$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: oayDmVOPu18ToXCr8AZBC03JsupB3xuTaUWKPIeoymQ= Subject key identifier: B6:67:27:FD:E3:28:16:88:A1:C3:37:97:CF:8D:BA:3D:44:0D:C1:90 Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 0776 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 0769 Signing time: Sun 24 Nov 2024 20:48:22 +0000 Manifest this update: Sun 24 Nov 2024 20:48:21 +0000 Manifest next update: Sun 01 Dec 2024 20:48:21 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: E0TYNyRCBP7E5ucpBno6jmPW4XxxeUJwJ1ozPNVj+NI=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: EEgmZei8HhhUqdqGUy+3MwlUAdmMR7L1GMUa6BLQ8n4=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: SmI9leCfFLtOvnnfK7B7KqE9luDwQr36vUW6d0ksspk=) 4: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: qXyp1dhNAf5pEULKnvRa1JrpHHV4lQwSoi6tPVocCG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Nov 24 20:48:21 2024 GMT Not After : Dec 1 20:48:21 2024 GMT Subject: CN=67439115-2b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6d:df:43:cf:cc:9c:4d:ef:49:b6:7a:a0:71: e4:a4:91:31:94:53:59:09:0f:e6:15:14:5c:ea:84: 00:ae:1a:af:53:d1:81:76:4d:2e:b9:ed:d4:fd:0b: 5f:77:d7:59:68:6c:d0:a0:a5:33:e6:23:cd:86:6f: 6d:a5:42:cf:94:77:e8:8b:51:f9:e8:f6:2c:76:7f: 30:7f:39:7b:5d:b1:df:eb:36:6d:da:1d:ce:d4:db: 94:1f:c4:5f:c7:3f:ad:ba:e9:ea:a5:6c:ee:09:7f: 84:25:95:50:de:a2:0e:a2:58:a7:77:f7:ac:e0:7f: e1:50:bc:b2:8d:67:0e:fe:ae:64:8d:b8:a0:7c:7c: c8:81:98:ed:22:ce:43:0b:e1:57:03:ca:3e:62:12: ef:db:d6:5d:45:4e:fa:b3:ea:43:3c:7f:06:fe:a5: 4b:f1:b9:eb:3d:61:8e:f5:c1:a3:54:12:a0:93:a3: 48:6c:13:66:7a:1b:e7:61:63:9d:d8:6b:02:e3:95: 36:06:70:79:27:f6:6a:04:2c:5b:d4:31:fc:df:51: e9:60:af:bb:24:4b:ea:1c:c9:81:6e:4b:48:54:e9: b5:73:58:61:a8:59:ed:65:43:8f:1d:28:6a:bf:3e: d4:ca:fc:97:d9:56:6c:27:90:5b:88:9c:e8:49:ef: 70:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:67:27:FD:E3:28:16:88:A1:C3:37:97:CF:8D:BA:3D:44:0D:C1:90 X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:68:66:d2:d0:e7:59:c7:29:28:fb:93:25:9f:a6:2e:d5:06: 0a:bf:48:77:35:c6:0c:0d:b6:7d:11:2e:12:52:82:3d:db:52: a4:5e:19:2c:80:69:cb:a9:6d:dd:a0:42:1d:ce:2b:d3:7f:99: f7:d9:2e:aa:ca:df:2e:eb:72:65:82:c7:db:f5:ec:16:b2:3f: d0:b8:23:7b:b3:7d:80:f8:ee:23:f8:ce:59:ff:2d:f8:dc:26: 53:90:8c:ab:72:7e:c2:6a:fd:27:f7:98:c7:7d:83:ca:6f:a0: 63:0d:71:24:c8:01:ad:30:6a:51:68:91:6b:85:7c:91:0c:6c: 26:b9:7c:0e:b8:67:61:2c:0e:9c:f8:7f:db:f9:90:de:c7:88: c8:68:30:53:5d:66:74:1a:73:8d:88:ed:78:27:7c:c2:5a:26: a5:29:b5:e2:4e:bf:f1:16:78:db:15:bd:96:e2:12:87:cb:25: d4:50:70:6c:8f:91:70:12:ad:5e:6a:7e:85:ee:94:da:98:0d: 05:1d:ac:55:63:65:9c:91:bd:63:0f:a9:52:52:71:14:41:92: de:84:da:a2:30:0b:9a:0f:35:ea:fa:11:07:d1:f8:8c:cc:bd: 7a:24:b0:c5:69:6a:25:54:c6:85:36:70:36:e2:c9:71:74:eb: d6:c9:01:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjQxMTI0MjA0ODIxWhcNMjQxMjAxMjA0ODIxWjAYMRYwFAYD VQQDEw02NzQzOTExNS0yYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym3fQ8/MnE3vSbZ6oHHkpJExlFNZCQ/mFRRc6oQArhqvU9GBdk0uue3U/Qtf d9dZaGzQoKUz5iPNhm9tpULPlHfoi1H56PYsdn8wfzl7XbHf6zZt2h3O1NuUH8Rf xz+tuunqpWzuCX+EJZVQ3qIOolind/es4H/hULyyjWcO/q5kjbigfHzIgZjtIs5D C+FXA8o+YhLv29ZdRU76s+pDPH8G/qVL8bnrPWGO9cGjVBKgk6NIbBNmehvnYWOd 2GsC45U2BnB5J/ZqBCxb1DH831HpYK+7JEvqHMmBbktIVOm1c1hhqFntZUOPHShq vz7UyvyX2VZsJ5BbiJzoSe9wvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZnJ/3j KBaIocM3l8+Nuj1EDcGQMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPaGbS0OdZxyko+5Mln6Yu1QYKv0h3NcYMDbZ9ES4SUoI921KkXhks gGnLqW3doEIdzivTf5n32S6qyt8u63Jlgsfb9ewWsj/QuCN7s32A+O4j+M5Z/y34 3CZTkIyrcn7Cav0n95jHfYPKb6BjDXEkyAGtMGpRaJFrhXyRDGwmuXwOuGdhLA6c +H/b+ZDex4jIaDBTXWZ0GnONiO14J3zCWialKbXiTr/xFnjbFb2W4hKHyyXUUHBs j5FwEq1ean6F7pTamA0FHaxVY2Wckb1jD6lSUnEUQZLehNqiMAuaDzXq+hEH0fiM zL16JLDFaWolVMaFNnA24slxdOvWyQFX -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:04 2024 by rpki-client on console-ams.rpki-client.org