$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft File: iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json) Hash identifier: XUGaELdF3m7C2IJtWfPi97QpKtXl7s1CNlzLJsUkDKM= Subject key identifier: 69:0F:A5:E3:21:75:71:CA:49:3E:DE:AA:56:74:AD:06:C6:37:4B:F9 Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft Manifest number: 2F Signing time: Thu 21 Nov 2024 05:49:37 +0000 Manifest this update: Thu 21 Nov 2024 05:49:37 +0000 Manifest next update: Thu 28 Nov 2024 05:49:37 +0000 Files and hashes: 1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: D/IbQW5I1hH16Oqx9CJiY78WGzfF08Meo3IHK/TPPJM=) 2: 10435EE8740511EF93658977C4F9AE02.roa (hash: xmMmx42YHDQ1ahK54oeYt43Mx+x7gEXdRkvJnhnT9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Nov 21 05:49:37 2024 GMT Not After : Nov 28 05:49:37 2024 GMT Subject: CN=673ec9f1-b406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d5:b1:b7:31:99:4a:49:75:c1:37:8d:f1:0a: 31:7a:96:89:fc:52:14:74:1c:7f:20:80:08:de:74: 74:49:fc:9a:0d:15:4d:48:00:eb:78:d1:bb:34:0e: fe:92:77:d7:ae:92:54:94:aa:a2:89:f0:86:4f:52: 02:fc:76:3b:06:c0:34:9b:ea:e1:bb:47:95:07:5a: de:21:cc:4d:82:62:a2:bd:f1:3b:e6:24:c8:6c:95: 18:34:eb:64:49:0b:b6:dd:56:db:44:12:04:f7:5f: f9:c2:92:48:ca:2b:d1:0f:78:43:2f:6b:0f:40:86: 7b:c7:fd:12:65:a0:41:a5:5b:2f:7a:90:88:7e:4b: 59:38:9c:43:72:0c:0e:14:26:3c:08:88:1d:28:e3: 8f:37:9a:27:c7:9f:23:11:89:94:59:3e:48:16:f4: 8f:3e:14:5e:3c:67:5d:82:b9:79:58:5c:51:91:f0: 7f:62:b9:9e:dc:f7:11:3a:ce:25:1d:f8:1a:f2:c4: e8:5c:06:b5:f1:39:35:15:1c:24:9d:f3:cd:e2:59: 6e:f2:05:7e:75:dc:77:8b:b3:b1:2a:36:8e:08:aa: c9:30:89:3b:28:a7:c8:a2:62:87:b8:cf:15:10:9d: 54:c3:0b:97:b6:7b:10:ec:a7:08:fa:4c:3f:b1:95: 2d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0F:A5:E3:21:75:71:CA:49:3E:DE:AA:56:74:AD:06:C6:37:4B:F9 X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:76:58:5c:be:53:73:2c:7c:6f:fe:ab:19:ad:01:89:a0:45: 22:52:30:86:ec:3c:b3:28:5c:9d:7d:85:6f:7b:3b:03:da:7d: 93:36:48:cc:b4:4d:93:bb:45:49:df:f9:3f:5b:6e:f7:90:3b: 62:db:da:02:93:75:9c:16:37:da:70:6b:1b:87:9b:20:d1:1a: 54:52:60:29:33:20:24:d0:83:34:e6:04:65:a6:87:10:e2:df: ee:af:78:8b:28:9f:c4:9c:0a:b7:f0:d1:fc:c3:ee:f1:aa:77: 26:6b:3c:82:a3:2f:62:38:e4:30:61:db:f8:e2:7c:21:5c:95: 61:fc:5a:31:e1:a5:61:a9:55:32:2d:55:f6:c4:24:05:4f:49: b3:de:62:ef:c6:61:c9:19:00:f7:f5:db:24:f8:68:9e:65:b1: 48:83:b4:c4:c9:b2:0a:aa:bb:3e:23:71:a1:a8:5b:cd:ce:26: 56:b4:fa:e6:81:1a:4b:86:d4:ae:a0:a9:3a:23:36:4f:01:95: cc:2c:61:07:fe:ed:3e:b2:04:4d:47:4e:9f:9f:20:9d:c3:d2: f9:40:96:8a:8b:c0:9a:e6:b2:f3:51:71:d3:67:87:1a:03:8d: 8a:77:05:ac:5f:ac:2a:ed:cd:dd:75:99:7d:14:cc:15:68:0e: e9:b6:b2:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTgwNjExMC8GA1UEBRMoODg3RTExMDdBODNGMTE3NEZGN0UzRTc4MDg4OERCNTcy M0I3OTI1QjAeFw0yNDExMjEwNTQ5MzdaFw0yNDExMjgwNTQ5MzdaMBgxFjAUBgNV BAMTDTY3M2VjOWYxLWI0MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDb1bG3MZlKSXXBN43xCjF6lon8UhR0HH8ggAjedHRJ/JoNFU1IAOt40bs0Dv6S d9euklSUqqKJ8IZPUgL8djsGwDSb6uG7R5UHWt4hzE2CYqK98TvmJMhslRg062RJ C7bdVttEEgT3X/nCkkjKK9EPeEMvaw9AhnvH/RJloEGlWy96kIh+S1k4nENyDA4U JjwIiB0o4483mifHnyMRiZRZPkgW9I8+FF48Z12CuXlYXFGR8H9iuZ7c9xE6ziUd +BryxOhcBrXxOTUVHCSd883iWW7yBX513HeLs7EqNo4IqskwiTsop8iiYoe4zxUQ nVTDC5e2exDspwj6TD+xlS3lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaQ+l4yF1 ccpJPt6qVnStBsY3S/kwHwYDVR0jBBgwFoAUiH4RB6g/EXT/fj54CIjbVyO3klsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1ODA2L0M3MzlCQUVFNkU5 MTExRUZBNjJCNEMzRkM0RjlBRTAyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2ts cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaUg0UkI2Z19FWFRfZmo1NENJamJWeU8za2xzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 ODA2L0M3MzlCQUVFNkU5MTExRUZBNjJCNEMzRkM0RjlBRTAyL2lINFJCNmdfRVhU X2ZqNTRDSWpiVnlPM2tscy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH12WFy+U3MsfG/+qxmtAYmgRSJSMIbsPLMoXJ19hW97OwPafZM2SMy0 TZO7RUnf+T9bbveQO2Lb2gKTdZwWN9pwaxuHmyDRGlRSYCkzICTQgzTmBGWmhxDi 3+6veIson8ScCrfw0fzD7vGqdyZrPIKjL2I45DBh2/jifCFclWH8WjHhpWGpVTIt VfbEJAVPSbPeYu/GYckZAPf12yT4aJ5lsUiDtMTJsgqquz4jcaGoW83OJla0+uaB GkuG1K6gqTojNk8BlcwsYQf+7T6yBE1HTp+fIJ3D0vlAloqLwJrmsvNRcdNnhxoD jYp3BaxfrCrtzd11mX0UzBVoDum2sg8= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:04 2024 by rpki-client on console-ams.rpki-client.org