$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft File: mRs2LGa5oYApqN1CgVXZfHbgEgk.mft (raw, json) Hash identifier: Bz9OQs3ZTlUK/waYeReE4XPsBVScBgxHv0crIQ+cb0A= Subject key identifier: DA:0C:E9:2B:32:6C:4C:23:19:B2:7E:29:46:DE:24:A0:BF:E2:F0:2A Authority key identifier: 99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 Certificate issuer: /CN=A9178D2A/serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft Manifest number: 04BD Signing time: Fri 22 Nov 2024 23:26:26 +0000 Manifest this update: Fri 22 Nov 2024 23:26:26 +0000 Manifest next update: Fri 29 Nov 2024 23:26:26 +0000 Files and hashes: 1: mRs2LGa5oYApqN1CgVXZfHbgEgk.crl (hash: t/UbPVayXhCuxsswd3LEdUJybSE6iw8PHDHOOVnGyQw=) 2: DB9C041801B311ECBA0E715CC4F9AE02.roa (hash: waxDgjsSvTIC1yAg99PxNdSD6AsFvhhlz5Q0XX8Iie8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D2A/serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Validity Not Before: Nov 22 23:26:26 2024 GMT Not After : Nov 29 23:26:26 2024 GMT Subject: CN=67411322-6885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:85:e0:fc:f1:98:76:8e:5f:62:b8:75:e6: 67:eb:8e:c5:99:c9:81:28:8f:8f:9d:cd:d0:5f:9e: 3f:3f:ba:4b:04:ad:a4:9a:4c:5e:0a:c9:d6:aa:5e: 52:f2:66:4f:29:c1:b3:26:2a:a5:9e:ae:6b:1e:2d: 17:86:4b:e7:d5:7b:8e:ab:e8:8a:47:e2:f7:5e:7f: 0e:b4:97:4b:72:14:a2:98:87:97:2c:62:9b:fc:9c: d2:01:40:79:70:e9:69:0a:a5:0c:94:fb:b3:4b:c0: 6d:30:85:63:9b:32:c8:c7:3a:ba:1e:6d:54:b0:62: 99:96:df:e8:7b:55:04:68:41:76:a1:ba:14:b0:67: fd:89:79:46:74:b9:5b:cf:55:af:c4:ed:9f:a9:4b: d7:14:74:65:8f:d4:39:cd:d7:e6:a2:82:db:34:85: 14:d2:f5:dd:14:d1:2a:f2:11:ae:f2:a9:4c:3f:36: 1d:fa:f5:11:c8:b9:66:7a:ae:64:34:e6:39:6b:2a: 5a:b1:ff:81:b1:f7:13:79:0c:0a:20:0a:7d:1f:d0: 6b:bd:c1:b9:51:51:0e:57:05:99:8e:cc:79:7a:8b: 5f:7b:a2:f8:f0:a0:fc:43:e4:b7:e3:7c:21:9e:13: 36:5f:71:35:86:cb:c3:3d:5b:8e:ea:27:d7:44:bd: 36:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:0C:E9:2B:32:6C:4C:23:19:B2:7E:29:46:DE:24:A0:BF:E2:F0:2A X509v3 Authority Key Identifier: keyid:99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:62:46:d6:6a:ed:23:05:e8:9b:b0:bf:95:54:44:27:0f:2e: 41:34:0c:1d:e7:5a:4b:6a:f8:42:f1:79:31:76:44:19:af:5c: d5:ba:61:d9:4e:b8:a4:9f:3c:01:cf:2d:d1:ed:88:9b:be:30: da:8d:7a:92:b6:dd:8e:6d:af:a1:33:67:12:3b:0c:89:40:82: 1c:2c:aa:41:00:fd:98:83:2b:cf:d4:90:8f:30:41:f3:5e:89: 1c:99:2f:1a:71:6e:fc:0a:a5:8f:60:cd:2a:e2:9f:c8:5c:7e: 18:71:92:1e:35:26:60:5d:6b:ca:7d:08:b0:8a:cb:c0:e3:a6: 9f:a7:c5:e2:c4:30:2a:d8:98:ed:f5:11:f2:ce:05:67:21:2c: 3b:a9:16:a7:c9:67:a9:2c:7e:17:0f:9b:da:c5:b5:90:6f:33: 55:ba:df:b8:d4:36:5e:e4:c5:33:b2:14:b3:ce:af:4a:be:db: 15:ec:f4:04:cd:0f:e8:af:1e:d8:e2:ac:ef:6e:2d:f3:c3:24: 15:b2:d2:56:0c:e3:bd:20:3a:c1:0b:fd:ac:f9:cd:82:13:0f: dd:93:56:a9:74:8a:05:a4:b9:8a:82:d3:4d:ed:92:86:0a:c8: bd:82:bb:0c:4e:09:8f:c6:5b:51:a1:04:36:d1:f7:68:bc:83: 9a:41:ba:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMkExMTAvBgNVBAUTKDk5MUIzNjJDNjZCOUExODAyOUE4REQ0MjgxNTVEOTdD NzZFMDEyMDkwHhcNMjQxMTIyMjMyNjI2WhcNMjQxMTI5MjMyNjI2WjAYMRYwFAYD VQQDEw02NzQxMTMyMi02ODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeKF4PzxmHaOX2K4deZn647FmcmBKI+Pnc3QX54/P7pLBK2kmkxeCsnWql5S 8mZPKcGzJiqlnq5rHi0Xhkvn1XuOq+iKR+L3Xn8OtJdLchSimIeXLGKb/JzSAUB5 cOlpCqUMlPuzS8BtMIVjmzLIxzq6Hm1UsGKZlt/oe1UEaEF2oboUsGf9iXlGdLlb z1WvxO2fqUvXFHRlj9Q5zdfmooLbNIUU0vXdFNEq8hGu8qlMPzYd+vURyLlmeq5k NOY5aypasf+BsfcTeQwKIAp9H9BrvcG5UVEOVwWZjsx5eotfe6L48KD8Q+S343wh nhM2X3E1hsvDPVuO6ifXRL02yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNoM6Ssy bEwjGbJ+KUbeJKC/4vAqMB8GA1UdIwQYMBaAFJkbNixmuaGAKajdQoFV2Xx24BIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQyQS8yRDJGODI2NjAx QjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9ZQXBxTjFDZ1ZYWmZIYmdF Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21SczJMR2E1b1lBcHFOMUNnVlhaZkhiZ0Vnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQyQS8yRDJGODI2NjAxQjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9Z QXBxTjFDZ1ZYWmZIYmdFZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLYkbWau0jBeibsL+VVEQnDy5BNAwd51pLavhC8XkxdkQZr1zVumHZ TriknzwBzy3R7YibvjDajXqStt2Oba+hM2cSOwyJQIIcLKpBAP2YgyvP1JCPMEHz XokcmS8acW78CqWPYM0q4p/IXH4YcZIeNSZgXWvKfQiwisvA46afp8XixDAq2Jjt 9RHyzgVnISw7qRanyWepLH4XD5vaxbWQbzNVut+41DZe5MUzshSzzq9KvtsV7PQE zQ/orx7Y4qzvbi3zwyQVstJWDOO9IDrBC/2s+c2CEw/dk1apdIoFpLmKgtNN7ZKG Csi9grsMTgmPxltRoQQ20fdovIOaQboa -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org