$ rpki-client -vvf rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft File: AgtgbdnoiYp9XfXqHKPZlgKOddk.mft (raw, json) Hash identifier: Plq2g7RBMUZum1jQ0lFux6N/7VrbRfAbbfFlqs6aSeM= Subject key identifier: 6B:FE:D2:10:E7:22:D9:5E:01:34:D6:FB:4D:F9:3A:21:61:2C:26:03 Authority key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 Certificate issuer: /CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft Manifest number: 01A5 Signing time: Sat 23 Nov 2024 01:51:15 +0000 Manifest this update: Sat 23 Nov 2024 01:51:14 +0000 Manifest next update: Sat 30 Nov 2024 01:51:14 +0000 Files and hashes: 1: AgtgbdnoiYp9XfXqHKPZlgKOddk.crl (hash: xYX8KGx7qwLJVPWyKBaWy0eAeEWO/PEEu2wObNi7MtI=) 2: D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa (hash: IhgTSFQXOA9FXL9H0ErI6IsYaAMceNv3flW3IvKbv4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Validity Not Before: Nov 23 01:51:14 2024 GMT Not After : Nov 30 01:51:14 2024 GMT Subject: CN=67413513-b6ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:29:a1:ee:a0:02:63:7a:e5:e1:3e:84:26:e3: 31:5b:95:ef:8b:e1:46:1c:45:93:e4:e4:12:e8:e9: a0:36:36:3e:13:08:fd:6c:4c:e9:c6:d5:21:70:ee: 58:af:bb:4b:8d:65:ff:40:cc:44:d8:56:41:23:b4: 40:33:23:13:e3:af:e6:f1:02:f2:c2:37:1b:36:d3: 4e:e0:ab:5a:4d:e1:31:39:95:c0:7e:47:83:31:18: a7:14:9f:89:37:7b:3c:18:4d:32:81:69:60:a1:a4: 8d:e1:6f:ff:71:9e:70:a4:b9:2d:b0:00:57:92:1e: 54:7a:e5:21:4d:cb:2d:01:72:9f:e8:73:c6:57:47: 9b:e3:6f:7f:6b:3b:81:2c:3d:4c:bf:10:4f:a5:0b: e3:77:26:6a:ca:d7:d7:ee:d9:4e:8a:b5:eb:54:cc: d7:2e:4f:57:73:b8:7d:82:73:e9:60:91:b2:75:35: 2e:3b:c7:59:46:0e:4c:e1:96:5e:ad:22:ed:8a:4c: df:4a:b5:9c:53:6f:b4:d9:79:32:f6:f3:57:13:4d: 0a:17:c2:45:d0:ef:48:01:d7:04:13:93:a4:9d:80: 6c:b8:c7:e7:3a:bd:ab:5e:52:13:62:17:f7:ec:5d: b2:30:f1:cf:53:26:00:ff:53:52:a4:86:26:52:04: 83:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FE:D2:10:E7:22:D9:5E:01:34:D6:FB:4D:F9:3A:21:61:2C:26:03 X509v3 Authority Key Identifier: keyid:02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:57:d4:dd:6f:88:53:06:9a:0b:d9:1e:12:94:e6:7d:c3:35: f4:69:e8:21:f4:6d:b4:a0:6f:70:21:93:2e:c1:64:1d:61:22: a1:93:eb:86:40:43:57:17:12:5c:18:c0:3c:c8:b9:2b:73:05: f8:e9:9b:8d:c3:ac:01:63:b5:df:0e:d6:32:c3:d9:19:e3:70: 33:f2:0c:a7:a3:dd:e9:84:2b:37:b2:a9:22:7e:9c:6b:e1:1b: db:9e:94:1a:8e:aa:f4:f8:ec:49:39:d8:de:6d:f0:c0:2e:28: dc:f4:d7:7a:eb:54:bd:3c:f3:4b:de:19:7e:39:9b:7a:c9:b7: c0:00:b2:63:d8:55:40:e9:a9:6d:c2:a2:83:0a:8f:5e:f2:ac: 05:98:e1:99:29:5c:94:bd:ce:40:7e:b9:67:71:7b:2d:87:ea: eb:9d:15:80:1b:e6:29:71:5c:65:ac:79:b2:b6:31:aa:92:d7: 3e:06:05:d3:51:a9:96:bb:cd:d2:40:9d:6a:7e:09:de:44:af: 6c:2f:2a:9c:27:e5:7e:14:25:49:b0:e2:ee:6a:09:b7:11:cd: 68:ff:fb:31:5f:00:fa:42:be:d0:f7:3d:e3:5c:7f:f4:95:2c: d9:fd:a6:e4:40:e8:70:2d:dd:15:cf:89:29:a2:37:41:39:f7: 4a:ec:36:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyM0YxMTAvBgNVBAUTKDAyMEI2MDZERDlFODg5OEE3RDVERjVFQTFDQTNEOTk2 MDI4RTc1RDkwHhcNMjQxMTIzMDE1MTE0WhcNMjQxMTMwMDE1MTE0WjAYMRYwFAYD VQQDEw02NzQxMzUxMy1iNmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ymh7qACY3rl4T6EJuMxW5Xvi+FGHEWT5OQS6OmgNjY+Ewj9bEzpxtUhcO5Y r7tLjWX/QMxE2FZBI7RAMyMT46/m8QLywjcbNtNO4KtaTeExOZXAfkeDMRinFJ+J N3s8GE0ygWlgoaSN4W//cZ5wpLktsABXkh5UeuUhTcstAXKf6HPGV0eb429/azuB LD1MvxBPpQvjdyZqytfX7tlOirXrVMzXLk9Xc7h9gnPpYJGydTUuO8dZRg5M4ZZe rSLtikzfSrWcU2+02Xky9vNXE00KF8JF0O9IAdcEE5OknYBsuMfnOr2rXlITYhf3 7F2yMPHPUyYA/1NSpIYmUgSDRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv+0hDn ItleATTW+035OiFhLCYDMB8GA1UdIwQYMBaAFAILYG3Z6ImKfV316hyj2ZYCjnXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTIzRi9DNjRDQUFBNDNF NTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZcDlYZlhxSEtQWmxnS09k ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FndGdiZG5vaVlwOVhmWHFIS1BabGdLT2Rkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTIzRi9DNjRDQUFBNDNFNTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZ cDlYZlhxSEtQWmxnS09kZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhV9Tdb4hTBpoL2R4SlOZ9wzX0aegh9G20oG9wIZMuwWQdYSKhk+uG QENXFxJcGMA8yLkrcwX46ZuNw6wBY7XfDtYyw9kZ43Az8gyno93phCs3sqkifpxr 4RvbnpQajqr0+OxJOdjebfDALijc9Nd661S9PPNL3hl+OZt6ybfAALJj2FVA6alt wqKDCo9e8qwFmOGZKVyUvc5AfrlncXsth+rrnRWAG+YpcVxlrHmytjGqktc+BgXT UamWu83SQJ1qfgneRK9sLyqcJ+V+FCVJsOLuagm3Ec1o//sxXwD6Qr7Q9z3jXH/0 lSzZ/abkQOhwLd0Vz4kpojdBOfdK7DbZ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org