$ rpki-client -vvf rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft File: II1GFNCXXVXjphjK5xdsVlfLvVc.mft (raw, json) Hash identifier: XT0IkGu/IuEkF9hODH2Fg0JQU5z3wPJyVM0M5XZqq9Q= Subject key identifier: C7:34:B6:CB:31:0C:15:37:C6:0E:7E:5E:BB:89:40:FB:CC:97:1B:A4 Authority key identifier: 20:8D:46:14:D0:97:5D:55:E3:A6:18:CA:E7:17:6C:56:57:CB:BD:57 Certificate issuer: /CN=A9164BA0/serialNumber=208D4614D0975D55E3A618CAE7176C5657CBBD57 Certificate serial: 1242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/II1GFNCXXVXjphjK5xdsVlfLvVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft Manifest number: 1237 Signing time: Fri 22 Nov 2024 17:08:04 +0000 Manifest this update: Fri 22 Nov 2024 17:08:03 +0000 Manifest next update: Fri 29 Nov 2024 17:08:03 +0000 Files and hashes: 1: II1GFNCXXVXjphjK5xdsVlfLvVc.crl (hash: hz2feJl4UVUOaVmvi3FbDxAEi54+4RzM+UYkbh8KtaM=) 2: C99FCC04C98911EEB202774EC4F9AE02.roa (hash: CN513gptpgWOAGrwedoL+NmnhdtoT8tpUaUHxWzHk8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.crl rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/II1GFNCXXVXjphjK5xdsVlfLvVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4674 (0x1242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164BA0/serialNumber=208D4614D0975D55E3A618CAE7176C5657CBBD57 Validity Not Before: Nov 22 17:08:03 2024 GMT Not After : Nov 29 17:08:03 2024 GMT Subject: CN=6740ba74-5b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4d:68:94:15:73:51:3c:b9:42:f9:79:51:50: bc:f1:16:c7:c7:24:80:54:5d:14:9f:5c:b6:5b:4a: 62:22:eb:fa:6d:b2:d5:ea:53:1b:d9:e7:4a:c8:a1: f6:96:aa:82:8a:a8:82:35:98:be:72:9c:7c:7c:6c: 00:d7:29:e8:8f:80:90:c9:8f:e7:f8:03:40:31:cb: 64:b3:85:db:9e:f1:3d:b5:0c:18:2c:94:c2:c3:b4: 7b:1b:7b:2b:44:93:4b:ff:16:4c:7b:71:23:ea:ef: 5d:1e:80:e7:0d:1e:c8:1a:11:de:98:33:7e:ad:bf: 1e:7f:67:bc:55:6d:b7:f1:04:90:9a:2a:34:c2:64: b0:c9:ab:98:cc:77:cb:8b:dd:ec:31:61:9d:a5:28: 02:f8:95:42:67:db:d5:6b:3d:97:71:da:ae:10:60: 37:67:fa:4b:70:23:60:d4:17:17:47:25:e4:95:2a: 3f:68:ba:7c:3b:59:60:e1:56:cc:78:82:33:50:0f: 95:0f:46:35:30:37:07:05:69:81:fc:83:65:63:9c: e7:f2:b1:bb:8c:ed:e3:14:41:da:5a:4d:1b:cb:29: bd:f9:3f:7d:a0:43:46:c8:b5:33:0f:e7:68:a4:4c: d2:0e:f1:a1:d0:c9:3b:1c:13:5a:0e:c0:c3:c4:28: 11:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:34:B6:CB:31:0C:15:37:C6:0E:7E:5E:BB:89:40:FB:CC:97:1B:A4 X509v3 Authority Key Identifier: keyid:20:8D:46:14:D0:97:5D:55:E3:A6:18:CA:E7:17:6C:56:57:CB:BD:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/II1GFNCXXVXjphjK5xdsVlfLvVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164BA0/DBA4F336C79E11E8A3621C4BC4F9AE02/II1GFNCXXVXjphjK5xdsVlfLvVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:1b:68:57:38:5c:70:76:16:58:22:73:72:5c:66:9e:b7:97: 72:20:5b:8e:cf:38:f7:1b:b3:e7:0d:07:13:4a:89:e2:27:e6: fa:66:48:df:61:96:f4:32:d1:72:3d:cd:ec:b8:55:e6:0c:f8: ab:21:2d:de:ec:de:60:fe:41:8c:92:72:f2:d2:36:91:b8:16: 50:90:06:75:50:93:f5:cd:a7:4b:53:6f:ec:17:7e:c2:5b:63: 22:93:ba:5a:a8:16:16:68:ba:e5:dc:a5:c8:dd:d2:b3:2d:3d: dc:75:22:81:16:55:f4:c1:36:00:fa:f9:9b:38:4f:86:31:e8: 7b:57:b0:20:32:4e:47:6b:5e:52:d9:87:38:6c:0b:fc:78:d9: f8:20:b1:47:4f:08:2d:a9:c5:ff:ad:ff:cf:02:6d:95:4c:cc: 7a:7e:9a:36:c0:23:36:ac:c4:81:6e:c6:35:bc:6a:68:f3:f5: 2b:ea:f3:fa:b2:71:28:fa:3c:6d:20:2b:91:e0:d4:97:25:9b: b3:6e:a2:94:65:04:94:24:b9:7c:9b:ab:c9:fe:72:76:51:76: 99:38:95:58:30:53:7a:8a:1e:9e:29:11:1a:4f:ad:eb:56:b3: fc:b8:d7:90:7b:32:68:45:ff:7d:47:1c:8d:eb:87:13:9e:8c: 98:9a:52:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCQTAxMTAvBgNVBAUTKDIwOEQ0NjE0RDA5NzVENTVFM0E2MThDQUU3MTc2QzU2 NTdDQkJENTcwHhcNMjQxMTIyMTcwODAzWhcNMjQxMTI5MTcwODAzWjAYMRYwFAYD VQQDEw02NzQwYmE3NC01YjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz01olBVzUTy5Qvl5UVC88RbHxySAVF0Un1y2W0piIuv6bbLV6lMb2edKyKH2 lqqCiqiCNZi+cpx8fGwA1ynoj4CQyY/n+ANAMctks4XbnvE9tQwYLJTCw7R7G3sr RJNL/xZMe3Ej6u9dHoDnDR7IGhHemDN+rb8ef2e8VW238QSQmio0wmSwyauYzHfL i93sMWGdpSgC+JVCZ9vVaz2XcdquEGA3Z/pLcCNg1BcXRyXklSo/aLp8O1lg4VbM eIIzUA+VD0Y1MDcHBWmB/INlY5zn8rG7jO3jFEHaWk0byym9+T99oENGyLUzD+do pEzSDvGh0Mk7HBNaDsDDxCgRLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMc0tssx DBU3xg5+XruJQPvMlxukMB8GA1UdIwQYMBaAFCCNRhTQl11V46YYyucXbFZXy71X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEJBMC9EQkE0RjMzNkM3 OUUxMUU4QTM2MjFDNEJDNEY5QUUwMi9JSTFHRk5DWFhWWGpwaGpLNXhkc1ZsZkx2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lJMUdGTkNYWFZYanBoaks1eGRzVmxmTHZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEJBMC9EQkE0RjMzNkM3OUUxMUU4QTM2MjFDNEJDNEY5QUUwMi9JSTFHRk5DWFhW WGpwaGpLNXhkc1ZsZkx2VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGG2hXOFxwdhZYInNyXGaet5dyIFuOzzj3G7PnDQcTSoniJ+b6Zkjf YZb0MtFyPc3suFXmDPirIS3e7N5g/kGMknLy0jaRuBZQkAZ1UJP1zadLU2/sF37C W2Mik7paqBYWaLrl3KXI3dKzLT3cdSKBFlX0wTYA+vmbOE+GMeh7V7AgMk5Ha15S 2Yc4bAv8eNn4ILFHTwgtqcX/rf/PAm2VTMx6fpo2wCM2rMSBbsY1vGpo8/Ur6vP6 snEo+jxtICuR4NSXJZuzbqKUZQSUJLl8m6vJ/nJ2UXaZOJVYMFN6ih6eKREaT63r VrP8uNeQezJoRf99RxyN64cTnoyYmlK/ -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org