$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: LAJWftzZfrsyID/i028jxIUnIi0YcQknBnoMSCBttW8= Subject key identifier: E6:91:99:30:67:5C:84:14:F4:85:5D:9A:5B:ED:96:8C:28:03:6A:02 Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 1682 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 1679 Signing time: Fri 22 Nov 2024 16:42:04 +0000 Manifest this update: Fri 22 Nov 2024 16:42:04 +0000 Manifest next update: Fri 29 Nov 2024 16:42:04 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: DBUu1U1K+0Ufl5Ums1V6xF1pk+aGxHK2ooTo0B3z+ig=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: R7Apdk4jkU/Dl3TATxMh3vpfjJKmPcvmf2PXDUW1LFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5762 (0x1682) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: Nov 22 16:42:04 2024 GMT Not After : Nov 29 16:42:04 2024 GMT Subject: CN=6740b45c-514b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:72:b5:d2:ab:8a:a1:21:c8:4c:1a:76:ee:08: d9:af:32:b8:a7:7b:d7:e0:38:ed:8a:1a:a6:ca:c6: 82:0b:8b:46:0d:36:0c:f8:ed:e4:62:7d:7b:cd:55: ed:3f:c3:3d:07:59:02:dc:b9:74:f2:e1:8d:ef:04: f5:e1:72:a3:ef:14:03:9c:df:f1:d6:32:4c:ee:54: 4f:8f:80:4d:20:59:83:0d:98:74:0a:fa:de:01:19: 14:a0:34:13:4d:d8:e4:90:c0:8b:63:a9:8f:e3:56: 23:4d:eb:89:42:2e:a5:91:f1:d7:20:06:29:6e:d6: c1:db:3c:f3:25:95:cb:72:c9:eb:ea:d1:58:64:ed: 3d:54:89:44:1a:6d:2f:d1:2a:df:59:de:32:8e:61: 38:c4:5c:ea:ec:1f:dc:d0:b1:98:96:ec:f1:d0:12: 00:6e:fe:b7:f2:75:c5:a9:fe:df:b1:94:85:2b:b2: ea:e4:14:19:01:10:88:bc:3f:a7:82:34:90:1a:d2: 40:5d:38:21:1a:9a:40:04:a9:b5:19:91:23:3a:7a: 33:60:28:de:71:09:aa:0d:3b:20:94:14:f7:a5:4c: 57:2f:77:90:ed:4d:98:7e:16:4e:38:76:52:d8:4f: dc:10:c9:98:e9:81:5f:1d:20:bc:a3:21:7a:80:f4: 42:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:91:99:30:67:5C:84:14:F4:85:5D:9A:5B:ED:96:8C:28:03:6A:02 X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:15:13:8a:a3:01:73:9b:84:00:2d:15:92:f5:93:fa:40:3f: 1a:39:e4:c2:d0:d6:c6:5b:9b:b3:4c:6d:d3:8d:8f:3f:b1:a2: 93:51:69:da:6c:e9:d0:0a:0d:a1:17:1c:ee:22:35:12:7b:27: 80:fd:3c:e2:95:45:a7:94:53:5c:3f:04:4e:3f:a5:3e:34:34: de:2a:41:fc:a1:f5:1c:60:80:5b:0b:04:bb:66:2b:a7:25:d2: 6c:38:8b:f8:03:dc:92:c3:76:75:f8:5f:d3:2d:0a:31:96:9f: 76:72:ec:e3:ec:f3:e9:9d:3b:f5:7b:c2:c4:87:c7:66:fc:9c: f4:93:ba:c0:fe:2c:d3:8c:3c:98:ad:e7:4c:61:18:5f:99:3b: 44:8b:6b:eb:3e:46:32:56:ab:3d:c4:71:13:d1:b1:1a:d8:80: e5:d1:fa:a7:45:52:a3:14:c3:25:3e:4d:aa:b1:e6:98:43:16: 28:13:f8:9a:66:52:ca:7c:a9:75:84:29:fe:14:31:a4:d1:5e: 52:6a:25:fd:28:30:12:03:4d:3c:07:e7:42:6e:59:5a:de:db: bf:8a:d0:7e:cd:0f:15:7b:66:84:02:82:59:ce:b3:ac:98:4a: 9c:24:32:53:a2:e7:83:28:1e:8d:f7:23:92:ce:4b:44:f0:21: 8b:06:0b:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjQxMTIyMTY0MjA0WhcNMjQxMTI5MTY0MjA0WjAYMRYwFAYD VQQDEw02NzQwYjQ1Yy01MTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7XK10quKoSHITBp27gjZrzK4p3vX4DjtihqmysaCC4tGDTYM+O3kYn17zVXt P8M9B1kC3Ll08uGN7wT14XKj7xQDnN/x1jJM7lRPj4BNIFmDDZh0CvreARkUoDQT TdjkkMCLY6mP41YjTeuJQi6lkfHXIAYpbtbB2zzzJZXLcsnr6tFYZO09VIlEGm0v 0SrfWd4yjmE4xFzq7B/c0LGYluzx0BIAbv638nXFqf7fsZSFK7Lq5BQZARCIvD+n gjSQGtJAXTghGppABKm1GZEjOnozYCjecQmqDTsglBT3pUxXL3eQ7U2YfhZOOHZS 2E/cEMmY6YFfHSC8oyF6gPRCyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaRmTBn XIQU9IVdmlvtlowoA2oCMB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuFROKowFzm4QALRWS9ZP6QD8aOeTC0NbGW5uzTG3TjY8/saKTUWna bOnQCg2hFxzuIjUSeyeA/TzilUWnlFNcPwROP6U+NDTeKkH8ofUcYIBbCwS7Ziun JdJsOIv4A9ySw3Z1+F/TLQoxlp92cuzj7PPpnTv1e8LEh8dm/Jz0k7rA/izTjDyY redMYRhfmTtEi2vrPkYyVqs9xHET0bEa2IDl0fqnRVKjFMMlPk2qseaYQxYoE/ia ZlLKfKl1hCn+FDGk0V5SaiX9KDASA008B+dCblla3tu/itB+zQ8Ve2aEAoJZzrOs mEqcJDJToueDKB6N9yOSzktE8CGLBgs1 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org