$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: bcG0uS3uu/01i6eQSth4kfnMpPqdnqFPpCDIAJzy1VI= Subject key identifier: 14:42:1B:9B:52:E4:E9:1E:49:74:5F:BF:6E:AA:BC:79:12:C4:9E:1F Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 01A5 Signing time: Sat 23 Nov 2024 01:51:49 +0000 Manifest this update: Sat 23 Nov 2024 01:51:48 +0000 Manifest next update: Sat 30 Nov 2024 01:51:48 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: hcoQcNd2fQ3skztKaW5iVNLZGr3E8/7l2pP372sGowI=) 2: 99D6D8089BF111ED8043AD1FC4F9AE02.roa (hash: RN89+S1mBA7UPdGt6AqckCvGseRU/f6VRbIgO417GXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Nov 23 01:51:48 2024 GMT Not After : Nov 30 01:51:48 2024 GMT Subject: CN=67413534-e5ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:c4:ed:15:39:39:3f:69:35:35:1d:4a:37: 32:f5:6f:90:bb:fb:b8:7f:7d:ce:4e:84:38:b3:0f: ff:e6:d9:d2:fb:56:2a:e4:9a:51:90:e9:0c:48:1f: 57:28:1d:50:a7:9d:a6:32:93:30:d2:ab:d5:0a:c2: fa:6f:8f:33:34:33:6c:e2:8e:9f:43:9f:6b:b3:52: 14:52:80:18:0d:55:98:29:b5:e6:65:8c:72:49:35: a5:d9:bc:9b:f2:19:87:37:bb:c2:37:cb:47:6a:75: d4:b9:4d:0f:9c:d5:77:54:3c:99:a5:ee:0e:52:62: 96:4e:2c:e6:1f:af:98:9a:26:b5:aa:bc:4a:2f:cd: 0a:d1:3a:07:e8:04:d2:6f:29:2a:db:c4:22:40:11: d1:4b:46:f9:24:fe:5e:62:f3:93:fd:19:c4:56:cc: a3:de:e7:b1:f2:b3:d6:2f:bb:64:3c:98:ce:05:71: 7e:ac:12:cb:c6:b8:c4:41:4f:c2:9d:88:68:a0:59: bf:09:3b:51:6d:5a:39:73:cb:0e:d8:82:d0:a7:6e: f6:57:59:cc:59:62:d4:1c:98:8d:4c:58:c3:ec:92: bd:23:a1:43:2d:f8:e6:09:c8:14:3c:98:10:aa:4c: ca:fc:13:b2:1b:ee:e1:d1:7b:c4:6f:cb:d9:97:bc: 4c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:42:1B:9B:52:E4:E9:1E:49:74:5F:BF:6E:AA:BC:79:12:C4:9E:1F X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:43:e2:a0:f3:4c:ea:ed:26:06:eb:4a:e8:f5:64:98:0f:42: e4:ed:0e:b6:6b:e4:5f:75:a0:d1:7f:ef:7a:db:66:b7:1f:d3: ee:3b:79:a2:83:6b:ee:7e:25:69:34:b6:34:03:01:a8:c3:65: 83:23:e1:e2:ee:2a:77:7a:3d:f2:36:a9:e2:d4:92:fc:5c:1f: 20:a4:97:fd:11:24:ce:84:90:5d:8a:22:1d:d4:b6:4a:c6:ec: b7:d7:ff:38:6d:fd:5e:56:85:a0:93:05:29:14:db:c0:2a:7b: 47:ad:9f:87:91:53:3a:6f:a3:43:a3:78:59:45:4f:ec:7b:c7: 9f:a2:1d:c2:8c:b0:78:eb:9e:a5:eb:b7:c9:7c:6b:27:e3:d9: 96:5f:20:f5:71:a4:1d:06:5d:88:eb:0b:58:b8:b4:1d:a9:0d: 35:39:77:46:0c:a3:29:a1:97:bd:27:4d:90:1d:49:50:a5:05: 2a:96:8b:10:ae:74:a9:bc:64:72:8e:da:db:76:c7:31:56:a2: 78:96:5e:60:fd:ac:58:df:38:cc:b2:54:ec:c8:b3:ee:96:06: db:3a:6d:80:f5:42:f7:96:68:18:c6:b7:e4:ac:da:78:9a:24: ef:d9:a6:82:96:cf:96:12:e5:0c:d6:39:b9:2c:5f:7c:67:9f: 95:9f:31:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjQxMTIzMDE1MTQ4WhcNMjQxMTMwMDE1MTQ4WjAYMRYwFAYD VQQDEw02NzQxMzUzNC1lNWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZfE7RU5OT9pNTUdSjcy9W+Qu/u4f33OToQ4sw//5tnS+1Yq5JpRkOkMSB9X KB1Qp52mMpMw0qvVCsL6b48zNDNs4o6fQ59rs1IUUoAYDVWYKbXmZYxySTWl2byb 8hmHN7vCN8tHanXUuU0PnNV3VDyZpe4OUmKWTizmH6+Ymia1qrxKL80K0ToH6ATS bykq28QiQBHRS0b5JP5eYvOT/RnEVsyj3uex8rPWL7tkPJjOBXF+rBLLxrjEQU/C nYhooFm/CTtRbVo5c8sO2ILQp272V1nMWWLUHJiNTFjD7JK9I6FDLfjmCcgUPJgQ qkzK/BOyG+7h0XvEb8vZl7xMMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRCG5tS 5OkeSXRfv26qvHkSxJ4fMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIQ+Kg80zq7SYG60ro9WSYD0Lk7Q62a+RfdaDRf+9622a3H9PuO3mi g2vufiVpNLY0AwGow2WDI+Hi7ip3ej3yNqni1JL8XB8gpJf9ESTOhJBdiiId1LZK xuy31/84bf1eVoWgkwUpFNvAKntHrZ+HkVM6b6NDo3hZRU/se8efoh3CjLB4656l 67fJfGsn49mWXyD1caQdBl2I6wtYuLQdqQ01OXdGDKMpoZe9J02QHUlQpQUqlosQ rnSpvGRyjtrbdscxVqJ4ll5g/axY3zjMslTsyLPulgbbOm2A9UL3lmgYxrfkrNp4 miTv2aaCls+WEuUM1jm5LF98Z5+VnzH4 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org