$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: YzqNVjZWyWK4pMYNPZqsKtlq8Zlhn2TIiLTZx5KFavs= Subject key identifier: 89:62:AB:69:C7:60:33:16:02:C9:92:F5:A7:C9:73:08:D7:5E:A1:BD Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: A2 Signing time: Thu 21 Nov 2024 04:21:09 +0000 Manifest this update: Thu 21 Nov 2024 04:21:08 +0000 Manifest next update: Thu 28 Nov 2024 04:21:08 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: wytV1o5i/pQ443QSoyxi3htIfpPojAvvTVZS8Bzut2c=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: OPf1O5F2znXgxow/SuyykvjROqP8J2goN42jw3ahWbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Nov 21 04:21:08 2024 GMT Not After : Nov 28 04:21:08 2024 GMT Subject: CN=673eb534-8df7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:94:e8:8e:44:77:31:77:b5:ae:ab:42:1f: b9:85:3e:3d:af:12:ca:dc:86:0c:1a:a7:53:42:c7: 90:31:fb:dd:e9:69:20:ba:47:7c:9e:9a:27:c4:2c: bf:22:db:2c:be:a7:ce:76:84:3e:e7:e8:f1:b1:7e: 28:24:c6:6b:c2:7f:ad:54:07:4a:79:33:f2:e7:cf: b1:4f:cd:13:32:b3:d9:91:dc:a4:4e:c1:d1:1b:a8: 57:7f:a2:66:29:b5:70:f9:93:a8:ca:6f:83:c1:fc: a2:2e:72:ed:ff:1a:c0:84:4f:53:64:6d:54:1d:6a: 61:a4:d7:3e:c8:9f:8d:cc:ee:e7:49:6f:b8:65:e5: a2:ac:db:9b:4a:66:ce:b2:14:cb:39:8e:f3:35:29: 10:ef:f3:12:65:c1:cc:1d:07:86:92:ae:05:db:4f: 73:85:9c:d6:0f:71:76:cb:ed:1f:41:c3:72:5b:1b: e6:58:08:63:7a:44:19:1e:88:dd:df:c2:98:15:dc: 23:e8:54:6d:41:af:05:38:fc:71:59:c2:c7:52:4a: e2:f4:96:07:b1:ee:b6:84:7c:8b:37:e4:c2:e3:2b: ca:21:54:55:1b:0e:07:ca:a3:2d:a7:6e:75:ac:49: 66:77:51:b8:7d:43:d4:d6:cd:50:9a:c2:e7:ca:0f: 89:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:62:AB:69:C7:60:33:16:02:C9:92:F5:A7:C9:73:08:D7:5E:A1:BD X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b6:08:c6:be:1b:6f:c4:30:25:1d:ae:4a:12:a9:10:22:9f: bd:13:4f:01:46:8f:00:7d:ba:e7:38:3c:f7:3b:63:ca:f8:75: a7:56:35:45:3c:0d:59:ee:c7:32:d8:18:0a:73:89:30:e9:f9: 9b:a0:e2:23:02:79:ea:c3:03:da:00:32:9a:ce:3d:13:74:81: 5d:2f:51:ce:1a:1f:f4:93:d1:f8:cb:99:dc:a8:ed:c6:89:2d: e3:91:2d:06:a6:3d:11:63:2c:8d:6c:84:4d:c0:11:f4:00:1f: 79:3e:c8:04:3d:4d:97:9e:35:b6:d7:3d:61:0c:27:c7:88:89: 6c:d4:78:b2:42:ad:5d:16:93:6b:5a:3b:76:c7:af:28:6e:9c: ca:03:3e:c5:80:c8:cf:96:d7:18:14:65:4d:12:96:8c:72:55: dd:58:86:93:21:5e:3b:8d:d7:c0:71:7b:e4:b9:03:c8:df:51: 47:ee:e9:d0:65:57:00:cd:fe:cc:33:33:f5:49:a9:40:c1:33: aa:cc:fb:2e:80:a0:94:8f:46:23:40:f3:fa:b0:a1:9d:6a:6e: af:ba:c9:e6:43:91:10:07:44:4b:bd:f4:85:26:ed:d5:0a:ba: 2f:2d:31:a6:92:2c:8e:75:5c:f2:fe:05:23:f8:ef:37:d2:99: 9b:ab:f3:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjQxMTIxMDQyMTA4WhcNMjQxMTI4MDQyMTA4WjAYMRYwFAYD VQQDEw02NzNlYjUzNC04ZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+GU6I5EdzF3ta6rQh+5hT49rxLK3IYMGqdTQseQMfvd6Wkgukd8nponxCy/ ItssvqfOdoQ+5+jxsX4oJMZrwn+tVAdKeTPy58+xT80TMrPZkdykTsHRG6hXf6Jm KbVw+ZOoym+DwfyiLnLt/xrAhE9TZG1UHWphpNc+yJ+NzO7nSW+4ZeWirNubSmbO shTLOY7zNSkQ7/MSZcHMHQeGkq4F209zhZzWD3F2y+0fQcNyWxvmWAhjekQZHojd 38KYFdwj6FRtQa8FOPxxWcLHUkri9JYHse62hHyLN+TC4yvKIVRVGw4HyqMtp251 rElmd1G4fUPU1s1QmsLnyg+JtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIliq2nH YDMWAsmS9afJcwjXXqG9MB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBatgjGvhtvxDAlHa5KEqkQIp+9E08BRo8AfbrnODz3O2PK+HWnVjVF PA1Z7scy2BgKc4kw6fmboOIjAnnqwwPaADKazj0TdIFdL1HOGh/0k9H4y5ncqO3G iS3jkS0Gpj0RYyyNbIRNwBH0AB95PsgEPU2XnjW21z1hDCfHiIls1HiyQq1dFpNr Wjt2x68obpzKAz7FgMjPltcYFGVNEpaMclXdWIaTIV47jdfAcXvkuQPI31FH7unQ ZVcAzf7MMzP1SalAwTOqzPsugKCUj0YjQPP6sKGdam6vusnmQ5EQB0RLvfSFJu3V CrovLTGmkiyOdVzy/gUj+O830pmbq/N7 -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:04 2024 by rpki-client on console-ams.rpki-client.org