$ rpki-client -vvf rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft File: cGWovjQWOF29AyJATk9jTG7-XYI.mft (raw, json) Hash identifier: LpJ3qZKiD7ytZVRT2XSLFCB8kGDIoHoT5mZXJfw07a8= Subject key identifier: 27:FD:5C:63:D9:7E:9D:FD:53:A8:35:FE:1C:FE:37:0A:23:55:01:A9 Authority key identifier: 70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 Certificate issuer: /CN=A9125AE9/serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft Manifest number: 0228 Signing time: Sat 23 Nov 2024 01:25:47 +0000 Manifest this update: Sat 23 Nov 2024 01:25:47 +0000 Manifest next update: Sat 30 Nov 2024 01:25:47 +0000 Files and hashes: 1: cGWovjQWOF29AyJATk9jTG7-XYI.crl (hash: M/vUKWy7I/QVPAKmrQDEuaB6nfjThPvuS7WHOnffFy4=) 2: 70BB6C14064A11EDA0A92068C4F9AE02.roa (hash: B23DJLnAzZgh7nzdSdjLo0fLxBwNcdmZ5yMaCdKP/mk=) 3: 6FE0D496064A11EDA0A92068C4F9AE02.roa (hash: jVg82OUaVePNyDCOCMIUFjDkj+15X58I4cwm4Uj+6+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125AE9/serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Validity Not Before: Nov 23 01:25:47 2024 GMT Not After : Nov 30 01:25:47 2024 GMT Subject: CN=67412f1b-b516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:86:29:0f:b4:c2:ce:05:0d:c1:bc:09:b2:5b: 83:c0:97:a8:00:91:2d:22:c5:70:5d:14:7d:bf:69: 13:da:24:ff:41:f3:ee:f2:4b:bd:f3:22:cc:8b:3e: dd:b0:c4:69:0c:9c:6e:69:4e:03:db:20:50:9f:a3: e3:04:e4:5a:e9:b5:2b:55:57:31:5e:b0:59:f3:55: 50:c5:d4:9b:1a:d2:ea:59:6a:47:24:ea:be:bc:1c: 06:aa:b4:82:ff:4d:38:9a:f5:e7:c1:a5:e2:fc:95: f5:14:7e:22:9e:75:0d:56:92:30:57:da:2a:8f:60: 70:da:e1:eb:56:22:7e:84:3b:c9:24:9a:37:80:f1: 52:83:7a:40:b7:4c:c2:65:30:f6:63:6b:be:04:ef: 46:ad:c3:2b:af:a5:90:e5:96:be:ea:3c:8c:d2:5f: e1:44:b7:68:54:e0:6a:9e:94:e0:e5:ce:77:71:70: 0a:39:21:e4:26:10:b2:b0:1d:69:45:b3:58:40:fe: 8f:b9:e7:e7:02:e8:02:ee:d1:a7:bb:43:6b:a8:f5: 7c:90:60:8d:be:58:4f:86:ec:e4:03:b7:2a:09:e5: 48:9b:85:7d:ee:a4:a2:78:d3:2a:9d:d0:dd:1b:7c: 33:d3:c3:42:e5:a0:3b:38:2f:4e:64:58:ae:e5:6c: 76:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FD:5C:63:D9:7E:9D:FD:53:A8:35:FE:1C:FE:37:0A:23:55:01:A9 X509v3 Authority Key Identifier: keyid:70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:fb:17:35:b4:75:bf:3b:c4:e6:0f:9e:f9:f2:ca:c7:60:5a: 78:a9:52:ce:49:f1:30:12:15:0f:5a:25:91:7a:ea:3a:49:6c: 42:2e:47:93:6c:f2:d5:7f:c1:67:d4:59:c1:16:3e:f7:22:8e: 6a:22:8a:49:ec:11:14:12:6d:6d:cf:0b:cd:64:22:fd:2f:9a: 60:e0:e8:3a:71:91:09:aa:d2:fe:7c:21:ef:54:2b:7a:54:c1: 78:c8:5d:12:c8:c7:6f:bc:0b:d6:0f:bf:b2:ff:f0:7a:b1:cd: 05:bf:76:b5:60:ae:f4:c3:0b:2f:fc:61:8f:71:b1:2d:13:97: 2c:ec:6d:99:0b:91:38:7c:1c:61:63:da:5d:ca:15:3c:ce:7c: de:5e:be:a5:06:25:6d:71:9c:8f:0e:f8:57:45:af:d3:59:ee: f7:c2:a1:cb:4b:6c:0c:e2:7d:41:4e:58:92:b0:50:23:8e:08: b1:0e:f5:66:97:cd:13:7e:69:b4:6c:ad:cd:e9:86:ed:26:b5: eb:dd:ac:ee:c4:2a:84:f4:cc:6a:0a:7c:bc:0d:b3:cf:49:a6: 97:eb:b1:ac:ba:64:a3:55:d3:a0:75:10:19:03:97:24:a3:89: 4d:61:bb:32:c8:36:7e:03:4a:2c:67:30:f5:08:e3:e0:ed:50: 94:b5:65:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBRTkxMTAvBgNVBAUTKDcwNjVBOEJFMzQxNjM4NURCRDAzMjI0MDRFNEY2MzRD NkVGRTVEODIwHhcNMjQxMTIzMDEyNTQ3WhcNMjQxMTMwMDEyNTQ3WjAYMRYwFAYD VQQDEw02NzQxMmYxYi1iNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIYpD7TCzgUNwbwJsluDwJeoAJEtIsVwXRR9v2kT2iT/QfPu8ku98yLMiz7d sMRpDJxuaU4D2yBQn6PjBORa6bUrVVcxXrBZ81VQxdSbGtLqWWpHJOq+vBwGqrSC /004mvXnwaXi/JX1FH4innUNVpIwV9oqj2Bw2uHrViJ+hDvJJJo3gPFSg3pAt0zC ZTD2Y2u+BO9GrcMrr6WQ5Za+6jyM0l/hRLdoVOBqnpTg5c53cXAKOSHkJhCysB1p RbNYQP6PuefnAugC7tGnu0NrqPV8kGCNvlhPhuzkA7cqCeVIm4V97qSieNMqndDd G3wz08NC5aA7OC9OZFiu5Wx26wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf9XGPZ fp39U6g1/hz+NwojVQGpMB8GA1UdIwQYMBaAFHBlqL40FjhdvQMiQE5PY0xu/l2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUFFOS9GRkVCN0Y5QTA2 NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09GMjlBeUpBVGs5alRHNy1Y WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NHV292alFXT0YyOUF5SkFUazlqVEc3LVhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUFFOS9GRkVCN0Y5QTA2NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09G MjlBeUpBVGs5alRHNy1YWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt+xc1tHW/O8TmD5758srHYFp4qVLOSfEwEhUPWiWReuo6SWxCLkeT bPLVf8Fn1FnBFj73Io5qIopJ7BEUEm1tzwvNZCL9L5pg4Og6cZEJqtL+fCHvVCt6 VMF4yF0SyMdvvAvWD7+y//B6sc0Fv3a1YK70wwsv/GGPcbEtE5cs7G2ZC5E4fBxh Y9pdyhU8znzeXr6lBiVtcZyPDvhXRa/TWe73wqHLS2wM4n1BTliSsFAjjgixDvVm l80Tfmm0bK3N6YbtJrXr3azuxCqE9MxqCny8DbPPSaaX67GsumSjVdOgdRAZA5ck o4lNYbsyyDZ+A0osZzD1COPg7VCUtWWi -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org