$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: Qu6uyWn11SXaqhYKj/oK210pyef/hjD0AoTtVxGFLmI= Subject key identifier: 12:1E:AF:F8:12:E9:C2:4F:5E:DA:58:B9:8F:DA:76:53:D6:1E:D8:59 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 344C Signing time: Fri 22 Nov 2024 14:22:15 +0000 Manifest this update: Fri 22 Nov 2024 14:22:15 +0000 Manifest next update: Fri 29 Nov 2024 14:22:15 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: ocouYXSC6EE7i515IHfGEA+OkFZsrJEssJvZwtI3c9s=) 2: AC3033FAC35011EE8A0A4819C4F9AE02.roa (hash: V/HURMzXNTeg+2bsSb3s+TqvwLl3AYnJsdtDEXn23Ng=) 3: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: ucV0kVixfHpuy12BVYVN62sGm8utgsjQ/0NVbfikRis=) 4: 3E8B52A4C34F11EE8EFD7916C4F9AE02.roa (hash: oqMHpsgiS0VaQQyUF5jNfEMEsHe0f7IvP4IJn3ymNZg=) 5: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 1HeD3vEPTet+037gaAO1k2WACoSTrjT1BrLUthDQvck=) 6: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: jIXmhGTsHnOLM/8Oki3QEi8c2FlMLFZ5ltRb0SYd+ig=) 7: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: qt+b79qUZeUfV9aMLkK2Vf0knDB1FC/92rGPVNLCE5Y=) 8: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: MRIxoftDwmp6WRJIoO9F8Xfh6zfeqVoYT85Plhiizjg=) 9: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: lJX0Rj0D2pXCWqSqPGBLqRXobNJsOmj1xve2tbokkqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13429 (0x3475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Nov 22 14:22:15 2024 GMT Not After : Nov 29 14:22:15 2024 GMT Subject: CN=67409397-cf03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e6:ac:91:8f:ff:3b:62:5b:96:cd:db:43:99: dc:f0:ff:8a:33:ad:6e:b7:f5:d0:ea:30:78:3e:1a: 63:4a:77:a2:72:cf:b5:98:f8:8d:8e:90:4b:57:15: a5:f5:0c:7b:2e:7a:95:cd:6f:09:54:43:02:da:54: 65:41:6c:24:11:d5:3c:fa:3a:6a:fd:43:c5:bc:da: 74:b5:9c:ab:c0:b1:10:c9:72:7d:5f:bc:d1:51:68: ab:77:e2:16:e2:ce:57:4e:4c:dd:c8:e8:ef:bf:07: 78:86:86:90:be:60:09:c1:16:d1:90:39:32:2f:43: 22:eb:5f:75:6f:e7:f8:2f:f4:2c:5b:af:a9:39:3b: c5:0b:49:30:9d:ee:f1:62:39:8b:7e:3c:e2:54:96: 13:d5:49:3d:2d:89:e8:11:cd:d1:01:b2:24:32:b2: cc:ce:8f:c5:49:09:38:d3:4c:73:15:46:3d:a5:06: 7c:54:2e:dd:c3:93:4f:7f:14:95:3a:bd:2c:07:d6: 8a:46:3c:04:94:33:28:7e:0d:e0:25:ad:74:0c:b1: 45:cf:1e:ca:4a:4a:f1:2e:c7:1d:1c:9e:41:d8:40: 15:fe:cb:69:06:ce:79:88:52:c6:b3:f6:a8:1e:69: 3e:86:0c:2a:fd:f0:9a:2a:c4:bb:12:65:a2:51:3f: 06:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:1E:AF:F8:12:E9:C2:4F:5E:DA:58:B9:8F:DA:76:53:D6:1E:D8:59 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:69:d2:62:16:ad:92:c3:21:b5:c4:10:52:ec:59:d3:1b:7e: a0:95:2d:70:f5:88:6b:68:93:96:c9:fb:a9:14:6d:77:34:7b: 86:59:7f:87:e5:20:fb:b2:9a:3c:fc:a8:3d:b9:70:f6:e4:20: 54:8b:e2:02:b7:bc:ff:e0:5e:b3:29:57:72:16:dc:84:21:79: 1d:ea:e9:9b:e9:f2:30:ef:d4:df:48:ed:ea:14:48:7d:f3:87: 18:67:75:9f:1d:4c:88:0b:b1:00:21:a0:f0:15:7f:4a:f3:ba: de:8e:b1:84:16:15:91:f8:08:2b:7b:99:32:8a:62:a1:0e:30: 10:6d:23:86:40:ea:31:eb:e4:2f:f3:a4:a6:42:78:f6:d7:21: bf:7d:23:ff:b3:51:84:78:42:39:b1:c7:2d:c4:31:3b:60:1a: 84:67:3c:0b:3b:a0:ae:ee:b5:10:26:9d:cd:43:70:42:32:2b: da:64:97:2b:b5:54:36:ce:f5:99:4b:10:07:8d:68:54:b3:35: da:f6:bb:98:55:6b:71:62:a2:df:39:85:0a:80:58:66:0b:ae: 61:19:02:69:93:44:6a:81:5a:dd:e7:5c:52:2e:9d:e9:fe:8f: e1:36:5b:a1:d4:2c:60:14:1e:1f:07:4a:dd:d7:f2:b0:ca:ee: 0b:11:db:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjQxMTIyMTQyMjE1WhcNMjQxMTI5MTQyMjE1WjAYMRYwFAYD VQQDEw02NzQwOTM5Ny1jZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuaskY//O2Jbls3bQ5nc8P+KM61ut/XQ6jB4PhpjSneics+1mPiNjpBLVxWl 9Qx7LnqVzW8JVEMC2lRlQWwkEdU8+jpq/UPFvNp0tZyrwLEQyXJ9X7zRUWird+IW 4s5XTkzdyOjvvwd4hoaQvmAJwRbRkDkyL0Mi6191b+f4L/QsW6+pOTvFC0kwne7x YjmLfjziVJYT1Uk9LYnoEc3RAbIkMrLMzo/FSQk400xzFUY9pQZ8VC7dw5NPfxSV Or0sB9aKRjwElDMofg3gJa10DLFFzx7KSkrxLscdHJ5B2EAV/stpBs55iFLGs/ao Hmk+hgwq/fCaKsS7EmWiUT8G4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIer/gS 6cJPXtpYuY/adlPWHthZMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFadJiFq2SwyG1xBBS7FnTG36glS1w9YhraJOWyfupFG13NHuGWX+H 5SD7spo8/Kg9uXD25CBUi+ICt7z/4F6zKVdyFtyEIXkd6umb6fIw79TfSO3qFEh9 84cYZ3WfHUyIC7EAIaDwFX9K87rejrGEFhWR+Agre5kyimKhDjAQbSOGQOox6+Qv 86SmQnj21yG/fSP/s1GEeEI5scctxDE7YBqEZzwLO6Cu7rUQJp3NQ3BCMivaZJcr tVQ2zvWZSxAHjWhUszXa9ruYVWtxYqLfOYUKgFhmC65hGQJpk0RqgVrd51xSLp3p /o/hNluh1CxgFB4fB0rd1/Kwyu4LEdvn -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:14 2024 by rpki-client on console-ams.rpki-client.org