$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: sQhXAnQjrC+LTyze98qE5eCyEIo35qQWyYGwYxG2MEY= Subject key identifier: F5:8D:B0:71:02:2D:F3:4F:80:93:66:F6:33:A6:07:9C:90:94:5B:E5 Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0E1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0E11 Signing time: Fri 22 Nov 2024 17:45:24 +0000 Manifest this update: Fri 22 Nov 2024 17:45:23 +0000 Manifest next update: Fri 29 Nov 2024 17:45:23 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: 0dW7LUmpWiPzZ7TSidrqrpHmH2qwvooMEs67LCqnOLM=) 2: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: 8S2L4PIf85V9FtE2NxlTWF91adX1vQpLiZaP3LriZvM=) 3: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: dBVxIuxXi1IfubYTqCooyEf06bco+4CSqK6CVlwkBZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3614 (0xe1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Nov 22 17:45:23 2024 GMT Not After : Nov 29 17:45:23 2024 GMT Subject: CN=6740c334-cb2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:ef:a7:91:8b:3c:3b:4f:8e:a6:a2:ad:4d: ae:f0:74:8a:94:0c:04:e4:9c:c7:ea:5c:86:de:03: 94:9f:c0:c6:01:a0:db:32:f6:53:11:0d:c6:7b:f8: 27:52:9b:ec:25:3d:58:6a:ec:34:db:c1:57:fa:1c: d1:e0:8d:df:d4:a1:6a:23:66:f5:97:5e:8e:0e:f4: cd:cb:45:ca:03:6f:d3:03:62:90:46:a6:53:50:fe: 8e:80:08:6b:a2:79:8e:5e:db:db:ce:8c:3b:4d:a0: 3d:8e:71:75:78:99:3e:b2:d0:7b:8c:40:91:9c:7c: be:be:91:0e:8c:14:00:9d:e1:a3:47:e1:b6:95:e8: 43:b4:98:f6:70:0a:9a:60:85:58:01:8b:c8:45:ed: c4:bb:dd:39:df:3d:4d:b1:bd:62:84:37:75:a2:98: cf:88:ee:54:45:f2:d8:8f:a7:71:60:af:dd:3d:a7: b8:8e:1d:1d:5e:54:a2:ca:bb:ed:dc:62:2a:3c:f8: 4b:b5:3b:71:9e:81:81:85:df:a8:12:81:17:9e:4d: 86:56:76:d2:82:65:1b:4c:eb:11:bb:a9:8b:08:8e: 5f:21:66:92:45:3c:ad:6a:69:ab:a7:5d:da:ea:aa: 6e:4c:30:fa:06:e5:78:8b:8a:a8:00:83:1f:5b:54: 8b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:8D:B0:71:02:2D:F3:4F:80:93:66:F6:33:A6:07:9C:90:94:5B:E5 X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f1:b0:49:94:c7:10:5f:8f:4c:f5:d5:67:d3:25:43:18:20: 11:a6:a5:20:c8:a6:5c:b4:53:36:35:fb:3d:40:54:cc:d9:84: f1:5f:80:ad:c5:fa:c2:16:f5:a9:f7:5c:06:ce:b4:f5:34:64: d1:cc:3e:ed:f0:66:65:02:24:88:90:69:5d:5b:d4:2b:33:20: 62:39:eb:4f:02:cf:fe:46:69:5a:88:64:f7:96:5b:33:3f:60: 09:0d:a5:90:aa:ac:0d:5f:1b:f1:38:3f:2a:57:89:15:26:dd: 5e:13:34:a6:58:88:8b:80:e2:1b:5a:2d:01:a9:04:ec:30:9e: cf:b2:50:c5:60:87:72:e7:11:ec:8d:85:81:bf:e4:cc:10:be: be:c9:bb:9f:c3:55:71:fe:65:b4:6e:ea:cf:f4:57:60:85:8a: b3:64:62:90:41:c0:22:f9:f6:8d:42:00:06:73:29:c9:2e:20: 67:07:9a:55:d6:e9:c4:2d:2e:a5:11:1b:cc:41:5c:1d:22:da: 89:71:40:85:0f:8b:3e:e8:17:d4:0c:7d:d6:a1:cf:8b:ef:62: 0d:8d:a5:48:96:c4:d7:f9:45:81:3a:9e:ed:37:e3:79:f5:a5: c2:e4:75:25:e8:4f:8b:ca:59:5a:cc:88:86:20:0d:20:da:40: 15:db:fc:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjQxMTIyMTc0NTIzWhcNMjQxMTI5MTc0NTIzWjAYMRYwFAYD VQQDEw02NzQwYzMzNC1jYjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Q/vp5GLPDtPjqairU2u8HSKlAwE5JzH6lyG3gOUn8DGAaDbMvZTEQ3Ge/gn UpvsJT1Yauw028FX+hzR4I3f1KFqI2b1l16ODvTNy0XKA2/TA2KQRqZTUP6OgAhr onmOXtvbzow7TaA9jnF1eJk+stB7jECRnHy+vpEOjBQAneGjR+G2lehDtJj2cAqa YIVYAYvIRe3Eu9053z1Nsb1ihDd1opjPiO5URfLYj6dxYK/dPae4jh0dXlSiyrvt 3GIqPPhLtTtxnoGBhd+oEoEXnk2GVnbSgmUbTOsRu6mLCI5fIWaSRTytammrp13a 6qpuTDD6BuV4i4qoAIMfW1SL1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWNsHEC LfNPgJNm9jOmB5yQlFvlMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC8bBJlMcQX49M9dVn0yVDGCARpqUgyKZctFM2Nfs9QFTM2YTxX4Ct xfrCFvWp91wGzrT1NGTRzD7t8GZlAiSIkGldW9QrMyBiOetPAs/+RmlaiGT3llsz P2AJDaWQqqwNXxvxOD8qV4kVJt1eEzSmWIiLgOIbWi0BqQTsMJ7PslDFYIdy5xHs jYWBv+TMEL6+ybufw1Vx/mW0burP9FdghYqzZGKQQcAi+faNQgAGcynJLiBnB5pV 1unELS6lERvMQVwdItqJcUCFD4s+6BfUDH3Woc+L72INjaVIlsTX+UWBOp7tN+N5 9aXC5HUl6E+LyllazIiGIA0g2kAV2/yi -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:02 2024 by rpki-client on console-ams.rpki-client.org