$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: 6CT97Pt4y7/cEYLMtjyTva3KFA9CQarm7T0dRp9ROJM= Subject key identifier: 52:71:BD:5E:99:11:94:AD:D1:47:11:86:06:3E:2D:61:7D:21:C6:25 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: F3 Signing time: Sat 23 Nov 2024 03:23:53 +0000 Manifest this update: Sat 23 Nov 2024 03:23:53 +0000 Manifest next update: Sat 30 Nov 2024 03:23:53 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: ETIBe403zLiLJ9Y11Zg+NmeDspqnoCMPWJWYNhFiETw=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: z6BHSk4cb9I8/kB9JR0TRRNQXU/qOZQ+pN/Lst+leW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Nov 23 03:23:53 2024 GMT Not After : Nov 30 03:23:53 2024 GMT Subject: CN=67414ac9-b2f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:d0:34:a2:6f:ec:00:b0:b5:0e:d1:81:37: ae:b4:13:ef:5c:b7:84:4a:3e:40:ad:a2:65:1c:ee: 09:13:f6:d4:ec:7c:48:cd:1f:5e:41:0e:5d:53:a9: fa:2e:00:25:37:cc:9f:cb:82:54:55:3f:ee:c9:bf: 7d:cf:cb:e7:0c:e9:1d:48:2f:7c:4a:57:81:94:fd: 6d:32:87:b6:5b:9e:03:26:bd:d8:a9:dc:c9:3e:56: c7:f0:1a:ef:2d:ed:2e:0f:03:a1:14:0c:74:73:32: 8c:82:36:53:b5:e6:74:53:1c:90:a1:0d:e8:0f:0d: ae:34:43:93:09:08:13:62:2e:b0:c6:d4:ac:a8:47: a9:a1:4c:b1:66:a5:5e:d1:7e:7d:60:04:de:85:c1: 9a:2c:a6:f3:8c:b4:1c:aa:22:af:b7:b7:19:8d:ef: 68:5c:19:68:6a:cd:7c:f5:a3:74:3d:34:9c:f4:ab: f0:0b:ec:fb:3b:ae:ac:11:54:70:a2:5d:3c:1b:be: c2:0b:29:08:f6:ea:bd:96:e4:a4:dd:54:b7:1b:79: 88:ac:a4:a9:5f:40:fd:45:f0:36:09:5c:55:69:f0: 66:8e:de:80:af:46:e1:01:16:45:8e:00:67:4a:61: 2b:21:55:88:07:81:65:ac:ad:11:7b:c5:8d:b2:33: c7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:71:BD:5E:99:11:94:AD:D1:47:11:86:06:3E:2D:61:7D:21:C6:25 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:f0:06:61:77:af:3a:a2:52:01:8e:87:9d:2f:47:da:37:2b: af:88:a9:6f:01:d0:8b:7c:5f:3c:cd:56:29:c0:f1:b1:66:ea: 2f:66:26:00:ff:ce:c4:04:8e:18:fe:cb:22:24:c0:d4:5a:88: ae:02:d6:c0:af:62:da:62:dc:6d:fc:23:09:4a:c2:c0:23:8c: f7:0e:75:56:ec:fb:9c:bf:8d:ad:da:a0:84:81:73:72:17:ef: 74:db:f5:bd:25:c1:81:08:c6:d5:36:4a:d6:18:ad:65:64:31: ed:59:71:94:b9:fb:16:4d:e1:4d:ab:0d:8f:10:d8:35:fb:fb: 83:e7:8a:f9:e0:14:b5:96:6d:04:54:30:43:1d:61:b1:cb:7c: ab:c2:63:72:93:70:32:a7:0c:69:3e:1a:30:76:c5:b4:39:76: fd:ca:79:93:ee:99:c5:b1:81:6f:57:9f:9c:09:1b:ca:b6:a5: 2e:62:81:22:8e:79:e9:81:9a:6b:6a:79:85:4c:65:b7:8e:c4: d3:45:6a:f5:b8:39:14:d9:31:77:ab:c4:f6:94:db:79:b8:a4: 7f:b6:a1:0b:9b:ea:35:51:37:92:bb:1f:58:ff:d6:b9:f6:af: 00:72:05:ed:55:c4:fe:f8:e1:3b:ff:40:1a:68:fb:fd:02:98: e5:87:39:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjQxMTIzMDMyMzUzWhcNMjQxMTMwMDMyMzUzWjAYMRYwFAYD VQQDEw02NzQxNGFjOS1iMmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgbQNKJv7ACwtQ7RgTeutBPvXLeESj5AraJlHO4JE/bU7HxIzR9eQQ5dU6n6 LgAlN8yfy4JUVT/uyb99z8vnDOkdSC98SleBlP1tMoe2W54DJr3YqdzJPlbH8Brv Le0uDwOhFAx0czKMgjZTteZ0UxyQoQ3oDw2uNEOTCQgTYi6wxtSsqEepoUyxZqVe 0X59YATehcGaLKbzjLQcqiKvt7cZje9oXBloas189aN0PTSc9KvwC+z7O66sEVRw ol08G77CCykI9uq9luSk3VS3G3mIrKSpX0D9RfA2CVxVafBmjt6Ar0bhARZFjgBn SmErIVWIB4FlrK0Re8WNsjPHmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJxvV6Z EZSt0UcRhgY+LWF9IcYlMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ8AZhd686olIBjoedL0faNyuviKlvAdCLfF88zVYpwPGxZuovZiYA /87EBI4Y/ssiJMDUWoiuAtbAr2LaYtxt/CMJSsLAI4z3DnVW7Pucv42t2qCEgXNy F+902/W9JcGBCMbVNkrWGK1lZDHtWXGUufsWTeFNqw2PENg1+/uD54r54BS1lm0E VDBDHWGxy3yrwmNyk3AypwxpPhowdsW0OXb9ynmT7pnFsYFvV5+cCRvKtqUuYoEi jnnpgZpranmFTGW3jsTTRWr1uDkU2TF3q8T2lNt5uKR/tqELm+o1UTeSux9Y/9a5 9q8AcgXtVcT++OE7/0AaaPv9Apjlhzn+ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org