$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: WsEWSkvSNXFlRp640rjPpcB8fc2iYdBiUCuxHmT7eAI= Subject key identifier: FD:07:FE:C6:6B:F5:D0:AE:A1:0F:EA:4D:91:6F:EB:C1:7B:F3:DE:A2 Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 1670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 165E Signing time: Sat 23 Nov 2024 10:34:34 +0000 Manifest this update: Sat 23 Nov 2024 10:34:33 +0000 Manifest next update: Sat 30 Nov 2024 10:34:33 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: JP5L1oqSgDpDCAxeSqwJZtGKT6XfmDrbhMQpo4K3aCM=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: r+Jy/09gWn+YH8JSigsRKi6Ce/gD70dgb0f2iF1VSsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5744 (0x1670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: Nov 23 10:34:33 2024 GMT Not After : Nov 30 10:34:33 2024 GMT Subject: CN=6741afb9-f738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:13:98:0a:56:a9:bf:fd:58:68:05:71:97:94: 99:8e:b1:9d:5d:01:71:7b:a8:55:58:bb:ad:f1:93: 68:18:e4:0d:14:7c:4a:ab:71:5f:bf:e0:15:e2:ef: 62:f6:9f:5e:de:88:20:59:de:24:77:f6:fd:0b:de: 39:f9:cc:fc:da:8f:62:b2:24:d5:cc:e1:d2:53:75: 2e:85:06:c8:c3:a4:ea:fe:93:01:5e:1e:f2:93:9b: 6b:c6:4b:36:a6:00:bc:95:62:44:7c:76:e0:a6:6f: 93:54:28:ad:7a:dd:bf:29:02:1c:22:1b:b9:d1:e3: a8:44:43:12:52:7c:b8:97:36:3e:49:a8:a5:7d:3e: 1a:78:b2:69:15:15:17:02:62:8a:79:89:b6:c5:ce: 93:38:2a:e0:81:c3:60:3e:6d:36:24:aa:e4:38:d8: a8:6a:10:33:55:6b:7a:d9:16:14:1c:da:fd:f7:f9: 8e:21:88:56:03:2b:ce:48:1d:cb:66:91:b9:4f:a5: 2d:47:eb:63:af:c6:74:1d:d0:2d:a8:33:a7:35:b6: ea:69:29:05:2c:0b:d6:e3:b3:b7:3c:de:84:29:40: 97:28:6f:d8:eb:85:52:ae:b4:c6:20:c9:4e:4c:b5: 19:67:fc:b2:36:8e:16:e5:1d:68:ed:87:5e:26:6a: 75:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:07:FE:C6:6B:F5:D0:AE:A1:0F:EA:4D:91:6F:EB:C1:7B:F3:DE:A2 X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:fc:46:c2:8a:59:57:39:51:72:3d:f7:87:96:f8:55:7d:b4: 70:2c:5d:10:ea:2e:bd:94:b1:9d:98:5e:5d:26:30:11:6f:b3: 14:e9:b1:17:eb:88:a1:ec:69:3a:89:2d:80:bc:3b:46:90:18: f3:d4:6e:b6:67:4b:93:d4:92:fa:e5:0c:68:82:18:e5:65:e6: 16:fb:a0:99:c1:d2:3f:8e:10:88:e3:d6:b2:b3:3d:86:d3:f6: 9f:e5:53:0a:7e:cf:b0:d7:dd:65:bb:66:67:4d:f6:bf:1c:04: d2:7f:5e:53:6b:8e:e8:aa:6e:e8:4c:d5:63:81:a9:71:31:aa: c2:2e:cc:a5:7e:00:98:4c:1f:20:87:39:c3:99:01:be:a2:c5: 4d:04:31:6e:f3:b1:d1:42:70:da:86:da:6f:89:ad:b1:f8:6d: 6d:32:04:a0:93:8b:92:0f:8b:2b:8a:4e:fe:2e:2d:1e:84:93: c0:19:05:b5:ab:a0:f5:77:b6:b8:c2:35:d4:4d:9c:33:39:f4: 7c:26:66:2d:bb:4f:e0:2a:ad:1c:b7:ca:d0:65:bb:ac:c4:ab: 8f:b0:c0:6e:91:5b:1b:4b:99:22:31:d9:e9:d4:6b:7e:6b:01: 7d:a1:cf:5d:36:49:5b:0f:fc:1d:9b:65:86:57:3b:89:70:c4: 1d:96:c9:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjQxMTIzMTAzNDMzWhcNMjQxMTMwMTAzNDMzWjAYMRYwFAYD VQQDEw02NzQxYWZiOS1mNzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhOYClapv/1YaAVxl5SZjrGdXQFxe6hVWLut8ZNoGOQNFHxKq3Ffv+AV4u9i 9p9e3oggWd4kd/b9C945+cz82o9isiTVzOHSU3UuhQbIw6Tq/pMBXh7yk5trxks2 pgC8lWJEfHbgpm+TVCitet2/KQIcIhu50eOoREMSUny4lzY+SailfT4aeLJpFRUX AmKKeYm2xc6TOCrggcNgPm02JKrkONioahAzVWt62RYUHNr99/mOIYhWAyvOSB3L ZpG5T6UtR+tjr8Z0HdAtqDOnNbbqaSkFLAvW47O3PN6EKUCXKG/Y64VSrrTGIMlO TLUZZ/yyNo4W5R1o7YdeJmp1xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0H/sZr 9dCuoQ/qTZFv68F7896iMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV/EbCillXOVFyPfeHlvhVfbRwLF0Q6i69lLGdmF5dJjARb7MU6bEX 64ih7Gk6iS2AvDtGkBjz1G62Z0uT1JL65QxoghjlZeYW+6CZwdI/jhCI49aysz2G 0/af5VMKfs+w191lu2ZnTfa/HATSf15Ta47oqm7oTNVjgalxMarCLsylfgCYTB8g hznDmQG+osVNBDFu87HRQnDahtpvia2x+G1tMgSgk4uSD4srik7+Li0ehJPAGQW1 q6D1d7a4wjXUTZwzOfR8JmYtu0/gKq0ct8rQZbusxKuPsMBukVsbS5kiMdnp1Gt+ awF9oc9dNklbD/wdm2WGVzuJcMQdlsmh -----END CERTIFICATE-----Generated at Sat Nov 23 11:33:20 2024 by rpki-client on console-fra.rpki-client.org