$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: zkuS01IdZq5+iS9Y9bEao/ApGBG2qL8QJpSyFd3o9XA= Subject key identifier: C4:E8:3A:7C:4D:A6:CF:15:9D:3A:52:43:66:6E:A8:28:D9:2D:9F:33 Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 0795 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 078F Signing time: Fri 22 Nov 2024 20:52:36 +0000 Manifest this update: Fri 22 Nov 2024 20:52:36 +0000 Manifest next update: Fri 29 Nov 2024 20:52:36 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: HgOWdXfbbW2IaZPR1gYb4azXBXoUkwbk422Z9n46//k=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: yiF95qxdVC02mMlRMuSXuOtx8PRvp7gaxII4qCM32AQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: Nov 22 20:52:36 2024 GMT Not After : Nov 29 20:52:36 2024 GMT Subject: CN=6740ef14-1dee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f9:b2:da:99:01:95:0d:7f:46:11:f8:c9:9c: bd:c1:38:f6:9e:c1:5c:aa:14:2f:71:14:50:25:5a: fb:ed:de:f8:07:8c:ff:63:3b:0b:ac:ea:85:49:00: 4c:c2:b2:2c:32:44:55:de:3d:c7:0a:d5:44:a7:fb: 88:73:0a:18:61:47:3d:1d:ff:bd:8a:d2:ca:4a:80: 7a:d0:18:cf:8b:dd:d5:b3:0a:58:a1:28:c1:a2:84: 15:0a:40:3b:9c:65:25:68:4d:68:f1:4c:df:60:6c: d0:84:2d:25:14:fa:d8:e7:16:1e:fe:6f:db:d6:cd: f6:df:44:9a:97:c3:e8:98:f3:e0:1c:80:90:bb:6a: 4c:53:7c:bf:7f:89:a3:bb:ae:4f:cb:02:9f:0d:3b: 8e:63:28:be:07:3b:85:ec:10:1b:18:f6:cd:bc:a7: c0:9e:22:09:e1:66:6b:a4:87:2c:d7:5e:fd:36:75: 61:1e:38:b3:6c:d6:25:68:35:a2:65:5c:d9:61:68: 1c:b4:61:19:97:e4:af:aa:df:57:6e:41:ef:6d:17: 17:ae:88:07:36:aa:5b:9c:d0:df:8e:cf:c0:92:8e: 9b:66:e0:28:18:00:bd:51:f8:e9:d4:d1:91:bb:e0: 96:a8:e5:03:10:c7:4e:8b:cb:33:d5:c3:e0:a9:74: 69:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E8:3A:7C:4D:A6:CF:15:9D:3A:52:43:66:6E:A8:28:D9:2D:9F:33 X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0c:69:c4:ac:92:67:7a:1a:c6:67:66:fc:64:d1:a7:6b:97: 25:cd:dc:16:7d:d8:37:94:7c:db:fc:8d:f5:50:1b:74:c9:25: 0a:c7:5e:ab:0f:2b:fa:c0:84:c2:87:cd:10:39:f2:68:8c:90: a1:0b:8a:e1:f5:a8:dd:91:a8:54:b5:81:d3:01:0d:a7:12:d9: 97:63:5f:f4:36:5c:b4:8f:db:c4:74:9a:43:22:5f:77:34:d8: f0:9a:62:6a:f7:85:bf:03:26:5f:de:d6:cc:1e:e7:e1:e6:bb: e0:b9:f8:e0:f9:60:c5:bd:08:86:e0:05:38:2c:32:27:72:eb: fd:ae:ab:60:9e:57:cc:70:aa:78:8d:81:d2:55:5a:f3:9f:1a: c5:80:5d:65:2c:f4:b9:51:d4:0b:8d:5d:18:fc:54:0d:91:13: 25:c4:eb:9d:fe:37:4c:fe:97:2a:81:1a:00:11:8c:22:24:c8: c8:07:bc:8d:d3:56:eb:57:06:c0:60:1a:b6:fa:0d:db:99:a4: 35:f7:17:f9:69:91:82:9d:3a:17:33:53:53:bf:44:7f:2d:fa: 40:8e:33:a1:8a:56:1b:ef:b8:33:91:b0:41:6a:8b:2a:62:38: cf:57:bc:ed:4a:95:82:13:e3:c3:ba:31:b1:58:e8:cd:e7:cb: f3:3f:d9:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjQxMTIyMjA1MjM2WhcNMjQxMTI5MjA1MjM2WjAYMRYwFAYD VQQDEw02NzQwZWYxNC0xZGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPmy2pkBlQ1/RhH4yZy9wTj2nsFcqhQvcRRQJVr77d74B4z/YzsLrOqFSQBM wrIsMkRV3j3HCtVEp/uIcwoYYUc9Hf+9itLKSoB60BjPi93VswpYoSjBooQVCkA7 nGUlaE1o8UzfYGzQhC0lFPrY5xYe/m/b1s3230Sal8PomPPgHICQu2pMU3y/f4mj u65PywKfDTuOYyi+BzuF7BAbGPbNvKfAniIJ4WZrpIcs1179NnVhHjizbNYlaDWi ZVzZYWgctGEZl+Svqt9XbkHvbRcXrogHNqpbnNDfjs/Ako6bZuAoGAC9Ufjp1NGR u+CWqOUDEMdOi8sz1cPgqXRp6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMToOnxN ps8VnTpSQ2ZuqCjZLZ8zMB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHDGnErJJnehrGZ2b8ZNGna5clzdwWfdg3lHzb/I31UBt0ySUKx16r Dyv6wITCh80QOfJojJChC4rh9ajdkahUtYHTAQ2nEtmXY1/0Nly0j9vEdJpDIl93 NNjwmmJq94W/AyZf3tbMHufh5rvgufjg+WDFvQiG4AU4LDIncuv9rqtgnlfMcKp4 jYHSVVrznxrFgF1lLPS5UdQLjV0Y/FQNkRMlxOud/jdM/pcqgRoAEYwiJMjIB7yN 01brVwbAYBq2+g3bmaQ19xf5aZGCnToXM1NTv0R/LfpAjjOhilYb77gzkbBBaosq YjjPV7ztSpWCE+PDujGxWOjN58vzP9lW -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org