$ rpki-client -vvf rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft File: 1mAaggCAx5DwpRpsN2X1tLDQGzc.mft (raw, json) Hash identifier: vSPm2oxfYXSkt9oI9E2Q7dHevvvuNwHz7EyfKpTcJOI= Subject key identifier: 49:80:61:2A:CD:7C:27:7E:EB:1A:7C:8B:85:08:F3:13:EE:59:73:88 Authority key identifier: D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 Certificate issuer: /CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Certificate serial: 0A63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft Manifest number: 0A5D Signing time: Fri 22 Nov 2024 19:25:37 +0000 Manifest this update: Fri 22 Nov 2024 19:25:37 +0000 Manifest next update: Fri 29 Nov 2024 19:25:37 +0000 Files and hashes: 1: 1mAaggCAx5DwpRpsN2X1tLDQGzc.crl (hash: 3aCK7FDFvm071caYdBkqZ5+hwVdJXziKYSwP7ZZAd2s=) 2: 5EEC619850A611EA823DE980C4F9AE02.roa (hash: AxteJTYQfKhzHJcNDMSvPfiq/UKu+BhiRHq6hallwyw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:25:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915343B/serialNumber=D6601A820080C790F0A51A6C3765F5B4B0D01B37 Validity Not Before: Nov 22 19:25:37 2024 GMT Not After : Nov 29 19:25:37 2024 GMT Subject: CN=6740dab1-644a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:36:89:ea:bd:e3:ed:ed:c9:63:af:a1:c3:7e: 74:71:a7:6d:c6:d1:07:10:f7:bc:03:59:55:dd:47: 0f:23:a8:5b:d8:63:9c:2d:9a:2d:da:86:43:e4:3c: e3:e4:1a:e0:bd:f2:85:69:a8:d4:91:e3:ea:cc:77: 20:c5:e8:69:48:ac:b2:7b:ee:e7:13:69:ca:bf:90: de:6b:1f:9c:7a:16:02:e2:09:82:3e:d8:a0:9e:78: cf:7e:d3:30:bd:e1:05:0c:70:88:46:77:82:f2:38: bb:b8:eb:77:a7:e4:e0:e9:f2:aa:94:47:bf:cb:28: 9e:bc:1a:d2:41:df:34:1e:55:d1:b4:07:ca:95:a2: 52:07:59:ec:94:db:59:ca:0e:ac:f3:76:f6:c7:3c: a0:07:3f:eb:67:a0:f5:aa:a9:4d:f5:08:46:53:72: de:e2:59:3f:d8:98:d2:5b:a6:de:49:22:e7:a5:53: 53:05:51:ac:10:d8:8d:26:c0:61:7f:75:77:a3:ce: 7f:ed:b0:32:b6:2b:bf:1b:3f:8f:48:01:e7:b5:57: 98:ad:0e:af:38:67:ed:da:54:d2:79:9f:27:1f:04: 68:a5:b5:39:02:2f:1b:7b:01:03:1d:21:c4:da:5d: 91:ec:a3:3e:97:0c:5e:47:25:9e:3c:d7:75:b2:1b: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:80:61:2A:CD:7C:27:7E:EB:1A:7C:8B:85:08:F3:13:EE:59:73:88 X509v3 Authority Key Identifier: keyid:D6:60:1A:82:00:80:C7:90:F0:A5:1A:6C:37:65:F5:B4:B0:D0:1B:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1mAaggCAx5DwpRpsN2X1tLDQGzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915343B/6A0383E650A511EA976CB77FC4F9AE02/1mAaggCAx5DwpRpsN2X1tLDQGzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:59:4a:3e:ff:ac:5d:5f:67:2d:d6:67:b2:a0:e9:58:10:88: 4a:99:34:75:6d:b4:1b:4a:c0:af:82:37:bb:34:d7:c2:e6:f5: cd:b4:22:47:9e:a5:37:d8:8c:ac:07:9e:7d:4f:38:18:9f:fd: 53:4f:36:ef:87:cf:be:92:d8:90:d2:d3:d1:59:13:9a:14:b6: 47:c5:36:2e:ec:0f:3b:5f:1c:b0:b2:f8:3b:cd:fc:5e:c5:e8: 60:64:2d:15:98:b6:ec:ea:f2:6a:fd:ad:e7:28:a8:fc:87:1d: 74:cc:60:d4:02:49:c9:c4:36:1b:97:35:08:4c:20:2e:32:d3: c8:04:a9:70:14:a2:4e:a2:3e:c1:75:38:5d:40:4b:f1:95:39: a4:9f:39:19:55:27:47:fb:94:0b:2d:ed:fd:93:bd:cc:92:66: 3c:89:6e:d1:bc:e1:16:4e:8a:2a:11:4c:50:3a:bd:ad:1e:db: e4:22:e4:1f:17:2a:8b:39:51:f9:a9:11:3e:9f:54:94:c4:c8: 0f:11:9a:d7:53:0f:1d:08:da:e6:04:d7:cf:c4:74:a4:16:10: 6e:ed:58:9b:e8:e8:e0:41:b9:d6:f0:56:98:7b:89:52:4b:05: f0:c9:20:40:d5:d1:0b:c9:a3:ab:f6:bd:06:fe:e4:4c:3d:f9: 52:a2:f4:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0M0IxMTAvBgNVBAUTKEQ2NjAxQTgyMDA4MEM3OTBGMEE1MUE2QzM3NjVGNUI0 QjBEMDFCMzcwHhcNMjQxMTIyMTkyNTM3WhcNMjQxMTI5MTkyNTM3WjAYMRYwFAYD VQQDEw02NzQwZGFiMS02NDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzaJ6r3j7e3JY6+hw350cadtxtEHEPe8A1lV3UcPI6hb2GOcLZot2oZD5Dzj 5BrgvfKFaajUkePqzHcgxehpSKyye+7nE2nKv5Deax+cehYC4gmCPtignnjPftMw veEFDHCIRneC8ji7uOt3p+Tg6fKqlEe/yyievBrSQd80HlXRtAfKlaJSB1nslNtZ yg6s83b2xzygBz/rZ6D1qqlN9QhGU3Le4lk/2JjSW6beSSLnpVNTBVGsENiNJsBh f3V3o85/7bAytiu/Gz+PSAHntVeYrQ6vOGft2lTSeZ8nHwRopbU5Ai8bewEDHSHE 2l2R7KM+lwxeRyWePNd1shvM0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmAYSrN fCd+6xp8i4UI8xPuWXOIMB8GA1UdIwQYMBaAFNZgGoIAgMeQ8KUabDdl9bSw0Bs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQzQi82QTAzODNFNjUw QTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1RHdwUnBzTjJYMXRMRFFH emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtQWFnZ0NBeDVEd3BScHNOMlgxdExEUUd6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQzQi82QTAzODNFNjUwQTUxMUVBOTc2Q0I3N0ZDNEY5QUUwMi8xbUFhZ2dDQXg1 RHdwUnBzTjJYMXRMRFFHemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwWUo+/6xdX2ct1meyoOlYEIhKmTR1bbQbSsCvgje7NNfC5vXNtCJH nqU32IysB559TzgYn/1TTzbvh8++ktiQ0tPRWROaFLZHxTYu7A87Xxywsvg7zfxe xehgZC0VmLbs6vJq/a3nKKj8hx10zGDUAknJxDYblzUITCAuMtPIBKlwFKJOoj7B dThdQEvxlTmknzkZVSdH+5QLLe39k73MkmY8iW7RvOEWTooqEUxQOr2tHtvkIuQf FyqLOVH5qRE+n1SUxMgPEZrXUw8dCNrmBNfPxHSkFhBu7Vib6OjgQbnW8FaYe4lS SwXwySBA1dELyaOr9r0G/uRMPflSovQL -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org