$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: xs7ly5u9k78Q1hTkkkZ1S1ufuejc9XZZoTpQWhpF+RA= Subject key identifier: 74:3A:5B:DE:6F:6F:B1:7D:D4:E6:81:11:79:A6:D9:7E:CF:16:3A:00 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0499 Signing time: Fri 22 Nov 2024 23:32:00 +0000 Manifest this update: Fri 22 Nov 2024 23:31:59 +0000 Manifest next update: Fri 29 Nov 2024 23:31:59 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: HtvbiYU+LkaSf3MgpxQ6Y9nBUAYzd+z2NXdOZJyVv5c=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Nov 22 23:31:59 2024 GMT Not After : Nov 29 23:31:59 2024 GMT Subject: CN=6741146f-a6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:aa:a5:9e:b6:d9:32:f4:0e:51:e0:20:92:28: 13:38:e0:df:f9:24:a9:c6:07:23:16:15:2b:87:9a: 57:3a:0c:e0:67:f8:46:24:ff:8e:72:52:71:49:93: 56:8b:c4:b7:cd:86:c8:ff:ec:1a:ab:ed:22:5b:91: 65:37:5b:32:dd:3f:b6:64:42:90:f2:2b:cc:c2:01: 01:9b:82:f9:76:75:2d:b5:30:78:fd:77:e3:e1:bd: 6f:5b:20:e0:30:18:19:48:87:b0:02:b0:af:b7:34: 65:87:a8:d3:e4:1d:eb:90:16:6f:9d:1b:6f:1a:14: 62:91:00:43:3c:64:f2:f3:e2:c1:b5:8a:43:ea:9d: 17:96:9b:24:cd:7e:7f:fd:75:1b:21:65:26:6e:e8: cc:3a:b2:70:70:93:01:b5:e3:dc:3f:2e:59:e3:f5: 84:0a:5f:f9:5e:be:93:cc:71:4f:da:3e:6c:f8:3c: 90:a8:30:d1:c7:71:ca:13:dd:2a:e9:b8:8a:f4:b3: 7f:7d:db:c1:e7:d3:3f:98:28:d0:20:3d:53:ad:8d: 7e:22:4e:f4:90:ca:2b:71:e4:20:15:7e:55:40:6f: 0a:0b:72:05:c3:44:e2:4a:5c:aa:ca:0c:df:4e:e5: 45:97:0c:ee:8a:34:96:41:e0:f8:00:de:70:21:f5: 8b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:3A:5B:DE:6F:6F:B1:7D:D4:E6:81:11:79:A6:D9:7E:CF:16:3A:00 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:77:83:e7:05:76:49:6e:d5:4e:21:4a:53:f2:71:b3:ac:2e: 74:18:6f:0d:d7:b0:c1:5b:c2:8d:e8:34:c2:56:68:68:3f:38: cb:a9:31:2f:c4:87:4f:3a:e2:73:3a:58:9a:15:a4:9a:f9:ff: 1d:e0:86:13:5e:5b:da:d3:20:14:06:f7:28:17:62:0f:bd:25: 4f:2f:3e:94:6b:b0:d6:7e:ae:9c:f3:c9:cb:8e:fe:58:e2:8c: cb:8c:59:b4:be:5f:4d:b7:4f:fc:b9:8b:0a:d1:1e:93:48:6d: e9:f7:9d:84:8f:dd:25:c2:76:aa:70:cd:b4:ab:df:af:87:ee: 39:ad:e9:bd:f7:77:79:a1:33:23:60:bb:c3:b3:06:af:b5:37: a6:1b:4c:63:12:24:5e:26:62:30:b0:0a:37:7c:14:74:a6:4f: 7a:df:bb:f4:c9:be:0e:a6:4d:02:37:c6:c6:de:e8:93:3a:04: 72:aa:ca:a8:e8:f8:94:2c:4c:94:95:42:d3:9d:02:d7:45:0b: 49:49:36:25:3b:45:c4:ed:e9:c0:e7:66:93:56:6e:4f:59:83: b9:25:76:90:e1:2d:c6:3a:63:c2:fd:ba:21:bb:9e:bb:36:d4: 13:77:12:c9:ed:2c:bf:86:7a:83:3f:18:03:51:cf:89:d3:3f: be:50:4a:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjQxMTIyMjMzMTU5WhcNMjQxMTI5MjMzMTU5WjAYMRYwFAYD VQQDEw02NzQxMTQ2Zi1hNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKqlnrbZMvQOUeAgkigTOODf+SSpxgcjFhUrh5pXOgzgZ/hGJP+OclJxSZNW i8S3zYbI/+waq+0iW5FlN1sy3T+2ZEKQ8ivMwgEBm4L5dnUttTB4/Xfj4b1vWyDg MBgZSIewArCvtzRlh6jT5B3rkBZvnRtvGhRikQBDPGTy8+LBtYpD6p0XlpskzX5/ /XUbIWUmbujMOrJwcJMBtePcPy5Z4/WECl/5Xr6TzHFP2j5s+DyQqDDRx3HKE90q 6biK9LN/fdvB59M/mCjQID1TrY1+Ik70kMorceQgFX5VQG8KC3IFw0TiSlyqygzf TuVFlwzuijSWQeD4AN5wIfWLbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQ6W95v b7F91OaBEXmm2X7PFjoAMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBd4PnBXZJbtVOIUpT8nGzrC50GG8N17DBW8KN6DTCVmhoPzjLqTEv xIdPOuJzOliaFaSa+f8d4IYTXlva0yAUBvcoF2IPvSVPLz6Ua7DWfq6c88nLjv5Y 4ozLjFm0vl9Nt0/8uYsK0R6TSG3p952Ej90lwnaqcM20q9+vh+45rem993d5oTMj YLvDswavtTemG0xjEiReJmIwsAo3fBR0pk9637v0yb4Opk0CN8bG3uiTOgRyqsqo 6PiULEyUlULTnQLXRQtJSTYlO0XE7enA52aTVm5PWYO5JXaQ4S3GOmPC/bohu567 NtQTdxLJ7Sy/hnqDPxgDUc+J0z++UEqz -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org