$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: THiwPFUld1dYLH8a50w33J2IeHfU2FFvBwJn4uQbuqA= Subject key identifier: B2:C3:30:D7:E9:16:03:A9:E4:4F:89:EB:3D:65:D5:E5:1B:3D:56:85 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 02D5 Signing time: Thu 21 Nov 2024 00:54:15 +0000 Manifest this update: Thu 21 Nov 2024 00:54:14 +0000 Manifest next update: Thu 28 Nov 2024 00:54:14 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: oZS9XO9MOacRy2BU9MeYlRLUwdQB9Zk39VIL2YeGLew=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: JGWjIhX5RIjoHrKhwJbgn3Pu8vTcZZqlk7E2DqruuO8=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: wILHqpy9Ti/8MJSzUe1aVFwRV4mS5BPVF4SBXg86ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Nov 21 00:54:14 2024 GMT Not After : Nov 28 00:54:14 2024 GMT Subject: CN=673e84b6-9e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:85:b9:73:47:57:81:b5:31:5d:72:34:ce:70: 76:45:33:c6:9d:e9:16:e6:7d:b0:f9:f1:89:68:ac: 99:53:de:29:ce:b9:91:a4:de:6e:fc:ee:50:df:54: 48:fb:2e:27:fc:d2:97:98:ed:84:e4:c0:ed:81:4b: 07:9f:eb:68:9d:29:bc:73:30:17:74:18:76:a8:56: 04:38:3a:26:a2:a8:13:c2:52:48:a8:d0:27:dc:55: a2:40:e6:0c:14:56:e8:c5:c3:10:98:6c:f0:d6:8e: 42:91:a2:a9:41:da:ea:c8:59:09:26:87:60:4d:1c: 5f:3b:64:24:f3:15:9d:af:76:63:3d:74:b3:d7:95: f8:93:3c:a8:f1:4f:fa:53:32:d2:e5:a0:4b:14:c2: 28:95:82:83:0a:52:db:76:a7:b2:79:14:ec:6b:5c: 67:98:dd:0f:05:48:80:d8:70:1e:05:ac:46:91:f2: 0d:91:cf:5f:4a:a1:11:8c:05:a0:34:9f:71:3b:c1: ae:95:70:b1:2c:5b:e4:da:71:21:1e:86:af:51:74: ac:a8:7b:76:4f:40:40:c8:9b:e5:d9:c2:72:16:31: 68:7d:ce:02:04:db:02:ec:ba:74:48:2b:8a:43:b9: 9e:4c:c5:51:a8:d4:c4:35:16:44:7c:e5:46:22:e5: 7b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C3:30:D7:E9:16:03:A9:E4:4F:89:EB:3D:65:D5:E5:1B:3D:56:85 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:87:90:1d:d6:f7:fe:ac:40:2f:a9:ce:77:b8:e6:c5:a8:d9: ea:76:b5:1a:8a:bf:4d:b8:94:1e:3d:0b:fb:a5:2b:c8:3b:06: 8c:87:cb:9c:48:94:cd:a5:77:af:cb:54:24:67:9e:59:2f:57: ca:db:01:b7:e6:4c:f3:27:e7:b5:34:97:5f:f7:ee:f4:18:e4: fc:1f:b1:2f:b2:0d:88:08:9d:d0:02:a4:28:a5:01:9d:27:f2: 37:df:93:31:d0:eb:3a:56:a4:4a:4d:31:54:66:37:06:28:d4: 65:b1:e3:ed:44:13:f5:a9:68:d8:ee:22:9f:80:6c:da:63:95: 1a:2f:90:46:46:d1:ed:38:b2:9c:33:28:d8:e0:73:df:30:ea: 77:40:5c:96:98:87:76:03:e7:c1:de:0f:a4:64:87:97:10:e1: 76:85:72:86:fe:7b:33:09:ac:00:c8:6d:7f:20:a1:ba:b6:20: 25:e2:16:d5:64:58:0d:27:d3:eb:15:21:e8:15:2a:f8:3f:f6: a8:ed:3a:40:16:76:9e:ee:e2:db:4a:ce:dd:af:b0:a9:74:09: 26:be:7f:70:bb:52:2f:11:b9:7c:1d:dd:33:03:84:6c:d9:d6: a0:7c:89:f6:da:d5:aa:06:e0:fe:8c:27:41:96:19:65:5e:2d: 21:72:51:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjQxMTIxMDA1NDE0WhcNMjQxMTI4MDA1NDE0WjAYMRYwFAYD VQQDEw02NzNlODRiNi05ZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4W5c0dXgbUxXXI0znB2RTPGnekW5n2w+fGJaKyZU94pzrmRpN5u/O5Q31RI +y4n/NKXmO2E5MDtgUsHn+tonSm8czAXdBh2qFYEODomoqgTwlJIqNAn3FWiQOYM FFboxcMQmGzw1o5CkaKpQdrqyFkJJodgTRxfO2Qk8xWdr3ZjPXSz15X4kzyo8U/6 UzLS5aBLFMIolYKDClLbdqeyeRTsa1xnmN0PBUiA2HAeBaxGkfINkc9fSqERjAWg NJ9xO8GulXCxLFvk2nEhHoavUXSsqHt2T0BAyJvl2cJyFjFofc4CBNsC7Lp0SCuK Q7meTMVRqNTENRZEfOVGIuV7KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLDMNfp FgOp5E+J6z1l1eUbPVaFMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEh5Ad1vf+rEAvqc53uObFqNnqdrUair9NuJQePQv7pSvIOwaMh8uc SJTNpXevy1QkZ55ZL1fK2wG35kzzJ+e1NJdf9+70GOT8H7Evsg2ICJ3QAqQopQGd J/I335Mx0Os6VqRKTTFUZjcGKNRlsePtRBP1qWjY7iKfgGzaY5UaL5BGRtHtOLKc MyjY4HPfMOp3QFyWmId2A+fB3g+kZIeXEOF2hXKG/nszCawAyG1/IKG6tiAl4hbV ZFgNJ9PrFSHoFSr4P/ao7TpAFnae7uLbSs7dr7CpdAkmvn9wu1IvEbl8Hd0zA4Rs 2dagfIn22tWqBuD+jCdBlhllXi0hclHz -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:40 2024 by rpki-client on console-ams.rpki-client.org