$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: ve28twXNNQYd6YFK8C/lBLrWH8iRHsiW1puMs7p/Vog= Subject key identifier: A5:97:64:4D:68:59:54:DF:5B:17:E4:A6:D7:61:59:AB:32:DA:15:FB Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0BC5 Signing time: Fri 22 Nov 2024 18:37:35 +0000 Manifest this update: Fri 22 Nov 2024 18:37:34 +0000 Manifest next update: Fri 29 Nov 2024 18:37:34 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: JvzPNYNXrtPBgHwAV+hVVJeOxi+hw9CH3ldxjS06D9w=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: mkLhDheVvSZEQXdMpQZm/3lb3eLuVbKFGeKtwuwQQaM=) 3: 8045C26A3B3E11EC94B9CE0BC4F9AE02.roa (hash: I/1YYRZufm+Qc/8Hh8/4oZUCrPLEFvhM/LrJmE0hiuA=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: 1RZU0spXmvxzBxOJllCgbla9KxLkGAPl5bLUojUqNcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Nov 22 18:37:34 2024 GMT Not After : Nov 29 18:37:34 2024 GMT Subject: CN=6740cf6e-3a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:93:99:f4:8d:21:13:d9:17:c7:d3:c8:3f:47: 49:81:ed:9b:29:1b:29:95:df:67:31:56:1b:6e:e8: f0:c7:be:37:f3:ae:4f:9f:f9:f7:05:12:c4:c6:6b: c3:17:f7:d6:f7:cd:f4:33:b7:7e:36:b0:14:b1:88: d3:66:5e:fd:7c:44:1f:5f:15:2a:8f:a7:b6:c0:49: a7:09:04:9e:6d:48:72:fc:7c:7a:f5:42:8e:67:81: 20:98:9b:e0:78:18:65:e1:51:09:f9:2a:e0:2c:d7: 68:c8:a6:07:58:52:32:1c:cb:a9:21:be:c8:27:af: c2:c8:d4:e7:e7:9d:bf:ed:5f:8c:03:cf:59:c5:ad: 6a:04:1b:6d:59:4d:5a:c1:84:58:df:cf:cf:57:5d: b5:92:21:4d:a5:e1:01:c3:17:87:51:6b:06:52:8c: 8c:0e:82:22:48:0a:45:6f:53:83:fe:85:09:48:3f: ae:c3:8a:1d:c2:a1:af:08:66:5f:7d:c9:d8:f9:d3: a6:0a:4c:d2:32:a4:dd:72:38:c2:98:48:08:66:da: 5a:5d:97:a4:81:27:a3:40:79:8a:64:dc:2d:87:45: 81:21:61:ea:6c:62:1c:41:96:e7:c4:48:82:b9:c2: 8b:46:5f:6f:c9:c2:97:a5:02:a1:b8:3d:d8:d1:f1: 47:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:97:64:4D:68:59:54:DF:5B:17:E4:A6:D7:61:59:AB:32:DA:15:FB X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:47:c6:50:9b:5b:44:df:b7:0c:c3:2e:aa:58:65:ac:3e:d1: c3:11:46:21:a9:fe:d3:3f:66:38:81:33:39:ac:99:a5:e3:1b: 8f:66:7d:ef:28:4d:23:1f:86:eb:5b:01:94:f6:92:d5:1f:4e: ed:a0:6f:82:22:e8:a6:df:b8:fa:b8:47:11:4d:d4:d5:87:b5: 66:6f:54:94:90:58:a9:20:4d:19:39:3f:e0:9b:d1:86:df:d5: d0:7c:63:64:01:55:5b:64:71:dc:f8:6e:b8:19:c2:c4:45:a7: 12:62:f9:a6:56:9c:45:e8:6a:5f:e7:a6:9e:b8:3a:5b:c8:09: 56:1d:16:d7:1f:e5:17:be:cb:b1:0a:a6:91:40:26:46:37:de: ca:2b:c0:11:0a:f2:8a:22:58:9e:7f:a1:09:8b:70:d4:bf:57: a1:27:cf:c4:8e:df:11:0c:b5:0d:78:29:01:0f:ca:8f:dc:06: 59:be:61:2b:bf:e8:a7:ed:ef:0b:f4:64:30:b4:4b:ed:d2:68: 1f:16:4a:fb:2e:53:44:dd:02:2e:3a:d0:29:0f:d3:b3:8f:2c: e9:24:02:d8:ba:cc:06:c4:3b:1f:51:0a:d7:9a:08:cd:05:5b: ad:bb:df:ac:aa:37:d8:4a:f9:f2:c5:2d:c6:be:b3:bb:d3:d7: 0d:73:d0:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjQxMTIyMTgzNzM0WhcNMjQxMTI5MTgzNzM0WjAYMRYwFAYD VQQDEw02NzQwY2Y2ZS0zYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJOZ9I0hE9kXx9PIP0dJge2bKRspld9nMVYbbujwx743865Pn/n3BRLExmvD F/fW9830M7d+NrAUsYjTZl79fEQfXxUqj6e2wEmnCQSebUhy/Hx69UKOZ4EgmJvg eBhl4VEJ+SrgLNdoyKYHWFIyHMupIb7IJ6/CyNTn552/7V+MA89Zxa1qBBttWU1a wYRY38/PV121kiFNpeEBwxeHUWsGUoyMDoIiSApFb1OD/oUJSD+uw4odwqGvCGZf fcnY+dOmCkzSMqTdcjjCmEgIZtpaXZekgSejQHmKZNwth0WBIWHqbGIcQZbnxEiC ucKLRl9vycKXpQKhuD3Y0fFHQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWXZE1o WVTfWxfkptdhWasy2hX7MB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5R8ZQm1tE37cMwy6qWGWsPtHDEUYhqf7TP2Y4gTM5rJml4xuPZn3v KE0jH4brWwGU9pLVH07toG+CIuim37j6uEcRTdTVh7Vmb1SUkFipIE0ZOT/gm9GG 39XQfGNkAVVbZHHc+G64GcLERacSYvmmVpxF6Gpf56aeuDpbyAlWHRbXH+UXvsux CqaRQCZGN97KK8ARCvKKIlief6EJi3DUv1ehJ8/Ejt8RDLUNeCkBD8qP3AZZvmEr v+in7e8L9GQwtEvt0mgfFkr7LlNE3QIuOtApD9OzjyzpJALYuswGxDsfUQrXmgjN BVutu9+sqjfYSvnyxS3GvrO709cNc9A2 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org