$ rpki-client -vvf rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft File: ItPpdE2tSXUDbMQirBHEBHIOZuo.mft (raw, json) Hash identifier: h9/MRCg7GbBqt2Frhkfy/dCPirzFexE5HHWh/I5qc6A= Subject key identifier: C7:91:DB:63:23:E1:0D:DC:8E:6B:77:94:DF:CE:A9:99:68:64:8C:0B Authority key identifier: 22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA Certificate issuer: /CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft Manifest number: C3 Signing time: Sat 23 Nov 2024 03:55:09 +0000 Manifest this update: Sat 23 Nov 2024 03:55:08 +0000 Manifest next update: Sat 30 Nov 2024 03:55:08 +0000 Files and hashes: 1: ItPpdE2tSXUDbMQirBHEBHIOZuo.crl (hash: 10XqrLyxeCBqDKvDMCodleCmpTSyJt4fWspRHa/Pte0=) 2: 9BE3C7087E8311EEBC7E6681C4F9AE02.roa (hash: dQp1RFXkmdHYdN2uYRrVX4OpwPj5pGn/GAC5Xyj0LE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A4F7/serialNumber=22D3E9744DAD4975036CC422AC11C404720E66EA Validity Not Before: Nov 23 03:55:08 2024 GMT Not After : Nov 30 03:55:08 2024 GMT Subject: CN=6741521c-14b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:be:2c:10:1f:78:29:cf:91:e9:2e:47:7f:f4: 5e:fb:a3:8f:9f:e3:f7:dc:77:c0:8b:b3:3a:38:5f: 22:7a:3e:fd:80:76:df:64:25:c7:bd:68:47:bb:3b: b6:7c:d3:ae:e1:22:fb:e9:5b:ab:23:f2:64:97:ae: 1b:3a:cb:89:e5:7d:74:c7:13:87:57:ea:8b:d3:45: fc:5f:c5:3d:09:ba:e2:2c:ab:60:ee:75:f0:9a:9a: f1:d0:dd:8f:82:b1:fc:60:d9:d6:d3:e8:a0:4b:75: 5f:a6:84:cc:02:b7:4a:e2:2d:f7:77:83:de:72:58: 99:4d:c8:75:07:29:8f:99:50:cc:97:2f:45:8f:7b: 60:9b:2c:a6:93:26:b3:58:66:62:9c:9a:93:1e:32: 28:ec:ee:73:ef:b1:69:3c:f5:1e:b2:11:eb:d3:a0: b5:e5:06:35:51:86:2c:62:20:30:9c:58:22:eb:b1: cf:79:bc:7d:88:f3:99:0b:36:68:a9:15:50:6d:21: b6:eb:ce:f8:18:d4:39:54:4d:10:e3:34:4c:f1:ee: 6c:2b:fe:9a:5a:c5:49:76:08:38:18:c8:1e:96:5d: 22:c8:28:e1:c6:c5:c0:dc:5f:33:41:cd:69:3b:6b: 53:69:59:0d:88:ee:76:13:40:51:e6:8e:0e:d7:8c: 9d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:91:DB:63:23:E1:0D:DC:8E:6B:77:94:DF:CE:A9:99:68:64:8C:0B X509v3 Authority Key Identifier: keyid:22:D3:E9:74:4D:AD:49:75:03:6C:C4:22:AC:11:C4:04:72:0E:66:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItPpdE2tSXUDbMQirBHEBHIOZuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A4F7/2A4893867E8211EE99DA9B7AC4F9AE02/ItPpdE2tSXUDbMQirBHEBHIOZuo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:e2:2b:2f:7c:9f:00:f8:2b:1f:fe:f4:1a:c3:2c:2f:ca:11: ec:41:09:a5:c7:aa:0e:32:bb:31:6b:dc:ca:ec:e1:3a:03:5e: d0:c4:c2:5c:21:c2:32:1c:85:7a:e3:e8:32:c8:35:0b:66:50: c3:94:78:07:87:a9:3b:43:11:43:7e:c4:68:8b:f5:23:7a:b0: 07:f5:97:be:df:e4:9f:55:97:28:5a:bc:21:7b:21:6f:74:bd: 62:1b:7e:62:68:23:88:1a:f9:30:e9:1d:36:8e:3a:63:5d:a7: 01:18:b5:2d:4b:bd:ce:08:89:98:0b:e1:42:e6:71:48:e1:62: 76:99:e2:08:d8:fc:a9:87:8c:10:02:97:03:cb:cd:b7:c8:2d: b4:80:76:7d:c3:ab:08:1e:ff:9c:4b:4a:6d:cc:c8:48:fa:88: 3b:69:27:3e:a4:21:f1:26:c1:6b:ec:fb:34:5d:63:22:0e:6d: e9:a8:f3:b9:de:4d:8c:dc:03:c0:b2:95:9a:57:a7:0f:2a:c6: b8:40:a2:02:40:0f:f7:ab:b5:cb:24:44:fd:8d:af:1d:54:66: 70:70:c1:c6:4f:55:8c:bf:12:cb:74:0c:09:b9:30:36:48:4c: 83:5d:46:1e:66:02:0d:3c:fd:de:a0:ab:18:c1:93:d8:44:f0: 8d:37:37:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0RjcxMTAvBgNVBAUTKDIyRDNFOTc0NERBRDQ5NzUwMzZDQzQyMkFDMTFDNDA0 NzIwRTY2RUEwHhcNMjQxMTIzMDM1NTA4WhcNMjQxMTMwMDM1NTA4WjAYMRYwFAYD VQQDEw02NzQxNTIxYy0xNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb4sEB94Kc+R6S5Hf/Re+6OPn+P33HfAi7M6OF8iej79gHbfZCXHvWhHuzu2 fNOu4SL76VurI/Jkl64bOsuJ5X10xxOHV+qL00X8X8U9CbriLKtg7nXwmprx0N2P grH8YNnW0+igS3VfpoTMArdK4i33d4PecliZTch1BymPmVDMly9Fj3tgmyymkyaz WGZinJqTHjIo7O5z77FpPPUeshHr06C15QY1UYYsYiAwnFgi67HPebx9iPOZCzZo qRVQbSG26874GNQ5VE0Q4zRM8e5sK/6aWsVJdgg4GMgell0iyCjhxsXA3F8zQc1p O2tTaVkNiO52E0BR5o4O14ydRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeR22Mj 4Q3cjmt3lN/OqZloZIwLMB8GA1UdIwQYMBaAFCLT6XRNrUl1A2zEIqwRxARyDmbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTRGNy8yQTQ4OTM4NjdF ODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNYVURiTVFpckJIRUJISU9a dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0UHBkRTJ0U1hVRGJNUWlyQkhFQkhJT1p1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTRGNy8yQTQ4OTM4NjdFODIxMUVFOTlEQTlCN0FDNEY5QUUwMi9JdFBwZEUydFNY VURiTVFpckJIRUJISU9adW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx4isvfJ8A+Csf/vQawywvyhHsQQmlx6oOMrsxa9zK7OE6A17QxMJc IcIyHIV64+gyyDULZlDDlHgHh6k7QxFDfsRoi/UjerAH9Ze+3+SfVZcoWrwheyFv dL1iG35iaCOIGvkw6R02jjpjXacBGLUtS73OCImYC+FC5nFI4WJ2meII2Pyph4wQ ApcDy823yC20gHZ9w6sIHv+cS0ptzMhI+og7aSc+pCHxJsFr7Ps0XWMiDm3pqPO5 3k2M3APAspWaV6cPKsa4QKICQA/3q7XLJET9ja8dVGZwcMHGT1WMvxLLdAwJuTA2 SEyDXUYeZgINPP3eoKsYwZPYRPCNNzft -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:09 2024 by rpki-client on console-ams.rpki-client.org