$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: 6hThR5vtqSi3uKhayvVjuWXrRnQKKLewuNKB3kzFUJg= Subject key identifier: 77:E8:DA:6D:7E:0D:7B:3B:56:3E:51:CC:3B:D3:C1:70:43:73:48:23 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 049F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 0485 Signing time: Fri 22 Nov 2024 23:41:13 +0000 Manifest this update: Fri 22 Nov 2024 23:41:13 +0000 Manifest next update: Fri 29 Nov 2024 23:41:13 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: qIDT+DTpS9zOgGQrZh9UwMaiEtZ74n3CLvRXsa5ZaTA=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: 9kRfdvF65IulS7ZzTZmvqSmyOFIzvZrEm45tsxjB9uI=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: svX2pEtgxUojcQAs8QTB1gnzlB9OXDf4D6NAzD6E1rw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Nov 22 23:41:13 2024 GMT Not After : Nov 29 23:41:13 2024 GMT Subject: CN=67411699-e405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1a:81:dc:2b:d7:4a:8d:c4:ad:01:8f:77:81: 07:85:d8:e4:e9:a5:7a:e1:17:5a:b7:24:72:8f:16: 21:af:c5:1b:36:90:d3:a4:8a:42:27:3f:b5:5d:74: 02:82:88:f7:83:13:0d:52:58:bc:61:5f:8e:ef:ab: b5:8b:79:1f:04:d7:35:08:52:5d:6b:18:cf:17:e4: e5:3d:cf:65:30:b7:ad:2a:6d:22:29:62:be:85:0c: 0a:6a:1f:1b:5f:17:01:1b:a5:6b:f7:32:36:35:fd: 5c:cd:86:08:f5:28:7c:c5:a7:ee:b5:6b:90:89:e1: 29:83:ec:72:3d:e9:c9:b0:51:b8:f0:5e:3e:f0:12: 85:80:a4:92:52:5b:0a:97:02:39:7f:69:d7:11:6d: 0d:f4:6a:ef:45:db:a6:3e:82:a4:bd:4d:4a:f0:11: 60:bf:8a:e2:0a:a4:af:7f:6c:9b:b7:47:73:18:18: b0:46:1a:17:b2:d6:8c:ca:42:5b:cf:3e:08:c9:00: 3a:e1:6d:2a:d1:2e:91:6f:0f:89:6c:e3:cf:8b:b6: 35:cf:09:6e:af:f1:fc:15:4f:4f:1e:8a:4c:7c:3e: 2a:78:33:74:51:18:5c:fd:dd:44:cb:75:8d:59:c8: 4f:82:cd:43:c1:81:16:86:a0:c2:9e:06:06:d2:de: 27:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E8:DA:6D:7E:0D:7B:3B:56:3E:51:CC:3B:D3:C1:70:43:73:48:23 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:35:b4:f3:3f:5b:4d:dd:f7:d6:b6:1e:80:1c:32:9f:60:a2: c1:51:2f:9b:b5:f4:30:69:a9:05:93:68:73:dd:a0:f0:4c:18: 4a:8b:69:1d:5c:5f:c2:f1:17:37:b2:5f:30:87:c2:5d:af:64: 34:6a:22:0f:6b:5b:7d:d6:27:06:64:21:ec:74:f7:13:71:0f: df:47:80:06:82:23:28:a7:e7:f2:b6:53:ff:79:c7:ea:26:46: 9f:7e:92:f2:c0:62:9c:50:6c:ad:0e:b5:48:00:90:6a:f8:1c: 97:16:1b:7e:7f:2f:33:25:6c:27:f3:a0:36:77:82:03:b4:8b: 04:57:38:70:5e:cb:a1:3f:4c:ee:28:02:c7:dd:09:9d:3f:ca: 31:34:fa:a0:3f:31:9c:d7:0b:5f:57:88:b8:fe:b2:3c:e1:86: 42:19:7d:b9:f1:65:23:af:f6:7c:b9:11:8e:9e:15:2a:c9:89: 84:07:29:ba:2f:d5:32:8a:c2:c6:f1:a8:c8:01:8f:b1:35:c9: 14:df:87:94:f6:99:39:50:c4:fe:81:42:b7:9e:4a:b1:22:f4: 8d:f8:da:98:b2:c2:db:ac:eb:cb:5c:8c:47:c0:3e:42:58:41: f2:45:bb:e5:72:6a:a8:25:c3:d2:14:a3:d5:d9:a5:7b:1a:e7: 67:a2:0d:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjQxMTIyMjM0MTEzWhcNMjQxMTI5MjM0MTEzWjAYMRYwFAYD VQQDEw02NzQxMTY5OS1lNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RqB3CvXSo3ErQGPd4EHhdjk6aV64RdatyRyjxYhr8UbNpDTpIpCJz+1XXQC goj3gxMNUli8YV+O76u1i3kfBNc1CFJdaxjPF+TlPc9lMLetKm0iKWK+hQwKah8b XxcBG6Vr9zI2Nf1czYYI9Sh8xafutWuQieEpg+xyPenJsFG48F4+8BKFgKSSUlsK lwI5f2nXEW0N9GrvRdumPoKkvU1K8BFgv4riCqSvf2ybt0dzGBiwRhoXstaMykJb zz4IyQA64W0q0S6Rbw+JbOPPi7Y1zwlur/H8FU9PHopMfD4qeDN0URhc/d1Ey3WN WchPgs1DwYEWhqDCngYG0t4nQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfo2m1+ DXs7Vj5RzDvTwXBDc0gjMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWNbTzP1tN3ffWth6AHDKfYKLBUS+btfQwaakFk2hz3aDwTBhKi2kd XF/C8Rc3sl8wh8Jdr2Q0aiIPa1t91icGZCHsdPcTcQ/fR4AGgiMop+fytlP/ecfq JkaffpLywGKcUGytDrVIAJBq+ByXFht+fy8zJWwn86A2d4IDtIsEVzhwXsuhP0zu KALH3QmdP8oxNPqgPzGc1wtfV4i4/rI84YZCGX258WUjr/Z8uRGOnhUqyYmEBym6 L9UyisLG8ajIAY+xNckU34eU9pk5UMT+gUK3nkqxIvSN+NqYssLbrOvLXIxHwD5C WEHyRbvlcmqoJcPSFKPV2aV7Gudnog3V -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org