$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: S1ZyWGrQ4KacpK+K3idMbi0hIWEX3vUx6HjEbJaBRlU= Subject key identifier: 1F:90:DB:51:A7:2A:8C:74:44:74:02:D7:56:2F:99:69:EF:6C:CF:C8 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 03A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 0398 Signing time: Sat 23 Nov 2024 00:20:45 +0000 Manifest this update: Sat 23 Nov 2024 00:20:44 +0000 Manifest next update: Sat 30 Nov 2024 00:20:44 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: OtSWrhGqnYnvCwmVjJcNgsAntBqYDY4PP42/IMkViHM=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: Zeiu4QtNT5MUhU37wsj+oT85M5rgvK6OPRoU5FxNjsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 929 (0x3a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Nov 23 00:20:44 2024 GMT Not After : Nov 30 00:20:44 2024 GMT Subject: CN=67411fdd-de81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7b:43:f0:d8:94:7c:2f:1e:1c:7c:b0:fb:fb: 96:61:0e:17:d7:04:6c:24:11:c0:82:0d:f0:b5:61: 43:99:ee:2e:8c:2e:a2:32:1c:6f:ef:f4:8c:fa:82: 3a:51:e1:4f:e5:93:26:60:f1:51:88:03:8d:c2:99: 33:87:b2:36:44:4b:b2:49:61:c8:39:71:34:8a:bb: 5c:41:7d:63:48:b6:eb:6a:6a:46:ad:24:6f:b4:5b: d5:ce:d0:87:28:b2:6f:f2:2b:8d:0c:cd:9b:3c:57: 74:42:86:d5:f6:d3:08:f8:a7:25:8e:3a:fe:3b:08: 93:01:d3:e7:dd:d7:34:9c:ef:04:7b:14:c0:8c:e2: 00:57:9d:9e:97:17:6e:b8:b8:84:d6:6d:70:a1:c1: 48:7c:33:a7:c3:1b:ab:bb:78:de:77:34:05:a3:68: c9:f4:56:a8:fd:51:fb:a1:91:21:29:dc:c7:a2:4c: 1f:bf:ba:c3:45:d3:6f:2b:50:f7:80:0b:31:80:d3: 59:7c:9a:da:61:f0:0d:99:38:db:35:b9:24:36:46: 9f:fd:94:8c:27:5f:d8:f0:05:37:93:a8:af:86:b7: b4:01:ac:c7:7c:0d:d6:5c:88:1a:af:ba:0a:99:0c: f4:d1:22:cf:03:0c:c5:11:0e:41:fc:ae:2f:5d:3b: 51:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:90:DB:51:A7:2A:8C:74:44:74:02:D7:56:2F:99:69:EF:6C:CF:C8 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:fc:60:a4:e6:e1:db:55:21:e1:d0:d9:c3:88:64:39:6d:94: 3b:fc:0c:20:c8:09:36:59:24:e9:23:a2:39:95:2d:1d:9b:95: d5:dc:ac:69:d9:5e:0d:61:26:8b:1e:c2:6b:e8:99:92:af:b6: fd:86:32:de:69:87:54:44:09:3b:95:e3:02:76:2d:9c:ed:d8: c8:58:ba:93:c9:1f:32:2f:73:13:92:8a:0b:2a:e6:91:79:d2: c3:09:41:61:d2:72:5d:de:87:3b:b2:b9:ce:13:52:84:15:94: 18:46:d4:ba:00:49:f2:3f:2a:10:68:30:29:74:81:40:c7:61: 2d:72:f4:89:ff:ee:ec:d4:43:ea:54:ad:fb:0e:00:65:d8:24: 0a:dd:d9:b1:94:25:99:5a:53:21:d7:2e:6c:7a:68:81:6a:cf: c8:eb:a9:ea:e9:d8:12:dd:62:4c:1d:0f:5f:63:4f:aa:d4:90: 23:47:32:1e:60:f0:91:96:45:f5:75:c2:f6:75:6d:28:45:30: ff:22:ee:5f:6d:11:19:b2:c5:19:37:51:ee:ed:86:12:00:33: 3a:83:30:8a:ba:af:84:c6:b7:52:83:fe:0f:9f:8e:26:8e:f9: e8:9f:40:cf:9d:f8:1b:a9:c2:8c:ae:85:2b:75:8a:52:61:67: fb:2d:27:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjQxMTIzMDAyMDQ0WhcNMjQxMTMwMDAyMDQ0WjAYMRYwFAYD VQQDEw02NzQxMWZkZC1kZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XtD8NiUfC8eHHyw+/uWYQ4X1wRsJBHAgg3wtWFDme4ujC6iMhxv7/SM+oI6 UeFP5ZMmYPFRiAONwpkzh7I2REuySWHIOXE0irtcQX1jSLbrampGrSRvtFvVztCH KLJv8iuNDM2bPFd0QobV9tMI+Kcljjr+OwiTAdPn3dc0nO8EexTAjOIAV52elxdu uLiE1m1wocFIfDOnwxuru3jedzQFo2jJ9Fao/VH7oZEhKdzHokwfv7rDRdNvK1D3 gAsxgNNZfJraYfANmTjbNbkkNkaf/ZSMJ1/Y8AU3k6ivhre0AazHfA3WXIgar7oK mQz00SLPAwzFEQ5B/K4vXTtRAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+Q21Gn Kox0RHQC11YvmWnvbM/IMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG/GCk5uHbVSHh0NnDiGQ5bZQ7/AwgyAk2WSTpI6I5lS0dm5XV3Kxp 2V4NYSaLHsJr6JmSr7b9hjLeaYdURAk7leMCdi2c7djIWLqTyR8yL3MTkooLKuaR edLDCUFh0nJd3oc7srnOE1KEFZQYRtS6AEnyPyoQaDApdIFAx2EtcvSJ/+7s1EPq VK37DgBl2CQK3dmxlCWZWlMh1y5semiBas/I66nq6dgS3WJMHQ9fY0+q1JAjRzIe YPCRlkX1dcL2dW0oRTD/Iu5fbREZssUZN1Hu7YYSADM6gzCKuq+ExrdSg/4Pn44m jvnon0DPnfgbqcKMroUrdYpSYWf7LSdS -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org