$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: Cv3H+U6H0tbFl/kFK7XskuT1cqaYBv99vjJ2LrLSQE4= Subject key identifier: 3F:05:45:65:E4:A4:C7:B7:C4:B0:38:C9:2A:D4:B7:67:49:B0:7F:EF Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 1A Signing time: Thu 21 Nov 2024 05:59:17 +0000 Manifest this update: Thu 21 Nov 2024 05:59:16 +0000 Manifest next update: Thu 28 Nov 2024 05:59:16 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: poTnL9zEIwqXXOjgVVLAzAqVeQDVyG7UqnAd4x5bQ7w=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: E9AB8256861011EFAAE9845AC4F9AE02.roa (hash: TAibHCWzblKHdLqREdrug0sl41Cq4DjCYp4R2g2bse4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Nov 21 05:59:16 2024 GMT Not After : Nov 28 05:59:16 2024 GMT Subject: CN=673ecc35-5458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:9e:eb:55:1d:9d:59:11:2a:b0:99:a4:7e:de: 6b:aa:cc:4f:2b:43:9a:46:ea:76:2b:34:d7:8e:71: ac:3f:62:a6:bf:5b:30:01:d2:d1:2a:50:42:da:ae: a5:b9:e5:8d:32:5d:23:cd:0f:e0:a7:ab:3b:36:a6: 66:c2:79:a2:2a:9c:fa:c7:a0:fb:85:b4:38:aa:8a: a9:cd:28:fd:a3:9e:a7:a3:ee:bd:a2:39:06:40:7f: 32:d5:7e:b5:9a:67:c7:49:56:9f:41:34:bb:3d:f0: 55:d5:8c:30:4c:fd:2a:20:bc:53:05:77:4f:f1:0b: fa:b8:ce:80:85:7d:27:2e:7f:8b:6f:2f:93:8b:c1: a3:63:8e:2e:bd:65:85:9d:83:3a:2f:c8:f8:d1:03: a6:9f:56:6e:a5:d4:f2:2e:b6:b5:98:4d:43:d0:25: be:76:56:eb:43:50:34:eb:e5:6d:2c:f0:ce:54:86: 3f:16:af:eb:7b:4b:83:1c:27:e0:65:b9:9b:e2:7b: 42:35:57:7f:0f:82:c7:5d:ad:4b:c8:cf:fe:28:6c: 4c:42:61:72:44:63:b3:8c:8f:29:3a:aa:5e:97:5d: 79:2f:4c:95:1b:6a:cd:b0:4c:30:83:d7:75:ab:c5: a2:55:8d:fa:ec:b1:4f:bd:63:3c:2e:26:15:40:99: 75:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:05:45:65:E4:A4:C7:B7:C4:B0:38:C9:2A:D4:B7:67:49:B0:7F:EF X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5f:de:61:2b:66:cf:7a:7a:1c:e4:7b:43:20:0f:e0:53:12: 5c:c2:ba:68:db:14:58:ca:3b:81:35:2e:2f:13:a1:b7:1a:5c: 0d:12:4c:9b:ab:c2:d4:e5:9b:0c:e5:70:1c:41:aa:cc:0b:62: 9b:88:7e:54:e0:f7:d3:90:3d:38:bc:b8:57:b2:e8:e3:e1:f6: e5:d5:9a:9b:f8:6d:fa:19:ec:7a:ab:7c:aa:30:f7:af:81:bc: fc:11:95:8c:e5:d1:e0:2b:ab:09:a3:5e:5d:2e:7b:62:38:c4: 2f:ba:d5:3c:c8:0d:30:bd:1e:34:18:57:04:ef:b6:95:a3:97: b8:da:75:54:d9:18:eb:1b:7e:e5:b0:fa:41:1d:8c:61:bb:c1: ab:18:0b:eb:e6:93:da:52:e7:a6:47:57:c5:8d:d2:f4:8d:b7: a8:ed:f8:00:81:30:42:86:2e:fc:98:42:ee:f2:02:ba:f0:e9: 48:05:b2:25:d2:4b:17:46:cf:15:19:77:6a:ba:e9:df:e9:da: 12:02:40:e6:b5:b6:aa:0c:d6:3c:56:d1:e8:f9:2f:53:c2:5c: a6:77:b1:b4:8a:4b:10:1b:71:e4:9d:a1:8d:21:92:bf:2e:59: 29:9e:bd:84:0e:4b:c1:68:ba:75:e2:0d:a9:44:f9:73:85:44: 52:72:cf:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoNjkxOEFBNzFGMzZCMDQ2MzUzQTY1Q0MwODk3OEIxOEVG RkI5RjVDNjAeFw0yNDExMjEwNTU5MTZaFw0yNDExMjgwNTU5MTZaMBgxFjAUBgNV BAMTDTY3M2VjYzM1LTU0NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDunutVHZ1ZESqwmaR+3muqzE8rQ5pG6nYrNNeOcaw/Yqa/WzAB0tEqUELarqW5 5Y0yXSPND+Cnqzs2pmbCeaIqnPrHoPuFtDiqiqnNKP2jnqej7r2iOQZAfzLVfrWa Z8dJVp9BNLs98FXVjDBM/SogvFMFd0/xC/q4zoCFfScuf4tvL5OLwaNjji69ZYWd gzovyPjRA6afVm6l1PIutrWYTUPQJb52VutDUDTr5W0s8M5Uhj8Wr+t7S4McJ+Bl uZvie0I1V38PgsddrUvIz/4obExCYXJEY7OMjyk6ql6XXXkvTJUbas2wTDCD13Wr xaJVjfrssU+9YzwuJhVAmXXvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPwVFZeSk x7fEsDjJKtS3Z0mwf+8wHwYDVR0jBBgwFoAUaRiqcfNrBGNTplzAiXixjv+59cYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzM3NDAyQURFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTlj WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVJpcWNmTnJCR05UcGx6QWlYaXhqdi01OWNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzM3NDAyQURFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdO VHBsekFpWGl4anYtNTljWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE9f3mErZs96ehzke0MgD+BTElzCumjbFFjKO4E1Li8TobcaXA0STJur wtTlmwzlcBxBqswLYpuIflTg99OQPTi8uFey6OPh9uXVmpv4bfoZ7HqrfKow96+B vPwRlYzl0eArqwmjXl0ue2I4xC+61TzIDTC9HjQYVwTvtpWjl7jadVTZGOsbfuWw +kEdjGG7wasYC+vmk9pS56ZHV8WN0vSNt6jt+ACBMEKGLvyYQu7yArrw6UgFsiXS SxdGzxUZd2q66d/p2hICQOa1tqoM1jxW0ej5L1PCXKZ3sbSKSxAbceSdoY0hkr8u WSmevYQOS8FounXiDalE+XOFRFJyz24= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org