$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: 2rElPKqfh8YgQmqObD8adVxHtau7R/OiiQmm5Z+De9I= Subject key identifier: 09:6E:02:F8:52:F7:A6:FA:E5:14:FA:3D:EA:D6:3B:02:A4:CF:42:17 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0A70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0A69 Signing time: Fri 22 Nov 2024 19:24:47 +0000 Manifest this update: Fri 22 Nov 2024 19:24:46 +0000 Manifest next update: Fri 29 Nov 2024 19:24:46 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: huXHj6fNlDdq5Z19/c1/uOH7j019+LMCtnwMSnOLMkY=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: G/eOqgEpWZFr1HOkV3DCeyILuIaljP+37f1Jcziv0j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2672 (0xa70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Nov 22 19:24:46 2024 GMT Not After : Nov 29 19:24:46 2024 GMT Subject: CN=6740da7f-f41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:03:d6:f0:57:29:13:3b:4b:0b:bc:e5:e4:68: 66:87:65:f9:e6:45:d5:d6:ed:6d:31:db:f0:b7:ed: 40:e8:f4:34:35:1c:ba:ea:21:88:6a:6e:c5:90:8b: a1:05:4d:b9:63:45:5a:64:29:73:d8:7a:0e:85:45: a2:34:be:a1:42:53:1d:4a:47:56:d9:b8:4f:5a:f1: 4b:39:25:b4:b6:2d:2e:b6:88:b9:a6:07:97:a4:52: a8:f9:02:9d:6b:24:b0:b3:4a:6c:5e:c1:08:dc:34: c1:20:3f:92:b4:8b:60:8e:af:2f:92:66:61:d0:5b: e8:b2:48:a5:31:61:b5:93:c0:16:fa:38:15:63:61: 40:9d:11:ef:b9:00:38:0d:5b:f6:b6:fc:4d:46:24: 50:e1:ae:b7:55:df:91:51:49:fb:13:30:c9:1c:70: ef:a3:28:d6:c3:10:4b:0c:fc:6c:c6:8c:4e:fb:2e: 24:9b:ec:60:10:43:24:c7:35:bc:b1:46:42:bd:0c: 4f:c6:07:b6:34:06:f6:f4:75:a5:9f:92:3b:95:4b: 5c:3e:5e:81:09:2d:52:95:16:ce:1c:a6:7c:bf:24: c5:f8:bc:0a:13:1b:80:6b:46:50:9d:cc:58:fc:d2: c0:7c:6d:73:a2:dd:bb:71:2b:a3:90:b0:5b:ff:df: b9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:6E:02:F8:52:F7:A6:FA:E5:14:FA:3D:EA:D6:3B:02:A4:CF:42:17 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a0:67:24:2e:01:14:e8:3f:3f:e2:ed:fe:f4:f8:5e:1b:54: d4:2d:db:01:b5:82:cb:d1:69:58:92:fd:ad:07:1e:a4:ab:62: 95:43:2c:a1:01:a1:b6:db:16:1d:7d:db:45:97:49:f9:eb:b4: ad:4a:0e:f8:6a:3d:16:ac:d1:34:ed:ae:9d:ab:47:ec:b9:c4: 43:da:13:91:fd:b8:b9:c6:19:1c:66:01:8f:92:d4:30:19:0a: 0e:9d:cd:74:06:1a:f5:97:bf:e8:53:79:d4:dd:34:f2:d4:d9: 46:fd:81:15:de:66:8d:b0:a9:f5:9e:a2:de:c1:be:b1:52:71: 12:02:88:d2:09:fb:a5:76:96:28:44:c6:5f:4d:06:3a:e4:68: 2e:2e:18:73:14:4d:6b:9a:45:6a:7d:10:14:c7:c6:96:45:e9: c9:49:03:d4:7a:16:d5:5e:28:55:57:33:ea:d0:84:d6:12:df: bd:6d:ba:59:02:4b:4d:42:75:9a:ef:ae:1c:b8:bf:ca:04:87: 41:d4:16:fb:ce:d4:ec:fe:92:57:e1:b0:7f:69:84:50:62:d7: e0:09:59:40:2f:67:6a:01:38:e3:d9:9a:f6:07:5a:e7:7f:0e: 23:63:6e:ff:be:76:bb:41:8f:a5:25:aa:ec:37:fa:73:6f:cf: bf:7a:35:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjQxMTIyMTkyNDQ2WhcNMjQxMTI5MTkyNDQ2WjAYMRYwFAYD VQQDEw02NzQwZGE3Zi1mNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4APW8FcpEztLC7zl5Ghmh2X55kXV1u1tMdvwt+1A6PQ0NRy66iGIam7FkIuh BU25Y0VaZClz2HoOhUWiNL6hQlMdSkdW2bhPWvFLOSW0ti0utoi5pgeXpFKo+QKd aySws0psXsEI3DTBID+StItgjq8vkmZh0FvoskilMWG1k8AW+jgVY2FAnRHvuQA4 DVv2tvxNRiRQ4a63Vd+RUUn7EzDJHHDvoyjWwxBLDPxsxoxO+y4km+xgEEMkxzW8 sUZCvQxPxge2NAb29HWln5I7lUtcPl6BCS1SlRbOHKZ8vyTF+LwKExuAa0ZQncxY /NLAfG1zot27cSujkLBb/9+5owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAluAvhS 96b65RT6PerWOwKkz0IXMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAoGckLgEU6D8/4u3+9PheG1TULdsBtYLL0WlYkv2tBx6kq2KVQyyh AaG22xYdfdtFl0n567StSg74aj0WrNE07a6dq0fsucRD2hOR/bi5xhkcZgGPktQw GQoOnc10Bhr1l7/oU3nU3TTy1NlG/YEV3maNsKn1nqLewb6xUnESAojSCfuldpYo RMZfTQY65GguLhhzFE1rmkVqfRAUx8aWRenJSQPUehbVXihVVzPq0ITWEt+9bbpZ AktNQnWa764cuL/KBIdB1Bb7ztTs/pJX4bB/aYRQYtfgCVlAL2dqATjj2Zr2B1rn fw4jY27/vna7QY+lJarsN/pzb8+/ejVJ -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org