$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft File: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft (raw, json) Hash identifier: 8KVqXhkXQsF5TKBSwhFSYrJo4sK8xeIeZDN80xOV/uw= Subject key identifier: EE:C4:78:A7:C9:14:F5:84:04:9A:22:F1:E7:E3:F6:AA:14:48:7A:A8 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft Manifest number: 0177 Signing time: Thu 21 Nov 2024 00:47:23 +0000 Manifest this update: Thu 21 Nov 2024 00:47:23 +0000 Manifest next update: Thu 28 Nov 2024 00:47:23 +0000 Files and hashes: 1: 2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl (hash: 8axqbRKOUcRxnAcCi8CEOt8kSBHiCR+LVSllYTp7yLM=) 2: F060FF0E720D11EDA84BE02EC4F9AE02.roa (hash: GlAc5fAZweTglvbASziU5BwBtzuZgb2Uajdg0QEwpgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: Nov 21 00:47:23 2024 GMT Not After : Nov 28 00:47:23 2024 GMT Subject: CN=673e831b-c48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:48:80:92:b9:8e:e1:e9:f1:b2:9d:ed:3c: d2:4d:17:ca:72:33:df:12:05:78:cd:77:ed:92:34: a5:b2:60:c1:b1:53:ec:bf:59:31:91:e4:0c:7b:09: 3d:d9:0a:cd:37:d0:bd:c1:84:c5:f8:91:16:c6:5a: 13:63:e4:a2:40:4f:c8:40:89:78:25:25:7b:59:8a: f2:45:68:38:aa:7f:90:55:55:d7:37:5b:a3:7b:c7: 22:bd:f7:2d:5d:62:ff:1d:b0:2e:4f:bc:dc:6d:ac: 4f:56:14:c2:81:a7:62:9b:3c:2a:9a:e2:df:5a:a2: 2c:1a:33:79:f2:a3:a8:4e:98:e9:5b:e7:eb:3c:de: c2:d5:f3:dc:fc:71:9f:9a:2f:1b:0a:f4:cf:c6:67: 20:64:3b:80:49:36:48:b0:dd:f1:cf:2f:9c:10:56: 86:2a:f3:6a:29:ca:0b:d3:e7:4b:41:01:df:5f:46: 3b:45:82:a3:a8:ae:65:d3:af:d3:41:05:09:89:47: a8:0c:9f:7b:6d:0f:d3:20:67:ed:a7:8d:29:e7:f5: 42:db:f8:fd:d9:6b:21:85:95:55:a8:5c:83:7a:3b: 54:78:31:d0:bd:43:43:19:37:85:35:14:b5:4d:19: 2b:77:bf:53:03:40:c6:51:61:5a:cd:d4:2e:36:35: 68:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C4:78:A7:C9:14:F5:84:04:9A:22:F1:E7:E3:F6:AA:14:48:7A:A8 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:b2:c5:71:4a:c9:59:7d:a0:6d:70:8c:b1:9c:b9:b2:48:f3: e7:02:00:86:86:0e:89:96:2d:39:c3:4d:89:bf:7a:d2:fc:fb: f3:74:b4:3f:53:af:b8:85:51:2b:90:fd:f9:3c:08:fa:41:cf: a5:94:04:8f:ca:5b:96:67:3a:af:e1:fa:82:8d:d2:d8:cc:70: 1c:82:99:ce:c5:97:f9:13:36:00:2a:27:2a:31:1f:0a:14:e0: 18:68:79:b2:60:48:98:66:38:f3:72:0b:49:b8:b8:fe:60:da: d7:b6:2d:bf:03:38:ca:af:88:59:4f:8e:92:1e:19:c6:48:ba: cf:90:f2:e4:5d:81:7c:36:19:6b:ef:f2:5d:81:ef:26:5e:d3: d8:f1:24:87:35:b3:83:ee:4c:cf:2a:18:27:4b:a8:c4:64:08: 25:1d:b1:c3:b4:e8:79:2e:d0:e4:1e:bf:ac:60:fc:5b:de:f8: 58:44:ae:9e:73:5e:20:9e:97:a8:6f:5b:42:c5:2d:10:ab:19: 45:9f:12:9d:d7:2c:b8:f1:3f:bd:6c:bd:e9:b0:f9:9a:a7:91: 3a:c9:c2:5f:48:bd:f4:57:93:20:4b:e7:d9:27:4f:ba:46:d4: 00:3a:ed:89:0c:e1:2a:95:9b:a9:6d:ed:46:d5:4f:26:71:6f: 92:b2:d6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjQxMTIxMDA0NzIzWhcNMjQxMTI4MDA0NzIzWjAYMRYwFAYD VQQDEw02NzNlODMxYi1jNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoVIgJK5juHp8bKd7TzSTRfKcjPfEgV4zXftkjSlsmDBsVPsv1kxkeQMewk9 2QrNN9C9wYTF+JEWxloTY+SiQE/IQIl4JSV7WYryRWg4qn+QVVXXN1uje8civfct XWL/HbAuT7zcbaxPVhTCgadimzwqmuLfWqIsGjN58qOoTpjpW+frPN7C1fPc/HGf mi8bCvTPxmcgZDuASTZIsN3xzy+cEFaGKvNqKcoL0+dLQQHfX0Y7RYKjqK5l06/T QQUJiUeoDJ97bQ/TIGftp40p5/VC2/j92WshhZVVqFyDejtUeDHQvUNDGTeFNRS1 TRkrd79TA0DGUWFazdQuNjVoywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7EeKfJ FPWEBJoi8efj9qoUSHqoMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC83NTk4NDQ0NDcyMEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5Nlhk N1R0ejFnVXU0RkZzQWt4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqssVxSslZfaBtcIyxnLmySPPnAgCGhg6Jli05w02Jv3rS/PvzdLQ/ U6+4hVErkP35PAj6Qc+llASPyluWZzqv4fqCjdLYzHAcgpnOxZf5EzYAKicqMR8K FOAYaHmyYEiYZjjzcgtJuLj+YNrXti2/AzjKr4hZT46SHhnGSLrPkPLkXYF8Nhlr 7/Jdge8mXtPY8SSHNbOD7kzPKhgnS6jEZAglHbHDtOh5LtDkHr+sYPxb3vhYRK6e c14gnpeob1tCxS0QqxlFnxKd1yy48T+9bL3psPmap5E6ycJfSL30V5MgS+fZJ0+6 RtQAOu2JDOEqlZupbe1G1U8mcW+SstZd -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:54 2024 by rpki-client on console-fra.rpki-client.org