$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: nFAUmSlJAbViu4dT4s4j2JkeF32jtJ94nahUNkAr5og= Subject key identifier: 55:5C:CB:CB:D7:54:41:5A:90:FC:91:22:94:B6:A1:F0:98:05:BE:04 Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2D1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2D02 Signing time: Sun 24 Nov 2024 15:27:10 +0000 Manifest this update: Sun 24 Nov 2024 15:27:09 +0000 Manifest next update: Sun 01 Dec 2024 15:27:09 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: 4pzKREp14RVEN1z+ymfbGWAJ3zi1mR7nt8S3Gz99qYs=) 2: 387BC130D36511ED90939D5BC4F9AE02.roa (hash: Qgq40x/6Yn8uQdvwTJ43+psRst8kHKJWs305k9LCnqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11548 (0x2d1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Nov 24 15:27:09 2024 GMT Not After : Dec 1 15:27:09 2024 GMT Subject: CN=674345cd-683d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f1:c2:50:a1:53:43:2b:af:30:ff:e1:58:90: 7a:16:65:cc:63:a6:3b:7c:e6:65:42:f8:bf:d5:74: ff:c0:56:91:01:65:0c:3c:7c:08:e8:09:06:0d:54: f1:72:97:64:b2:f5:5f:d3:be:c3:da:af:a7:51:7b: bd:80:63:ce:c4:90:2f:d4:fc:64:bb:82:c5:12:c1: 5e:09:83:dc:6f:2a:04:56:0f:02:22:b4:54:50:5c: 00:6f:e8:27:2a:e7:16:01:bb:f8:ee:1c:f8:46:75: e0:dd:65:55:e2:14:52:b5:5a:82:37:aa:53:e0:0d: 57:df:bf:84:76:fa:aa:b3:19:39:65:3f:3f:22:1c: 9d:cb:c7:74:32:52:27:f2:7c:a9:b9:aa:09:fb:a9: ed:81:a7:6f:8d:e3:0b:72:92:c8:41:d5:66:29:f4: ab:b9:3e:e1:50:fb:b8:ea:64:0b:78:26:14:21:0e: f0:2f:e8:fa:6c:83:0d:7b:87:bb:a0:85:23:12:32: d8:01:da:07:8d:18:04:13:0a:93:b8:97:c9:05:a8: 9b:3a:19:9e:f0:17:3e:28:93:e6:9c:3f:52:e1:80: a0:f9:af:8e:a1:28:41:ae:75:5a:9d:38:76:42:a5: 7e:a8:19:8d:d6:ae:c2:1e:a6:bc:fb:1a:42:2f:17: d4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5C:CB:CB:D7:54:41:5A:90:FC:91:22:94:B6:A1:F0:98:05:BE:04 X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:16:51:ae:71:39:14:c6:b6:ad:cb:02:08:15:14:ab:7b:c3: b4:3e:8f:57:c6:8f:b6:1a:f4:af:97:66:d3:23:19:82:6b:d5: 90:d8:db:a7:ef:7f:b6:0d:19:e9:4f:ee:5d:fe:1a:dd:7b:3e: 50:c5:4f:b1:c8:f9:da:cc:c9:09:e3:87:81:47:cf:b8:cc:6f: d5:15:27:ba:46:f6:68:34:2c:70:87:ad:47:89:24:bc:84:e1: f4:d8:0d:2c:86:a5:47:d1:a4:d7:d7:4e:11:55:74:f8:75:5b: b4:e8:b2:9a:1b:6a:30:5c:27:0a:29:29:72:a0:97:8d:79:42: 19:36:a4:10:d3:ef:b1:10:a7:88:ab:54:3d:12:fb:11:e1:b0: ce:26:37:5f:8b:e0:ba:a1:15:5b:7c:48:fc:ac:8f:9c:04:88: 1e:aa:28:b7:0b:7c:27:29:fa:2f:3a:c5:ac:67:3b:96:46:f6: cf:4e:39:98:92:37:0d:c5:fa:eb:d8:cb:b9:0b:45:ab:12:f6: e7:b8:38:76:91:72:dc:0b:38:d1:92:91:7a:a8:c6:54:5e:82: 5c:42:8e:7b:d5:28:7d:e1:e3:41:36:9c:19:19:e0:5e:36:b7: 8b:be:7d:49:5d:f0:34:eb:b3:cc:ee:0d:ce:f4:26:ad:f3:11: c3:ce:07:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjQxMTI0MTUyNzA5WhcNMjQxMjAxMTUyNzA5WjAYMRYwFAYD VQQDEw02NzQzNDVjZC02ODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/HCUKFTQyuvMP/hWJB6FmXMY6Y7fOZlQvi/1XT/wFaRAWUMPHwI6AkGDVTx cpdksvVf077D2q+nUXu9gGPOxJAv1Pxku4LFEsFeCYPcbyoEVg8CIrRUUFwAb+gn KucWAbv47hz4RnXg3WVV4hRStVqCN6pT4A1X37+Edvqqsxk5ZT8/Ihydy8d0MlIn 8nypuaoJ+6ntgadvjeMLcpLIQdVmKfSruT7hUPu46mQLeCYUIQ7wL+j6bIMNe4e7 oIUjEjLYAdoHjRgEEwqTuJfJBaibOhme8Bc+KJPmnD9S4YCg+a+OoShBrnVanTh2 QqV+qBmN1q7CHqa8+xpCLxfU+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVcy8vX VEFakPyRIpS2ofCYBb4EMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoFlGucTkUxratywIIFRSre8O0Po9Xxo+2GvSvl2bTIxmCa9WQ2Nun 73+2DRnpT+5d/hrdez5QxU+xyPnazMkJ44eBR8+4zG/VFSe6RvZoNCxwh61HiSS8 hOH02A0shqVH0aTX104RVXT4dVu06LKaG2owXCcKKSlyoJeNeUIZNqQQ0++xEKeI q1Q9EvsR4bDOJjdfi+C6oRVbfEj8rI+cBIgeqii3C3wnKfovOsWsZzuWRvbPTjmY kjcNxfrr2Mu5C0WrEvbnuDh2kXLcCzjRkpF6qMZUXoJcQo571Sh94eNBNpwZGeBe NreLvn1JXfA067PM7g3O9Cat8xHDzgfh -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:09 2024 by rpki-client on console-ams.rpki-client.org