$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: xWe2BVuY+LqCFNkqiXJibLuZRWTW1jmZkyi+5fQb5B8= Subject key identifier: 11:6F:9C:36:B9:87:12:81:14:B9:E9:39:C4:46:6F:F3:DB:70:AF:F1 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 214A Signing time: Fri 22 Nov 2024 15:54:48 +0000 Manifest this update: Fri 22 Nov 2024 15:54:48 +0000 Manifest next update: Fri 29 Nov 2024 15:54:48 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: 35LfviQrF5QGgGeOAw4/tvRsy8WXDLmlwr6K3cXU6Z0=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: XD+rHi9pnwHv8fBlfHeLTMU0mL7clm3BjJgqv+KaLy8=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: 8CIY/gFR5kFD/nBvCMuT75QcV3nOcarL1vc/JnhoNpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8553 (0x2169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Nov 22 15:54:48 2024 GMT Not After : Nov 29 15:54:48 2024 GMT Subject: CN=6740a948-bfba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ef:fc:b3:90:c1:c5:23:0e:03:22:c4:00:84: 69:29:f9:62:1b:e2:ad:f2:b8:30:58:c9:d9:58:cb: 9b:62:20:0a:af:ef:85:45:f7:51:24:66:25:86:dc: e4:b1:13:83:03:f6:3d:5d:34:d1:07:04:00:1f:2a: 1a:52:19:b4:50:a8:f4:16:2d:25:a6:4a:e0:30:b8: b4:ff:1d:55:39:41:e4:25:4c:1a:0f:ec:e9:10:76: 7f:a8:8a:53:e9:c2:b8:44:16:15:a3:b8:f7:fc:96: a7:cb:b6:56:1b:cb:0b:2d:b3:d8:41:5a:6a:79:49: d6:c2:ac:e4:bf:b7:27:31:fd:8c:bc:ec:75:9c:b8: 27:c2:5b:c7:b1:11:7e:cb:84:76:9c:a6:28:8f:14: 78:52:82:2d:02:9b:60:5f:4e:af:70:63:c1:6d:3b: 6e:b9:db:43:35:8e:9e:86:85:71:86:da:7b:3e:94: 31:fc:49:55:9d:fd:ae:23:90:fb:e1:35:18:f2:37: 56:7f:c4:c8:ba:d5:d8:68:c1:18:a1:9b:b7:b1:47: 9c:18:84:6d:59:e1:82:2a:60:26:8b:b6:ad:5c:a2: 65:29:7b:1e:e7:c2:19:a8:63:5b:e4:a9:7c:a8:44: 04:74:6c:f2:47:54:80:e5:2a:c2:09:f6:50:b9:d8: 8f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:6F:9C:36:B9:87:12:81:14:B9:E9:39:C4:46:6F:F3:DB:70:AF:F1 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a1:e1:4a:02:35:4b:3d:77:b7:d6:7d:36:3d:dc:7f:fc:da: ae:87:67:d4:36:01:8b:41:d5:61:d0:81:77:1f:90:3b:37:9c: 3e:ce:cb:26:da:a3:ee:83:8f:3d:ed:df:57:a8:5e:de:72:e6: 69:49:c9:c2:fa:ac:df:bd:eb:4d:86:7d:e4:d0:32:91:17:34: 5f:58:9a:c8:21:f7:d9:34:68:80:9b:8f:d7:4e:91:41:dc:17: 6a:6f:1e:ca:19:34:99:61:d1:58:b9:5d:b3:71:d7:37:d0:8d: e6:1a:c5:5b:49:f3:c5:ac:62:8a:04:54:a1:f5:5f:48:83:1c: cc:cd:68:48:67:ed:b9:53:f3:75:61:14:a9:6a:f2:ec:3b:9d: 47:47:6c:b9:31:ae:4b:22:b8:22:35:f3:50:60:4e:07:61:45: 23:ba:be:ea:de:2f:67:6a:92:10:61:05:8f:f6:dd:1a:73:a2: 3f:e2:1c:56:d1:b3:2c:79:9b:cc:01:db:f4:b5:f5:17:48:fe: 0d:a6:15:5e:df:c1:c5:4f:93:5f:2d:35:29:90:44:8c:54:26: 4e:02:43:1c:52:5d:83:70:dc:90:22:36:1f:e8:15:81:d1:47: 82:d2:1e:1a:8c:3c:3a:6a:26:51:39:0c:7e:a2:08:2c:e4:c8: a7:6a:3c:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjQxMTIyMTU1NDQ4WhcNMjQxMTI5MTU1NDQ4WjAYMRYwFAYD VQQDEw02NzQwYTk0OC1iZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru/8s5DBxSMOAyLEAIRpKfliG+Kt8rgwWMnZWMubYiAKr++FRfdRJGYlhtzk sRODA/Y9XTTRBwQAHyoaUhm0UKj0Fi0lpkrgMLi0/x1VOUHkJUwaD+zpEHZ/qIpT 6cK4RBYVo7j3/Jany7ZWG8sLLbPYQVpqeUnWwqzkv7cnMf2MvOx1nLgnwlvHsRF+ y4R2nKYojxR4UoItAptgX06vcGPBbTtuudtDNY6ehoVxhtp7PpQx/ElVnf2uI5D7 4TUY8jdWf8TIutXYaMEYoZu3sUecGIRtWeGCKmAmi7atXKJlKXse58IZqGNb5Kl8 qEQEdGzyR1SA5SrCCfZQudiPcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFvnDa5 hxKBFLnpOcRGb/PbcK/xMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUoeFKAjVLPXe31n02Pdx//Nquh2fUNgGLQdVh0IF3H5A7N5w+zssm 2qPug4897d9XqF7ecuZpScnC+qzfvetNhn3k0DKRFzRfWJrIIffZNGiAm4/XTpFB 3Bdqbx7KGTSZYdFYuV2zcdc30I3mGsVbSfPFrGKKBFSh9V9IgxzMzWhIZ+25U/N1 YRSpavLsO51HR2y5Ma5LIrgiNfNQYE4HYUUjur7q3i9napIQYQWP9t0ac6I/4hxW 0bMseZvMAdv0tfUXSP4NphVe38HFT5NfLTUpkESMVCZOAkMcUl2DcNyQIjYf6BWB 0UeC0h4ajDw6aiZROQx+oggs5Minajx4 -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org