$ rpki-client -vvf rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft File: 9ZvGR-kMztyU6oWmLrjrGL0DUms.mft (raw, json) Hash identifier: o0t45jlK7nm7tYhpArVRsvzGdxGfR329fMnzLtbexzE= Subject key identifier: BE:79:0B:5A:68:5B:40:BC:E1:C8:67:97:9A:C9:DC:13:11:0C:AE:C5 Authority key identifier: F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B Certificate issuer: /CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Certificate serial: 07A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft Manifest number: 0798 Signing time: Fri 22 Nov 2024 20:51:18 +0000 Manifest this update: Fri 22 Nov 2024 20:51:18 +0000 Manifest next update: Fri 29 Nov 2024 20:51:18 +0000 Files and hashes: 1: 9ZvGR-kMztyU6oWmLrjrGL0DUms.crl (hash: th2qPuW7Sf8QpIydWVTfmWFjYuzxjy+qD6prkUaetJA=) 2: EED16B2CEC4211EABC227339C4F9AE02.roa (hash: RMR7KwU7xyWXlKtABuhss5yJpFReeaEZyLkq7UcoIo4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Validity Not Before: Nov 22 20:51:18 2024 GMT Not After : Nov 29 20:51:18 2024 GMT Subject: CN=6740eec6-51d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:58:44:06:d4:bd:92:a5:f9:cb:bd:69:a6: 4b:c1:82:cf:54:36:62:32:4b:6e:1b:a0:30:03:1c: 6d:83:fc:33:20:d9:b9:10:3b:dd:d8:7a:25:51:66: 0a:d9:0f:96:73:02:46:9a:3b:99:91:55:c7:11:c3: bd:57:fa:99:05:4b:bd:06:7c:4b:53:16:fe:de:e9: af:09:36:24:5b:e7:3c:1e:01:cb:64:38:a3:c0:e8: 67:6b:0b:c5:34:08:7e:be:7e:d3:fd:74:36:fc:a0: a0:d4:48:c6:35:a2:bc:53:b1:86:2e:81:9e:82:11: 32:57:eb:e2:ef:3b:a1:ce:17:b6:2a:ba:e4:87:d1: 8e:ea:07:a1:cb:dc:ff:9c:42:3f:9c:c3:6b:36:dd: f8:81:91:00:cc:22:4a:05:fb:ba:f9:70:17:f7:cc: fd:5f:34:1f:90:ef:b3:d3:09:76:90:a2:56:51:5d: bc:30:c5:74:16:97:83:a1:15:7f:a9:d0:61:7f:ad: fe:1d:9f:81:46:54:1c:77:3a:f8:17:93:95:4f:9e: b9:d4:4d:25:e7:13:7a:80:27:89:6d:e3:d0:b9:49: b0:d0:bf:13:f4:54:e1:1c:8d:c5:10:3a:c8:fc:24: 0f:58:14:12:66:08:b7:30:9a:29:d5:db:4a:74:c5: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:79:0B:5A:68:5B:40:BC:E1:C8:67:97:9A:C9:DC:13:11:0C:AE:C5 X509v3 Authority Key Identifier: keyid:F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:ce:8a:1e:88:dd:39:49:a2:d9:7a:aa:b0:ca:af:03:59:51: f0:2d:bf:ed:be:34:74:5b:fc:10:90:03:ac:c5:4a:8e:65:39: 2e:ee:28:82:29:3f:42:0f:b4:5f:6f:6b:ae:45:d4:e9:04:af: a9:37:11:40:66:73:a0:8e:79:ef:b7:17:ce:aa:f8:ae:16:34: 3e:19:a2:aa:f8:1c:74:2c:cb:a5:57:04:22:f5:a3:17:8f:1e: 00:ec:e7:96:d7:85:67:dc:17:88:9c:1c:cd:22:58:b0:f4:3a: 0e:da:1a:a4:21:24:51:ea:3a:f1:35:a1:31:d8:06:b4:f5:89: ca:4b:08:43:15:c8:ca:34:ca:e7:c5:f8:af:bb:5e:e5:cb:2e: 4d:ea:2f:bb:a7:92:41:5e:53:7f:2a:04:dd:4f:b1:58:3c:b3: e8:4d:2c:25:19:5e:7e:f7:75:64:21:2b:ce:30:b0:33:77:c9: 5f:33:d2:5a:f1:72:50:c8:b7:44:49:35:66:4e:c7:72:87:e5: a4:8d:c4:ab:27:d5:32:a5:97:93:69:8c:09:66:f9:42:79:69: cf:62:d9:cf:17:43:e2:20:9f:e3:80:ec:4a:2d:11:8e:f7:4d: 05:e2:37:98:50:22:f7:5b:3f:e4:41:d7:29:2d:2d:ba:39:2e: 60:8f:ae:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NGRDIxMTAvBgNVBAUTKEY1OUJDNjQ3RTkwQ0NFREM5NEVBODVBNjJFQjhFQjE4 QkQwMzUyNkIwHhcNMjQxMTIyMjA1MTE4WhcNMjQxMTI5MjA1MTE4WjAYMRYwFAYD VQQDEw02NzQwZWVjNi01MWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArN9YRAbUvZKl+cu9aaZLwYLPVDZiMktuG6AwAxxtg/wzINm5EDvd2HolUWYK 2Q+WcwJGmjuZkVXHEcO9V/qZBUu9BnxLUxb+3umvCTYkW+c8HgHLZDijwOhnawvF NAh+vn7T/XQ2/KCg1EjGNaK8U7GGLoGeghEyV+vi7zuhzhe2Krrkh9GO6gehy9z/ nEI/nMNrNt34gZEAzCJKBfu6+XAX98z9XzQfkO+z0wl2kKJWUV28MMV0FpeDoRV/ qdBhf63+HZ+BRlQcdzr4F5OVT5651E0l5xN6gCeJbePQuUmw0L8T9FThHI3FEDrI /CQPWBQSZgi3MJop1dtKdMW8mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL55C1po W0C84chnl5rJ3BMRDK7FMB8GA1UdIwQYMBaAFPWbxkfpDM7clOqFpi646xi9A1Jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0ZEMi8xRDJBODk0MkU2 RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0eVU2b1dtTHJqckdMMERV bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzladkdSLWtNenR5VTZvV21McmpyR0wwRFVtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0ZEMi8xRDJBODk0MkU2RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0 eVU2b1dtTHJqckdMMERVbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDazooeiN05SaLZeqqwyq8DWVHwLb/tvjR0W/wQkAOsxUqOZTku7iiC KT9CD7Rfb2uuRdTpBK+pNxFAZnOgjnnvtxfOqviuFjQ+GaKq+Bx0LMulVwQi9aMX jx4A7OeW14Vn3BeInBzNIliw9DoO2hqkISRR6jrxNaEx2Aa09YnKSwhDFcjKNMrn xfivu17lyy5N6i+7p5JBXlN/KgTdT7FYPLPoTSwlGV5+93VkISvOMLAzd8lfM9Ja 8XJQyLdESTVmTsdyh+WkjcSrJ9UypZeTaYwJZvlCeWnPYtnPF0PiIJ/jgOxKLRGO 900F4jeYUCL3Wz/kQdcpLS26OS5gj668 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org