$ rpki-client -vvf rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft File: 1gA1BzfqQktAGySBBT0rwpFsutE.mft (raw, json) Hash identifier: QdyeKev1NU9bI3pqBNBXuEvt6iDdQXjBuuC3eDqPUk0= Subject key identifier: 5A:92:80:84:E4:DB:EC:1A:35:34:BC:94:4C:A1:AF:48:AA:C4:71:10 Authority key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 Certificate issuer: /CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft Manifest number: 32 Signing time: Sat 23 Nov 2024 05:35:27 +0000 Manifest this update: Sat 23 Nov 2024 05:35:26 +0000 Manifest next update: Sat 30 Nov 2024 05:35:26 +0000 Files and hashes: 1: 1gA1BzfqQktAGySBBT0rwpFsutE.crl (hash: UbBZw4oBO9ojSgqrnWrbCPxn2AW7cBqh5pD0vtfWpAo=) 2: FD557922606A11EF8B9F6820C4F9AE02.roa (hash: zTIt7VVx9LOh+fElZbmBDVws/qIJ7/N6iFJRXVOkuO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Validity Not Before: Nov 23 05:35:26 2024 GMT Not After : Nov 30 05:35:26 2024 GMT Subject: CN=6741699f-9c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:be:9e:56:b0:b1:a0:c9:5f:3c:21:44:c2:76: e6:4b:b0:3f:b8:64:ed:c3:c6:9f:4c:a9:7e:42:ea: f1:12:0e:24:6e:9d:cf:24:57:2a:bd:09:95:a5:5c: 62:3b:e5:a8:12:68:bd:93:67:42:e2:37:c1:70:cf: c4:60:2b:20:e6:f8:f2:6b:f7:fe:26:73:24:59:6e: 02:c7:93:ef:90:03:a1:0e:1e:08:e2:45:eb:6c:cc: c4:f4:65:c2:62:bd:22:69:57:df:a2:e0:0e:bf:08: 20:7c:75:e9:f8:56:d6:cd:f3:c8:36:37:4a:06:0e: d2:03:ee:5b:78:24:43:70:68:1c:40:d4:f1:11:82: 4e:d7:1f:bc:19:58:9e:da:93:7d:53:0d:c2:41:a4: ee:32:78:b5:b7:f5:34:d2:d0:9e:ca:85:61:09:5b: 48:fe:d1:8c:43:76:f6:02:9e:31:7d:f7:46:a1:7a: b8:37:d2:bb:eb:46:f6:4b:7c:f4:04:d2:7c:3f:8f: 9b:37:d3:e7:f8:90:90:87:fb:f7:43:6a:95:22:90: c0:16:67:d5:46:78:1e:66:11:f3:f0:72:41:fc:e8: 7a:a2:53:8e:87:fb:d0:11:a2:85:fc:37:c6:88:de: 0f:01:58:62:ef:6b:b7:01:d0:89:b4:5e:0a:02:d8: ea:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:92:80:84:E4:DB:EC:1A:35:34:BC:94:4C:A1:AF:48:AA:C4:71:10 X509v3 Authority Key Identifier: keyid:D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:cf:a2:f2:41:81:ff:96:8c:90:d4:bc:34:ff:50:d3:2c:bf: 0b:65:47:b9:21:5a:6a:0e:79:37:61:3c:e5:32:41:0d:e7:af: 96:52:0c:61:33:f5:24:d0:f9:74:e5:aa:28:cd:d6:a1:d7:3a: b1:8b:22:2c:ab:0e:0a:ed:68:4e:56:f1:83:89:c5:b7:69:a7: 75:5f:1d:59:dd:4c:1e:b2:fe:e0:e1:ec:6c:f1:e1:86:75:87: 78:68:43:5b:98:45:a0:73:ad:1a:6e:55:a8:90:80:a4:4e:8c: 0d:6b:3a:14:b9:d6:5b:2e:6f:34:38:3c:c1:9f:82:e7:86:ee: 6e:ef:aa:69:77:1d:2a:33:a2:ac:df:97:8c:de:a0:66:db:5e: 38:41:3f:12:c5:7e:13:94:9d:57:cf:cc:f9:40:a7:5f:41:d6: 12:83:19:b4:3e:e3:b6:0c:56:a2:f2:d9:2d:f6:4f:b4:ea:87: 2e:88:31:72:76:e9:e4:b4:57:ae:f2:46:dc:e4:1a:b4:71:34: 53:13:c3:ba:81:98:8d:07:0b:11:d3:fc:83:24:2c:80:41:c8: dd:4d:2f:d3:e6:95:ee:1c:0b:a0:28:11:13:d1:c1:83:77:05: 62:d5:8a:1c:8a:0c:9d:c3:2c:1d:3f:90:50:8f:f7:c3:8f:71: 15:66:d3:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDk3MzExMC8GA1UEBRMoRDYwMDM1MDczN0VBNDI0QjQwMUIyNDgxMDUzRDJCQzI5 MTZDQkFEMTAeFw0yNDExMjMwNTM1MjZaFw0yNDExMzAwNTM1MjZaMBgxFjAUBgNV BAMTDTY3NDE2OTlmLTljNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1vp5WsLGgyV88IUTCduZLsD+4ZO3Dxp9MqX5C6vESDiRunc8kVyq9CZWlXGI7 5agSaL2TZ0LiN8Fwz8RgKyDm+PJr9/4mcyRZbgLHk++QA6EOHgjiRetszMT0ZcJi vSJpV9+i4A6/CCB8den4VtbN88g2N0oGDtID7lt4JENwaBxA1PERgk7XH7wZWJ7a k31TDcJBpO4yeLW39TTS0J7KhWEJW0j+0YxDdvYCnjF990aherg30rvrRvZLfPQE 0nw/j5s30+f4kJCH+/dDapUikMAWZ9VGeB5mEfPwckH86HqiU46H+9ARooX8N8aI 3g8BWGLva7cB0Im0XgoC2OrhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWpKAhOTb 7Bo1NLyUTKGvSKrEcRAwHwYDVR0jBBgwFoAU1gA1BzfqQktAGySBBT0rwpFsutEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0OTczL0E2NUJDNjI2NjA2 QTExRUY4OThFREIxRkM0RjlBRTAyLzFnQTFCemZxUWt0QUd5U0JCVDByd3BGc3V0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWdBMUJ6ZnFRa3RBR3lTQkJUMHJ3cEZzdXRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0 OTczL0E2NUJDNjI2NjA2QTExRUY4OThFREIxRkM0RjlBRTAyLzFnQTFCemZxUWt0 QUd5U0JCVDByd3BGc3V0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJTPovJBgf+WjJDUvDT/UNMsvwtlR7khWmoOeTdhPOUyQQ3nr5ZSDGEz 9STQ+XTlqijN1qHXOrGLIiyrDgrtaE5W8YOJxbdpp3VfHVndTB6y/uDh7Gzx4YZ1 h3hoQ1uYRaBzrRpuVaiQgKROjA1rOhS51lsubzQ4PMGfgueG7m7vqml3HSozoqzf l4zeoGbbXjhBPxLFfhOUnVfPzPlAp19B1hKDGbQ+47YMVqLy2S32T7Tqhy6IMXJ2 6eS0V67yRtzkGrRxNFMTw7qBmI0HCxHT/IMkLIBByN1NL9Pmle4cC6AoERPRwYN3 BWLVihyKDJ3DLB0/kFCP98OPcRVm01Q= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org