$ rpki-client -vvf rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft File: 2gQijT7rRR_A8iM2aXFwV_irNmk.mft (raw, json) Hash identifier: cXX3TVlJsrvrLEFXmjxsmGL2ETDuDP2NgyUo/o8R1G8= Subject key identifier: D5:D4:4D:BB:45:D0:FF:D0:B0:28:B9:5E:97:7B:39:5B:29:E2:F7:1E Authority key identifier: DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 Certificate issuer: /CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Certificate serial: 081B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft Manifest number: 0815 Signing time: Fri 22 Nov 2024 20:34:34 +0000 Manifest this update: Fri 22 Nov 2024 20:34:34 +0000 Manifest next update: Fri 29 Nov 2024 20:34:34 +0000 Files and hashes: 1: 2gQijT7rRR_A8iM2aXFwV_irNmk.crl (hash: Ezu+jvmBKCF3IE4R938sa+y8nHzDf9zDVs7pkb9hpgA=) 2: 26AECD92C2B211EABBD0ED4AC4F9AE02.roa (hash: 8bFMS7lUFa5a04616nMhBCIyPXjI0vGFlv2YHmEk/tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2075 (0x81b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B165/serialNumber=DA04228D3EEB451FC0F2233669717057F8AB3669 Validity Not Before: Nov 22 20:34:34 2024 GMT Not After : Nov 29 20:34:34 2024 GMT Subject: CN=6740eada-c6f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:85:a3:56:6a:11:5b:d8:88:17:e3:7e:05:c3: 53:43:4d:7a:fc:eb:5f:6a:61:df:4a:65:66:c6:33: e0:e7:6e:05:be:83:38:63:66:dd:f7:f2:4e:0e:af: 98:c0:f2:c1:63:eb:b6:f4:20:ba:87:c4:27:29:20: ae:36:75:16:13:00:9e:b1:5d:05:55:19:88:f4:0c: 39:c4:a7:ab:42:33:46:d0:26:58:4f:b8:fd:06:81: 60:13:93:f3:82:9a:9d:c6:a5:ee:4c:26:76:d2:7c: 72:09:59:8e:bc:39:08:7d:3d:4f:5e:f1:0d:ed:4d: 3c:49:5e:f3:93:e1:52:86:8a:dc:e0:e0:f3:11:a2: 49:f8:cd:28:24:24:37:3d:24:f4:ea:6e:eb:cf:8d: 15:0b:ab:38:c3:27:52:67:0e:4a:96:f0:75:a4:c1: b4:c4:6d:3f:b9:e9:d8:1b:10:ec:20:db:f6:a1:74: 7c:35:ca:29:6d:3e:f7:b4:6f:ab:6a:7f:9b:91:b3: e7:81:02:c5:2f:8b:0e:b0:ba:d6:e3:a3:4e:a5:da: b9:16:2e:94:ba:8e:c9:57:5d:12:3f:34:22:a5:af: e2:9d:94:53:4d:c9:29:07:0d:3c:f7:d3:2e:29:26: 1e:a5:58:d6:65:f7:ed:20:d4:cd:a6:fe:2e:0d:e2: c6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D4:4D:BB:45:D0:FF:D0:B0:28:B9:5E:97:7B:39:5B:29:E2:F7:1E X509v3 Authority Key Identifier: keyid:DA:04:22:8D:3E:EB:45:1F:C0:F2:23:36:69:71:70:57:F8:AB:36:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gQijT7rRR_A8iM2aXFwV_irNmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B165/6A3EB8B6C2B111EA920BB94AC4F9AE02/2gQijT7rRR_A8iM2aXFwV_irNmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:66:34:b0:e2:47:92:9a:71:ae:3c:be:05:df:d4:cc:74:11: 5e:8f:06:a6:31:51:c8:da:36:aa:25:3b:88:66:a8:62:a3:bd: 68:44:5d:4c:23:11:a4:d7:53:db:aa:bf:9f:18:cb:a2:2e:53: 1f:4e:8f:5f:ab:2c:aa:41:8f:69:35:a1:2d:a0:2b:f7:34:ad: 8f:c0:a6:38:56:f0:f8:c4:a3:9d:bb:f6:82:a7:70:d0:6f:7e: a7:0c:f1:c2:c9:d3:67:41:c7:f6:ae:f1:80:2e:95:86:25:64: f5:27:55:71:6d:b3:f9:60:99:9b:1b:d5:96:fc:71:e4:86:20: 8b:32:49:31:86:37:2b:2a:f6:ca:d0:02:64:9c:ca:ff:0b:cb: 8e:83:38:4d:33:b3:19:9a:78:0c:fe:74:bb:c6:81:19:0f:40: 06:7e:55:01:fd:12:9d:35:54:50:e3:16:ee:0c:76:a2:41:05: 4f:c6:b7:01:1a:ed:73:1a:f6:b9:f8:eb:2a:00:d0:f5:43:ec: bc:38:7f:df:8d:d1:16:2d:c1:36:c6:b6:b3:d9:a3:f8:b7:16: 5b:02:41:e5:a3:27:42:2b:8b:1f:3a:15:e8:38:55:68:cb:c9: 59:85:b3:be:c1:48:39:a6:38:ec:75:02:c6:0e:d8:34:cd:a4: 39:87:bd:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIxNjUxMTAvBgNVBAUTKERBMDQyMjhEM0VFQjQ1MUZDMEYyMjMzNjY5NzE3MDU3 RjhBQjM2NjkwHhcNMjQxMTIyMjAzNDM0WhcNMjQxMTI5MjAzNDM0WjAYMRYwFAYD VQQDEw02NzQwZWFkYS1jNmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04WjVmoRW9iIF+N+BcNTQ016/OtfamHfSmVmxjPg524FvoM4Y2bd9/JODq+Y wPLBY+u29CC6h8QnKSCuNnUWEwCesV0FVRmI9Aw5xKerQjNG0CZYT7j9BoFgE5Pz gpqdxqXuTCZ20nxyCVmOvDkIfT1PXvEN7U08SV7zk+FShorc4ODzEaJJ+M0oJCQ3 PST06m7rz40VC6s4wydSZw5KlvB1pMG0xG0/uenYGxDsINv2oXR8NcopbT73tG+r an+bkbPngQLFL4sOsLrW46NOpdq5Fi6Uuo7JV10SPzQipa/inZRTTckpBw0899Mu KSYepVjWZfftINTNpv4uDeLG8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXUTbtF 0P/QsCi5Xpd7OVsp4vceMB8GA1UdIwQYMBaAFNoEIo0+60UfwPIjNmlxcFf4qzZp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjE2NS82QTNFQjhCNkMy QjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJSX0E4aU0yYVhGd1ZfaXJO bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnUWlqVDdyUlJfQThpTTJhWEZ3Vl9pck5tay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjE2NS82QTNFQjhCNkMyQjExMUVBOTIwQkI5NEFDNEY5QUUwMi8yZ1FpalQ3clJS X0E4aU0yYVhGd1ZfaXJObWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFZjSw4keSmnGuPL4F39TMdBFejwamMVHI2jaqJTuIZqhio71oRF1M IxGk11Pbqr+fGMuiLlMfTo9fqyyqQY9pNaEtoCv3NK2PwKY4VvD4xKOdu/aCp3DQ b36nDPHCydNnQcf2rvGALpWGJWT1J1VxbbP5YJmbG9WW/HHkhiCLMkkxhjcrKvbK 0AJknMr/C8uOgzhNM7MZmngM/nS7xoEZD0AGflUB/RKdNVRQ4xbuDHaiQQVPxrcB Gu1zGva5+OsqAND1Q+y8OH/fjdEWLcE2xraz2aP4txZbAkHloydCK4sfOhXoOFVo y8lZhbO+wUg5pjjsdQLGDtg0zaQ5h734 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org