$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: pKd7yH4Tdu/8eLCxDZNuMJO9t8DjuaD5dlSSzNWj5LU= Subject key identifier: 84:82:77:F5:88:E8:3B:72:B9:EB:37:85:E6:43:C4:09:F4:BC:58:F1 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0751 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 0748 Signing time: Fri 22 Nov 2024 21:06:47 +0000 Manifest this update: Fri 22 Nov 2024 21:06:46 +0000 Manifest next update: Fri 29 Nov 2024 21:06:46 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: UBE7SYEQafhJz52hLTmti7SWtGSa6K4Uv8trSbuZ4ro=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: MTInpOnl0k5cHzk/mQ2WeCDrev/aJl9yGIcBSOBrAww=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: Iyw+3tj3IM+pBmHPCcr/UX2wQKedAFHetZW/mNvxVH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1873 (0x751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Nov 22 21:06:46 2024 GMT Not After : Nov 29 21:06:46 2024 GMT Subject: CN=6740f266-b9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c9:b2:10:21:08:46:8e:2f:0a:e0:4e:e0:09: 3c:f7:c5:f8:55:b8:46:db:e7:a5:1a:be:b9:da:03: 71:03:d7:f9:4c:63:69:20:69:1e:46:12:be:23:45: 0b:8a:12:e3:de:60:a2:c1:a4:96:47:a3:e5:a5:1d: 25:90:0d:7f:f5:0e:58:d0:83:ee:e9:fa:5f:90:5b: a9:85:53:19:7a:79:b6:af:f2:45:9d:b2:4e:11:f3: 45:eb:6f:a4:22:f3:e9:a6:c2:e1:94:d9:ca:6b:b3: a0:24:f7:b3:15:6c:20:24:73:71:6a:41:75:f7:23: f9:7c:8e:ec:7d:ea:b2:3d:03:e0:64:b9:61:29:bd: 96:05:14:8f:b5:73:68:5d:67:c4:b9:22:5f:ec:04: 5a:e7:76:a5:17:9d:b5:bf:ad:0e:eb:b4:5e:c0:66: f9:d5:5d:d3:1c:5d:3c:a0:41:86:9f:75:b3:39:e8: f5:3b:82:d6:6c:00:a4:ef:de:df:46:bb:62:d6:4a: 65:98:31:68:4e:4a:27:0b:68:40:2a:53:79:cc:fd: f1:ae:04:3c:6c:c4:dc:08:63:6c:c8:05:40:9a:b2: 4e:ed:63:8b:ab:85:a6:4a:f0:80:43:24:33:b9:f5: d7:52:7e:7f:29:9d:5f:96:74:44:d9:e0:f8:ca:01: ca:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:82:77:F5:88:E8:3B:72:B9:EB:37:85:E6:43:C4:09:F4:BC:58:F1 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:35:1d:54:99:75:b6:3e:cf:bc:42:41:2a:27:b5:a3:83:03: ee:a9:42:7c:30:a2:5a:30:59:0f:6d:db:66:32:85:c8:0b:55: d4:58:3c:3c:85:c2:af:72:06:b2:7e:7a:2a:a1:02:b3:3f:bb: 5a:03:eb:ad:e0:61:7c:89:4b:c1:f0:e9:aa:b8:4b:12:c2:03: 40:94:3e:c7:00:58:2b:52:6b:96:20:a9:d5:18:18:ce:06:ad: ab:ce:54:dd:9c:f6:78:0a:ae:6a:69:43:5f:98:50:e8:c4:45: dc:dd:4f:9d:57:e6:0d:f9:12:28:c7:f5:45:df:de:63:07:a4: 17:c7:b5:03:c5:f1:4b:47:dc:da:35:cb:ad:a6:1e:da:9d:5d: ab:59:ef:84:02:4e:b8:f2:f7:f6:06:c0:c6:26:0e:1d:f6:a3: ee:98:56:f2:72:23:44:16:9b:43:e9:1b:94:5d:d7:70:30:15: a9:ed:a4:e5:d2:5a:a1:78:45:e4:80:7c:86:1c:17:b2:fc:dc: 2b:d9:74:a2:56:56:64:1f:2c:39:57:94:91:0e:2c:61:ca:f5: dd:88:01:1b:eb:c8:cc:db:2f:3f:df:8f:69:45:7c:e8:7a:8b: 54:74:ef:2e:1f:4f:c9:67:e1:de:7b:b1:ed:ab:b9:2d:a2:14: d6:0b:53:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjQxMTIyMjEwNjQ2WhcNMjQxMTI5MjEwNjQ2WjAYMRYwFAYD VQQDEw02NzQwZjI2Ni1iOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8myECEIRo4vCuBO4Ak898X4VbhG2+elGr652gNxA9f5TGNpIGkeRhK+I0UL ihLj3mCiwaSWR6PlpR0lkA1/9Q5Y0IPu6fpfkFuphVMZenm2r/JFnbJOEfNF62+k IvPppsLhlNnKa7OgJPezFWwgJHNxakF19yP5fI7sfeqyPQPgZLlhKb2WBRSPtXNo XWfEuSJf7ARa53alF521v60O67RewGb51V3THF08oEGGn3WzOej1O4LWbACk797f Rrti1kplmDFoTkonC2hAKlN5zP3xrgQ8bMTcCGNsyAVAmrJO7WOLq4WmSvCAQyQz ufXXUn5/KZ1flnRE2eD4ygHKawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISCd/WI 6Dtyues3heZDxAn0vFjxMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/NR1UmXW2Ps+8QkEqJ7WjgwPuqUJ8MKJaMFkPbdtmMoXIC1XUWDw8 hcKvcgayfnoqoQKzP7taA+ut4GF8iUvB8OmquEsSwgNAlD7HAFgrUmuWIKnVGBjO Bq2rzlTdnPZ4Cq5qaUNfmFDoxEXc3U+dV+YN+RIox/VF395jB6QXx7UDxfFLR9za Ncutph7anV2rWe+EAk648vf2BsDGJg4d9qPumFbyciNEFptD6RuUXddwMBWp7aTl 0lqheEXkgHyGHBey/Nwr2XSiVlZkHyw5V5SRDixhyvXdiAEb68jM2y8/349pRXzo eotUdO8uH0/JZ+Hee7Htq7ktohTWC1No -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org