$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: Su10d0w17rmatr1NR4Ep3it2lHwIyJ53/OVmgVKF5ts= Subject key identifier: A7:D3:D5:50:BC:22:E6:B3:DA:D1:A0:43:EF:17:7D:1D:EF:CC:14:A9 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0AE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0A94 Signing time: Wed 20 Nov 2024 19:32:21 +0000 Manifest this update: Wed 20 Nov 2024 19:32:20 +0000 Manifest next update: Wed 27 Nov 2024 19:32:20 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: QUOa8+6HkVh73hP6NG66NEVdcla5L6YwgODkwCPuL8M=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: JbOgcVk0SFjuz3pFR2xuSgFphJgl+zaZw80ujiiRGfQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: cO+lO6yNoyaxQ9zIQdsncGR/46no6uoF1ZfttfCv9RE=) 4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: XnoJK+j2aYdpJPJmHEzYHnSl0odvMBBf4WRRJO5tlac=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: cg0pTB0tQ3lVw+//8QI1VGIKFNM43Q8JPHW5fx5VAek=) 6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: MeKqcbSw6NiDOlD27IEOaqIg/lBsEG+xJHkP9UhiFbg=) 7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: e9thDBmL8sJM6wfIji6pTwGCU4p0X8HaVmN0zYAxnPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2791 (0xae7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Nov 20 19:32:20 2024 GMT Not After : Nov 27 19:32:20 2024 GMT Subject: CN=673e3944-fbcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8d:47:52:1a:9d:0b:56:48:a4:df:2b:ae:d8: a5:57:a0:9a:50:1d:ae:73:37:ab:42:55:53:c4:24: 33:4f:bd:b1:83:e8:a7:96:3d:ea:18:ff:fa:25:1a: 35:cb:f8:5b:57:27:93:d0:d1:64:a4:8d:c5:98:fa: 53:d7:d0:95:8a:52:ed:10:89:58:ee:bc:38:47:11: 31:5a:89:9f:15:de:eb:03:92:d9:15:be:d7:6e:1a: 7a:67:6e:1c:ce:89:85:12:c1:64:7f:ce:bd:e1:b3: 50:42:21:cd:11:45:0b:77:fa:11:58:c3:09:cf:aa: d7:a7:bb:6f:a9:4f:1c:a8:85:aa:ce:8c:31:34:61: ab:99:69:ea:2e:d8:ac:10:c3:31:c8:2b:6a:74:fd: 24:4b:f5:a6:74:e2:99:79:03:df:6c:2f:3a:b4:d6: 09:f3:da:d5:ab:35:86:bb:2b:6e:25:24:c6:86:d3: db:1a:2e:8c:f6:8b:8c:ff:ec:24:47:0f:12:6d:dd: 51:53:99:b0:18:84:1a:f9:2d:6f:cf:15:fe:ab:d6: 96:67:27:aa:c7:cd:98:10:50:8a:ff:99:58:f1:5b: 13:3f:5f:6a:1f:ca:cc:65:94:15:e7:ee:ac:a3:3f: 7b:6d:92:6a:ea:30:fb:b9:eb:c0:01:92:ed:ba:8f: da:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D3:D5:50:BC:22:E6:B3:DA:D1:A0:43:EF:17:7D:1D:EF:CC:14:A9 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:2d:8f:dd:ad:3c:33:5f:55:65:03:5d:e8:72:29:ec:13:37: 88:59:2c:e6:7e:d8:fc:43:c2:e9:89:19:20:0c:59:4f:1e:37: 13:38:ed:13:f3:9a:03:56:9d:dc:c7:66:ab:94:6a:28:64:4e: fd:62:d0:42:79:e9:ff:2d:c6:b5:57:fc:94:c2:d4:31:e8:e7: 7c:36:f2:2f:c7:16:2e:e9:7f:15:c8:04:41:08:75:67:cc:87: ae:92:4e:40:79:a6:c9:4d:61:b3:ca:bf:9b:6f:f2:68:b5:12: a6:b7:64:17:3f:71:82:42:36:81:18:9b:b7:d0:fb:57:3d:a1: 89:0a:36:09:7e:d5:7a:e0:e7:23:c7:dc:cd:49:3b:45:15:15: d3:14:21:14:64:25:7b:bc:55:00:ed:27:72:62:ef:00:b6:3c: 3f:7c:0e:73:ab:ab:d6:d3:b8:92:ad:93:7b:37:f9:3e:69:f1: 8f:3d:f1:5f:0e:8e:40:2f:68:66:e7:de:38:0b:52:21:82:e3: 9d:27:a0:8d:28:e9:22:07:94:68:00:df:bb:78:39:ff:00:c1: a6:ae:10:3b:0e:40:6f:fe:b9:dc:f7:b7:5d:4d:de:51:b0:5c: b6:04:43:b8:83:be:8d:f1:30:f2:8f:63:f3:a3:1f:02:cc:a1: d4:ec:35:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjQxMTIwMTkzMjIwWhcNMjQxMTI3MTkzMjIwWjAYMRYwFAYD VQQDEw02NzNlMzk0NC1mYmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo1HUhqdC1ZIpN8rrtilV6CaUB2uczerQlVTxCQzT72xg+inlj3qGP/6JRo1 y/hbVyeT0NFkpI3FmPpT19CVilLtEIlY7rw4RxExWomfFd7rA5LZFb7Xbhp6Z24c zomFEsFkf8694bNQQiHNEUULd/oRWMMJz6rXp7tvqU8cqIWqzowxNGGrmWnqLtis EMMxyCtqdP0kS/WmdOKZeQPfbC86tNYJ89rVqzWGuytuJSTGhtPbGi6M9ouM/+wk Rw8Sbd1RU5mwGIQa+S1vzxX+q9aWZyeqx82YEFCK/5lY8VsTP19qH8rMZZQV5+6s oz97bZJq6jD7uevAAZLtuo/aJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfT1VC8 Iuaz2tGgQ+8XfR3vzBSpMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWLY/drTwzX1VlA13ocinsEzeIWSzmftj8Q8LpiRkgDFlPHjcTOO0T 85oDVp3cx2arlGooZE79YtBCeen/Lca1V/yUwtQx6Od8NvIvxxYu6X8VyARBCHVn zIeukk5AeabJTWGzyr+bb/JotRKmt2QXP3GCQjaBGJu30PtXPaGJCjYJftV64Ocj x9zNSTtFFRXTFCEUZCV7vFUA7SdyYu8Atjw/fA5zq6vW07iSrZN7N/k+afGPPfFf Do5AL2hm5944C1IhguOdJ6CNKOkiB5RoAN+7eDn/AMGmrhA7DkBv/rnc97ddTd5R sFy2BEO4g76N8TDyj2Pzox8CzKHU7DXo -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:46 2024 by rpki-client on console-ams.rpki-client.org