$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: VJ8j1/turQK6D3i+98b3JxWqEp3v/cN0yjwBC0OotHo= Subject key identifier: 4B:73:2C:C3:16:77:31:91:39:B8:76:A0:01:02:B7:66:31:CB:BB:D5 Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 056F Signing time: Fri 22 Nov 2024 23:01:46 +0000 Manifest this update: Fri 22 Nov 2024 23:01:45 +0000 Manifest next update: Fri 29 Nov 2024 23:01:45 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: NGsT9QbVNUG/Y0JwM9pFDfutQGn33F64JA3Rc5YZFzM=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: 0DAv2e1y7wjMDIyk2OxTxV1qI3DGqyoYfIk0fRmZN0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Nov 22 23:01:45 2024 GMT Not After : Nov 29 23:01:45 2024 GMT Subject: CN=67410d59-92ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3d:a6:6a:b9:1b:e1:20:d8:23:e8:b2:8f:14: 68:33:58:8c:93:56:51:e6:37:22:6e:ce:54:55:4b: bc:fb:4b:ea:c5:b1:89:5e:84:93:63:ef:8f:3a:4d: f8:d4:79:72:bc:9d:9d:d1:4e:78:53:4d:03:a4:71: 39:61:79:13:53:9f:28:2f:d9:c1:2d:75:35:6a:af: 79:52:b0:4a:50:4a:5f:57:26:5b:ee:d0:f4:0c:38: df:4c:5c:17:b4:f1:94:72:be:a4:01:72:72:c3:b6: 58:5e:d8:03:7a:51:59:58:35:c8:41:80:78:cb:4e: c3:8c:34:c6:30:0f:a3:28:41:1f:1e:a2:0a:9c:18: 2a:20:ff:dc:f6:0c:28:60:5d:89:c4:f0:09:c6:47: 4c:18:10:9c:08:0f:3b:ff:f1:77:41:e6:40:92:97: 9c:bb:92:59:b3:e8:44:c3:a0:06:69:6e:5a:7e:35: c1:fc:de:6c:5e:92:db:77:32:57:be:84:37:51:5c: f6:91:49:34:cf:9e:d9:af:8d:aa:6c:25:48:be:14: 37:5f:1a:ca:96:13:c1:5c:c0:44:5d:12:a6:6c:5f: ed:4b:9e:a2:47:2b:0f:62:d2:5c:37:ba:91:b9:70: 7c:57:e3:46:67:0c:61:c7:70:38:5a:15:b2:69:74: 4b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:73:2C:C3:16:77:31:91:39:B8:76:A0:01:02:B7:66:31:CB:BB:D5 X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:9f:ae:8a:38:80:ff:50:18:82:2f:6b:c1:96:72:5a:83:1f: 13:05:cf:50:ed:a9:4a:87:dc:07:9b:1c:11:b7:ca:70:5d:43: 0f:1d:47:78:db:91:30:b9:2f:8c:7c:55:5c:82:02:1f:71:d1: 5e:eb:91:cb:36:6a:2c:8e:2a:41:b2:c6:42:4a:04:4b:2b:66: ec:db:40:90:b5:4e:8f:6e:8b:b1:07:e7:73:aa:8f:a1:94:24: 21:c9:35:ea:63:73:bb:3b:e4:55:7c:66:ec:46:7f:4f:70:96: 65:ba:a0:20:03:0c:41:db:8e:66:16:e7:1c:17:87:db:4b:80: 0a:93:61:e2:8d:11:fc:98:71:e7:cc:99:a7:c2:52:a3:ed:9c: 9b:99:bb:da:35:1c:79:51:3d:db:ed:9d:f3:15:c6:fc:69:df: 26:67:76:8f:7a:a8:56:c6:af:46:b9:d4:01:bb:6e:61:ae:2c: 83:d5:62:70:a8:b9:b2:42:f4:45:c4:56:38:76:58:7b:5e:8b: da:17:79:1e:09:8a:43:d4:05:d7:fc:fb:7e:b2:12:c6:4a:0f: 2b:ad:fe:63:13:13:4d:8a:d3:32:24:f0:36:a5:a3:3a:43:62: 94:17:06:33:45:17:f3:6f:b2:04:66:d6:56:4e:ce:ed:3b:f4: 91:76:8d:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjQxMTIyMjMwMTQ1WhcNMjQxMTI5MjMwMTQ1WjAYMRYwFAYD VQQDEw02NzQxMGQ1OS05MmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnj2markb4SDYI+iyjxRoM1iMk1ZR5jcibs5UVUu8+0vqxbGJXoSTY++POk34 1HlyvJ2d0U54U00DpHE5YXkTU58oL9nBLXU1aq95UrBKUEpfVyZb7tD0DDjfTFwX tPGUcr6kAXJyw7ZYXtgDelFZWDXIQYB4y07DjDTGMA+jKEEfHqIKnBgqIP/c9gwo YF2JxPAJxkdMGBCcCA87//F3QeZAkpecu5JZs+hEw6AGaW5afjXB/N5sXpLbdzJX voQ3UVz2kUk0z57Zr42qbCVIvhQ3XxrKlhPBXMBEXRKmbF/tS56iRysPYtJcN7qR uXB8V+NGZwxhx3A4WhWyaXRLVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtzLMMW dzGRObh2oAECt2Yxy7vVMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJn66KOID/UBiCL2vBlnJagx8TBc9Q7alKh9wHmxwRt8pwXUMPHUd4 25EwuS+MfFVcggIfcdFe65HLNmosjipBssZCSgRLK2bs20CQtU6PbouxB+dzqo+h lCQhyTXqY3O7O+RVfGbsRn9PcJZluqAgAwxB245mFuccF4fbS4AKk2HijRH8mHHn zJmnwlKj7ZybmbvaNRx5UT3b7Z3zFcb8ad8mZ3aPeqhWxq9GudQBu25hriyD1WJw qLmyQvRFxFY4dlh7XovaF3keCYpD1AXX/Pt+shLGSg8rrf5jExNNitMyJPA2paM6 Q2KUFwYzRRfzb7IEZtZWTs7tO/SRdo0U -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org