$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft File: 1hg6YWfsLkpyRwcPHws5trnJU-E.mft (raw, json) Hash identifier: rg9eo9ysMDYCWzAOyOIv7v+ZXxnoWzm6N6Bc9t0MrBw= Subject key identifier: CB:17:C2:17:C8:25:FC:DE:11:E0:5B:21:00:C9:98:F1:D3:6F:A5:77 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0AB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft Manifest number: 0AAE Signing time: Fri 22 Nov 2024 19:12:59 +0000 Manifest this update: Fri 22 Nov 2024 19:12:59 +0000 Manifest next update: Fri 29 Nov 2024 19:12:59 +0000 Files and hashes: 1: 1hg6YWfsLkpyRwcPHws5trnJU-E.crl (hash: hXo3yC7Kyt9zpw43+QZRFI2MXFgLwfqzy6ZbuBeVeVc=) 2: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (hash: haC4mzBCka2C4XI2abEqyRFQojyis7K+gx1fbeV1iug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:12:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2740 (0xab4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: Nov 22 19:12:59 2024 GMT Not After : Nov 29 19:12:59 2024 GMT Subject: CN=6740d7bb-e2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:17:af:0f:a6:f7:46:f0:4c:f7:cc:4f:cd:34: 02:7e:38:3b:3b:db:89:36:ec:53:41:a2:ef:cc:11: 53:81:33:86:6a:22:58:40:48:2c:f2:1a:ff:0f:a5: cb:f7:8d:2c:54:70:db:54:fb:71:4d:28:cb:95:8c: 56:52:73:58:86:82:2c:56:08:79:88:b5:c4:d7:6e: 14:d2:78:2f:fb:53:0d:e6:15:7f:f4:1a:52:0c:45: 6a:4b:e8:b9:97:3f:27:2c:89:29:c1:b7:03:b1:ec: 24:66:d9:e8:52:3a:d6:3f:35:ec:c9:2a:b6:a1:61: 1a:c2:16:dc:bd:a6:9b:7f:02:d6:c1:86:5a:9f:97: 03:ab:be:80:91:a4:1c:9c:da:86:c6:52:24:61:a7: 83:19:16:1b:d0:7f:e3:ce:d4:43:de:ad:f5:e1:4e: db:e4:40:ef:aa:c7:81:5a:00:19:7d:51:6f:5e:6f: d1:18:0a:e4:e5:a6:97:98:19:54:ce:ee:cd:5d:72: 81:09:4b:11:81:6c:36:fd:59:4a:e0:31:27:a7:0f: 65:f0:66:f1:b8:81:8c:ab:65:00:2e:be:8a:54:de: ff:ed:db:30:ac:0a:34:f7:5e:d7:b3:12:5e:0b:0a: 0c:8d:95:64:76:90:25:be:ed:c2:07:ff:48:f3:10: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:17:C2:17:C8:25:FC:DE:11:E0:5B:21:00:C9:98:F1:D3:6F:A5:77 X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:9d:2d:3f:5a:9a:f8:fc:fa:9f:5b:47:b4:d7:6b:06:63:d5: d4:6c:2c:36:e1:0e:6d:5d:cd:5c:d0:33:ad:30:26:ff:37:cd: 04:08:37:c6:6b:05:0a:7d:63:d5:42:e2:77:3e:b4:8b:79:0e: ca:2e:29:e0:ed:ed:03:b3:fd:d6:4d:3a:f5:50:26:9d:f5:c1: 83:b6:42:8f:9c:bb:c1:4e:d9:a0:0f:ca:eb:af:72:9b:4e:73: 85:bd:0d:d8:2d:ae:97:b5:44:1d:ac:e7:3e:84:bf:9d:1c:2d: 24:54:4e:e1:c6:47:df:83:80:04:0a:b0:d1:cc:c7:b4:e2:ef: cc:d8:ea:5a:86:4b:f4:b2:ad:4f:8c:48:24:ad:c4:e6:1b:68: f7:90:0e:ea:74:e1:f2:9c:44:04:22:8d:6b:e4:7e:b5:64:ad: 79:da:76:70:89:50:66:a9:ff:ec:73:e4:a6:29:4c:06:74:d1: 12:8a:15:a3:cb:8f:26:b0:af:ab:bf:a5:8c:cb:9e:21:f4:32: 96:a2:fc:f2:82:73:4a:97:92:bb:48:ca:33:db:d4:d1:21:9d: 52:15:bc:b2:3e:af:fc:d1:92:50:dc:98:42:5b:a1:15:ad:03: bf:39:f9:5a:2f:c7:b4:e7:d9:14:db:97:c3:3b:cd:05:e2:56: 2e:6f:a8:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjQxMTIyMTkxMjU5WhcNMjQxMTI5MTkxMjU5WjAYMRYwFAYD VQQDEw02NzQwZDdiYi1lMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxevD6b3RvBM98xPzTQCfjg7O9uJNuxTQaLvzBFTgTOGaiJYQEgs8hr/D6XL 940sVHDbVPtxTSjLlYxWUnNYhoIsVgh5iLXE124U0ngv+1MN5hV/9BpSDEVqS+i5 lz8nLIkpwbcDsewkZtnoUjrWPzXsySq2oWEawhbcvaabfwLWwYZan5cDq76AkaQc nNqGxlIkYaeDGRYb0H/jztRD3q314U7b5EDvqseBWgAZfVFvXm/RGArk5aaXmBlU zu7NXXKBCUsRgWw2/VlK4DEnpw9l8GbxuIGMq2UALr6KVN7/7dswrAo0917XsxJe CwoMjZVkdpAlvu3CB/9I8xDE7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsXwhfI JfzeEeBbIQDJmPHTb6V3MB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcwNS8zM0ZBRTZGNDQwQ0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xr cHlSd2NQSHdzNXRybkpVLUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJnS0/Wpr4/PqfW0e012sGY9XUbCw24Q5tXc1c0DOtMCb/N80ECDfG awUKfWPVQuJ3PrSLeQ7KLing7e0Ds/3WTTr1UCad9cGDtkKPnLvBTtmgD8rrr3Kb TnOFvQ3YLa6XtUQdrOc+hL+dHC0kVE7hxkffg4AECrDRzMe04u/M2Opahkv0sq1P jEgkrcTmG2j3kA7qdOHynEQEIo1r5H61ZK152nZwiVBmqf/sc+SmKUwGdNESihWj y48msK+rv6WMy54h9DKWovzygnNKl5K7SMoz29TRIZ1SFbyyPq/80ZJQ3JhCW6EV rQO/OflaL8e059kU25fDO80F4lYub6j+ -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org