$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft File: 89pR_oC82pcIdSXiBGIeqfVXQZk.mft (raw, json) Hash identifier: h/EU9jeYtcDyWwRMJGMnnfDmS+M/r6VTdwdVfrWIJac= Subject key identifier: C5:10:23:30:CD:4A:FD:5A:D4:1E:1A:5D:A6:9A:EF:9F:B0:45:B9:BD Authority key identifier: F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 Certificate issuer: /CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft Manifest number: 0130 Signing time: Thu 21 Nov 2024 03:06:22 +0000 Manifest this update: Thu 21 Nov 2024 03:06:22 +0000 Manifest next update: Thu 28 Nov 2024 03:06:22 +0000 Files and hashes: 1: 89pR_oC82pcIdSXiBGIeqfVXQZk.crl (hash: iq3OBjmXvRDCXeW/BY5wqRMn58WeG0LM3Po1u4PZVEk=) 2: 1D7A0DE468FF11EE8F94AD6AC4F9AE02.roa (hash: woS729tk0hFtPGLUns+ELkiLka/6z63X+WiwGWiKLrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Validity Not Before: Nov 21 03:06:22 2024 GMT Not After : Nov 28 03:06:22 2024 GMT Subject: CN=673ea3ae-4ff8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:18:16:b8:2f:7d:74:9f:42:c8:7c:3e:8f:e3: 4a:1a:ae:d8:3d:96:f6:e2:2d:2a:48:3e:8e:4c:35: 50:13:96:8a:13:10:e6:c3:74:86:b8:44:25:ec:24: 38:e7:a3:55:6f:4b:3e:e8:d8:b2:11:a2:f4:a0:a6: 73:76:fa:1a:f0:f7:f9:6c:0f:cd:67:b4:75:92:0f: 2b:50:36:e0:88:7d:12:ba:1f:e0:70:89:bc:66:73: 20:dd:d4:19:94:cd:92:a5:58:d9:33:32:1d:4c:48: f6:a6:de:a2:b6:e0:1d:18:b3:c3:01:38:83:8e:49: 65:84:c5:ae:17:5a:cf:4f:4b:fe:24:37:08:b5:07: 15:fd:a0:00:7b:64:c4:2d:5f:db:7e:0a:bc:3b:3b: 28:b3:25:41:3a:29:3f:f2:71:3b:b0:79:05:3f:56: de:b8:df:d0:f7:98:58:d0:80:03:e4:09:b5:06:b0: 53:49:3b:9a:b2:af:18:8b:d8:6a:64:cc:ff:8c:fc: 45:f0:66:ff:09:b8:34:3c:a4:b5:a6:3f:5b:1d:8b: af:02:db:62:e8:2a:1c:6f:d5:6a:b7:04:4c:55:90: 86:c8:08:87:ac:62:69:8d:5f:49:2f:7c:97:80:de: 31:70:77:8b:e7:98:94:6e:d9:d3:07:f3:00:65:d8: 0d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:10:23:30:CD:4A:FD:5A:D4:1E:1A:5D:A6:9A:EF:9F:B0:45:B9:BD X509v3 Authority Key Identifier: keyid:F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:a8:df:03:d9:08:88:94:31:e0:35:1b:25:82:ed:18:00:e5: b9:68:0c:08:24:38:2d:66:73:36:d4:2b:f3:a3:2c:8b:f7:97: 07:0d:da:e9:40:16:e9:13:07:55:b2:42:72:72:c9:3f:ff:a0: 05:f2:d3:8c:1c:a3:74:2f:eb:4d:16:39:13:f9:9e:08:e0:07: 3d:54:80:64:0b:de:fb:b5:ee:62:9d:d3:c1:9c:2f:76:66:cd: 2a:f0:9a:71:cc:06:e0:fd:79:6a:4e:ff:76:64:31:b9:77:c6: f0:cf:c6:a5:77:40:46:53:e4:09:f6:d4:2c:70:64:96:60:cb: 08:fa:2d:35:34:58:ba:43:68:96:66:71:74:5d:2a:f4:0e:07: 2b:32:b5:4f:58:3a:c7:1f:d1:f6:da:3c:ad:44:d6:c5:14:5e: cf:86:05:f2:0e:67:c2:23:80:ec:53:53:18:69:0e:90:a9:53: 05:b9:95:06:b2:91:0a:b8:39:71:01:f0:e7:70:7c:8f:13:da: fd:49:99:03:a4:34:d0:6e:08:f3:37:b7:2b:fe:7f:d1:93:55: 20:5b:20:90:c7:bd:4f:53:26:0d:98:e1:38:ee:e9:6b:66:e1: 8c:fe:b7:6c:52:a5:7c:b0:5c:15:1c:15:42:ab:b6:85:64:03: a7:80:b5:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDREExMTAvBgNVBAUTKEYzREE1MUZFODBCQ0RBOTcwODc1MjVFMjA0NjIxRUE5 RjU1NzQxOTkwHhcNMjQxMTIxMDMwNjIyWhcNMjQxMTI4MDMwNjIyWjAYMRYwFAYD VQQDEw02NzNlYTNhZS00ZmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRgWuC99dJ9CyHw+j+NKGq7YPZb24i0qSD6OTDVQE5aKExDmw3SGuEQl7CQ4 56NVb0s+6NiyEaL0oKZzdvoa8Pf5bA/NZ7R1kg8rUDbgiH0Suh/gcIm8ZnMg3dQZ lM2SpVjZMzIdTEj2pt6ituAdGLPDATiDjkllhMWuF1rPT0v+JDcItQcV/aAAe2TE LV/bfgq8OzsosyVBOik/8nE7sHkFP1beuN/Q95hY0IAD5Am1BrBTSTuasq8Yi9hq ZMz/jPxF8Gb/Cbg0PKS1pj9bHYuvAtti6Cocb9VqtwRMVZCGyAiHrGJpjV9JL3yX gN4xcHeL55iUbtnTB/MAZdgNQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMUQIzDN Sv1a1B4aXaaa75+wRbm9MB8GA1UdIwQYMBaAFPPaUf6AvNqXCHUl4gRiHqn1V0GZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NEQS80OUIyN0Q4QTA1 NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJwY0lkU1hpQkdJZXFmVlhR WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5cFJfb0M4MnBjSWRTWGlCR0llcWZWWFFaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NEQS80OUIyN0Q4QTA1NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJw Y0lkU1hpQkdJZXFmVlhRWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtqN8D2QiIlDHgNRslgu0YAOW5aAwIJDgtZnM21CvzoyyL95cHDdrp QBbpEwdVskJycsk//6AF8tOMHKN0L+tNFjkT+Z4I4Ac9VIBkC977te5indPBnC92 Zs0q8JpxzAbg/XlqTv92ZDG5d8bwz8ald0BGU+QJ9tQscGSWYMsI+i01NFi6Q2iW ZnF0XSr0DgcrMrVPWDrHH9H22jytRNbFFF7PhgXyDmfCI4DsU1MYaQ6QqVMFuZUG spEKuDlxAfDncHyPE9r9SZkDpDTQbgjzN7cr/n/Rk1UgWyCQx71PUyYNmOE47ulr ZuGM/rdsUqV8sFwVHBVCq7aFZAOngLW8 -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:56 2024 by rpki-client on console-fra.rpki-client.org