$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: KxcxiD5a2wYexmcDaNsNDfgcYK7/FrxeTUjCZgiQAJI= Subject key identifier: 77:0B:3D:FF:C0:61:9C:FC:3A:7A:BB:B6:D9:1F:BF:3E:2F:9D:CD:C4 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0C3D Signing time: Fri 22 Nov 2024 18:11:47 +0000 Manifest this update: Fri 22 Nov 2024 18:11:47 +0000 Manifest next update: Fri 29 Nov 2024 18:11:47 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: Sm1tiNFbsFnhJRn45A1RupOUpk/DNGhLh+DWTs3GYrY=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Nov 22 18:11:47 2024 GMT Not After : Nov 29 18:11:47 2024 GMT Subject: CN=6740c963-66ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0c:e8:52:7a:ef:96:18:a9:d3:5c:c1:9c:6b: d6:79:31:17:db:f3:3e:69:20:9c:87:25:61:ce:b0: 56:9c:79:23:b7:36:d1:1c:31:4a:0e:75:ef:39:ea: 7b:4e:3d:62:8b:93:fd:18:f6:30:85:42:16:3f:06: be:e4:e4:8b:cd:79:aa:3f:82:98:cc:25:e6:f2:bf: 25:6b:f0:4e:7a:a4:66:3c:ca:7a:46:57:f1:fd:b4: b1:29:e7:29:1c:80:c2:04:52:59:13:be:33:55:50: 6b:5d:0e:2a:0c:df:d1:96:97:81:59:b5:c3:d3:3f: 12:ab:8a:c6:f6:99:85:39:61:fe:19:22:2b:7d:f1: 08:ea:cf:5a:96:b7:33:27:86:37:9c:06:1f:b6:7a: ee:08:93:21:b8:fd:85:d7:64:4d:b5:06:6f:6c:10: 56:22:59:8e:16:01:77:32:35:a9:fb:83:39:04:ca: da:2a:d0:94:e1:f5:7d:43:41:e8:08:e2:63:a5:59: 72:9b:3d:fd:ca:4b:fa:3e:c8:49:3f:fb:d4:c2:a4: 25:37:d9:25:a1:e2:10:f2:78:0b:19:29:44:85:f9: 36:dd:59:05:12:5c:9e:16:e6:16:cc:f8:d3:62:7f: 9e:ec:a5:52:76:dd:92:61:e7:e4:a6:b0:73:ac:bb: ad:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:0B:3D:FF:C0:61:9C:FC:3A:7A:BB:B6:D9:1F:BF:3E:2F:9D:CD:C4 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:05:f2:72:8e:86:6c:11:9d:92:9a:b2:e2:59:11:7d:bb:f5: 1f:e8:13:98:a4:55:24:a5:f9:0e:1f:a3:d5:dd:ce:43:c8:2b: 8a:aa:b7:19:d1:55:3f:ce:34:17:3e:91:f4:1f:a8:28:87:bb: a6:71:ba:c2:b8:38:02:d2:60:eb:2a:60:2e:93:0c:96:42:e7: a9:82:c6:8f:c7:82:26:30:f4:0a:e5:47:65:bf:99:76:f2:80: eb:d4:01:ff:45:8f:5e:f7:61:42:ec:11:be:ad:e1:15:e9:2a: 68:bd:77:2c:6e:c1:32:1e:60:85:03:89:49:6b:41:13:9f:22: fc:b6:65:af:1f:77:bd:66:b6:b9:81:7b:78:3c:a3:cf:28:ac: df:32:d6:8a:cc:4c:b2:ca:71:97:8e:52:8a:bc:97:51:e1:cd: 4a:dd:ea:62:a8:02:34:17:80:d4:4c:49:e4:bc:23:ac:1e:63: 4a:fe:ac:ca:fe:7f:3a:02:98:89:72:b5:0b:b6:33:0f:19:db: 92:89:ec:09:ec:c8:ba:7d:10:48:3c:e2:42:b4:60:a6:6f:39: 4c:ec:45:54:39:29:92:48:ef:a0:c3:af:53:08:a3:1e:8f:e4: 84:44:c8:a3:ce:2e:c5:cb:8f:dd:56:6e:27:e4:78:12:2f:8c: 9e:4f:b1:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjQxMTIyMTgxMTQ3WhcNMjQxMTI5MTgxMTQ3WjAYMRYwFAYD VQQDEw02NzQwYzk2My02NmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQzoUnrvlhip01zBnGvWeTEX2/M+aSCchyVhzrBWnHkjtzbRHDFKDnXvOep7 Tj1ii5P9GPYwhUIWPwa+5OSLzXmqP4KYzCXm8r8la/BOeqRmPMp6Rlfx/bSxKecp HIDCBFJZE74zVVBrXQ4qDN/RlpeBWbXD0z8Sq4rG9pmFOWH+GSIrffEI6s9alrcz J4Y3nAYftnruCJMhuP2F12RNtQZvbBBWIlmOFgF3MjWp+4M5BMraKtCU4fV9Q0Ho COJjpVlymz39ykv6PshJP/vUwqQlN9kloeIQ8ngLGSlEhfk23VkFElyeFuYWzPjT Yn+e7KVSdt2SYefkprBzrLut2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcLPf/A YZz8Onq7ttkfvz4vnc3EMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnBfJyjoZsEZ2SmrLiWRF9u/Uf6BOYpFUkpfkOH6PV3c5DyCuKqrcZ 0VU/zjQXPpH0H6goh7umcbrCuDgC0mDrKmAukwyWQuepgsaPx4ImMPQK5Udlv5l2 8oDr1AH/RY9e92FC7BG+reEV6SpovXcsbsEyHmCFA4lJa0ETnyL8tmWvH3e9Zra5 gXt4PKPPKKzfMtaKzEyyynGXjlKKvJdR4c1K3epiqAI0F4DUTEnkvCOsHmNK/qzK /n86ApiJcrULtjMPGduSiewJ7Mi6fRBIPOJCtGCmbzlM7EVUOSmSSO+gw69TCKMe j+SERMijzi7Fy4/dVm4n5HgSL4yeT7EV -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org