:eb:7f:49:9a:eb:0f:23:88:7a:ec:78:1f:07: 8e:bd:9f:9c:f0:26:dd:dc:b4:07:5d:4d:e4:ab:b1:98:7a:95: d9:85:6d:c3:8c:86:b9:47:0b:f4:29:f0:d3:aa:91:00:6b:ca: 44:5e:93:2e:8a:60:60:b5:c3:b6:d3:6c:96:d4:ef:ce:69:9e: aa:58:b7:ab:9e:76:b3:ec:91:e7:a7:2f:de:a8:49:da:6a:45: b4:9f:5e:59:fb:8c:82:e9:09:ef:58:b4:72:e0:c4:0f:a7:78: a1:19:e2:62:93:50:bd:9b:53:98:54:13:02:83:c7:bb:07:a2: 46:3a:63:1f:d2:1c:69:00:cc:f3:95:20:ff:2f:cf:fe:76:56: d0:4b:47:89:1f:0f:0e:3e:3e:07:33:94:ad:7b:e7:64:ab:c2: 53:04:ad:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjQxMTIyMTU1MjU2WhcNMjQxMTI5MTU1MjU2WjAYMRYwFAYD VQQDEw02NzQwYThkOC1jNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaIVsuxMw7uEuZ66ISeVrygfEf6UoK1tPBExIG5v6n7exQ5gddBZvJmEXNxI 3XxFfIWqJrfu0oodWL0B7JaVHsk4OlUJs6Q1FozLKiOfGmNQico/iWvr29W44Sjm yM00wJYPn/CMsMXwSTfxhwQukMZOF9cx8GkyhS4Om2deU1HMLSTFG+qKXYCrKa8Z XxacXY8r+GLNy9Sj8ycvBGX8gNrGcWcwr2pdGrSyORjLQBUezEnK2gllFCFG+Sfu cDYOYbZmUx1ObuDOouYWim0DVVGrwXKOZkrNCX0ggxprEKuSwoYoBLOmpm71W5+8 HGBfF6EOcZl3Ij7QF1veZFDv3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmo/HnS cmFBkJ0B1bN0NLtWR90jMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMx8Y2plvFVfA0tdaG7BQr4AXs2jC6iuFb9p5u9zeXmT3wTXVwu8X2 l5yTwxJNfygeAggs5NWre3t4XauqT7fi8Esm7DajA0SD8bm5A8rRYPZj/jqT5fxR 5UIPqeVM1ut/SZrrDyOIeux4HweOvZ+c8Cbd3LQHXU3kq7GYepXZhW3DjIa5Rwv0 KfDTqpEAa8pEXpMuimBgtcO202yW1O/OaZ6qWLernnaz7JHnpy/eqEnaakW0n15Z +4yC6QnvWLRy4MQPp3ihGeJik1C9m1OYVBMCg8e7B6JGOmMf0hxpAMzzlSD/L8/+ dlbQS0eJHw8OPj4HM5Ste+dkq8JTBK3W -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:37 2024 by rpki-client on console-fra.rpki-client.org