$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: +LEa6FGjX+kdK1snUDQ2cq4FGcXpkVbqNveV2TuMjAo= Subject key identifier: 18:C1:04:25:1B:A2:B1:E2:AD:33:9F:19:B1:0F:63:05:B6:D9:2B:FA Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 04A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 049C Signing time: Wed 20 Nov 2024 23:32:09 +0000 Manifest this update: Wed 20 Nov 2024 23:32:09 +0000 Manifest next update: Wed 27 Nov 2024 23:32:09 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: gNofi1sndaY9MNRbit1J1jWKfYj6XsD2+lMcfdtAeIA=) 2: AC7FAD34756D11EF8E0AC450C4F9AE02.roa (hash: Zm4qbPETvWslp8RznHoUL+bcAgC3x8SPRlNir3l6sYs=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: IKJkF5tTVOAg9Gcj+RMqJavUI1QmsLflBy8eIb93AAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Nov 20 23:32:09 2024 GMT Not After : Nov 27 23:32:09 2024 GMT Subject: CN=673e7179-c076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:5a:bd:1f:96:a8:35:1d:41:3d:37:60:26: dc:a3:58:53:2a:e1:ca:c0:f2:2c:5e:10:e5:94:4b: c7:9b:76:9f:52:2f:7c:7d:5e:63:79:91:58:5a:77: 12:19:04:46:b7:bc:16:7d:f7:d5:75:de:fe:09:83: f4:0d:11:57:65:09:14:83:a9:3e:25:dc:01:2a:dd: ec:f7:d2:12:9d:56:c8:6e:73:6c:6e:db:02:13:2c: 5e:81:a5:81:71:94:36:1e:77:24:9d:48:01:be:5a: 16:04:3c:26:eb:6a:91:62:09:ad:ed:94:74:af:fe: c6:27:15:bd:ed:e7:c0:ff:77:54:1a:dd:f8:b1:8a: 41:2a:0c:71:1e:33:39:c3:0b:aa:e9:5f:5a:f3:0c: 6d:50:1a:b5:33:8a:fb:a1:a3:4d:eb:6f:ea:79:fa: 8b:00:d0:8f:21:29:74:71:c8:15:eb:a2:d1:1c:fb: 6c:57:f2:3e:c6:dd:22:db:5a:45:12:02:c7:91:71: e9:61:94:7c:9c:6f:ed:62:7e:ec:7b:50:cc:8f:65: 0e:b8:63:92:4a:9c:0c:a2:33:86:f0:b0:f9:e3:54: 82:eb:da:81:d3:4a:bd:2f:d5:33:a7:43:60:4f:3d: c9:90:6f:3e:ea:e6:28:68:e6:7d:67:a5:ca:2b:fd: 28:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C1:04:25:1B:A2:B1:E2:AD:33:9F:19:B1:0F:63:05:B6:D9:2B:FA X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:2c:4d:a4:cf:fe:43:ea:b8:e5:3f:37:87:20:b1:5b:31:26: c5:a3:c4:ba:14:8c:a6:32:54:88:4f:6e:b6:e0:b6:93:d2:0a: 49:e7:0d:b1:17:68:7f:8e:aa:18:b0:d6:17:d0:5a:7a:25:87: 50:6f:97:12:d8:2c:05:b4:ee:d4:a3:5f:71:98:8f:d5:89:c0: 84:cf:3b:0b:7a:44:8e:2a:8b:68:cd:25:59:94:f6:98:2d:32: 1b:43:5e:b3:8d:37:e5:31:03:97:45:eb:91:c2:d6:6b:e7:e7: da:18:2e:c0:1f:5f:0a:b3:e4:f8:3e:6b:0f:dc:cd:3b:58:55: be:fd:41:d4:bf:fd:51:5b:61:64:49:e0:ea:15:78:50:d0:4a: f6:6e:70:30:65:2d:81:ad:e7:e0:83:33:42:6f:1d:79:b8:d5: 81:65:fa:64:17:8b:fc:07:91:28:74:67:05:d9:a3:fd:25:c9: 8f:66:d1:75:68:9f:8d:26:66:f5:e0:da:17:dd:9f:c6:f1:dd: 3b:07:2c:27:12:8a:60:0e:2b:33:ff:52:89:6a:30:c6:20:69: 0f:96:9f:51:43:8c:e3:66:8e:a5:3e:ac:5a:b7:40:11:74:73: 52:b1:92:c3:db:42:5f:07:b5:61:7c:86:39:8e:19:2c:e2:59: a8:96:b5:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjQxMTIwMjMzMjA5WhcNMjQxMTI3MjMzMjA5WjAYMRYwFAYD VQQDEw02NzNlNzE3OS1jMDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGNavR+WqDUdQT03YCbco1hTKuHKwPIsXhDllEvHm3afUi98fV5jeZFYWncS GQRGt7wWfffVdd7+CYP0DRFXZQkUg6k+JdwBKt3s99ISnVbIbnNsbtsCEyxegaWB cZQ2HncknUgBvloWBDwm62qRYgmt7ZR0r/7GJxW97efA/3dUGt34sYpBKgxxHjM5 wwuq6V9a8wxtUBq1M4r7oaNN62/qefqLANCPISl0ccgV66LRHPtsV/I+xt0i21pF EgLHkXHpYZR8nG/tYn7se1DMj2UOuGOSSpwMojOG8LD541SC69qB00q9L9Uzp0Ng Tz3JkG8+6uYoaOZ9Z6XKK/0obQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjBBCUb orHirTOfGbEPYwW22Sv6MB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGLE2kz/5D6rjlPzeHILFbMSbFo8S6FIymMlSIT2624LaT0gpJ5w2x F2h/jqoYsNYX0Fp6JYdQb5cS2CwFtO7Uo19xmI/VicCEzzsLekSOKotozSVZlPaY LTIbQ16zjTflMQOXReuRwtZr5+faGC7AH18Ks+T4PmsP3M07WFW+/UHUv/1RW2Fk SeDqFXhQ0Er2bnAwZS2BrefggzNCbx15uNWBZfpkF4v8B5EodGcF2aP9JcmPZtF1 aJ+NJmb14NoX3Z/G8d07BywnEopgDisz/1KJajDGIGkPlp9RQ4zjZo6lPqxat0AR dHNSsZLD20JfB7VhfIY5jhks4lmolrWa -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:19 2024 by rpki-client on console-fra.rpki-client.org