$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: 282jmEfpQZfcSiSQSRFQl4VoddbqjXeD/Xejtks6/NU= Subject key identifier: 80:AC:3E:48:21:B2:57:3B:BA:2D:14:46:C7:22:46:0B:3C:11:83:E0 Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: 72 Signing time: Sat 23 Nov 2024 04:49:15 +0000 Manifest this update: Sat 23 Nov 2024 04:49:15 +0000 Manifest next update: Sat 30 Nov 2024 04:49:15 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: cC+U2+aTTLHp10So6/gtZW1BadW2aKi3DRdjNHhp6Bk=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: I6DRhaPjg94iaLUIAJP5juEv1Um/2EjAWiSx5qBJKPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: Nov 23 04:49:15 2024 GMT Not After : Nov 30 04:49:15 2024 GMT Subject: CN=67415ecb-1f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:76:dc:cd:d7:c4:14:dc:69:69:51:b0:78:e0: e9:50:ad:f8:09:e9:bd:a9:9c:42:6a:8a:d5:ab:38: f8:b9:db:5c:4c:e8:38:ab:59:ed:b6:03:ca:19:5d: ea:8a:7c:f6:7e:60:e5:32:9a:f4:89:a4:ea:ce:0d: 15:de:0b:59:44:c7:27:82:a5:bf:76:03:1f:84:0e: ac:c7:9c:bd:84:2e:67:b8:cc:b7:35:c3:6d:4e:df: ef:59:cb:bb:b3:be:7e:d6:22:fc:2f:9c:6a:c1:80: 56:cb:2b:20:82:20:0b:a7:c5:6c:dd:0b:b2:f9:ff: c0:50:3b:9e:e4:44:54:96:13:86:fd:9a:c8:e7:3a: 60:65:ad:79:4b:3f:86:56:f0:9f:77:3e:91:5e:56: 20:9a:a8:4a:8d:e4:8c:b4:a6:76:7f:19:0b:84:91: 38:c7:9f:20:7d:0c:aa:69:ab:bf:b8:9a:a9:a4:7d: 77:2b:81:c6:27:e3:e2:c7:dc:12:21:45:eb:d7:97: b7:cc:c9:d2:30:32:79:36:13:c9:9d:cf:41:1d:a7: 3b:98:71:8d:c6:c4:0a:8f:5c:5a:70:ac:1a:02:12: d8:5b:5b:39:df:18:4e:e6:f2:77:2e:c5:fe:d5:ec: d2:8b:72:a9:ec:b0:ba:19:e3:89:2d:52:5f:7b:68: 1f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AC:3E:48:21:B2:57:3B:BA:2D:14:46:C7:22:46:0B:3C:11:83:E0 X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:4d:67:e5:87:68:a8:88:46:21:da:51:6e:0c:95:1e:13:e5: fd:a2:54:a6:fd:5f:c3:a2:c3:48:c8:d1:61:dc:16:40:fd:63: ae:62:98:d4:c4:5a:26:99:3f:1a:de:3e:e2:9e:d5:03:e4:d7: 31:7e:b3:83:3c:58:7e:c7:08:a2:0b:7f:fe:08:88:9c:b6:52: 97:97:f8:eb:1a:8e:d4:16:41:54:c8:56:85:a4:6b:eb:8f:60: 05:b3:57:49:5b:2a:60:b6:42:3a:d9:51:a3:1f:86:95:e8:6f: d4:a7:48:22:3d:cf:be:2a:41:3a:48:51:77:3c:f4:d9:3e:4c: 0b:f3:28:75:b4:af:5e:86:0a:eb:c3:b0:9f:4b:db:a3:3f:0f: 65:24:85:aa:aa:40:ec:f9:68:ce:00:89:b6:f9:45:3c:61:28: 20:10:40:2d:32:59:6b:ed:83:a2:13:f0:e5:be:2e:91:e9:f7: cd:93:d0:81:be:5b:85:02:70:e6:86:43:02:d0:3c:8f:cb:9f: 29:8c:fa:19:b2:73:fa:b3:8f:92:f7:a4:20:39:95:c8:a7:5a: 76:fb:fe:36:db:15:5d:1c:76:87:9e:99:25:d1:fe:58:08:92: fa:32:8a:04:ab:40:51:9c:fb:b4:f0:0e:3b:ac:84:eb:7a:ca: c8:28:0c:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QjBEODExMC8GA1UEBRMoMDA4QjIzNTFCRTlGRDY2RDM4QjExMDUwNjc5NzM0RjQ0 RkE1RDk3RDAeFw0yNDExMjMwNDQ5MTVaFw0yNDExMzAwNDQ5MTVaMBgxFjAUBgNV BAMTDTY3NDE1ZWNiLTFmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsdtzN18QU3GlpUbB44OlQrfgJ6b2pnEJqitWrOPi521xM6DirWe22A8oZXeqK fPZ+YOUymvSJpOrODRXeC1lExyeCpb92Ax+EDqzHnL2ELme4zLc1w21O3+9Zy7uz vn7WIvwvnGrBgFbLKyCCIAunxWzdC7L5/8BQO57kRFSWE4b9msjnOmBlrXlLP4ZW 8J93PpFeViCaqEqN5Iy0pnZ/GQuEkTjHnyB9DKppq7+4mqmkfXcrgcYn4+LH3BIh RevXl7fMydIwMnk2E8mdz0EdpzuYcY3GxAqPXFpwrBoCEthbWznfGE7m8ncuxf7V 7NKLcqnssLoZ44ktUl97aB8xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgKw+SCGy Vzu6LRRGxyJGCzwRg+AwHwYDVR0jBBgwFoAUAIsjUb6f1m04sRBQZ5c09E+l2X0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRCMEQ4LzA3QUFCQ0RBRkIx MTExRUU5MTIzMzkxQkM0RjlBRTAyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJY MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUlzalViNmYxbTA0c1JCUVo1YzA5RS1sMlgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRC MEQ4LzA3QUFCQ0RBRkIxMTExRUU5MTIzMzkxQkM0RjlBRTAyL0FJc2pVYjZmMW0w NHNSQlFaNWMwOUUtbDJYMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGFNZ+WHaKiIRiHaUW4MlR4T5f2iVKb9X8Oiw0jI0WHcFkD9Y65imNTE WiaZPxrePuKe1QPk1zF+s4M8WH7HCKILf/4IiJy2UpeX+OsajtQWQVTIVoWka+uP YAWzV0lbKmC2QjrZUaMfhpXob9SnSCI9z74qQTpIUXc89Nk+TAvzKHW0r16GCuvD sJ9L26M/D2UkhaqqQOz5aM4Aibb5RTxhKCAQQC0yWWvtg6IT8OW+LpHp982T0IG+ W4UCcOaGQwLQPI/LnymM+hmyc/qzj5L3pCA5lcinWnb7/jbbFV0cdoeemSXR/lgI kvoyigSrQFGc+7TwDjushOt6ysgoDC4= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:06 2024 by rpki-client on console-ams.rpki-client.org