$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: ovbroVczNNyHF6s2uI9I/YCoqg7aM/x3Ji4VADfBDbU= Subject key identifier: 31:57:CD:CB:2B:9D:CF:81:8B:2D:2B:F9:DE:6D:D5:47:9A:B1:F6:23 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0A9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0A97 Signing time: Fri 22 Nov 2024 19:19:32 +0000 Manifest this update: Fri 22 Nov 2024 19:19:31 +0000 Manifest next update: Fri 29 Nov 2024 19:19:31 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: EJSQAUeS2aQL5JaencZQ48YPs4RuNyPh+psOPFJRLaU=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2718 (0xa9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Nov 22 19:19:31 2024 GMT Not After : Nov 29 19:19:31 2024 GMT Subject: CN=6740d944-ff1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b7:d9:7c:ef:f9:c3:ac:a5:e8:a0:1e:05:74: 18:35:3d:e9:7f:e1:40:af:9c:9a:fc:10:a4:d1:ca: 31:a2:90:cf:18:73:9b:35:da:db:c3:09:8b:f5:46: d5:89:c8:3e:0d:9c:34:08:fb:d8:02:96:5f:8c:0c: 1d:6b:da:80:1a:2a:c7:13:ad:b6:26:89:3a:c0:5c: 20:c0:44:d3:df:30:f2:d2:b2:67:bb:ac:a3:87:c7: 01:86:a4:ad:aa:a6:fd:51:a6:9c:ba:9a:50:d9:ec: ed:7f:77:b2:44:bc:8c:5e:da:77:44:30:16:e8:f5: 3a:1d:36:32:c0:f2:50:31:ea:11:00:d4:de:5f:f9: ec:4c:25:5b:6b:7b:2a:6b:74:86:c0:9b:82:8a:71: dd:3d:df:a5:01:71:c5:85:ce:f7:51:1c:f4:c9:c8: 90:00:1a:e3:7f:3a:45:d5:b5:16:c1:94:b4:4e:0f: a7:67:9b:36:14:12:1f:77:56:09:32:eb:16:1a:d6: ba:c3:fe:99:75:b2:70:dc:dc:62:68:88:23:be:75: 7b:1c:70:f8:07:dd:e2:d2:24:bf:bc:b7:d6:5c:65: cb:22:e4:ac:98:51:63:86:92:ea:4f:8f:64:bc:bb: 1c:4a:b8:54:c5:4f:ac:5d:b9:3f:95:7d:c3:b9:3e: 38:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:57:CD:CB:2B:9D:CF:81:8B:2D:2B:F9:DE:6D:D5:47:9A:B1:F6:23 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c8:39:a5:01:4b:75:e1:11:b6:93:b6:32:37:5f:a5:10:30: b9:48:90:f4:a6:d7:90:68:75:6a:7c:c8:d6:09:30:86:6f:7f: 53:56:c2:29:b5:be:bd:56:65:f9:a0:1f:3f:08:b9:de:ac:5f: 7b:f7:fb:8c:a0:cc:68:ce:a1:98:a0:68:61:03:b1:a7:6c:fb: e4:34:27:56:a0:a9:f6:7c:39:a4:08:ca:9b:9a:d5:f7:63:75: ed:6b:10:a2:59:d1:b9:0d:29:46:34:4b:71:db:6d:1e:c1:3d: 27:08:15:c1:c5:82:16:e1:6e:51:f5:46:6c:f1:7e:2f:a5:5f: 83:cb:a8:29:0c:c0:f8:ce:c9:52:0a:ee:40:5f:81:74:1e:39: e9:e8:ee:aa:bf:04:f3:66:3d:1e:ac:6a:a2:95:e9:6d:84:36: e1:8c:91:0e:8d:03:18:f2:9f:5c:68:f6:7f:1d:b8:7d:75:7f: e8:65:3a:bb:f3:96:5f:84:28:c8:87:8e:2e:83:ac:af:b4:93: 74:2a:e4:75:9c:8d:e4:95:f2:51:e3:42:7b:ad:cd:00:83:af: a7:49:3b:fb:bf:17:3e:cb:ce:0f:25:9e:6b:93:9f:26:ab:9c: 76:63:58:6c:10:c4:15:25:22:f9:74:af:18:cb:d6:46:50:bb: 9d:53:72:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjQxMTIyMTkxOTMxWhcNMjQxMTI5MTkxOTMxWjAYMRYwFAYD VQQDEw02NzQwZDk0NC1mZjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbfZfO/5w6yl6KAeBXQYNT3pf+FAr5ya/BCk0coxopDPGHObNdrbwwmL9UbV icg+DZw0CPvYApZfjAwda9qAGirHE622Jok6wFwgwETT3zDy0rJnu6yjh8cBhqSt qqb9UaacuppQ2eztf3eyRLyMXtp3RDAW6PU6HTYywPJQMeoRANTeX/nsTCVba3sq a3SGwJuCinHdPd+lAXHFhc73URz0yciQABrjfzpF1bUWwZS0Tg+nZ5s2FBIfd1YJ MusWGta6w/6ZdbJw3NxiaIgjvnV7HHD4B93i0iS/vLfWXGXLIuSsmFFjhpLqT49k vLscSrhUxU+sXbk/lX3DuT44rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFXzcsr nc+Biy0r+d5t1UeasfYjMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTyDmlAUt14RG2k7YyN1+lEDC5SJD0pteQaHVqfMjWCTCGb39TVsIp tb69VmX5oB8/CLnerF979/uMoMxozqGYoGhhA7GnbPvkNCdWoKn2fDmkCMqbmtX3 Y3XtaxCiWdG5DSlGNEtx220ewT0nCBXBxYIW4W5R9UZs8X4vpV+Dy6gpDMD4zslS Cu5AX4F0Hjnp6O6qvwTzZj0erGqilelthDbhjJEOjQMY8p9caPZ/Hbh9dX/oZTq7 85ZfhCjIh44ug6yvtJN0KuR1nI3klfJR40J7rc0Ag6+nSTv7vxc+y84PJZ5rk58m q5x2Y1hsEMQVJSL5dK8Yy9ZGULudU3LO -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org