$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft File: iX4CzNjrQDmng9AjecVf7p8M7lk.mft (raw, json) Hash identifier: 9Z9m+VoQTt36GNl80JbvxBFqEpEFOJ3RbjrjhWAFZbc= Subject key identifier: 9A:59:12:04:67:6D:96:94:54:85:EC:62:4D:EA:46:22:B5:7A:B3:68 Authority key identifier: 89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 Certificate issuer: /CN=A9146207/serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft Manifest number: 0787 Signing time: Wed 20 Nov 2024 15:57:27 +0000 Manifest this update: Wed 20 Nov 2024 15:57:27 +0000 Manifest next update: Wed 27 Nov 2024 15:57:27 +0000 Files and hashes: 1: iX4CzNjrQDmng9AjecVf7p8M7lk.crl (hash: JFyG5eGQGJQCCtSmTArcMKXFqpqGaznobKVD1JqXLkw=) 2: E19826A0EAA511EBA4C1F32CC4F9AE02.roa (hash: 8D5ksmfc3aXF/CCypLFYWvFyrGXF0UBfGXqLK0BT+9c=) 3: 0CC38EEC80E711EBB8CFF825C4F9AE02.roa (hash: p/AuYRiNnSg4t0PmmsqbbQiBX6hKVTQkj6NVyO5NMng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Validity Not Before: Nov 20 15:57:27 2024 GMT Not After : Nov 27 15:57:27 2024 GMT Subject: CN=673e06e7-9d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:e6:ce:05:4e:4d:d3:59:87:e4:82:f7:ea: 50:3f:11:ab:59:42:99:94:dc:fd:f9:f9:92:8f:ec: 1d:92:58:20:27:59:5d:b0:7f:15:dc:e5:26:5d:8f: 0a:cb:30:ac:8d:67:fd:ab:71:d1:f5:3f:40:5f:b9: ec:2c:dd:ed:2e:81:2d:7d:3a:c9:85:9a:5a:ac:ca: c7:db:cc:f5:8c:55:3c:d7:eb:1a:2c:b6:b6:b8:33: 4a:f7:15:9e:ed:f1:f1:a2:71:38:36:e1:48:f0:ef: 36:f6:80:f3:7d:f7:fe:c2:98:60:f8:ad:32:c0:23: a2:d7:67:c0:6b:4f:ee:86:5a:cd:94:3b:cd:4e:12: e3:05:ed:56:13:a4:65:33:78:9f:dd:64:da:f7:8c: fa:37:83:44:4f:2d:a2:01:0e:2b:07:f1:7e:4c:99: a0:ed:d3:78:eb:da:b7:0e:35:2d:42:59:7e:7d:0f: 23:11:46:a9:95:dc:3e:fb:db:25:d4:6c:68:cf:38: 21:e8:39:cc:3f:ef:0f:81:4f:0a:aa:70:46:aa:58: e3:2c:e2:b3:1e:5a:82:aa:b5:8d:23:ed:e6:f3:53: fb:6b:ac:9b:03:0e:19:73:3f:18:c5:74:0e:ac:5e: 1a:36:af:4f:e9:fb:ba:01:59:13:ba:d6:75:24:1a: 07:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:59:12:04:67:6D:96:94:54:85:EC:62:4D:EA:46:22:B5:7A:B3:68 X509v3 Authority Key Identifier: keyid:89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c7:89:ea:7c:0b:05:7d:be:34:6a:bc:1f:d9:4f:82:1c:a1: 22:0d:ea:4e:ca:6f:a5:07:c6:03:38:20:56:4f:49:d9:29:e7: 59:17:07:64:a7:f8:db:81:48:a6:56:6e:43:81:96:17:62:1e: 3d:03:02:3f:5a:40:47:e0:ee:cb:6f:aa:9a:b6:17:ce:67:5e: 36:8d:74:52:49:f3:41:85:bb:9a:2f:d5:0c:1c:c4:40:78:e9: 32:03:e3:1f:46:dd:60:1c:22:57:e7:7c:c1:df:0f:47:f6:fd: 1b:90:03:00:de:67:c9:94:6b:bd:7b:71:be:8b:e1:9c:17:22: 0a:a5:7b:cd:1f:9e:4e:ae:16:5c:6a:a3:91:44:5d:d6:7d:bf: 6f:31:ae:6e:12:f4:bc:3e:78:c7:61:02:16:e7:90:82:b6:83: 82:7e:59:09:fc:78:a2:0a:35:c6:5a:e1:21:64:07:51:69:c6: cc:66:bd:0a:08:c1:c5:29:db:cd:7e:f4:75:3e:03:75:d8:37: b2:33:15:21:1e:da:3f:d8:f8:0f:b3:51:ff:4d:47:da:83:a9: 73:b1:d4:18:92:8a:a9:fa:b9:1d:f3:61:7c:4e:7a:42:75:65: 7a:ba:b3:85:46:fc:92:51:2a:c6:f6:3c:fc:63:fc:ea:0f:7a: c9:17:ef:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDg5N0UwMkNDRDhFQjQwMzlBNzgzRDAyMzc5QzU1RkVF OUYwQ0VFNTkwHhcNMjQxMTIwMTU1NzI3WhcNMjQxMTI3MTU1NzI3WjAYMRYwFAYD VQQDEw02NzNlMDZlNy05ZDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI7mzgVOTdNZh+SC9+pQPxGrWUKZlNz9+fmSj+wdklggJ1ldsH8V3OUmXY8K yzCsjWf9q3HR9T9AX7nsLN3tLoEtfTrJhZparMrH28z1jFU81+saLLa2uDNK9xWe 7fHxonE4NuFI8O829oDzfff+wphg+K0ywCOi12fAa0/uhlrNlDvNThLjBe1WE6Rl M3if3WTa94z6N4NETy2iAQ4rB/F+TJmg7dN469q3DjUtQll+fQ8jEUapldw++9sl 1Gxozzgh6DnMP+8PgU8KqnBGqljjLOKzHlqCqrWNI+3m81P7a6ybAw4Zcz8YxXQO rF4aNq9P6fu6AVkTutZ1JBoHRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpZEgRn bZaUVIXsYk3qRiK1erNoMB8GA1UdIwQYMBaAFIl+AszY60A5p4PQI3nFX+6fDO5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy84QzY4QjlBMjA5 ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFEbW5nOUFqZWNWZjdwOE03 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lYNEN6TmpyUURtbmc5QWplY1ZmN3A4TTdsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjIwNy84QzY4QjlBMjA5ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFE bW5nOUFqZWNWZjdwOE03bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKx4nqfAsFfb40arwf2U+CHKEiDepOym+lB8YDOCBWT0nZKedZFwdk p/jbgUimVm5DgZYXYh49AwI/WkBH4O7Lb6qathfOZ142jXRSSfNBhbuaL9UMHMRA eOkyA+MfRt1gHCJX53zB3w9H9v0bkAMA3mfJlGu9e3G+i+GcFyIKpXvNH55OrhZc aqORRF3Wfb9vMa5uEvS8PnjHYQIW55CCtoOCflkJ/HiiCjXGWuEhZAdRacbMZr0K CMHFKdvNfvR1PgN12DeyMxUhHto/2PgPs1H/TUfag6lzsdQYkoqp+rkd82F8TnpC dWV6urOFRvySUSrG9jz8Y/zqD3rJF+9V -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:52 2024 by rpki-client on console-fra.rpki-client.org