$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: YyZ0KVvBEbqhN4SJP8zqO02737OPpzCXee/QG8XpmPM= Subject key identifier: CC:01:5D:E3:FC:45:25:B1:8D:E8:0A:E7:AB:F5:96:CE:4F:DA:EA:69 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 0170 Signing time: Sat 23 Nov 2024 02:09:12 +0000 Manifest this update: Sat 23 Nov 2024 02:09:12 +0000 Manifest next update: Sat 30 Nov 2024 02:09:12 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: O2O++lpPVkNi99iTh0LowoMnHjOMw808ntYDkKvmKx4=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: jST31h743fh0G7nQ5yuFvr7M5qlYPELdwHHksCGFGB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Nov 23 02:09:12 2024 GMT Not After : Nov 30 02:09:12 2024 GMT Subject: CN=67413948-4130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:af:a9:ea:5d:af:c0:54:2a:1d:81:bf:78:36: 54:fa:ab:4a:c0:63:45:57:9c:46:23:84:4a:a6:92: fe:4c:ef:e9:16:6e:b0:f3:ba:33:03:79:2f:33:93: c9:13:e5:e9:1a:d8:e9:78:a5:97:ea:ae:9b:d2:73: 23:77:92:dc:97:73:ca:cc:3d:df:2f:6a:40:76:04: 89:97:a3:0d:81:f7:9d:16:85:0c:3f:32:e0:cb:ef: a3:db:d4:c3:c3:7e:e6:8d:8b:f1:d3:48:59:9b:1e: c5:ed:17:95:e6:4e:b0:94:49:85:45:f4:a1:ea:12: 0c:c8:fb:48:0f:e9:54:59:50:b5:cb:8b:48:a0:f0: a9:02:0e:f7:d4:f6:c7:df:ab:c6:94:6f:27:16:68: 58:93:90:7d:88:d2:b8:eb:8d:ef:bf:cb:12:81:3c: e3:08:2c:98:73:c9:b7:a1:24:4d:54:2e:9d:8b:bd: 5a:42:2e:b3:06:e0:94:cd:5a:5f:33:11:fd:1d:f1: 02:30:76:73:59:33:a8:ba:b1:45:32:b2:18:05:bc: 68:6d:c1:81:69:54:45:57:49:53:0b:de:41:06:28: ce:54:6f:78:b9:70:a9:15:58:fb:4e:3b:a2:29:05: 4e:7e:b5:e5:9e:7e:cb:75:fb:29:d9:93:3f:42:cf: ce:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:01:5D:E3:FC:45:25:B1:8D:E8:0A:E7:AB:F5:96:CE:4F:DA:EA:69 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:df:16:94:7b:c4:22:18:68:92:02:0c:50:36:52:fd:2d:60: 76:92:03:20:74:ae:41:76:b9:9c:15:a1:0c:1a:d9:a0:2e:85: e2:22:28:41:0d:93:64:e2:e2:ed:30:ff:00:0d:36:97:96:68: 17:cf:55:dd:79:c0:e0:fb:2b:ed:84:d6:70:a3:c7:2b:01:50: 90:35:bb:36:fa:64:32:bf:56:a2:d2:28:a4:fa:2d:47:8a:a4: 6d:0e:7b:f5:35:4b:5d:cf:e9:22:40:8b:d5:8f:ff:be:c4:49: 6e:b0:2e:7c:eb:85:39:65:f4:ef:39:1d:bc:2f:d1:a9:a9:44: 74:71:40:1e:06:cb:59:22:21:f4:d8:1a:93:d0:19:8a:d2:80: 40:9e:6c:1d:23:5c:45:b9:bd:55:e0:06:e2:e7:76:6d:c6:1c: 86:59:bb:3d:29:ff:9b:c1:80:ee:ac:9d:53:9b:26:f9:9f:83: 8e:fc:6a:06:39:c3:d6:1c:99:e4:8a:75:10:80:5e:9e:f4:58: 8b:bc:aa:19:7e:ac:9a:71:20:6f:b8:3d:0f:58:67:e4:38:0a: 2c:f3:0b:54:f7:ed:75:57:11:0a:c3:35:40:0d:87:47:e4:b1: db:45:26:ba:a2:fe:71:8a:67:ce:cf:51:96:48:81:e8:22:0a: be:62:e6:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjQxMTIzMDIwOTEyWhcNMjQxMTMwMDIwOTEyWjAYMRYwFAYD VQQDEw02NzQxMzk0OC00MTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsq+p6l2vwFQqHYG/eDZU+qtKwGNFV5xGI4RKppL+TO/pFm6w87ozA3kvM5PJ E+XpGtjpeKWX6q6b0nMjd5Lcl3PKzD3fL2pAdgSJl6MNgfedFoUMPzLgy++j29TD w37mjYvx00hZmx7F7ReV5k6wlEmFRfSh6hIMyPtID+lUWVC1y4tIoPCpAg731PbH 36vGlG8nFmhYk5B9iNK4643vv8sSgTzjCCyYc8m3oSRNVC6di71aQi6zBuCUzVpf MxH9HfECMHZzWTOourFFMrIYBbxobcGBaVRFV0lTC95BBijOVG94uXCpFVj7Tjui KQVOfrXlnn7Ldfsp2ZM/Qs/ObQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwBXeP8 RSWxjegK56v1ls5P2uppMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv3xaUe8QiGGiSAgxQNlL9LWB2kgMgdK5BdrmcFaEMGtmgLoXiIihB DZNk4uLtMP8ADTaXlmgXz1XdecDg+yvthNZwo8crAVCQNbs2+mQyv1ai0iik+i1H iqRtDnv1NUtdz+kiQIvVj/++xElusC5864U5ZfTvOR28L9GpqUR0cUAeBstZIiH0 2BqT0BmK0oBAnmwdI1xFub1V4Abi53ZtxhyGWbs9Kf+bwYDurJ1Tmyb5n4OO/GoG OcPWHJnkinUQgF6e9FiLvKoZfqyacSBvuD0PWGfkOAos8wtU9+11VxEKwzVADYdH 5LHbRSa6ov5ximfOz1GWSIHoIgq+YuYb -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org