$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: aFdMjxHMKCPcUauAVE9ZUac+zBEi1eZnJU3vOEu3g1c= Subject key identifier: 16:DC:1C:53:26:A0:BC:7A:40:7A:64:C6:45:1C:2C:1B:45:94:E4:2E Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0132 Signing time: Sat 23 Nov 2024 02:48:42 +0000 Manifest this update: Sat 23 Nov 2024 02:48:42 +0000 Manifest next update: Sat 30 Nov 2024 02:48:42 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: ULHJptQP8wVfCDhSmn6gtCPfZC6LbcyuK66HfoArrRA=) 2: 424F4EB0D86111ED8E82F133C4F9AE02.roa (hash: e6eUrz9dGV8gFQkq6CwvZZTH1Y1ZS1qXtIPuBBcr1eU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Nov 23 02:48:42 2024 GMT Not After : Nov 30 02:48:42 2024 GMT Subject: CN=6741428a-b166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:af:77:64:ce:7b:f5:6d:7c:f2:c1:0c:52:dd: b9:21:3a:17:6f:53:d2:97:b0:a1:ca:ab:ed:1b:58: ca:59:6f:66:a0:eb:0c:fe:97:8a:c9:93:fb:b7:f3: fa:52:15:7d:54:26:66:f6:9e:7c:bc:d6:65:75:e3: 4c:a7:a6:c3:19:59:74:53:4d:91:68:78:46:a1:e9: 20:bf:c9:70:8b:18:f8:80:f4:25:20:0d:40:0d:6a: e0:3f:47:49:72:d5:5c:85:7d:fd:3f:39:bf:8b:b6: d1:3f:a7:a0:29:ef:56:d7:6b:b7:bc:59:60:29:f0: b3:a3:0c:84:75:29:a6:00:a2:77:f1:de:7f:62:72: 6d:32:4b:a5:96:e9:c6:a6:b1:78:e3:ec:c5:30:54: a0:7c:d6:73:2f:b7:91:ad:ad:9c:d1:9b:90:80:b0: 54:54:c9:b2:36:6a:90:2e:0f:69:ba:00:ac:01:44: f4:29:c3:e1:e3:b8:2c:98:7c:b6:b3:7d:b2:ca:c4: ba:15:9f:e7:4f:b5:f2:2b:d1:8c:f7:65:bf:19:d8: d4:81:af:3f:17:5a:b3:63:e1:e4:ab:db:00:33:25: f9:91:bf:f6:62:b4:b9:50:41:4e:c5:c8:39:a6:b2: 5e:76:97:00:69:40:86:9f:fe:a6:9c:bf:61:9d:07: 78:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DC:1C:53:26:A0:BC:7A:40:7A:64:C6:45:1C:2C:1B:45:94:E4:2E X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e8:90:91:84:51:05:2f:0f:a0:18:33:32:4c:35:1d:07:f4:3e: cc:48:ee:6f:b3:31:ee:98:ff:6c:bb:6f:c7:6c:cf:24:74:cb: 6e:96:bf:7b:9a:eb:52:42:9d:1a:e4:c2:10:af:1b:ef:c5:1d: b8:1b:12:46:ec:67:05:a8:d0:6f:ea:91:63:c1:c5:7a:c2:95: 79:73:26:3f:db:d7:a4:38:2a:35:27:66:39:37:54:05:d7:e8: c8:6b:aa:ba:79:ef:30:de:07:52:69:cb:f7:12:a4:67:fb:ab: 08:dd:53:46:ee:f6:06:e6:ca:ae:2b:9c:70:c0:29:09:c7:52: e3:f1:88:8f:ea:ea:6b:0a:32:14:3b:30:2c:43:27:c0:7c:6e: 9e:40:f4:f3:dc:df:23:74:c1:ee:9d:8d:6e:75:85:1d:a1:c0: dd:00:25:e7:15:41:02:a4:86:a4:35:49:8f:bd:3a:c7:e7:ff: 93:b0:d0:a3:50:e7:e1:e1:c5:c8:9e:7b:7c:8b:0c:53:dc:fd: 9a:80:98:80:e9:50:61:e4:f1:f7:cc:4b:70:a7:4e:ca:d8:47: 14:d1:1f:9c:e2:9a:de:7c:d9:14:b0:b0:c8:ef:1f:4c:cc:e5: e0:5e:15:a8:af:9c:4d:32:4e:01:6c:8e:f6:52:9d:e5:ac:ec: 96:89:aa:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjQxMTIzMDI0ODQyWhcNMjQxMTMwMDI0ODQyWjAYMRYwFAYD VQQDEw02NzQxNDI4YS1iMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq93ZM579W188sEMUt25IToXb1PSl7ChyqvtG1jKWW9moOsM/peKyZP7t/P6 UhV9VCZm9p58vNZldeNMp6bDGVl0U02RaHhGoekgv8lwixj4gPQlIA1ADWrgP0dJ ctVchX39Pzm/i7bRP6egKe9W12u3vFlgKfCzowyEdSmmAKJ38d5/YnJtMkullunG prF44+zFMFSgfNZzL7eRra2c0ZuQgLBUVMmyNmqQLg9pugCsAUT0KcPh47gsmHy2 s32yysS6FZ/nT7XyK9GM92W/GdjUga8/F1qzY+Hkq9sAMyX5kb/2YrS5UEFOxcg5 prJedpcAaUCGn/6mnL9hnQd4oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbcHFMm oLx6QHpkxkUcLBtFlOQuMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDokJGEUQUvD6AYMzJMNR0H9D7MSO5vszHumP9su2/HbM8kdMtulr97 mutSQp0a5MIQrxvvxR24GxJG7GcFqNBv6pFjwcV6wpV5cyY/29ekOCo1J2Y5N1QF 1+jIa6q6ee8w3gdSacv3EqRn+6sI3VNG7vYG5squK5xwwCkJx1Lj8YiP6uprCjIU OzAsQyfAfG6eQPTz3N8jdMHunY1udYUdocDdACXnFUECpIakNUmPvTrH5/+TsNCj UOfh4cXInnt8iwxT3P2agJiA6VBh5PH3zEtwp07K2EcU0R+c4prefNkUsLDI7x9M zOXgXhWor5xNMk4BbI72Up3lrOyWiarS -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org