$ rpki-client -vvf rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft File: B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft (raw, json) Hash identifier: FIFsbm6vRNhU3dGxVb5XD3uDS5gIU3p8qOdUFGWGXa8= Subject key identifier: 04:7B:6E:03:E0:D5:B7:C3:19:C4:28:4C:F3:4D:E8:0D:6D:2D:A2:29 Authority key identifier: 07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C Certificate issuer: /CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Certificate serial: 0862 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft Manifest number: 084C Signing time: Sun 24 Nov 2024 20:17:20 +0000 Manifest this update: Sun 24 Nov 2024 20:17:20 +0000 Manifest next update: Sun 01 Dec 2024 20:17:20 +0000 Files and hashes: 1: B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl (hash: gQT/9lMp4FCKwKF6wD0PFfnAL5wpkVspCc7/2Qffr3Q=) 2: 50101290F77C11EB8B39F74AC4F9AE02.roa (hash: a97UjHpzgH1WXLD7uS8xTS12ZHDmwRjjKwTl4rQbOTo=) 3: 16079DB83C1D11EBA532C076C4F9AE02.roa (hash: 2TPeWUxi8y2dJKsuFTVthNuMYrZypRCJy1Y/CFzYdHQ=) 4: 4C859B7AC6DB11ECB5D8BA1BC4F9AE02.roa (hash: oosYzZc3geIblsprOV+RKC/dJdsdQcIiecyN9xd1jqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2146 (0x862) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Validity Not Before: Nov 24 20:17:20 2024 GMT Not After : Dec 1 20:17:20 2024 GMT Subject: CN=674389d0-1b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a1:20:2e:e2:28:ef:cb:3e:e0:42:76:dd:00: cd:bf:8a:d5:97:fc:10:03:c8:22:85:1b:ac:58:cb: 95:a4:43:ad:dd:8e:ee:95:ae:22:84:62:a3:b4:e8: 93:d2:1a:1f:8e:7d:35:b5:81:ba:bb:36:56:b6:e1: 0c:81:61:0c:1e:08:7e:f8:5f:20:fb:1b:24:96:62: 9a:55:b9:89:0c:e3:dd:05:d3:26:ed:40:bd:1f:ba: cf:e4:dc:3f:ee:55:3b:cf:78:6a:5e:a8:40:e5:07: 4a:b3:49:2e:6d:0d:9f:b8:62:c5:fd:cd:50:02:21: b5:c4:54:10:1a:2f:c9:e9:54:e8:db:3e:bb:9e:49: 5e:bb:f6:6e:44:6c:84:64:d3:bb:1d:f2:54:00:6e: 6c:91:4f:d3:80:00:85:f7:21:89:b3:cd:93:e2:77: d2:c1:51:19:bf:3e:bb:60:7b:79:18:3a:46:44:e2: 72:9a:25:1d:24:38:0b:cf:a3:c8:11:73:53:7b:f6: ca:0f:90:49:25:8a:53:2e:4a:81:d7:e7:eb:a4:f6: 70:ed:ad:1d:04:59:97:60:ba:a3:95:62:6e:f0:78: 69:36:67:e5:c2:03:af:f6:94:26:87:08:5b:bf:66: a3:4e:fa:36:58:5e:a8:38:f4:da:52:aa:b7:d3:7a: ee:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7B:6E:03:E0:D5:B7:C3:19:C4:28:4C:F3:4D:E8:0D:6D:2D:A2:29 X509v3 Authority Key Identifier: keyid:07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:7d:8f:e0:2e:18:06:e2:9a:d9:45:7f:49:42:5c:55:ac:7c: f4:d4:eb:5f:14:b8:54:f5:d3:cb:23:01:17:54:cb:b9:76:b2: b0:9a:5f:5d:6b:16:cf:25:25:72:83:b4:47:b0:72:66:4a:ae: bc:0c:21:62:bf:c8:7c:af:ac:11:a1:cc:dc:e6:ea:65:d4:1c: 85:d9:a0:13:da:22:e7:4e:f7:d3:e4:65:42:3e:37:dc:4c:a8: 1f:e3:2c:21:7a:0a:45:04:67:63:cf:48:ae:a2:20:19:c5:e6: f7:70:59:74:92:82:72:de:6a:1b:c4:8b:b0:37:28:13:79:72: de:74:42:26:91:f6:46:aa:c2:0f:52:2f:b4:73:3b:46:fa:7d: 9f:25:17:fb:88:d5:a6:3a:b1:1d:21:b8:f6:a2:e6:7a:d8:4d: f3:4c:1e:eb:96:92:3d:ea:7e:3f:05:c7:9f:e1:53:49:fa:18: 8f:a0:54:55:34:b4:92:8f:fa:cd:a8:71:68:c7:02:5a:16:1c: 84:08:2e:10:11:23:13:2d:25:ca:7c:d0:fa:c5:61:fd:5e:fe: 19:0a:dc:73:41:d3:3e:0f:32:48:da:37:1f:27:95:18:67:de: 25:52:2e:d6:5d:d0:82:45:78:78:26:e3:7a:04:3d:cb:66:78: 92:99:b2:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZDMzkxMTAvBgNVBAUTKDA3RTA1MUI0MUVEODJFM0Y1M0JGNTlBQTg0REQ5QUNB MjBDRkI1NEMwHhcNMjQxMTI0MjAxNzIwWhcNMjQxMjAxMjAxNzIwWjAYMRYwFAYD VQQDEw02NzQzODlkMC0xYjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqEgLuIo78s+4EJ23QDNv4rVl/wQA8gihRusWMuVpEOt3Y7ula4ihGKjtOiT 0hofjn01tYG6uzZWtuEMgWEMHgh++F8g+xsklmKaVbmJDOPdBdMm7UC9H7rP5Nw/ 7lU7z3hqXqhA5QdKs0kubQ2fuGLF/c1QAiG1xFQQGi/J6VTo2z67nkleu/ZuRGyE ZNO7HfJUAG5skU/TgACF9yGJs82T4nfSwVEZvz67YHt5GDpGROJymiUdJDgLz6PI EXNTe/bKD5BJJYpTLkqB1+frpPZw7a0dBFmXYLqjlWJu8HhpNmflwgOv9pQmhwhb v2ajTvo2WF6oOPTaUqq303ruvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAR7bgPg 1bfDGcQoTPNN6A1tLaIpMB8GA1UdIwQYMBaAFAfgUbQe2C4/U79ZqoTdmsogz7VM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkMzOS8yN0VFQ0ZEMEJC OTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxqOVR2MW1xaE4yYXlpRFB0 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItQlJ0QjdZTGo5VHYxbXFoTjJheWlEUHRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkMzOS8yN0VFQ0ZEMEJCOTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxq OVR2MW1xaE4yYXlpRFB0VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKfY/gLhgG4prZRX9JQlxVrHz01OtfFLhU9dPLIwEXVMu5drKwml9d axbPJSVyg7RHsHJmSq68DCFiv8h8r6wRoczc5upl1ByF2aAT2iLnTvfT5GVCPjfc TKgf4ywhegpFBGdjz0iuoiAZxeb3cFl0koJy3mobxIuwNygTeXLedEImkfZGqsIP Ui+0cztG+n2fJRf7iNWmOrEdIbj2ouZ62E3zTB7rlpI96n4/Bcef4VNJ+hiPoFRV NLSSj/rNqHFoxwJaFhyECC4QESMTLSXKfND6xWH9Xv4ZCtxzQdM+DzJI2jcfJ5UY Z94lUi7WXdCCRXh4JuN6BD3LZniSmbLy -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:03 2024 by rpki-client on console-ams.rpki-client.org