$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: 0Myza2wO50PQr+l5etZ1oJoajbA8aF/rSmUfJO+K3g4= Subject key identifier: 8D:EA:71:59:84:F5:7F:12:A7:5C:CD:5B:44:01:70:1D:33:2D:4C:16 Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 04DF Signing time: Fri 22 Nov 2024 23:17:28 +0000 Manifest this update: Fri 22 Nov 2024 23:17:27 +0000 Manifest next update: Fri 29 Nov 2024 23:17:27 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: ZeXLFQk3yC78vCPzdwtu3+jtmqp0XwKPcfMzZGa/SzA=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: mmb+6qMWLAl/o5ujhFGq4lHoA5XfllDMtxdPhnJR8HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Nov 22 23:17:27 2024 GMT Not After : Nov 29 23:17:27 2024 GMT Subject: CN=67411107-ad56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:1d:48:ad:bf:b8:01:88:56:d1:c0:ca:3a: 3e:4e:a1:6d:27:14:4b:f5:63:0b:74:6a:e9:74:78: 68:4d:08:33:27:07:d9:48:78:da:ab:92:0b:ab:d6: 69:6d:6d:a1:0b:96:bf:c3:8b:0b:d7:3f:31:9f:3d: 56:71:ee:be:8f:20:54:11:ea:6f:3b:bf:b0:b8:09: 25:15:7d:2a:6c:82:47:7a:93:24:22:1e:04:5a:51: ee:f8:77:fe:24:83:72:ea:6e:cb:84:66:0a:6d:67: bc:88:94:d8:b4:53:64:71:bd:fd:9f:6c:e7:4c:57: 06:02:30:2b:20:a6:6a:6d:a9:e7:fd:90:08:09:61: db:7a:81:dd:c3:9f:13:58:93:a0:e5:51:3c:22:58: b1:6f:4f:98:ab:f8:d2:2e:82:0f:28:dc:af:37:44: ac:a3:04:24:f4:3d:87:c7:e2:25:ab:55:49:ab:c9: 59:02:27:7c:9f:30:d1:9b:c9:2a:1f:e1:25:71:32: db:42:19:e4:03:47:f6:eb:fa:a2:a1:0c:46:40:9f: 69:8d:21:89:d5:75:6d:b9:99:66:4c:9b:4d:b4:07: 93:ae:84:f0:5e:7f:0b:8e:1e:50:6e:07:ce:2e:73: 61:13:bf:7b:79:70:51:dd:96:56:5f:09:88:d6:ab: d8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EA:71:59:84:F5:7F:12:A7:5C:CD:5B:44:01:70:1D:33:2D:4C:16 X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:81:da:10:15:cf:a1:71:4b:05:b8:65:6f:7d:61:ea:fc:08: 97:ba:e9:7e:13:8c:e6:29:e6:20:99:51:db:dc:ec:65:a9:1b: f5:6f:0e:c1:f5:40:e5:d5:80:fd:99:3f:6d:8a:68:3a:61:f9: bb:d2:b4:a4:f1:15:3b:d0:70:6a:90:23:59:c4:7a:34:1e:6c: 77:02:cd:81:24:66:8f:27:e2:20:4c:a8:17:4d:b8:37:6b:ba: ac:0e:19:2a:e0:73:8f:ef:07:dd:ab:9e:97:c7:43:28:08:ab: cd:3c:80:62:26:ac:02:b6:c9:5a:27:97:43:94:c3:96:8c:a6: e6:13:a0:bc:de:92:8f:4d:b5:7a:51:39:42:31:76:50:9f:24: b1:b1:02:d0:e2:25:73:0d:57:0c:9d:21:bd:d2:e8:44:2d:50: cc:8b:d7:da:3a:a1:41:cb:18:5e:7d:08:ac:22:34:6f:9e:69: be:96:08:23:30:e2:dc:a4:3d:fc:b1:f7:03:15:c0:18:5b:be: b5:f0:d5:f8:d2:45:e4:f8:eb:42:d6:59:ee:65:27:ea:dd:d0: a6:7c:6d:5b:6d:0d:ee:d2:a8:b1:e7:cf:34:73:0c:14:19:88: 4e:7e:43:02:eb:6a:c7:36:80:02:a0:b5:b2:5d:41:60:15:bf: 9b:28:c6:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjQxMTIyMjMxNzI3WhcNMjQxMTI5MjMxNzI3WjAYMRYwFAYD VQQDEw02NzQxMTEwNy1hZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmQdSK2/uAGIVtHAyjo+TqFtJxRL9WMLdGrpdHhoTQgzJwfZSHjaq5ILq9Zp bW2hC5a/w4sL1z8xnz1Wce6+jyBUEepvO7+wuAklFX0qbIJHepMkIh4EWlHu+Hf+ JINy6m7LhGYKbWe8iJTYtFNkcb39n2znTFcGAjArIKZqbann/ZAICWHbeoHdw58T WJOg5VE8Ilixb0+Yq/jSLoIPKNyvN0SsowQk9D2Hx+Ilq1VJq8lZAid8nzDRm8kq H+ElcTLbQhnkA0f26/qioQxGQJ9pjSGJ1XVtuZlmTJtNtAeTroTwXn8Ljh5QbgfO LnNhE797eXBR3ZZWXwmI1qvYxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3qcVmE 9X8Sp1zNW0QBcB0zLUwWMB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKgdoQFc+hcUsFuGVvfWHq/AiXuul+E4zmKeYgmVHb3OxlqRv1bw7B 9UDl1YD9mT9timg6Yfm70rSk8RU70HBqkCNZxHo0Hmx3As2BJGaPJ+IgTKgXTbg3 a7qsDhkq4HOP7wfdq56Xx0MoCKvNPIBiJqwCtslaJ5dDlMOWjKbmE6C83pKPTbV6 UTlCMXZQnySxsQLQ4iVzDVcMnSG90uhELVDMi9faOqFByxhefQisIjRvnmm+lggj MOLcpD38sfcDFcAYW7618NX40kXk+OtC1lnuZSfq3dCmfG1bbQ3u0qix5880cwwU GYhOfkMC62rHNoACoLWyXUFgFb+bKMZS -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org