$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: PPjVCKN7jqr+gAu2d61sjtjEtt/Tiwyk1XPiMwP8B1s= Subject key identifier: 3F:0E:D4:31:33:DD:5E:AB:8A:25:D9:27:A4:70:84:9F:93:F3:C9:1D Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 0164 Signing time: Sat 23 Nov 2024 02:30:53 +0000 Manifest this update: Sat 23 Nov 2024 02:30:52 +0000 Manifest next update: Sat 30 Nov 2024 02:30:52 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: nYdup36lq2tHYXo4lqShELRyLyVbP722Af+FUIr1yj8=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: zDC4POi/dThAbHtgsplFEXgo+0R27HuDtCIu846C5u4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Nov 23 02:30:52 2024 GMT Not After : Nov 30 02:30:52 2024 GMT Subject: CN=67413e5c-33f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:68:a2:bb:bc:59:50:56:3c:aa:f5:34:c5:98: 8b:fe:51:af:43:59:92:8e:46:84:53:f7:2b:45:c5: a7:23:6a:3c:c3:5a:47:84:45:ed:cb:56:16:82:53: c7:9d:66:8b:26:9d:06:9b:45:6b:d0:e7:0e:20:b5: b4:68:b3:d6:17:7d:c5:20:47:65:59:98:66:24:80: a1:84:d2:33:d4:4a:3c:ca:a3:14:da:93:cb:e6:76: 89:95:d6:e0:1c:1f:4d:b1:93:c5:c7:61:08:e1:93: 85:17:37:de:e6:8f:f5:45:90:72:bb:bc:bc:aa:e1: 87:91:1c:5c:6c:92:dc:7e:ae:b5:90:e3:d2:c2:48: 98:b6:26:6a:16:b3:98:d8:45:62:a2:e3:62:f7:04: 44:75:d1:c3:02:d1:a2:8f:8e:d0:03:2f:3f:84:b7: 20:77:92:9a:da:cf:3a:e2:a9:90:78:f3:f8:ba:d1: ec:d9:62:38:bf:c8:85:b2:30:0c:90:0f:75:98:74: 21:bb:9f:a7:1a:f6:f8:4a:2a:df:dd:43:4a:dd:0e: e6:02:c6:6e:0c:9b:23:7c:a7:80:f1:05:12:ac:eb: bd:76:1e:cf:ef:0d:f4:f6:a2:5e:88:5e:99:67:ab: 80:17:d6:9a:ae:52:95:0b:65:4b:88:ea:93:69:17: 8c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:0E:D4:31:33:DD:5E:AB:8A:25:D9:27:A4:70:84:9F:93:F3:C9:1D X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:06:ef:7e:0d:74:5a:17:06:2b:66:37:e1:01:80:ea:a5:c7: 36:6c:22:92:d8:36:46:ad:89:6e:88:d4:23:49:7c:8d:e7:6a: 41:05:f9:bb:9a:a0:a5:e5:0f:1f:d6:1c:a9:23:d5:65:dd:6d: 57:24:cc:03:98:0e:de:dc:4e:55:82:86:18:da:af:0f:13:64: 2c:3b:ab:1f:07:0b:89:5f:c1:27:41:1c:e5:27:60:22:e0:97: 49:70:1b:e0:cf:7a:23:fd:d9:77:98:eb:20:5a:9d:2b:b7:21: 06:95:1f:7e:45:57:b7:3a:3e:5e:54:12:c4:d7:66:1f:6e:a2: 5e:dd:7b:12:af:8e:3d:69:a1:16:e3:56:c8:39:bb:c1:ee:3f: 7e:3b:57:7c:4b:a7:c7:bd:77:d8:37:4d:0c:72:e8:dd:09:e8: e6:6e:92:4b:22:d4:5f:e0:e1:6f:6a:c6:f4:18:b2:9c:bc:22: 11:94:97:75:6e:62:63:b6:e6:ee:d6:e6:da:34:31:ee:ad:ff: 63:3e:1c:c8:b6:da:d7:a0:47:75:4a:b9:f3:01:ab:a1:4f:dc: 01:aa:97:18:2d:9f:53:06:f9:88:e7:b7:b7:1a:18:51:29:d0: b2:06:16:12:32:a3:2b:46:fa:3b:c5:ad:66:86:81:74:58:3c: 8d:fd:4b:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjQxMTIzMDIzMDUyWhcNMjQxMTMwMDIzMDUyWjAYMRYwFAYD VQQDEw02NzQxM2U1Yy0zM2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmiiu7xZUFY8qvU0xZiL/lGvQ1mSjkaEU/crRcWnI2o8w1pHhEXty1YWglPH nWaLJp0Gm0Vr0OcOILW0aLPWF33FIEdlWZhmJIChhNIz1Eo8yqMU2pPL5naJldbg HB9NsZPFx2EI4ZOFFzfe5o/1RZByu7y8quGHkRxcbJLcfq61kOPSwkiYtiZqFrOY 2EViouNi9wREddHDAtGij47QAy8/hLcgd5Ka2s864qmQePP4utHs2WI4v8iFsjAM kA91mHQhu5+nGvb4Sirf3UNK3Q7mAsZuDJsjfKeA8QUSrOu9dh7P7w309qJeiF6Z Z6uAF9aarlKVC2VLiOqTaReMLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8O1DEz 3V6riiXZJ6RwhJ+T88kdMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCBu9+DXRaFwYrZjfhAYDqpcc2bCKS2DZGrYluiNQjSXyN52pBBfm7 mqCl5Q8f1hypI9Vl3W1XJMwDmA7e3E5VgoYY2q8PE2QsO6sfBwuJX8EnQRzlJ2Ai 4JdJcBvgz3oj/dl3mOsgWp0rtyEGlR9+RVe3Oj5eVBLE12YfbqJe3XsSr449aaEW 41bIObvB7j9+O1d8S6fHvXfYN00McujdCejmbpJLItRf4OFvasb0GLKcvCIRlJd1 bmJjtubu1ubaNDHurf9jPhzIttrXoEd1SrnzAauhT9wBqpcYLZ9TBvmI57e3GhhR KdCyBhYSMqMrRvo7xa1mhoF0WDyN/UtT -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org