$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: o/NGMnK1wpDdBHMJlrds/S0jTZnuA6AJE8YSpHCoCOk= Subject key identifier: 28:F0:8B:EB:88:FF:46:9B:87:77:D1:D7:8B:C6:D2:DA:98:08:FE:E9 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 0567 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 0562 Signing time: Fri 22 Nov 2024 22:56:29 +0000 Manifest this update: Fri 22 Nov 2024 22:56:28 +0000 Manifest next update: Fri 29 Nov 2024 22:56:28 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: vgTg86DrWbKJ03pH4jtMf4GGU866HkSo53PsSQGOMbI=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: YXlqwalf4S9fVaZEQbU9JBdRoJrEUsovu3sf9Uc2gyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Nov 22 22:56:28 2024 GMT Not After : Nov 29 22:56:28 2024 GMT Subject: CN=67410c1d-d11d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d6:c1:5c:63:c5:a3:53:40:32:6e:a7:c7:59: 50:16:2b:57:b4:02:88:9f:50:7e:4f:e4:d8:1e:40: fb:75:54:68:29:dc:3e:5b:4c:eb:2b:49:53:d2:84: 18:1b:95:09:76:6a:5c:8d:f2:a3:9b:74:e5:ef:a3: cb:fd:d6:c1:ab:64:5c:cb:84:35:75:3e:48:78:9a: af:81:a9:10:59:f7:f9:21:c2:85:c0:da:cc:bb:bf: e4:4c:19:f0:2c:fe:ea:6c:44:bb:b8:40:ba:46:0b: 5a:3c:81:b7:91:c8:26:b2:e5:8f:ca:c9:be:14:7a: 60:93:3e:65:a3:d7:f6:35:43:05:6e:2d:6e:32:1a: 67:11:c6:b7:b1:4c:ab:5f:ba:8b:b4:7d:d0:cf:12: 89:39:03:3b:91:f6:a6:1b:79:14:4f:75:c9:cf:a3: 98:9e:ec:6d:dd:80:a2:53:da:7a:84:25:4b:26:36: de:97:47:1e:06:bd:cf:fa:01:79:a4:03:45:c1:4c: 56:47:4e:b8:39:70:87:2e:ac:b3:6e:ee:7f:45:3d: 36:cf:8c:f6:80:ef:f5:41:79:0d:53:7b:cf:79:05: 5c:00:b7:3a:4b:f8:58:5b:b9:0d:46:37:b6:19:19: 31:e7:be:21:e8:b3:98:d8:3d:8a:bc:17:ca:39:62: 0e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:8B:EB:88:FF:46:9B:87:77:D1:D7:8B:C6:D2:DA:98:08:FE:E9 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ba:cc:49:f9:ee:71:35:ac:12:13:91:51:6e:52:7e:24:e4: 93:2b:3e:66:f0:63:10:4b:56:ad:1d:6d:44:77:17:1d:57:00: d8:2c:ce:a4:2f:92:68:dc:d6:81:e7:ca:96:0f:e2:9c:94:0d: b6:d2:ed:90:8a:92:72:49:0f:aa:db:2e:a8:29:49:eb:f6:66: 7f:78:55:86:88:40:b1:4d:64:e2:57:29:98:8c:14:4b:df:6f: 4d:90:bc:c3:ca:80:72:df:32:53:8a:7b:23:cb:ad:46:95:5a: a2:b6:8c:c5:57:9f:63:f8:d2:18:da:ca:12:1a:b4:00:65:7d: c9:0c:60:44:84:5c:44:65:43:c5:bb:0a:ed:f5:a3:e3:bf:c0: 8a:42:81:1e:a4:85:f6:b1:9c:83:cc:04:a0:30:83:63:32:ea: c9:2a:66:3a:93:26:79:00:92:ec:26:dc:2e:33:84:d8:27:e8: f8:71:f6:6c:e5:fd:d4:30:4a:c5:75:3d:5a:fb:27:2b:b1:ec: dd:fc:d9:d5:e8:09:17:12:9e:ec:d6:b2:5f:ad:55:bc:96:1f: e9:1c:01:69:16:b7:d4:df:b2:0f:52:03:72:bb:3a:39:bc:0b: 7f:c4:d1:30:b9:50:d5:4d:98:10:1f:ec:37:ff:73:c8:31:ae: bc:28:73:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjQxMTIyMjI1NjI4WhcNMjQxMTI5MjI1NjI4WjAYMRYwFAYD VQQDEw02NzQxMGMxZC1kMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNbBXGPFo1NAMm6nx1lQFitXtAKIn1B+T+TYHkD7dVRoKdw+W0zrK0lT0oQY G5UJdmpcjfKjm3Tl76PL/dbBq2Rcy4Q1dT5IeJqvgakQWff5IcKFwNrMu7/kTBnw LP7qbES7uEC6RgtaPIG3kcgmsuWPysm+FHpgkz5lo9f2NUMFbi1uMhpnEca3sUyr X7qLtH3QzxKJOQM7kfamG3kUT3XJz6OYnuxt3YCiU9p6hCVLJjbel0ceBr3P+gF5 pANFwUxWR064OXCHLqyzbu5/RT02z4z2gO/1QXkNU3vPeQVcALc6S/hYW7kNRje2 GRkx574h6LOY2D2KvBfKOWIOcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjwi+uI /0abh3fR14vG0tqYCP7pMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgusxJ+e5xNawSE5FRblJ+JOSTKz5m8GMQS1atHW1EdxcdVwDYLM6k L5Jo3NaB58qWD+KclA220u2QipJySQ+q2y6oKUnr9mZ/eFWGiECxTWTiVymYjBRL 329NkLzDyoBy3zJTinsjy61GlVqitozFV59j+NIY2soSGrQAZX3JDGBEhFxEZUPF uwrt9aPjv8CKQoEepIX2sZyDzASgMINjMurJKmY6kyZ5AJLsJtwuM4TYJ+j4cfZs 5f3UMErFdT1a+ycrsezd/NnV6AkXEp7s1rJfrVW8lh/pHAFpFrfU37IPUgNyuzo5 vAt/xNEwuVDVTZgQH+w3/3PIMa68KHNi -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:35 2024 by rpki-client on console-ams.rpki-client.org