$ rpki-client -vvf rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft File: 276b_H-KPTvgW7W2Ah91Rb6YG_A.mft (raw, json) Hash identifier: qQDsjRPdEfl0H9da+ffb8JdCBxZLj66vOO3QeUHGcq0= Subject key identifier: 38:A0:AB:72:54:86:C7:39:64:E4:7B:23:55:E3:E0:A4:0B:D8:D2:14 Authority key identifier: DB:BE:9B:FC:7F:8A:3D:3B:E0:5B:B5:B6:02:1F:75:45:BE:98:1B:F0 Certificate issuer: /CN=A913D03A/serialNumber=DBBE9BFC7F8A3D3BE05BB5B6021F7545BE981BF0 Certificate serial: 0708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft Manifest number: 0700 Signing time: Fri 22 Nov 2024 21:29:26 +0000 Manifest this update: Fri 22 Nov 2024 21:29:25 +0000 Manifest next update: Fri 29 Nov 2024 21:29:25 +0000 Files and hashes: 1: 276b_H-KPTvgW7W2Ah91Rb6YG_A.crl (hash: 5PV9+kuu1eyhgn+BGj6zIPpoUYpQpBICbHB8odEoCII=) 2: 3A9F3ADC234A11EBA0C40C2FC4F9AE02.roa (hash: di3lTW+SGjtdOdKQhu7ngXS2N/Oh8YrYx17MC5hYJgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.crl rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1800 (0x708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D03A/serialNumber=DBBE9BFC7F8A3D3BE05BB5B6021F7545BE981BF0 Validity Not Before: Nov 22 21:29:25 2024 GMT Not After : Nov 29 21:29:25 2024 GMT Subject: CN=6740f7b6-d4f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:05:f7:e9:de:2a:94:f6:13:53:c9:81:77:63: 88:b8:7e:bc:a9:a9:c3:c8:00:77:19:4c:a3:09:a8: b6:bd:11:c5:e8:f3:35:2c:10:0d:6c:97:7c:19:22: 88:85:26:16:fc:83:10:5d:fd:82:e4:6e:ea:d9:bc: 1b:31:9e:f3:62:81:8a:af:09:a3:9f:52:5d:98:28: 1b:af:34:61:9a:32:91:d5:12:ce:a1:ff:fe:3c:d5: 84:a7:58:bf:fe:a9:12:19:c8:42:d9:dd:40:08:fc: b2:ed:af:0c:15:3d:4a:11:ce:11:16:6b:d1:02:51: e0:9d:dd:ca:51:aa:d7:15:e8:f2:17:25:4f:ae:c4: 53:32:f1:43:ac:55:66:83:a5:23:46:4f:14:ec:66: ca:9a:a1:cc:eb:48:0c:4d:0e:50:a8:7f:44:3c:27: 15:89:d0:17:ce:e8:8e:d9:13:fd:dd:76:1d:32:d1: 85:47:a5:85:86:7a:5c:9e:fe:b6:e4:6b:4b:77:52: 17:31:a4:a4:52:04:4d:d6:d4:f1:dd:e1:98:c9:5d: d9:94:3f:b2:bc:19:30:e5:fd:b5:f1:25:3d:5d:9e: 7e:f7:6b:65:73:2c:79:d6:54:ea:b4:b1:6a:33:12: 0a:06:37:86:38:60:86:03:ef:1b:da:4b:70:a4:eb: 76:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A0:AB:72:54:86:C7:39:64:E4:7B:23:55:E3:E0:A4:0B:D8:D2:14 X509v3 Authority Key Identifier: keyid:DB:BE:9B:FC:7F:8A:3D:3B:E0:5B:B5:B6:02:1F:75:45:BE:98:1B:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/276b_H-KPTvgW7W2Ah91Rb6YG_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D03A/926B43E8219011EB82A41B48C4F9AE02/276b_H-KPTvgW7W2Ah91Rb6YG_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:00:ba:79:6c:06:79:3a:b3:02:92:08:1b:58:62:f0:dc:6c: ec:5c:f7:19:a5:ca:28:1a:62:e1:8b:16:5d:b8:06:9f:96:ca: f0:bc:9e:03:85:6e:79:96:ee:3e:f6:82:08:6f:c7:e8:e2:2c: 80:0d:b6:44:ef:04:3b:fa:3f:3e:ac:bf:3e:dd:b0:2a:5f:fd: 73:17:27:e6:e6:6f:25:71:c6:ef:56:2b:44:24:d9:95:1f:17: 4e:59:a9:9a:76:36:1b:82:30:df:a9:21:a1:25:57:f2:92:0e: e8:6c:72:ed:54:ef:24:f5:67:01:98:e1:14:02:18:49:b0:dc: cd:90:ec:de:d5:3e:97:70:24:79:b2:85:5a:02:aa:a1:9b:1d: 7e:94:68:37:a4:75:4c:ac:b6:0e:6c:e7:86:65:13:13:5f:44: b5:f9:6f:73:24:63:f9:82:2a:2b:a4:46:18:32:49:e7:60:3b: 76:07:44:1a:4f:14:74:60:97:07:10:f9:a2:f8:95:de:66:0c: c6:56:1b:00:7b:c5:90:b2:f2:ba:70:36:a0:92:69:80:59:dc: 5a:a4:f8:9e:3e:5d:60:b8:c9:57:74:3e:fc:e9:ac:9b:16:94: 3f:db:d2:73:b6:0f:19:12:4b:10:e7:66:07:f9:68:af:8b:10: 1e:f7:5b:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QwM0ExMTAvBgNVBAUTKERCQkU5QkZDN0Y4QTNEM0JFMDVCQjVCNjAyMUY3NTQ1 QkU5ODFCRjAwHhcNMjQxMTIyMjEyOTI1WhcNMjQxMTI5MjEyOTI1WjAYMRYwFAYD VQQDEw02NzQwZjdiNi1kNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAX36d4qlPYTU8mBd2OIuH68qanDyAB3GUyjCai2vRHF6PM1LBANbJd8GSKI hSYW/IMQXf2C5G7q2bwbMZ7zYoGKrwmjn1JdmCgbrzRhmjKR1RLOof/+PNWEp1i/ /qkSGchC2d1ACPyy7a8MFT1KEc4RFmvRAlHgnd3KUarXFejyFyVPrsRTMvFDrFVm g6UjRk8U7GbKmqHM60gMTQ5QqH9EPCcVidAXzuiO2RP93XYdMtGFR6WFhnpcnv62 5GtLd1IXMaSkUgRN1tTx3eGYyV3ZlD+yvBkw5f218SU9XZ5+92tlcyx51lTqtLFq MxIKBjeGOGCGA+8b2ktwpOt20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDigq3JU hsc5ZOR7I1Xj4KQL2NIUMB8GA1UdIwQYMBaAFNu+m/x/ij074Fu1tgIfdUW+mBvw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDAzQS85MjZCNDNFODIx OTAxMUVCODJBNDFCNDhDNEY5QUUwMi8yNzZiX0gtS1BUdmdXN1cyQWg5MVJiNllH X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI3NmJfSC1LUFR2Z1c3VzJBaDkxUmI2WUdfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDAzQS85MjZCNDNFODIxOTAxMUVCODJBNDFCNDhDNEY5QUUwMi8yNzZiX0gtS1BU dmdXN1cyQWg5MVJiNllHX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ALp5bAZ5OrMCkggbWGLw3GzsXPcZpcooGmLhixZduAaflsrwvJ4D hW55lu4+9oIIb8fo4iyADbZE7wQ7+j8+rL8+3bAqX/1zFyfm5m8lccbvVitEJNmV HxdOWamadjYbgjDfqSGhJVfykg7obHLtVO8k9WcBmOEUAhhJsNzNkOze1T6XcCR5 soVaAqqhmx1+lGg3pHVMrLYObOeGZRMTX0S1+W9zJGP5giorpEYYMknnYDt2B0Qa TxR0YJcHEPmi+JXeZgzGVhsAe8WQsvK6cDagkmmAWdxapPiePl1guMlXdD786ayb FpQ/29Jztg8ZEksQ52YH+WivixAe91sW -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org