$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: +Q7kh+dT9MPPMui/M8wt8Ie6nGQSThArceHFgPaLBQc= Subject key identifier: F0:B5:DF:7C:CA:4B:FC:EE:F3:71:65:79:77:11:3A:9B:12:AB:A9:6C Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 0602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 05F6 Signing time: Fri 22 Nov 2024 22:22:40 +0000 Manifest this update: Fri 22 Nov 2024 22:22:40 +0000 Manifest next update: Fri 29 Nov 2024 22:22:40 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: ReOmzLTCwNbaNIWf9cyuET9Wpsue3F/+ary8/3HkG1E=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: H4rCHNTwrLDXBPWNh+1x9w51oi/Ty9c8TNS+dkVYHKE=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: OAOhBdws2Og/Ca7gVwngPo7rjcHZWaqTFgTJSHrV1uM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Nov 22 22:22:40 2024 GMT Not After : Nov 29 22:22:40 2024 GMT Subject: CN=67410430-5a57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f3:24:22:a9:77:c1:7b:a7:a4:ea:23:18:29: 32:d1:cc:e6:8e:d4:20:f0:1c:18:06:de:85:f4:15: ad:88:ff:99:82:56:5d:4c:cd:4a:ef:d6:46:71:b9: ef:9b:fd:c2:52:80:25:ce:35:94:07:09:6e:f4:49: fb:ae:46:7d:d1:bd:ff:28:bf:a0:c4:39:42:a4:2c: 09:8e:5d:3d:ee:dc:c6:09:a1:da:90:32:5e:21:3c: 0c:bc:7f:46:19:a4:33:02:5d:07:cf:2e:94:99:b7: f2:33:e0:2e:53:0f:91:9a:e2:d2:96:59:96:9a:d9: 7f:a0:3c:89:a1:28:f6:5c:c0:2c:df:7e:b7:89:fa: 9f:01:da:70:e2:a3:ce:69:37:d8:5f:7c:48:b4:70: 29:6d:b9:77:dc:16:05:eb:0e:d0:ab:1d:e9:0e:5f: 87:bd:34:70:0e:bd:b1:c4:6f:06:25:cf:4d:2d:e9: e1:ab:6f:5f:34:8f:f5:6d:eb:b3:fa:d3:49:dd:1d: 5b:9e:08:b3:30:a1:d4:a4:62:b1:74:12:cd:5a:07: b3:ac:c8:8d:d2:dd:73:38:ee:e8:82:a8:5a:71:1a: fd:10:39:db:51:06:ef:5b:57:46:67:cf:7b:5a:65: 56:c8:da:ca:50:84:7d:1b:8c:e9:8c:fe:78:fb:3c: da:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B5:DF:7C:CA:4B:FC:EE:F3:71:65:79:77:11:3A:9B:12:AB:A9:6C X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:98:06:99:b9:68:ca:c6:38:dd:01:98:ec:1c:0e:0c:0c:e8: c8:0f:0f:5d:d1:58:b9:ed:43:0f:dd:2f:a5:f7:11:9f:b7:bf: e5:9c:61:f9:87:b6:c8:5d:cf:3a:e1:5b:04:e8:95:fc:dc:44: b5:ce:7f:ba:08:3b:f0:2c:26:3f:af:ca:c9:5d:8b:6c:2e:0a: 46:62:be:e6:df:39:7e:ed:9a:e8:6a:dc:1f:7b:72:a0:00:3b: f7:b9:3c:79:a4:c4:55:4a:d4:73:7f:52:fc:5d:d4:9c:6b:7b: 07:33:24:e3:a7:29:4f:da:04:24:fd:40:dc:8e:c9:82:16:36: 12:47:9f:ba:60:97:45:87:81:48:df:4a:f8:3d:dc:1d:8f:4d: 3b:d5:88:8c:08:18:5c:6c:78:55:7c:30:bd:3d:e9:1d:7b:47: 30:e0:1a:3d:7e:3a:26:be:e3:83:8a:eb:c4:1d:47:d1:9a:41: fd:60:4c:af:ea:62:b4:61:57:68:a0:89:4f:80:3c:98:e3:fe: ce:b6:85:e9:46:68:c5:5b:af:f7:c3:b1:ce:c3:44:70:4c:9a: c7:48:c4:a8:ca:d1:8c:90:45:ff:ab:5a:d8:65:51:92:6d:07: 48:d1:48:25:37:fd:43:99:0f:46:52:b9:15:76:e4:22:5e:b1: ce:99:e2:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjQxMTIyMjIyMjQwWhcNMjQxMTI5MjIyMjQwWjAYMRYwFAYD VQQDEw02NzQxMDQzMC01YTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfMkIql3wXunpOojGCky0czmjtQg8BwYBt6F9BWtiP+ZglZdTM1K79ZGcbnv m/3CUoAlzjWUBwlu9En7rkZ90b3/KL+gxDlCpCwJjl097tzGCaHakDJeITwMvH9G GaQzAl0Hzy6UmbfyM+AuUw+RmuLSllmWmtl/oDyJoSj2XMAs3363ifqfAdpw4qPO aTfYX3xItHApbbl33BYF6w7Qqx3pDl+HvTRwDr2xxG8GJc9NLenhq29fNI/1beuz +tNJ3R1bngizMKHUpGKxdBLNWgezrMiN0t1zOO7ogqhacRr9EDnbUQbvW1dGZ897 WmVWyNrKUIR9G4zpjP54+zzaMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPC133zK S/zu83FleXcROpsSq6lsMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtmAaZuWjKxjjdAZjsHA4MDOjIDw9d0Vi57UMP3S+l9xGft7/lnGH5 h7bIXc864VsE6JX83ES1zn+6CDvwLCY/r8rJXYtsLgpGYr7m3zl+7Zroatwfe3Kg ADv3uTx5pMRVStRzf1L8XdSca3sHMyTjpylP2gQk/UDcjsmCFjYSR5+6YJdFh4FI 30r4Pdwdj0071YiMCBhcbHhVfDC9Pekde0cw4Bo9fjomvuODiuvEHUfRmkH9YEyv 6mK0YVdooIlPgDyY4/7OtoXpRmjFW6/3w7HOw0RwTJrHSMSoytGMkEX/q1rYZVGS bQdI0UglN/1DmQ9GUrkVduQiXrHOmeJa -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org