$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft File: JnQ7Hk4OkKGbJAwJNpecojdojfI.mft (raw, json) Hash identifier: kH9VE14NBRrcHoWRrPy3kg7JGI44EdoL1Q3eIyxINpw= Subject key identifier: C4:27:F8:EF:50:3D:AA:22:D2:0D:35:B5:6A:2D:81:7E:10:1B:70:06 Authority key identifier: 26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 Certificate issuer: /CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Certificate serial: 166A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft Manifest number: 164A Signing time: Wed 20 Nov 2024 16:41:17 +0000 Manifest this update: Wed 20 Nov 2024 16:41:16 +0000 Manifest next update: Wed 27 Nov 2024 16:41:16 +0000 Files and hashes: 1: JnQ7Hk4OkKGbJAwJNpecojdojfI.crl (hash: /gnBdEW7+WvNknCTjVFwI4yASN0FbjxjNRQmFMsFaCc=) 2: DED757CC013811EF8A7E136EC4F9AE02.roa (hash: jtrDIzEgJPw4GA1319KiWlklWXzfvc/n6mX65D7ay5s=) 3: CB91C8D2514D11EEADBDDC4DC4F9AE02.roa (hash: bTTt1DvpxuFx5YZflQWK2Y/CXtgXfthc+RWEVSQ2v+c=) 4: AFB50D7A2AAD11EEA5D9705CC4F9AE02.roa (hash: hshI8UyYGQ+vkpU3ZjtQTaxFUssk1c7EXyRF9j20I3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5738 (0x166a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59/serialNumber=26743B1E4E0E90A19B240C0936979CA237688DF2 Validity Not Before: Nov 20 16:41:16 2024 GMT Not After : Nov 27 16:41:16 2024 GMT Subject: CN=673e112c-53b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:99:04:51:35:25:66:ab:0c:6a:9b:9c:05:49: 64:cb:e0:5b:5a:93:ad:26:01:6d:bf:3e:40:20:30: 82:28:54:4c:02:41:ce:60:3e:b5:91:46:b3:71:ca: 3e:c5:c1:da:85:31:d6:2d:22:b1:e9:54:54:e1:44: 38:78:1b:a9:d1:3a:ec:6f:2f:61:e7:39:2c:e9:3e: b0:48:80:ec:ae:be:da:c6:15:f5:3f:89:72:54:1c: 0c:ec:2c:06:8d:63:60:87:80:34:6b:7d:24:41:93: f2:bf:09:ae:ce:4c:bc:98:f1:15:ca:96:8b:11:f7: 9f:64:c5:41:68:5b:22:6c:c1:09:00:0e:53:95:40: 8b:a8:13:74:90:df:79:86:dc:a4:39:f9:cb:f5:41: 33:db:29:70:e3:74:1a:c7:f3:c6:bf:4b:22:64:8a: 5e:d8:48:0c:37:0e:11:4c:18:1d:28:69:1a:2a:16: ea:7d:e5:9a:2e:7d:ac:cf:2b:f5:c7:aa:e9:e7:b9: 7a:b6:65:80:01:19:5d:ea:d8:4e:2a:0f:f1:bd:93: ca:fb:61:65:13:bf:40:94:74:c3:ea:57:f0:8c:90: 9a:84:14:6b:b6:cc:f5:52:86:e8:12:ee:6f:35:a0: 3b:bf:3f:cb:d1:f8:df:76:55:ab:ff:2d:e0:18:56: 72:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:27:F8:EF:50:3D:AA:22:D2:0D:35:B5:6A:2D:81:7E:10:1B:70:06 X509v3 Authority Key Identifier: keyid:26:74:3B:1E:4E:0E:90:A1:9B:24:0C:09:36:97:9C:A2:37:68:8D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JnQ7Hk4OkKGbJAwJNpecojdojfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/44A6FF6400CB11E8BEB1EF10C4F9AE02/JnQ7Hk4OkKGbJAwJNpecojdojfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:23:e1:80:de:f8:0a:61:17:07:63:52:ac:87:aa:fd:f5:c5: d2:d4:6e:10:90:00:d7:76:58:b3:99:c2:37:7b:c2:88:ad:c6: e9:20:0f:a3:09:60:41:21:2c:6b:8f:b1:19:ed:14:82:70:9f: 58:d1:ee:91:13:ca:ab:5f:5b:ec:4d:e5:89:e7:91:fe:5a:36: f0:11:51:8e:09:6f:25:b2:a4:60:38:69:f6:52:21:87:83:56: bd:15:c9:65:78:6f:c3:66:af:18:91:99:ce:0f:62:2e:a0:42: e1:08:b5:c8:47:8d:ae:f1:cf:c3:2c:34:48:cc:8d:15:30:f7: da:0e:7c:6e:19:ac:b6:b3:80:51:8f:e0:32:92:3c:81:3d:55: 02:f5:f8:0f:c0:5d:93:9a:24:d0:28:e9:e9:eb:ce:de:b6:1c: b1:72:98:71:4b:48:b3:55:94:d3:8e:a7:a6:c2:d7:e0:2d:95: 69:8b:9a:df:8a:e6:40:08:32:81:ff:2b:ed:0f:f9:77:d3:42: 8e:5c:a3:3a:e5:72:64:2f:10:8e:4a:e4:34:c6:e2:69:cd:7e: 64:99:42:ea:5f:7f:ad:18:bf:f5:66:58:cc:4a:0c:ab:b7:74: 6c:ba:85:f1:e7:52:80:ac:d2:e1:26:d3:08:e6:c4:29:73:b1: cd:15:a8:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKDI2NzQzQjFFNEUwRTkwQTE5QjI0MEMwOTM2OTc5Q0Ey Mzc2ODhERjIwHhcNMjQxMTIwMTY0MTE2WhcNMjQxMTI3MTY0MTE2WjAYMRYwFAYD VQQDEw02NzNlMTEyYy01M2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JkEUTUlZqsMapucBUlky+BbWpOtJgFtvz5AIDCCKFRMAkHOYD61kUazcco+ xcHahTHWLSKx6VRU4UQ4eBup0Trsby9h5zks6T6wSIDsrr7axhX1P4lyVBwM7CwG jWNgh4A0a30kQZPyvwmuzky8mPEVypaLEfefZMVBaFsibMEJAA5TlUCLqBN0kN95 htykOfnL9UEz2ylw43Qax/PGv0siZIpe2EgMNw4RTBgdKGkaKhbqfeWaLn2szyv1 x6rp57l6tmWAARld6thOKg/xvZPK+2FlE79AlHTD6lfwjJCahBRrtsz1UoboEu5v NaA7vz/L0fjfdlWr/y3gGFZy3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQn+O9Q Paoi0g01tWotgX4QG3AGMB8GA1UdIwQYMBaAFCZ0Ox5ODpChmyQMCTaXnKI3aI3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80NEE2RkY2NDAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tLR2JKQXdKTnBlY29qZG9q ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0puUTdIazRPa0tHYkpBd0pOcGVjb2pkb2pmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80NEE2RkY2NDAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi9KblE3SGs0T2tL R2JKQXdKTnBlY29qZG9qZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLI+GA3vgKYRcHY1Ksh6r99cXS1G4QkADXdlizmcI3e8KIrcbpIA+j CWBBISxrj7EZ7RSCcJ9Y0e6RE8qrX1vsTeWJ55H+WjbwEVGOCW8lsqRgOGn2UiGH g1a9FclleG/DZq8YkZnOD2IuoELhCLXIR42u8c/DLDRIzI0VMPfaDnxuGay2s4BR j+AykjyBPVUC9fgPwF2TmiTQKOnp687ethyxcphxS0izVZTTjqemwtfgLZVpi5rf iuZACDKB/yvtD/l300KOXKM65XJkLxCOSuQ0xuJpzX5kmULqX3+tGL/1ZljMSgyr t3RsuoXx51KArNLhJtMI5sQpc7HNFaie -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:16 2024 by rpki-client on console-ams.rpki-client.org