$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: ZggodIa6s2DJky9zl6lkmmfRAQl0on34OFsUCP//T+E= Subject key identifier: 06:7C:CE:74:19:B9:A5:76:F5:10:BA:EB:E3:AB:5C:94:A6:49:43:AA Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0BA4 Signing time: Wed 20 Nov 2024 17:58:12 +0000 Manifest this update: Wed 20 Nov 2024 17:58:12 +0000 Manifest next update: Wed 27 Nov 2024 17:58:12 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: +RNnH2jHB4wNMIAulAwGz7xR9VjR93rwvdmjn6BE530=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: fJj5V7B0tj2U/amxOYn7MfT1h8cR0RvRgHTxKdHbOM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Nov 20 17:58:12 2024 GMT Not After : Nov 27 17:58:12 2024 GMT Subject: CN=673e2334-bf8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cd:29:0e:22:8a:06:9a:5b:10:c6:d6:65:bd: 77:b0:d8:81:1c:ce:1a:e9:3d:26:f0:79:31:fb:dc: e7:2b:6e:0a:43:13:8d:50:eb:9e:5c:73:78:10:92: 11:f1:72:ca:80:17:43:ba:c0:99:17:70:5f:46:f1: 77:03:a0:b5:d0:71:b5:40:2b:15:4b:df:66:1e:3d: 03:04:36:ed:40:53:75:15:c5:41:25:f6:aa:e3:c5: 6a:2c:11:07:16:83:81:ed:06:ae:21:46:18:8a:cd: c1:49:99:07:99:0e:5b:f0:f8:39:2b:6b:b8:d0:65: f7:0a:45:3f:85:a1:05:9a:d9:a2:84:fa:aa:88:21: b3:1c:77:f3:8b:9c:ed:dd:be:7b:39:01:96:33:7d: f6:d5:04:d3:3d:f7:5c:df:7a:b3:92:0c:22:cd:a4: 58:ab:1a:c4:28:50:28:03:d2:4b:33:f5:04:f5:ad: 17:09:ad:a1:09:03:82:d6:86:80:d1:c5:a7:5d:48: 6a:2b:db:fb:2a:bd:b4:72:c5:f6:cc:9e:02:ff:cb: 30:9a:00:b8:d9:e9:a5:98:d5:59:2a:8c:10:e8:49: 65:ef:38:7e:a9:db:24:09:00:26:c9:5f:fb:75:c9: 60:d6:32:39:35:19:74:3f:d8:c4:7f:4e:71:1b:d9: 55:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7C:CE:74:19:B9:A5:76:F5:10:BA:EB:E3:AB:5C:94:A6:49:43:AA X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:99:76:14:b2:7c:dd:9c:1f:23:75:17:58:c7:8b:c8:56:0f: 84:54:82:6a:03:6c:f7:0e:7f:f1:01:51:6b:f9:b9:55:2e:ec: 39:ad:a1:e2:4c:8d:98:c9:3a:91:5b:12:39:d4:76:87:1d:06: 80:a1:d8:2d:a0:75:8c:4c:f6:d3:f8:1d:de:7d:ba:6d:c8:1f: 01:09:60:13:01:42:b7:8c:53:a2:8e:7d:82:6f:a7:0a:68:61: 54:67:1b:02:a5:35:94:b5:b4:4a:7e:74:24:17:b4:35:e9:9d: 4c:64:c1:fa:9c:db:82:b8:9d:d3:d9:65:3a:12:1f:a1:1c:34: 39:54:d7:ec:27:b5:09:cb:fb:43:57:f9:73:f5:ce:9c:74:eb: 50:2c:11:c7:ae:3c:44:04:4e:72:f4:19:fc:fe:e2:24:bc:d4: 74:10:fe:df:23:c8:f7:25:05:2c:97:9d:50:f3:aa:03:5a:aa: b8:30:90:91:d6:6c:0c:a0:c2:8c:22:79:ff:2c:d1:e4:80:81: 77:87:43:ad:12:40:fd:6b:9a:bc:6b:f9:14:97:c3:2d:96:5f: 2f:69:a2:af:9c:d5:ac:8f:43:6b:ea:18:5b:3c:16:f5:27:50: 40:f4:9d:db:97:96:0b:07:29:e7:3b:27:b9:54:a0:a2:ce:81: 30:c0:41:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjQxMTIwMTc1ODEyWhcNMjQxMTI3MTc1ODEyWjAYMRYwFAYD VQQDEw02NzNlMjMzNC1iZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0s0pDiKKBppbEMbWZb13sNiBHM4a6T0m8Hkx+9znK24KQxONUOueXHN4EJIR 8XLKgBdDusCZF3BfRvF3A6C10HG1QCsVS99mHj0DBDbtQFN1FcVBJfaq48VqLBEH FoOB7QauIUYYis3BSZkHmQ5b8Pg5K2u40GX3CkU/haEFmtmihPqqiCGzHHfzi5zt 3b57OQGWM3321QTTPfdc33qzkgwizaRYqxrEKFAoA9JLM/UE9a0XCa2hCQOC1oaA 0cWnXUhqK9v7Kr20csX2zJ4C/8swmgC42emlmNVZKowQ6Ell7zh+qdskCQAmyV/7 dclg1jI5NRl0P9jEf05xG9lVmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZ8znQZ uaV29RC66+OrXJSmSUOqMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9mXYUsnzdnB8jdRdYx4vIVg+EVIJqA2z3Dn/xAVFr+blVLuw5raHi TI2YyTqRWxI51HaHHQaAodgtoHWMTPbT+B3efbptyB8BCWATAUK3jFOijn2Cb6cK aGFUZxsCpTWUtbRKfnQkF7Q16Z1MZMH6nNuCuJ3T2WU6Eh+hHDQ5VNfsJ7UJy/tD V/lz9c6cdOtQLBHHrjxEBE5y9Bn8/uIkvNR0EP7fI8j3JQUsl51Q86oDWqq4MJCR 1mwMoMKMInn/LNHkgIF3h0OtEkD9a5q8a/kUl8Mtll8vaaKvnNWsj0Nr6hhbPBb1 J1BA9J3bl5YLBynnOye5VKCizoEwwEEm -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:44 2024 by rpki-client on console-fra.rpki-client.org