$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: 5kwtZDtFQRY35lffWLAovJb2/VOQo6b4n1DQplAH3Y0= Subject key identifier: 0D:D4:C9:28:C1:35:87:58:31:78:63:74:64:9A:B1:DA:FA:E0:86:64 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 06BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 06B6 Signing time: Fri 22 Nov 2024 21:43:07 +0000 Manifest this update: Fri 22 Nov 2024 21:43:07 +0000 Manifest next update: Fri 29 Nov 2024 21:43:07 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: bCdNEobPF53s6/y5bExVRG4SGeELTJ9rGE+uwyHodQo=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Nov 22 21:43:07 2024 GMT Not After : Nov 29 21:43:07 2024 GMT Subject: CN=6740faeb-43da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ea:9b:b8:9f:74:01:74:d2:bf:25:8e:de:52: c8:bd:12:f9:34:f0:a4:e7:42:fd:54:81:45:e7:c8: 09:e1:57:be:58:00:4b:e1:30:0a:9b:e9:a8:e1:1b: 66:c2:3b:ef:17:59:db:d9:ba:0c:e5:71:0d:54:f3: 86:2c:2e:22:a9:71:5b:2d:d1:3d:f3:b8:cc:7c:7e: fb:f1:9b:4c:de:fa:de:d3:7f:ff:c9:29:98:f0:bd: 0a:a2:c2:57:51:5b:fa:98:0a:fc:fa:2c:a9:23:f0: a1:57:b7:d1:0e:01:7c:86:b5:c4:f7:a7:7a:3b:f4: 8e:13:8d:5b:89:33:dd:54:10:75:61:5e:2e:52:5c: 2d:43:fe:bd:97:98:46:4c:2b:a0:f3:55:43:1b:da: 3f:28:ca:66:50:5b:13:77:ef:55:e5:6a:2b:3f:6d: fb:ce:b8:e9:f3:66:f8:51:96:fd:5c:d7:4f:6d:9b: 93:e6:cc:5f:d4:ce:0d:10:1f:ef:39:30:fd:47:39: 5d:f7:94:c5:9f:2b:2b:8c:c5:5e:73:1f:8c:62:01: 3f:3b:13:d8:a7:8f:14:43:d4:8e:16:bc:c9:18:cb: ed:ca:a2:89:62:05:18:9f:6f:9d:2a:51:00:b6:5f: 17:d1:09:4e:b9:57:f9:fb:06:42:a1:19:34:67:fd: d7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D4:C9:28:C1:35:87:58:31:78:63:74:64:9A:B1:DA:FA:E0:86:64 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:15:83:6f:f0:8d:21:42:26:a9:08:1f:81:2a:b0:cb:55:a9: b8:e1:28:e8:9b:df:d6:5f:f2:49:fe:9a:30:e0:b8:0e:83:77: 7b:aa:c5:47:05:eb:5e:5a:b5:90:b5:94:48:f1:45:28:aa:d8: 57:bc:f6:92:d1:9a:94:60:c4:cd:74:78:08:75:8c:c9:5d:70: 72:ab:13:4c:49:21:65:01:17:cf:3f:cd:07:81:06:c2:ea:4a: 1b:15:f7:86:0e:e2:cf:0b:14:d9:5c:49:8b:87:64:ab:6f:b6: 75:f4:4c:5b:22:fd:60:7b:5c:d6:ea:ab:be:c5:f5:c5:62:40: ca:ee:fb:2b:8c:50:fb:59:91:1e:94:a5:3b:ee:09:31:aa:7f: ee:cc:ee:ed:2e:cf:70:97:2b:51:d7:a1:9d:4e:27:22:c3:55: 84:2b:ab:9e:3a:a0:5f:41:42:1b:87:e2:56:7d:f4:23:69:b2: 85:95:f9:56:3b:1e:e4:a9:94:4a:26:5b:d4:d9:d8:0f:17:32: 20:ba:59:1c:14:50:62:03:36:9e:ca:1c:91:1e:30:f2:4d:5c: b0:37:e5:9a:2f:8d:58:7a:3d:58:e0:72:8b:23:65:e2:f1:64: f4:71:a5:da:8a:2f:f2:0a:a1:5f:07:09:75:4e:7d:40:60:5d: 12:2d:3d:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjQxMTIyMjE0MzA3WhcNMjQxMTI5MjE0MzA3WjAYMRYwFAYD VQQDEw02NzQwZmFlYi00M2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuqbuJ90AXTSvyWO3lLIvRL5NPCk50L9VIFF58gJ4Ve+WABL4TAKm+mo4Rtm wjvvF1nb2boM5XENVPOGLC4iqXFbLdE987jMfH778ZtM3vre03//ySmY8L0KosJX UVv6mAr8+iypI/ChV7fRDgF8hrXE96d6O/SOE41biTPdVBB1YV4uUlwtQ/69l5hG TCug81VDG9o/KMpmUFsTd+9V5WorP237zrjp82b4UZb9XNdPbZuT5sxf1M4NEB/v OTD9Rzld95TFnysrjMVecx+MYgE/OxPYp48UQ9SOFrzJGMvtyqKJYgUYn2+dKlEA tl8X0QlOuVf5+wZCoRk0Z/3X0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3UySjB NYdYMXhjdGSasdr64IZkMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8FYNv8I0hQiapCB+BKrDLVam44Sjom9/WX/JJ/pow4LgOg3d7qsVH BeteWrWQtZRI8UUoqthXvPaS0ZqUYMTNdHgIdYzJXXByqxNMSSFlARfPP80HgQbC 6kobFfeGDuLPCxTZXEmLh2Srb7Z19ExbIv1ge1zW6qu+xfXFYkDK7vsrjFD7WZEe lKU77gkxqn/uzO7tLs9wlytR16GdTiciw1WEK6ueOqBfQUIbh+JWffQjabKFlflW Ox7kqZRKJlvU2dgPFzIgulkcFFBiAzaeyhyRHjDyTVywN+WaL41Yej1Y4HKLI2Xi 8WT0caXaii/yCqFfBwl1Tn1AYF0SLT3U -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org