$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft File: Aonh4IK22hq6VVKEDAyrAsKjt04.mft (raw, json) Hash identifier: yRjNrN3LR+MwekDOVtrJzRLZJffYsmSyOZ03nbFULDM= Subject key identifier: 8F:BD:F9:E3:70:9E:8B:C7:18:1E:52:ED:30:F7:36:43:A8:EE:03:2A Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E Certificate issuer: /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft Manifest number: 0323 Signing time: Sat 23 Nov 2024 00:45:55 +0000 Manifest this update: Sat 23 Nov 2024 00:45:54 +0000 Manifest next update: Sat 30 Nov 2024 00:45:54 +0000 Files and hashes: 1: Aonh4IK22hq6VVKEDAyrAsKjt04.crl (hash: 0KZv42NOTBCEjCl4OkiQjJn52YxPP24vztggDBEAuf4=) 2: EF216A18A8E111EFA334B016C4F9AE02.roa (hash: Flk71He97dfGazx59BWliW3X+nP8emfpsZtwhcWiBRY=) 3: B546EBFEA2F811EFA29F873AC4F9AE02.roa (hash: MqzzAzr1z8WUt2hgwcYlQRzSoFaRw0QC63G+ODEmE5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Validity Not Before: Nov 23 00:45:54 2024 GMT Not After : Nov 30 00:45:54 2024 GMT Subject: CN=674125c2-df29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c8:36:87:29:7e:a0:61:70:dd:4a:3f:36:00: 78:9d:85:3f:66:51:a0:5e:fb:90:74:ec:20:d9:9e: 0a:77:ab:80:15:8e:c3:74:a6:98:41:c5:02:d6:20: 11:40:43:ac:b1:47:fb:58:cc:df:b8:dd:09:ab:db: 05:2f:51:9c:97:f4:ff:e2:69:ca:c0:33:cd:04:68: 58:fb:7b:3e:cf:b3:9c:6a:8c:fc:5c:88:9a:1e:33: 9d:fc:46:86:e4:ce:99:bd:2f:30:18:45:20:7d:a0: c6:52:04:9a:3e:d8:51:7d:fd:e8:66:54:f8:ce:b1: c9:d4:d3:b3:e7:03:28:0a:8f:3d:27:ea:27:8c:aa: 72:e6:6e:ff:4a:fb:d3:83:7b:fa:6e:99:e1:10:d3: 0a:3c:c2:b5:ee:5c:60:da:cf:db:9e:db:8c:57:3f: c0:32:cd:b6:2e:6c:ea:90:2e:ba:fb:ec:0d:03:a6: e5:27:ba:72:cd:64:34:7a:ba:be:fe:e9:61:1f:97: ff:a8:43:75:50:7c:5a:40:7e:12:4c:5f:ae:a2:63: 91:6d:e4:c8:77:43:89:f5:6c:8c:ac:f8:db:49:83: 2f:8e:01:07:91:db:ba:69:28:25:03:6f:9a:99:ee: 26:69:e6:ba:78:2e:1f:f9:d6:df:0a:23:69:a8:84: 69:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:BD:F9:E3:70:9E:8B:C7:18:1E:52:ED:30:F7:36:43:A8:EE:03:2A X509v3 Authority Key Identifier: keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:9c:3f:42:1e:44:83:9a:14:2b:6a:7c:d5:83:39:5e:f4:3e: 81:32:22:56:aa:55:79:87:4a:66:8d:3e:d6:1b:03:f0:b5:ea: c9:ee:13:89:ff:20:45:84:82:73:0f:31:c0:9e:64:93:f7:d4: 89:1d:36:a1:85:3e:82:a0:c6:97:45:31:e5:53:5b:03:18:a2: 67:6c:96:1d:2c:ea:9a:61:92:d6:25:fd:4f:f7:b1:6c:82:42: f9:5d:28:be:95:36:af:1d:73:77:b7:01:bb:a2:3a:79:cf:bb: ae:20:c1:cf:23:4c:46:88:c6:7a:c9:ee:47:08:b3:f1:84:90: f2:77:41:dd:d2:5d:be:0c:30:ca:9c:c1:09:b2:21:9a:fa:42: f7:3f:54:1e:29:bc:1e:64:aa:09:61:69:79:b9:08:7b:e6:70: 37:dc:ab:bd:c4:1b:01:6d:77:30:4e:23:7d:67:88:f5:35:06: cb:de:72:23:dd:e2:7b:20:db:7d:cc:1d:b9:9f:f4:76:f5:b7: bc:76:bf:04:3f:80:34:cc:5d:3e:3d:14:5d:7e:6d:d9:62:14: f3:05:73:71:03:f9:88:0e:ab:00:53:79:2d:41:6d:45:a2:bb: d5:3f:f3:c3:3d:e2:e7:f3:a0:57:df:1f:90:4e:71:16:b8:20: 2f:c8:8c:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEM3MDExMC8GA1UEBRMoMDI4OUUxRTA4MkI2REExQUJBNTU1Mjg0MEMwQ0FCMDJD MkEzQjc0RTAeFw0yNDExMjMwMDQ1NTRaFw0yNDExMzAwMDQ1NTRaMBgxFjAUBgNV BAMTDTY3NDEyNWMyLWRmMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDyDaHKX6gYXDdSj82AHidhT9mUaBe+5B07CDZngp3q4AVjsN0pphBxQLWIBFA Q6yxR/tYzN+43Qmr2wUvUZyX9P/iacrAM80EaFj7ez7Ps5xqjPxciJoeM538Robk zpm9LzAYRSB9oMZSBJo+2FF9/ehmVPjOscnU07PnAygKjz0n6ieMqnLmbv9K+9OD e/pumeEQ0wo8wrXuXGDaz9ue24xXP8AyzbYubOqQLrr77A0DpuUnunLNZDR6ur7+ 6WEfl/+oQ3VQfFpAfhJMX66iY5Ft5Mh3Q4n1bIys+NtJgy+OAQeR27ppKCUDb5qZ 7iZp5rp4Lh/51t8KI2mohGmzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj73543Ce i8cYHlLtMPc2Q6juAyowHwYDVR0jBBgwFoAUAonh4IK22hq6VVKEDAyrAsKjt04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0QzcwLzgyQkM4NEVFQUM2 NzExRUNCNzVDREEyNEM0RjlBRTAyL0Fvbmg0SUsyMmhxNlZWS0VEQXlyQXNLanQw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQW9uaDRJSzIyaHE2VlZLRURBeXJBc0tqdDA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 QzcwLzgyQkM4NEVFQUM2NzExRUNCNzVDREEyNEM0RjlBRTAyL0Fvbmg0SUsyMmhx NlZWS0VEQXlyQXNLanQwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEOcP0IeRIOaFCtqfNWDOV70PoEyIlaqVXmHSmaNPtYbA/C16snuE4n/ IEWEgnMPMcCeZJP31IkdNqGFPoKgxpdFMeVTWwMYomdslh0s6pphktYl/U/3sWyC QvldKL6VNq8dc3e3AbuiOnnPu64gwc8jTEaIxnrJ7kcIs/GEkPJ3Qd3SXb4MMMqc wQmyIZr6Qvc/VB4pvB5kqglhaXm5CHvmcDfcq73EGwFtdzBOI31niPU1BsveciPd 4nsg233MHbmf9Hb1t7x2vwQ/gDTMXT49FF1+bdliFPMFc3ED+YgOqwBTeS1BbUWi u9U/88M94ufzoFffH5BOcRa4IC/IjAU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org