$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: 4am8ni5jrkhgw2mi8Z0UeV21GvaidumAjBxmqIw91e8= Subject key identifier: 09:09:89:D2:22:07:3C:21:D5:5C:56:EC:2F:B5:4D:4A:7A:95:BA:FE Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: B9 Signing time: Thu 21 Nov 2024 04:14:04 +0000 Manifest this update: Thu 21 Nov 2024 04:14:03 +0000 Manifest next update: Thu 28 Nov 2024 04:14:03 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: X85k27EDZwOEl9dfEBDUyGYLAXALeUMZmeIZ18ZlPSA=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:14:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Nov 21 04:14:03 2024 GMT Not After : Nov 28 04:14:03 2024 GMT Subject: CN=673eb38b-c995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2b:c2:2a:92:70:ad:94:0e:33:b7:9f:80:79: 61:9f:b6:ff:ae:28:29:1d:74:dd:18:13:e8:79:d0: cb:2e:b4:73:fd:11:66:3a:13:dd:83:d4:2b:95:4e: c2:95:6a:69:8f:ab:29:74:9e:65:23:3f:34:73:a5: 62:3b:69:66:db:0e:75:de:b9:41:8c:fe:bd:77:a3: 5a:fa:60:02:59:c1:42:9a:b3:17:e0:64:a6:ed:1f: 25:fc:43:22:38:39:c5:b0:e0:2e:82:f6:04:7e:b3: 62:05:fa:10:b8:b7:54:76:2b:fa:82:11:e6:f6:f8: 71:6d:c7:02:5b:b3:3d:f4:55:3f:58:9f:a4:07:2b: 05:99:e8:38:19:b8:32:b9:64:b9:6d:c6:b1:77:f2: 25:27:d6:eb:c4:a3:bb:18:e0:0d:c4:b1:1d:33:da: a9:4a:3c:63:e4:b9:0d:32:ca:e1:ac:00:81:f7:4f: e6:38:35:39:ee:c5:c1:de:7c:82:78:6c:4a:d9:eb: 69:f5:d8:67:75:80:cb:98:69:57:1e:89:4e:5c:b8: fe:4a:33:66:de:96:4d:7c:04:59:58:d9:db:df:e1: 35:8b:b1:9a:f3:78:2f:ec:8e:f5:06:72:31:05:e3: 5a:4c:c6:de:a4:19:db:17:24:15:14:cd:a8:f0:50: 7c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:09:89:D2:22:07:3C:21:D5:5C:56:EC:2F:B5:4D:4A:7A:95:BA:FE X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:53:c0:1e:a0:29:e8:85:62:25:05:87:32:9c:c0:1b:c5:e2: fb:77:2e:c2:42:48:be:4e:37:40:bd:73:ff:10:d9:61:44:08: 71:a6:da:17:12:7c:b0:07:33:57:9f:7d:14:f9:27:0a:8b:be: 69:f3:bc:67:a5:23:82:89:32:99:46:68:2f:4b:78:af:c3:58: 63:90:d4:19:6a:92:53:8c:4b:4d:cf:87:37:b1:19:a8:36:04: df:9c:ad:a2:a1:c3:d9:b6:95:c9:a0:46:06:35:bd:d8:47:3c: 72:ac:63:37:57:33:e9:e1:ed:6f:ff:8d:7c:7e:81:ad:47:c7: af:3d:cb:e0:76:26:fd:e3:a0:4f:3e:91:94:81:ff:15:79:91: d3:aa:2a:51:b6:5b:2b:ad:c9:7d:b7:75:27:33:6b:ad:0c:58: 13:6a:f1:56:62:5b:8f:f7:45:11:4a:ce:3d:ea:f1:20:8d:19: ec:8b:1f:0d:e2:0a:c5:a5:51:ed:27:13:a9:ea:9a:c4:fa:8b: 7b:58:a9:59:5d:94:b8:e2:6c:72:b0:62:c0:9b:e7:84:a6:00: 8c:2f:fb:03:ff:dc:1f:f8:8f:b6:9f:7d:93:59:8d:56:53:97: 76:d3:db:4d:ee:c1:37:c4:17:f3:37:8a:fe:ba:3e:ce:1c:1a: c2:77:ef:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjQxMTIxMDQxNDAzWhcNMjQxMTI4MDQxNDAzWjAYMRYwFAYD VQQDEw02NzNlYjM4Yi1jOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSvCKpJwrZQOM7efgHlhn7b/rigpHXTdGBPoedDLLrRz/RFmOhPdg9QrlU7C lWppj6spdJ5lIz80c6ViO2lm2w513rlBjP69d6Na+mACWcFCmrMX4GSm7R8l/EMi ODnFsOAugvYEfrNiBfoQuLdUdiv6ghHm9vhxbccCW7M99FU/WJ+kBysFmeg4Gbgy uWS5bcaxd/IlJ9brxKO7GOANxLEdM9qpSjxj5LkNMsrhrACB90/mODU57sXB3nyC eGxK2etp9dhndYDLmGlXHolOXLj+SjNm3pZNfARZWNnb3+E1i7Ga83gv7I71BnIx BeNaTMbepBnbFyQVFM2o8FB8nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkJidIi Bzwh1VxW7C+1TUp6lbr+MB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1U8AeoCnohWIlBYcynMAbxeL7dy7CQki+TjdAvXP/ENlhRAhxptoX EnywBzNXn30U+ScKi75p87xnpSOCiTKZRmgvS3ivw1hjkNQZapJTjEtNz4c3sRmo NgTfnK2iocPZtpXJoEYGNb3YRzxyrGM3VzPp4e1v/418foGtR8evPcvgdib946BP PpGUgf8VeZHTqipRtlsrrcl9t3UnM2utDFgTavFWYluP90URSs496vEgjRnsix8N 4grFpVHtJxOp6prE+ot7WKlZXZS44mxysGLAm+eEpgCML/sD/9wf+I+2n32TWY1W U5d209tN7sE3xBfzN4r+uj7OHBrCd+9j -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org