$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: YcHDoxJFhnkURxGGoxqQ+tZB7E+k4L3E+4VJ354ny1Q= Subject key identifier: 02:E4:CC:89:B3:CB:AC:9E:08:43:5B:F8:C4:A9:91:8B:53:EC:4A:B4 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 01FC Signing time: Sat 23 Nov 2024 01:38:00 +0000 Manifest this update: Sat 23 Nov 2024 01:38:00 +0000 Manifest next update: Sat 30 Nov 2024 01:38:00 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: TZWUBkhdH4BxyAktGTElTl6adPkgIJlZxiD81xLTuCE=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Nov 23 01:38:00 2024 GMT Not After : Nov 30 01:38:00 2024 GMT Subject: CN=674131f8-b04f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b6:12:3d:b0:c5:7f:95:37:4c:77:50:53:48: f8:67:c1:af:0d:ee:30:70:c8:a5:9b:7d:eb:ee:5a: 43:c9:bf:41:60:0f:ee:86:d6:7e:43:c3:81:65:72: 97:de:b3:d3:aa:16:e6:b3:fc:8c:71:c2:88:26:4f: 2b:c1:25:55:82:c3:50:09:9d:3f:d9:f9:88:7f:1d: 7b:03:f0:0d:c4:db:4f:ed:bd:d2:15:b8:cb:97:5e: e6:1a:be:a2:21:1b:2a:32:b4:32:b7:0c:d2:83:1e: 0b:50:f5:c8:11:bf:0a:39:fb:aa:f4:79:02:05:60: b3:a2:4f:e9:d9:51:57:4a:9d:39:34:fb:d8:a0:f0: f6:a2:68:11:aa:28:7d:93:50:24:0d:56:43:97:72: ad:5e:2b:b5:10:81:69:75:e3:a3:50:86:a6:84:b0: e9:5c:fd:82:41:ad:1e:a0:d7:ff:3a:ce:a9:f0:49: 6a:07:99:80:40:1b:9e:28:90:0e:b1:c5:22:29:3a: 4d:71:7d:da:b3:03:d3:53:51:a4:59:33:4c:9b:9b: 44:6d:d4:c7:4f:ee:a3:29:28:8e:e8:70:d1:1a:7a: e0:a9:cf:1d:c5:4b:22:2e:33:44:87:d6:29:d7:79: a9:b7:bf:87:87:e2:00:40:ef:fc:69:e1:49:a9:e9: 1b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E4:CC:89:B3:CB:AC:9E:08:43:5B:F8:C4:A9:91:8B:53:EC:4A:B4 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:0a:2c:49:3f:50:bf:e7:b9:55:f7:d2:e3:ae:05:6e:6b:cd: b4:b1:c5:e5:62:40:96:fa:a7:96:e2:84:99:50:5b:0a:76:db: c5:65:73:72:b9:5d:28:08:87:cf:54:7e:8b:ec:55:da:74:cc: 41:7e:88:c7:ed:c2:2f:17:e5:54:a8:e0:1a:ef:ce:07:78:41: ad:37:76:d0:46:08:9a:f9:f9:3d:d5:0d:a6:97:b9:3c:72:c9: d0:65:eb:79:15:30:82:bb:8a:25:cb:3b:74:5f:83:1e:65:73: 8c:a4:ee:32:be:d7:89:c3:6f:a5:c7:9d:6a:e7:3d:39:dc:44: 7b:db:2c:80:ec:c5:3f:89:bd:71:98:14:01:3d:74:6e:9b:a0: e0:ec:1b:1a:8b:d4:55:3a:6a:fd:f4:f2:3f:60:04:6f:5f:ec: 3a:81:18:b8:45:29:e2:b2:f3:cf:ea:57:32:7a:da:05:ea:f6: 9e:bb:2f:6f:44:40:76:da:37:92:b4:a4:ad:3c:05:fe:41:dc: fb:bd:5a:0e:51:a4:dc:c0:15:45:2f:be:ea:8a:a0:2c:e3:61: c9:36:be:a3:d0:f1:78:bc:a8:a8:91:93:30:5c:19:88:af:14: c2:76:57:03:5a:4c:cf:05:ef:3b:9c:7c:7d:22:f1:52:6a:8e: 6e:2c:57:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjQxMTIzMDEzODAwWhcNMjQxMTMwMDEzODAwWjAYMRYwFAYD VQQDEw02NzQxMzFmOC1iMDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbYSPbDFf5U3THdQU0j4Z8GvDe4wcMilm33r7lpDyb9BYA/uhtZ+Q8OBZXKX 3rPTqhbms/yMccKIJk8rwSVVgsNQCZ0/2fmIfx17A/ANxNtP7b3SFbjLl17mGr6i IRsqMrQytwzSgx4LUPXIEb8KOfuq9HkCBWCzok/p2VFXSp05NPvYoPD2omgRqih9 k1AkDVZDl3KtXiu1EIFpdeOjUIamhLDpXP2CQa0eoNf/Os6p8ElqB5mAQBueKJAO scUiKTpNcX3aswPTU1GkWTNMm5tEbdTHT+6jKSiO6HDRGnrgqc8dxUsiLjNEh9Yp 13mpt7+Hh+IAQO/8aeFJqekbMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALkzImz y6yeCENb+MSpkYtT7Eq0MB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAICixJP1C/57lV99LjrgVua820scXlYkCW+qeW4oSZUFsKdtvFZXNy uV0oCIfPVH6L7FXadMxBfojH7cIvF+VUqOAa784HeEGtN3bQRgia+fk91Q2ml7k8 csnQZet5FTCCu4olyzt0X4MeZXOMpO4yvteJw2+lx51q5z053ER72yyA7MU/ib1x mBQBPXRum6Dg7Bsai9RVOmr99PI/YARvX+w6gRi4RSnisvPP6lcyetoF6vaeuy9v REB22jeStKStPAX+Qdz7vVoOUaTcwBVFL77qiqAs42HJNr6j0PF4vKiokZMwXBmI rxTCdlcDWkzPBe87nHx9IvFSao5uLFdR -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org