$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: CnzMIdXy6NxoQngXvFjg8fUmSqZDYCLX4LdxH3OwmE0= Subject key identifier: 13:A3:6C:D1:0F:19:EB:21:CB:BC:9C:BC:EF:E6:A1:37:E0:3D:00:25 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 016E Signing time: Sat 23 Nov 2024 02:13:56 +0000 Manifest this update: Sat 23 Nov 2024 02:13:55 +0000 Manifest next update: Sat 30 Nov 2024 02:13:55 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: nJ/1vGO4GLOOjU8FCeNCEVbDRP3CxqR/14juInkH3lo=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Nov 23 02:13:55 2024 GMT Not After : Nov 30 02:13:55 2024 GMT Subject: CN=67413a64-5c14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:02:1c:b8:46:e2:d2:43:2b:47:e7:af:96:13: aa:6a:cd:0c:0a:8e:eb:66:65:05:74:1f:ef:20:17: d8:9e:52:11:ab:94:54:cd:d1:25:89:eb:64:1f:3c: 7a:07:1e:86:f1:41:3a:a2:c5:45:89:a6:cc:14:e9: 1b:c2:b3:fb:fa:34:99:f1:28:89:35:eb:9b:b8:89: 10:5a:a5:47:fa:c2:e8:f6:fd:e3:3a:fa:4c:7c:98: 23:82:f3:87:fd:e2:69:69:4b:0b:53:a7:3e:3c:11: 9a:a0:8b:36:87:3f:d3:c6:c8:48:7e:38:1e:08:a9: df:0e:84:87:01:57:2b:fd:ee:f5:ce:af:d6:2e:9a: 2c:b8:e9:ef:a4:d4:f4:1f:93:b7:95:fa:89:ac:10: 9e:6b:77:5a:62:63:5a:9a:53:9f:6d:e2:a3:46:28: 5d:d4:bb:40:19:73:17:a4:e3:43:8f:f7:a5:09:5f: 52:fd:56:14:c4:33:da:0b:bf:95:c6:da:d5:12:d2: fe:6d:92:4e:27:ae:5f:dc:e2:44:85:d6:db:0a:25: bf:a0:cf:e9:8f:91:9e:66:80:21:79:8f:63:7e:c0: e7:81:ef:c0:da:b1:70:48:00:a4:d0:6f:1f:8a:95: 0b:d4:5b:99:7b:89:f4:cc:91:6f:22:1d:06:10:54: cb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A3:6C:D1:0F:19:EB:21:CB:BC:9C:BC:EF:E6:A1:37:E0:3D:00:25 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:fc:31:ca:8c:a3:7c:4e:de:20:d2:ea:1c:1f:0e:ab:73:d9: f1:10:0a:a7:8e:8b:48:54:da:0b:95:3f:54:cd:17:75:b6:95: 11:3c:76:d1:5a:b9:37:ba:8f:9f:4b:5f:67:7c:05:bb:69:fa: 3a:55:61:96:40:b4:a3:ab:0d:97:08:b0:81:d1:6b:b0:9a:eb: 27:7e:fd:1a:19:03:6e:ba:81:8e:89:59:16:0d:54:92:76:78: 9e:f8:f3:34:5c:a7:5e:b9:85:ed:72:99:80:46:40:77:f5:03: f7:56:23:81:ed:db:0e:6a:e4:a6:6d:22:af:5b:77:50:a4:4c: 0e:b5:55:56:39:64:7d:c2:00:12:8c:c2:98:b2:06:47:aa:c9: b8:fb:0e:27:67:b5:37:3a:c5:4c:5b:46:5b:07:f6:35:98:dd: 5b:77:18:82:3e:cc:c6:3d:31:5a:2f:a2:92:3f:46:29:08:bf: 69:6c:6c:3b:99:c0:9a:b1:3a:c9:db:7c:49:54:e3:06:76:ce: 78:25:a6:d3:d6:4b:b9:e5:a9:fe:79:bd:ca:f9:25:25:a4:b8: f1:3c:01:e4:65:b1:05:4c:94:d3:21:c1:7a:c3:49:fe:4e:bc: c8:21:09:f0:40:14:ab:4d:53:20:b7:6c:fb:ca:8b:dc:48:a1: 6c:7b:b7:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjQxMTIzMDIxMzU1WhcNMjQxMTMwMDIxMzU1WjAYMRYwFAYD VQQDEw02NzQxM2E2NC01YzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gIcuEbi0kMrR+evlhOqas0MCo7rZmUFdB/vIBfYnlIRq5RUzdElietkHzx6 Bx6G8UE6osVFiabMFOkbwrP7+jSZ8SiJNeubuIkQWqVH+sLo9v3jOvpMfJgjgvOH /eJpaUsLU6c+PBGaoIs2hz/TxshIfjgeCKnfDoSHAVcr/e71zq/WLposuOnvpNT0 H5O3lfqJrBCea3daYmNamlOfbeKjRihd1LtAGXMXpONDj/elCV9S/VYUxDPaC7+V xtrVEtL+bZJOJ65f3OJEhdbbCiW/oM/pj5GeZoAheY9jfsDnge/A2rFwSACk0G8f ipUL1FuZe4n0zJFvIh0GEFTLtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOjbNEP Geshy7ycvO/moTfgPQAlMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF/DHKjKN8Tt4g0uocHw6rc9nxEAqnjotIVNoLlT9UzRd1tpURPHbR Wrk3uo+fS19nfAW7afo6VWGWQLSjqw2XCLCB0Wuwmusnfv0aGQNuuoGOiVkWDVSS dnie+PM0XKdeuYXtcpmARkB39QP3ViOB7dsOauSmbSKvW3dQpEwOtVVWOWR9wgAS jMKYsgZHqsm4+w4nZ7U3OsVMW0ZbB/Y1mN1bdxiCPszGPTFaL6KSP0YpCL9pbGw7 mcCasTrJ23xJVOMGds54JabT1ku55an+eb3K+SUlpLjxPAHkZbEFTJTTIcF6w0n+ TrzIIQnwQBSrTVMgt2z7yovcSKFse7eO -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org