$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: q6CfXBN+ZXXLC/dVNoIQ9FtGjG9LC6c0GSiA6XPEXTY= Subject key identifier: 5D:F3:AC:98:39:FF:B1:5A:E3:12:14:D7:ED:E0:18:D8:2E:A5:DD:6B Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 0617 Signing time: Fri 22 Nov 2024 22:10:54 +0000 Manifest this update: Fri 22 Nov 2024 22:10:54 +0000 Manifest next update: Fri 29 Nov 2024 22:10:54 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: D7SPMgJBZqdBfViAWuklep1/X3jTK7QU1ir5wroUM80=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Nov 22 22:10:54 2024 GMT Not After : Nov 29 22:10:54 2024 GMT Subject: CN=6741016e-9623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:00:18:f0:97:8d:f5:5d:6c:9a:59:e9:28:a8: 1c:78:30:5f:02:2d:ad:f4:0d:10:dd:28:fd:c2:d1: b9:df:69:72:0c:c4:29:90:c8:db:83:2b:d5:a8:7c: 57:71:9f:c5:62:98:8c:a5:d6:85:3a:d0:7b:bf:1d: a1:d9:43:3f:65:cc:39:cf:be:27:f4:f3:2d:ec:d8: bc:52:f2:36:a6:82:0f:88:ee:76:aa:50:a4:5d:ab: 62:41:4b:3a:e7:06:97:e2:20:88:92:c7:86:fb:a8: e2:a9:bc:19:e8:92:74:a8:15:12:12:98:c2:ce:4b: b5:2c:ef:ab:de:c5:7d:83:8c:da:73:21:65:93:3c: c7:23:bf:ec:ff:9d:26:1f:ac:61:ce:7c:c9:1b:2f: f5:67:58:ff:e5:2f:d2:52:42:42:96:72:d6:b6:d4: a3:fd:84:15:7c:39:97:69:ec:d8:53:81:a1:b3:71: e0:bf:29:9a:0f:e1:69:c3:fe:54:03:94:56:70:56: 7f:59:01:6d:05:1f:57:b0:d6:cd:ad:67:fc:61:44: 7f:e4:b9:68:f5:35:6c:10:77:a3:ee:94:7f:85:df: d0:fb:2d:ad:e6:2f:9d:b0:95:09:fd:dc:0a:b0:5e: 1f:9d:d5:fa:83:28:21:31:41:7c:52:82:27:6d:ab: 9c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F3:AC:98:39:FF:B1:5A:E3:12:14:D7:ED:E0:18:D8:2E:A5:DD:6B X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:ba:72:0a:df:66:8d:a1:bd:49:3d:bf:2a:b9:20:79:40:0c: 7d:fc:5f:21:5b:45:c8:03:32:d0:96:f7:15:b7:34:43:25:a3: 66:52:3f:e2:fa:96:f0:3b:23:32:7e:1b:08:10:0e:cf:9e:fa: 59:1d:fb:0d:56:cc:df:2b:a8:77:39:d5:ef:05:ca:80:ce:ad: 1e:25:15:fb:32:b2:a3:69:ea:e2:f2:95:be:5c:13:66:3c:ee: 17:aa:b8:7a:7b:e0:2a:df:53:02:b3:dc:37:7f:c2:cc:ce:f2: 9b:a9:d0:82:d4:cf:4b:8f:e3:a2:52:d4:33:8e:9c:2d:0f:e8: c1:bc:df:b2:d7:4f:3d:a9:c2:92:3a:91:0a:e4:69:83:24:a5: 8b:74:62:a9:c9:9e:cb:5f:a6:9a:01:38:29:03:76:e6:67:1f: 18:0d:96:9a:3d:37:1e:e2:3c:31:c5:84:db:3a:00:73:7d:95: 8f:6e:4c:6f:f6:b0:7c:b2:80:d2:c7:e9:61:24:a0:2c:00:0f: 15:5e:10:31:f0:8b:00:03:28:15:a4:cc:1e:28:2b:23:28:bd: 67:12:b1:90:69:a4:57:0a:ab:90:c5:4c:8a:63:8a:0e:4b:78: cb:b7:c5:97:a7:8d:de:6e:53:81:1c:ed:4c:c2:b2:39:dd:f4: 97:31:8f:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjQxMTIyMjIxMDU0WhcNMjQxMTI5MjIxMDU0WjAYMRYwFAYD VQQDEw02NzQxMDE2ZS05NjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgAY8JeN9V1smlnpKKgceDBfAi2t9A0Q3Sj9wtG532lyDMQpkMjbgyvVqHxX cZ/FYpiMpdaFOtB7vx2h2UM/Zcw5z74n9PMt7Ni8UvI2poIPiO52qlCkXatiQUs6 5waX4iCIkseG+6jiqbwZ6JJ0qBUSEpjCzku1LO+r3sV9g4zacyFlkzzHI7/s/50m H6xhznzJGy/1Z1j/5S/SUkJClnLWttSj/YQVfDmXaezYU4Ghs3HgvymaD+Fpw/5U A5RWcFZ/WQFtBR9XsNbNrWf8YUR/5Llo9TVsEHej7pR/hd/Q+y2t5i+dsJUJ/dwK sF4fndX6gyghMUF8UoInbauccwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3zrJg5 /7Fa4xIU1+3gGNgupd1rMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnunIK32aNob1JPb8quSB5QAx9/F8hW0XIAzLQlvcVtzRDJaNmUj/i +pbwOyMyfhsIEA7PnvpZHfsNVszfK6h3OdXvBcqAzq0eJRX7MrKjaeri8pW+XBNm PO4Xqrh6e+Aq31MCs9w3f8LMzvKbqdCC1M9Lj+OiUtQzjpwtD+jBvN+y1089qcKS OpEK5GmDJKWLdGKpyZ7LX6aaATgpA3bmZx8YDZaaPTce4jwxxYTbOgBzfZWPbkxv 9rB8soDSx+lhJKAsAA8VXhAx8IsAAygVpMweKCsjKL1nErGQaaRXCquQxUyKY4oO S3jLt8WXp43eblOBHO1MwrI53fSXMY9b -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:37 2024 by rpki-client on console-ams.rpki-client.org