$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: Q2ouIorM+JEdSRd3YsK2GAt+citMIeUx3A92TCJxjQc= Subject key identifier: B4:F4:C9:1F:F5:43:19:1B:6F:AC:62:66:37:7A:AF:D3:99:A3:FA:18 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 0170 Signing time: Thu 21 Nov 2024 02:15:18 +0000 Manifest this update: Thu 21 Nov 2024 02:15:17 +0000 Manifest next update: Thu 28 Nov 2024 02:15:17 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: vMgHzX7zwbZjKSx3b+FjE+5bRf5LoW6RWTOLEL/GSbk=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: SP43dDj0TP2AuH+ERwKOivn1jA5dt4mXL5sQptk/Mvw=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: SW94V8FK+wh3g2owH4FSTBAuPQXa1Wqrh4t/o9T94fQ=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: J+eUq7xSVl/ftHVow0zUjtY1Um3ErdEi7ydMTSgX11Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Nov 21 02:15:17 2024 GMT Not After : Nov 28 02:15:17 2024 GMT Subject: CN=673e97b6-beff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e2:41:93:15:28:91:0a:d0:21:09:b6:54:e4: 4c:3c:c7:ab:9c:a3:40:da:a9:fc:11:39:d8:05:75: 74:49:40:61:87:c7:35:2b:f4:d1:31:6a:cb:89:b8: 57:eb:01:80:e2:38:88:c0:eb:40:06:70:97:cf:4a: b9:81:a0:1c:2d:22:cb:bd:57:69:b7:a3:64:64:f5: 8e:f6:9e:e2:de:d7:6e:99:8c:f3:aa:11:c8:74:c3: 53:4f:15:c6:50:11:01:48:ae:56:27:42:7c:da:90: 5e:8b:5b:c3:61:16:72:f9:3c:4b:07:ca:24:fd:b5: 8e:77:85:21:47:38:f5:d8:5f:fb:6e:f2:f3:50:ce: b7:09:5f:bf:1a:fc:a4:8a:bd:9c:01:45:28:cc:c7: 3e:77:98:e5:81:a5:59:b5:5e:81:12:80:20:f5:35: 08:68:ce:61:35:8b:1b:a4:9d:5a:e9:fc:db:28:60: 06:31:04:d2:17:45:3d:76:31:cd:0f:e2:c0:4b:98: 1d:ff:c8:4a:22:ec:ff:48:27:ea:59:82:27:cc:ca: 68:4f:4c:20:14:01:e7:a0:8c:ba:fe:01:c4:ac:94: d6:68:b3:3d:d4:a2:dc:9c:ec:66:fe:93:9a:1d:50: 3e:f1:71:05:5d:15:20:a4:29:a2:69:02:cb:91:60: 7c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F4:C9:1F:F5:43:19:1B:6F:AC:62:66:37:7A:AF:D3:99:A3:FA:18 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ee:e7:86:97:3f:f4:8f:9e:dd:30:82:e3:41:f6:28:88:8f: 78:8a:6e:4e:98:48:44:8f:a1:f0:1e:e2:9e:60:0e:85:04:0e: 12:9b:fc:0e:2a:fc:8a:4e:c7:fe:f3:9e:13:5e:3d:86:aa:dc: ba:b8:79:9f:fe:f2:84:44:4c:ad:7c:8d:6e:fd:fb:e6:59:4b: 4f:d1:a0:2d:92:f9:b8:46:86:bc:65:f7:76:57:b6:a0:c1:25: e7:17:0d:77:b9:b2:6a:58:d3:b7:b9:6d:d2:5f:ef:51:fb:7d: 4f:8e:4f:f9:55:f2:c6:e4:5e:24:29:39:70:26:06:a7:9d:be: ac:52:72:b7:4c:d6:c0:e7:0d:29:4b:c1:6c:77:fc:52:0f:fb: d4:20:f5:e7:06:12:d4:dd:0f:7c:1f:c3:99:31:e2:ca:48:dd: 20:62:0f:04:0b:6d:03:3b:8c:25:57:ae:b2:84:70:59:77:95: e3:49:c1:3c:69:44:49:a0:5c:08:40:41:82:25:ed:b0:1b:20: 41:f6:70:e3:1c:de:8b:5d:72:eb:69:14:bd:1a:3a:ef:7f:f6: 9f:31:ee:5a:d6:4e:d7:1a:43:d1:b0:34:a5:ad:65:96:96:88: c1:5c:3b:f5:d6:31:c3:7e:6b:4c:fb:22:d1:e5:29:ff:d4:99: a2:9f:d4:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjQxMTIxMDIxNTE3WhcNMjQxMTI4MDIxNTE3WjAYMRYwFAYD VQQDEw02NzNlOTdiNi1iZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+JBkxUokQrQIQm2VORMPMernKNA2qn8ETnYBXV0SUBhh8c1K/TRMWrLibhX 6wGA4jiIwOtABnCXz0q5gaAcLSLLvVdpt6NkZPWO9p7i3tdumYzzqhHIdMNTTxXG UBEBSK5WJ0J82pBei1vDYRZy+TxLB8ok/bWOd4UhRzj12F/7bvLzUM63CV+/Gvyk ir2cAUUozMc+d5jlgaVZtV6BEoAg9TUIaM5hNYsbpJ1a6fzbKGAGMQTSF0U9djHN D+LAS5gd/8hKIuz/SCfqWYInzMpoT0wgFAHnoIy6/gHErJTWaLM91KLcnOxm/pOa HVA+8XEFXRUgpCmiaQLLkWB8ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLT0yR/1 Qxkbb6xiZjd6r9OZo/oYMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB7ueGlz/0j57dMILjQfYoiI94im5OmEhEj6HwHuKeYA6FBA4Sm/wO KvyKTsf+854TXj2Gqty6uHmf/vKEREytfI1u/fvmWUtP0aAtkvm4Roa8Zfd2V7ag wSXnFw13ubJqWNO3uW3SX+9R+31Pjk/5VfLG5F4kKTlwJgannb6sUnK3TNbA5w0p S8Fsd/xSD/vUIPXnBhLU3Q98H8OZMeLKSN0gYg8EC20DO4wlV66yhHBZd5XjScE8 aURJoFwIQEGCJe2wGyBB9nDjHN6LXXLraRS9Gjrvf/afMe5a1k7XGkPRsDSlrWWW lojBXDv11jHDfmtM+yLR5Sn/1Jmin9Sz -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:31 2024 by rpki-client on console-ams.rpki-client.org