$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: 28A58rzAa37TO7zGvdMfGjp1TA5K/XWU44vUWwbt4Ng= Subject key identifier: 00:E6:E9:B0:D0:E7:26:06:25:4C:E4:7D:20:ED:3D:BA:BA:7B:68:07 Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 060C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 0608 Signing time: Wed 20 Nov 2024 22:15:01 +0000 Manifest this update: Wed 20 Nov 2024 22:15:00 +0000 Manifest next update: Wed 27 Nov 2024 22:15:00 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: 2Aqr6euc9CNqvIsBDUJfNy0uusGuQBx4u8yjGO/DQQc=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: DpNVsF8S1R1VahxgyAnkQsdhv9Y/GOwsBJQM35rMSJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Nov 20 22:15:00 2024 GMT Not After : Nov 27 22:15:00 2024 GMT Subject: CN=673e5f64-279c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:aa:cb:2e:4c:41:ec:40:2f:12:23:a4:4f: b9:50:ef:48:bf:8d:c4:c8:a9:38:6a:71:1d:b0:d7: f8:cb:32:87:9e:90:9f:be:63:3b:fd:22:8d:e1:da: 13:fc:a0:d5:f2:a4:ff:9f:a7:ff:97:80:99:c3:75: 93:a0:4e:06:80:33:fc:67:9d:d7:18:a1:bb:98:b2: 58:2a:02:b2:34:66:2a:a3:39:66:09:38:48:b3:15: 7e:ee:46:f2:e5:8e:6a:5d:7e:10:fc:de:a8:d2:5b: 34:6a:df:ab:b0:b1:82:b5:b9:c9:bb:6c:6b:9d:bc: 68:74:ec:9a:1a:5f:3f:0b:99:3f:fc:17:3f:f6:9e: ed:42:e2:41:0a:32:4c:30:a0:51:ec:74:92:27:06: df:a4:9e:da:9c:89:fe:4c:24:2f:03:1c:f5:fb:1e: 2f:43:03:37:42:8f:4f:c8:c3:ec:65:9f:5b:9b:44: 22:4a:4d:4c:17:02:7c:8e:53:a8:e6:1f:45:11:09: 0d:c1:e3:66:33:1a:16:d8:48:9d:ed:ed:ba:40:21: 16:78:63:a0:83:1a:33:ba:f5:e3:20:e0:57:b0:38: 8c:20:62:95:06:40:8c:f4:f4:c4:74:77:29:1c:c4: 8c:08:9f:91:e4:e6:d7:d3:55:ef:6f:f5:aa:fd:f7: 06:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E6:E9:B0:D0:E7:26:06:25:4C:E4:7D:20:ED:3D:BA:BA:7B:68:07 X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:98:4e:84:75:3b:ff:33:9a:13:82:27:ae:27:91:72:45:1e: bb:99:fe:68:43:7b:e7:33:69:a9:5b:40:fc:5b:cb:00:bc:70: 54:09:05:4f:73:c4:2b:7d:1f:11:eb:3b:6f:48:6d:e3:7f:b2: 30:a3:21:49:81:02:5d:a3:94:37:fd:e1:86:d5:ea:fc:f1:29: 35:31:b9:01:c9:65:da:ef:71:e2:8a:ba:50:a9:cb:87:83:51: 53:43:18:34:54:b6:b7:5a:74:6b:6c:d5:13:96:f1:df:0a:6c: eb:45:22:e7:ef:2c:74:b7:0d:17:93:c9:d8:ae:ca:2f:13:b0: 9d:8f:51:ce:c1:99:56:12:f0:fc:34:73:ac:3c:17:43:3a:df: e1:4a:76:bf:ce:74:8d:13:e7:f5:a8:e9:68:30:79:16:96:e3: 33:12:0e:08:86:ae:30:be:95:c4:a2:5e:f9:48:3e:e9:39:7b: 21:83:3f:5f:ef:4e:f9:2f:a7:08:9c:8e:7e:33:40:8b:20:fd: dd:92:c9:fa:ca:a6:96:ed:3d:61:cd:05:3c:63:59:51:cf:07: b9:36:d1:6d:e9:bf:06:0e:4f:12:e2:3b:84:c3:a1:08:97:27: 92:d3:32:21:eb:15:f3:4d:b5:51:c2:1c:ff:7e:4d:1c:de:81: d1:c5:4e:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjQxMTIwMjIxNTAwWhcNMjQxMTI3MjIxNTAwWjAYMRYwFAYD VQQDEw02NzNlNWY2NC0yNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1juqyy5MQexALxIjpE+5UO9Iv43EyKk4anEdsNf4yzKHnpCfvmM7/SKN4doT /KDV8qT/n6f/l4CZw3WToE4GgDP8Z53XGKG7mLJYKgKyNGYqozlmCThIsxV+7kby 5Y5qXX4Q/N6o0ls0at+rsLGCtbnJu2xrnbxodOyaGl8/C5k//Bc/9p7tQuJBCjJM MKBR7HSSJwbfpJ7anIn+TCQvAxz1+x4vQwM3Qo9PyMPsZZ9bm0QiSk1MFwJ8jlOo 5h9FEQkNweNmMxoW2Eid7e26QCEWeGOggxozuvXjIOBXsDiMIGKVBkCM9PTEdHcp HMSMCJ+R5ObX01Xvb/Wq/fcGawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADm6bDQ 5yYGJUzkfSDtPbq6e2gHMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtmE6EdTv/M5oTgieuJ5FyRR67mf5oQ3vnM2mpW0D8W8sAvHBUCQVP c8QrfR8R6ztvSG3jf7IwoyFJgQJdo5Q3/eGG1er88Sk1MbkByWXa73HiirpQqcuH g1FTQxg0VLa3WnRrbNUTlvHfCmzrRSLn7yx0tw0Xk8nYrsovE7Cdj1HOwZlWEvD8 NHOsPBdDOt/hSna/znSNE+f1qOloMHkWluMzEg4Ihq4wvpXEol75SD7pOXshgz9f 7075L6cInI5+M0CLIP3dksn6yqaW7T1hzQU8Y1lRzwe5NtFt6b8GDk8S4juEw6EI lyeS0zIh6xXzTbVRwhz/fk0c3oHRxU4Q -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org