$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft File: k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json) Hash identifier: dJPm1iUQmg/80A5OaqRaTNtxqitwX8hYlXpWP8LJTcs= Subject key identifier: 29:09:44:20:D2:59:06:C5:BD:78:EF:C0:D5:5A:6A:40:48:66:BF:7E Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD Certificate issuer: /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Certificate serial: 0414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft Manifest number: 0410 Signing time: Fri 22 Nov 2024 23:58:14 +0000 Manifest this update: Fri 22 Nov 2024 23:58:14 +0000 Manifest next update: Fri 29 Nov 2024 23:58:14 +0000 Files and hashes: 1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: XyJ0/y+ov/GrM6jDWTYFCqeIyQPjsbIk5ULrPVsDC+w=) 2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: MtaWbSK5JAjEiEpHTj/1X7DdZqPg3BZxUlQCHg85KTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Validity Not Before: Nov 22 23:58:14 2024 GMT Not After : Nov 29 23:58:14 2024 GMT Subject: CN=67411a96-bdff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:28:6e:e6:57:d1:ed:1e:51:67:98:85:b2:c7: bb:04:2a:65:7e:f7:b0:f1:03:99:94:7c:48:f7:41: 6c:a1:1a:3a:07:e5:bf:8a:fa:93:61:8b:b5:6f:14: 8d:8c:e7:ab:9a:bb:94:7e:54:03:69:42:ce:ca:40: 4b:2d:37:7e:ff:51:84:16:c5:2e:df:2c:2e:5f:44: 3d:d7:f9:96:5b:58:bc:a8:19:f2:b5:b9:48:39:2e: 2a:da:91:6f:61:77:77:dc:e5:70:15:9b:cd:68:05: 88:36:94:bf:89:8a:a0:a8:1e:b0:77:3c:8e:c7:c0: c4:1d:3e:61:bc:a0:c4:4d:f1:f1:2a:eb:26:cb:7c: a9:7f:c5:86:db:8f:98:4a:f7:c3:c2:58:ad:e1:19: 85:c0:24:4c:5a:37:09:74:1e:bb:ec:e7:af:e5:7b: 4c:4f:cb:f9:c3:03:55:a7:9a:44:a5:01:c9:04:7b: ea:5b:df:85:5a:9f:2e:f6:18:e3:5d:ad:36:80:fa: 37:41:f4:75:9f:c1:cd:bd:e1:7a:c9:a6:a5:24:87: 99:df:02:d6:65:fb:b7:bb:fc:58:f1:9c:df:4c:de: c0:ad:2b:e2:75:30:3c:db:ee:52:38:d0:3f:da:7c: 4f:a8:43:32:e9:89:a3:ed:30:f2:e7:21:52:19:7a: 12:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:09:44:20:D2:59:06:C5:BD:78:EF:C0:D5:5A:6A:40:48:66:BF:7E X509v3 Authority Key Identifier: keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c6:7a:9e:fa:d9:24:36:0b:28:a7:cb:32:2c:8f:ea:6a:60: 09:0c:c3:2c:d6:2e:dc:34:80:07:13:9f:3f:84:d1:0c:cf:ee: 48:41:1a:16:2f:f4:86:6b:e9:79:fc:94:b6:b7:8d:3f:66:8b: 50:78:0a:c1:d6:b0:5f:90:35:cc:e4:2c:43:87:96:a2:6d:30: bb:29:85:8f:aa:b4:5b:82:f3:de:6d:e7:cc:7a:b2:0a:7c:5a: 70:d4:b6:80:b4:48:e4:64:83:7d:83:42:59:22:7b:5a:78:93: 04:f5:45:39:e9:0a:06:b2:82:29:2f:de:c4:b8:b4:8a:c2:e0: e0:4f:90:18:e6:de:f7:ff:5b:cb:47:8a:0d:b3:e8:4d:47:6c: ac:29:36:35:0e:65:a9:c7:29:95:b8:b8:51:86:34:b4:a9:d2: 39:11:93:7f:44:c1:89:cc:89:35:ac:4d:2f:71:14:07:a7:a5: a5:33:e4:3d:12:5a:df:5a:98:ee:13:24:0f:88:cb:1c:ce:9e: 88:72:a6:1e:be:65:47:b1:6c:5a:4d:b2:ee:25:0b:b2:3e:91: d6:92:00:5e:70:1f:c6:81:c7:12:9d:f1:6e:c1:92:b2:39:ac: dd:11:e3:ea:69:34:ef:19:b5:55:9d:39:6f:2b:4b:0a:76:6c: 01:11:d1:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM5MkIxMTAvBgNVBAUTKDkzNEZGMjNCMzhFQzZENThBNkNBQUI3MDdCNzk1NTUx Qzg5QzMxRkQwHhcNMjQxMTIyMjM1ODE0WhcNMjQxMTI5MjM1ODE0WjAYMRYwFAYD VQQDEw02NzQxMWE5Ni1iZGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Chu5lfR7R5RZ5iFsse7BCplfvew8QOZlHxI90FsoRo6B+W/ivqTYYu1bxSN jOermruUflQDaULOykBLLTd+/1GEFsUu3ywuX0Q91/mWW1i8qBnytblIOS4q2pFv YXd33OVwFZvNaAWINpS/iYqgqB6wdzyOx8DEHT5hvKDETfHxKusmy3ypf8WG24+Y SvfDwlit4RmFwCRMWjcJdB677Oev5XtMT8v5wwNVp5pEpQHJBHvqW9+FWp8u9hjj Xa02gPo3QfR1n8HNveF6yaalJIeZ3wLWZfu3u/xY8ZzfTN7ArSvidTA82+5SONA/ 2nxPqEMy6Ymj7TDy5yFSGXoSbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkJRCDS WQbFvXjvwNVaakBIZr9+MB8GA1UdIwQYMBaAFJNP8js47G1YpsqrcHt5VVHInDH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzkyQi9CMjBEQUQ2NjQ4 MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JWaW15cXR3ZTNsVlVjaWNN ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swX3lPempzYlZpbXlxdHdlM2xWVWNpY01mMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzkyQi9CMjBEQUQ2NjQ4MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JW aW15cXR3ZTNsVlVjaWNNZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/xnqe+tkkNgsop8syLI/qamAJDMMs1i7cNIAHE58/hNEMz+5IQRoW L/SGa+l5/JS2t40/ZotQeArB1rBfkDXM5CxDh5aibTC7KYWPqrRbgvPebefMerIK fFpw1LaAtEjkZIN9g0JZIntaeJME9UU56QoGsoIpL97EuLSKwuDgT5AY5t73/1vL R4oNs+hNR2ysKTY1DmWpxymVuLhRhjS0qdI5EZN/RMGJzIk1rE0vcRQHp6WlM+Q9 ElrfWpjuEyQPiMsczp6IcqYevmVHsWxaTbLuJQuyPpHWkgBecB/GgccSnfFuwZKy OazdEePqaTTvGbVVnTlvK0sKdmwBEdFI -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org