$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: rujHi6cYUYZMhO1DhT/2IZ96/ckPHlzmhSAEGUFIHfs= Subject key identifier: 42:99:48:1F:A5:7D:27:D9:47:F5:CF:F2:2E:1B:77:59:79:3F:08:1E Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 092C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 0923 Signing time: Fri 22 Nov 2024 20:04:31 +0000 Manifest this update: Fri 22 Nov 2024 20:04:30 +0000 Manifest next update: Fri 29 Nov 2024 20:04:30 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: epn81k2qrYwkSnnCLfrr7UYji9tqoglxK+gaiTHTVOI=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: L4PZLtK5gV9MGLgQdeJJjS/yiPhtcCFrLkTSYObN7Oo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Nov 22 20:04:30 2024 GMT Not After : Nov 29 20:04:30 2024 GMT Subject: CN=6740e3ce-4829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:82:cf:2c:68:3c:89:1f:05:1e:c1:27:ea:ff: 6c:b5:9c:16:0a:e0:4f:9f:44:26:6d:d4:21:c5:70: b3:52:a1:c1:7c:1a:41:b2:bd:29:a3:da:2e:c5:4d: 52:44:e1:76:50:55:03:59:25:76:d7:1c:16:d4:5f: f7:8b:0d:70:d3:ea:ac:2a:ea:32:e8:ce:78:06:a6: 29:ca:1b:47:5b:6c:b5:15:26:97:84:c1:29:fc:53: f2:e8:1b:2e:ad:4f:93:17:7c:c1:1d:b4:9c:fb:d5: 2e:69:c5:58:78:14:26:a4:f2:c7:90:c5:82:f9:97: 52:81:f0:47:aa:e6:97:08:46:b5:ef:7d:e5:69:69: 96:ae:d8:4f:d4:ba:93:e0:21:6d:60:b6:42:cf:97: f4:7f:1b:f3:ed:70:e9:4d:13:9d:84:bb:34:f3:ef: 64:f7:20:49:66:90:0d:a9:12:1f:e1:88:9d:75:f7: 12:f7:11:0c:45:52:f1:28:5a:fd:72:23:f3:fb:bb: c0:40:6a:80:b3:a1:1a:07:4b:76:5e:99:60:45:0a: 0b:7a:0a:39:56:d2:8f:dd:be:bb:95:b4:4b:80:f9: 11:5b:cc:95:fc:59:04:01:ca:a4:71:66:e7:e3:95: 45:d3:f5:47:f8:0f:14:db:c4:eb:93:ab:fa:8d:4e: 96:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:99:48:1F:A5:7D:27:D9:47:F5:CF:F2:2E:1B:77:59:79:3F:08:1E X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:0e:1b:50:33:f4:f0:8c:e7:34:bb:02:17:44:b1:5f:84:0f: 74:c1:fa:bd:a8:a9:c5:c8:c1:93:28:c7:18:11:26:d0:a6:56: 39:81:94:ae:95:e0:97:46:c8:cc:02:b7:28:5d:5a:bf:5c:ca: 36:29:4c:cc:66:8c:45:6e:6d:00:51:f6:a9:01:6c:0a:d5:aa: 80:ea:44:76:d2:58:7e:04:25:e8:ed:2c:29:5a:37:e2:e0:80: ac:5e:29:b5:9d:30:96:4d:1a:5f:3e:14:0a:d4:b2:2f:22:37: 7e:6a:4b:e7:75:39:fe:76:99:56:1e:d4:34:7e:78:17:07:12: 64:78:69:a8:3c:f7:d6:49:47:8b:69:23:da:6f:f8:f1:20:68: ac:10:df:e8:59:73:fb:67:fa:86:6b:cf:33:f3:25:dc:ed:eb: 6d:ba:24:1c:17:ce:01:ef:0f:f2:59:a1:91:ba:ec:7e:c1:94: 8c:ac:c8:7d:f5:05:f8:82:39:0d:43:91:a4:50:d4:02:9d:6c: 32:99:8b:44:e9:51:a1:56:da:f1:d7:45:15:ae:44:59:2b:59: ec:0b:2f:3f:e9:f7:d0:e5:7d:42:9f:32:30:e4:b2:b6:ca:6e: b2:3b:14:9e:4e:25:f1:84:87:d6:c4:52:ce:e5:52:52:a8:fb: 2b:b8:9f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjQxMTIyMjAwNDMwWhcNMjQxMTI5MjAwNDMwWjAYMRYwFAYD VQQDEw02NzQwZTNjZS00ODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oLPLGg8iR8FHsEn6v9stZwWCuBPn0QmbdQhxXCzUqHBfBpBsr0po9ouxU1S ROF2UFUDWSV21xwW1F/3iw1w0+qsKuoy6M54BqYpyhtHW2y1FSaXhMEp/FPy6Bsu rU+TF3zBHbSc+9UuacVYeBQmpPLHkMWC+ZdSgfBHquaXCEa1733laWmWrthP1LqT 4CFtYLZCz5f0fxvz7XDpTROdhLs08+9k9yBJZpANqRIf4YiddfcS9xEMRVLxKFr9 ciPz+7vAQGqAs6EaB0t2XplgRQoLego5VtKP3b67lbRLgPkRW8yV/FkEAcqkcWbn 45VF0/VH+A8U28Trk6v6jU6WUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKZSB+l fSfZR/XP8i4bd1l5PwgeMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgDhtQM/TwjOc0uwIXRLFfhA90wfq9qKnFyMGTKMcYESbQplY5gZSu leCXRsjMArcoXVq/XMo2KUzMZoxFbm0AUfapAWwK1aqA6kR20lh+BCXo7SwpWjfi 4ICsXim1nTCWTRpfPhQK1LIvIjd+akvndTn+dplWHtQ0fngXBxJkeGmoPPfWSUeL aSPab/jxIGisEN/oWXP7Z/qGa88z8yXc7ettuiQcF84B7w/yWaGRuux+wZSMrMh9 9QX4gjkNQ5GkUNQCnWwymYtE6VGhVtrx10UVrkRZK1nsCy8/6ffQ5X1CnzIw5LK2 ym6yOxSeTiXxhIfWxFLO5VJSqPsruJ+x -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org