$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: EQfgI8/lWBOi2ENX8fAHSX3ikAGsxyn1qQNTRQm/3TU= Subject key identifier: 9A:3D:A4:80:C9:56:CF:BB:2D:14:B0:87:37:E6:8A:CE:C2:0E:3D:A4 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0455 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 044D Signing time: Wed 20 Nov 2024 23:45:29 +0000 Manifest this update: Wed 20 Nov 2024 23:45:28 +0000 Manifest next update: Wed 27 Nov 2024 23:45:28 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: Y4wUVbS7pSpWoj+S3U7UKNdZrXMUfLpVdSEqVoiX478=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: xSQuICqEftDO2jVAN6yCIdaEpdEAXBTf0APY5z9yvHA=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: x9h06qfhNpw9HDsZ2fx+rNHJ0LpcCakerBbSGHozgRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1109 (0x455) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Nov 20 23:45:28 2024 GMT Not After : Nov 27 23:45:28 2024 GMT Subject: CN=673e7499-01ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b7:99:8d:5a:cd:b5:8f:03:15:ec:2d:6d:4f: 1f:55:36:9e:b7:9e:f4:b6:8e:9f:cd:e6:d1:ef:10: e0:6d:a6:f4:8a:c7:a9:32:68:d8:e7:5d:38:52:64: 5d:ad:6f:2f:b7:32:ab:5c:8f:86:29:39:6a:9f:95: 44:50:67:ac:76:9c:c8:6b:3f:de:a4:6d:57:8e:f3: 73:f1:c9:83:d4:fe:e9:c0:9e:c9:8d:bb:3d:34:1a: 32:53:7c:ef:eb:17:c8:5b:29:6e:a7:d4:ad:d5:e3: f3:7c:59:01:7f:4b:5c:2f:e3:5c:34:4d:cf:fc:af: 08:e2:9c:d7:f8:c5:f6:9f:f8:1b:a9:15:c4:93:a2: 04:a5:16:39:0e:e6:81:79:3b:a4:61:eb:99:7c:65: 23:7e:7d:ba:c4:b1:ac:ac:7d:d6:9e:e3:7e:4c:ca: 5c:de:18:4e:15:c1:9e:ae:0a:9b:c6:fc:db:7d:e6: 3b:be:bf:90:ef:9e:8c:a5:7a:8c:81:8d:25:5c:a7: 94:32:ca:4f:c0:57:16:fc:90:79:1a:21:bb:13:eb: 44:79:30:05:90:53:16:7e:57:97:bc:77:23:91:63: a9:16:3b:60:5f:e3:ce:cc:91:ae:88:df:68:a5:04: 22:c1:d5:69:4b:6d:1b:39:52:8e:2c:2b:6b:99:7f: ab:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3D:A4:80:C9:56:CF:BB:2D:14:B0:87:37:E6:8A:CE:C2:0E:3D:A4 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:67:79:11:40:c9:d2:f8:8d:d4:4b:dc:d8:c5:10:08:5b:18: 36:74:4d:36:37:15:cb:39:47:42:ff:97:36:e1:db:f8:9e:82: 78:8a:6d:ae:98:34:31:c3:dd:6b:9b:02:92:9e:d1:93:3b:62: 7c:f0:d7:23:b4:44:c0:94:3a:2f:b9:39:2b:41:e6:65:84:ca: 7d:63:dd:62:2a:e6:eb:e5:c6:2d:36:65:e3:a8:d2:0f:b0:b0: f9:25:11:fd:0a:ae:df:51:69:33:f6:c5:c2:0b:b3:dd:cc:c9: 30:8d:2d:5f:5f:13:de:2b:c5:a5:eb:59:68:62:ef:b2:81:1b: 79:e4:7d:9e:cb:c5:e7:8a:e0:b1:33:03:76:90:28:fa:59:72: b8:d3:d2:cc:74:ab:34:e9:a7:2c:89:51:e9:43:aa:50:59:86: 7f:05:ca:0e:76:a4:ed:88:29:af:03:44:27:4a:8e:51:41:e4: d9:62:3a:97:51:38:fe:1b:ac:27:22:03:34:e2:bb:d7:08:e8: 6e:91:4b:e1:4a:3f:cc:88:de:eb:cc:e9:62:16:9a:72:f5:27: 47:0f:c3:79:55:61:01:ac:13:89:de:77:08:36:a0:f9:63:da: 8d:ce:4f:37:b3:bb:c4:ce:52:f3:08:20:45:a8:15:a1:03:a5: d2:ec:44:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjQxMTIwMjM0NTI4WhcNMjQxMTI3MjM0NTI4WjAYMRYwFAYD VQQDEw02NzNlNzQ5OS0wMWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsreZjVrNtY8DFewtbU8fVTaet570to6fzebR7xDgbab0isepMmjY5104UmRd rW8vtzKrXI+GKTlqn5VEUGesdpzIaz/epG1XjvNz8cmD1P7pwJ7Jjbs9NBoyU3zv 6xfIWylup9St1ePzfFkBf0tcL+NcNE3P/K8I4pzX+MX2n/gbqRXEk6IEpRY5DuaB eTukYeuZfGUjfn26xLGsrH3WnuN+TMpc3hhOFcGergqbxvzbfeY7vr+Q756MpXqM gY0lXKeUMspPwFcW/JB5GiG7E+tEeTAFkFMWfleXvHcjkWOpFjtgX+POzJGuiN9o pQQiwdVpS20bOVKOLCtrmX+r2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJo9pIDJ Vs+7LRSwhzfmis7CDj2kMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYZ3kRQMnS+I3US9zYxRAIWxg2dE02NxXLOUdC/5c24dv4noJ4im2u mDQxw91rmwKSntGTO2J88NcjtETAlDovuTkrQeZlhMp9Y91iKubr5cYtNmXjqNIP sLD5JRH9Cq7fUWkz9sXCC7PdzMkwjS1fXxPeK8Wl61loYu+ygRt55H2ey8XniuCx MwN2kCj6WXK409LMdKs06acsiVHpQ6pQWYZ/BcoOdqTtiCmvA0QnSo5RQeTZYjqX UTj+G6wnIgM04rvXCOhukUvhSj/MiN7rzOliFppy9SdHD8N5VWEBrBOJ3ncINqD5 Y9qNzk83s7vEzlLzCCBFqBWhA6XS7EQn -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org