$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: bXECJR78rU0DmIbJjrZTolgq2DA6d0luJxtwq4uMdu8= Subject key identifier: 8F:D1:6A:90:A9:C0:C4:AA:CB:87:52:BF:13:A1:D0:B0:27:96:01:B3 Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 0427 Signing time: Fri 22 Nov 2024 16:34:53 +0000 Manifest this update: Fri 22 Nov 2024 16:34:53 +0000 Manifest next update: Fri 29 Nov 2024 16:34:53 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: PjZq8iPB7QQfzkJfXPGDPY9+RMd/mjDCYjT92lSaJ7U=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: pu6dJPh07UcYd+mIMy5+Y6mbrncfU/s+tKgupfIo1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Nov 22 16:34:53 2024 GMT Not After : Nov 29 16:34:53 2024 GMT Subject: CN=6740b2ad-fd5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:7d:17:d0:6b:fd:5d:1e:e4:97:9f:93:3b: 75:8b:66:22:d9:c0:4c:70:13:da:c5:bc:03:ad:48: 7f:e3:51:7a:94:54:c6:c6:10:7f:f6:96:6d:69:6a: cd:6f:bf:76:b1:cd:af:27:10:82:0a:ab:63:a8:ff: ff:8d:be:77:13:61:84:13:eb:7a:17:1e:7a:30:53: 84:55:a5:93:f2:51:17:d0:bf:47:f2:8b:1b:d5:57: 8e:58:9d:28:76:63:13:02:b8:fd:ef:a5:39:4d:e8: ff:bd:48:3a:63:9b:22:86:f8:80:17:fd:ee:53:a6: 32:b3:a3:f3:dd:b1:bb:5b:64:d5:86:64:e6:cc:79: 6a:2d:ca:93:4b:b3:20:03:be:55:7c:99:59:41:60: 44:40:04:55:80:fb:6d:7a:79:7f:6f:34:56:68:39: 72:bf:a9:ad:15:21:aa:fb:14:0b:65:0f:96:1a:e0: 96:94:20:17:51:91:fe:7f:a6:27:ef:49:81:74:ab: 0f:8d:cb:35:15:9b:77:08:ec:69:5f:1b:44:18:81: 6f:b2:91:3c:de:3c:20:ab:43:de:15:51:a8:e8:e0: d5:3c:93:ce:d1:fe:34:34:49:80:03:99:9f:94:ca: 4f:8d:7f:1a:ea:be:4b:5f:f6:05:a9:91:32:a0:38: 7f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D1:6A:90:A9:C0:C4:AA:CB:87:52:BF:13:A1:D0:B0:27:96:01:B3 X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:fd:4e:a5:82:b0:42:5c:c8:55:8f:f3:82:30:1a:7c:0d:7e: e9:61:62:52:9f:28:b2:6a:df:4b:88:ea:31:bb:47:f6:05:fc: cd:1a:af:25:12:00:9d:fb:61:54:3a:a3:79:2b:01:6a:a7:37: 1f:3d:8d:af:00:15:56:6e:63:4d:96:1e:2f:05:18:03:05:5a: 7f:18:3f:58:e9:4f:17:23:e6:34:99:60:42:dc:c8:2b:4f:ea: 07:db:bf:af:aa:ad:ef:cf:05:8d:a7:b1:1a:c3:1a:b8:74:b8: 07:d5:29:86:a9:cf:25:20:14:be:ce:b0:06:2e:77:c0:8f:91: fb:59:09:6b:23:2e:30:cf:09:99:27:f9:27:ab:1f:c2:d6:7b: 0b:cd:58:a2:f9:a2:a7:5d:80:7d:2a:11:73:12:31:58:6b:1f: 46:16:c8:8c:e6:8c:21:a6:ef:a1:51:0d:a6:e3:08:3f:ca:bf: 65:eb:b3:b0:c7:e2:1a:fa:6c:b5:86:85:bb:29:02:32:96:f6: 0d:1c:e7:87:76:9f:68:66:b8:0a:2e:f1:8d:ae:1d:2f:d4:9f: 94:49:cc:f1:35:d7:3f:ac:b3:df:a0:3f:9a:74:fd:2a:99:ed: 75:99:f2:ca:5c:e9:9c:7d:62:21:b0:00:8a:e2:b5:55:f3:87: df:6d:6a:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjQxMTIyMTYzNDUzWhcNMjQxMTI5MTYzNDUzWjAYMRYwFAYD VQQDEw02NzQwYjJhZC1mZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFp9F9Br/V0e5Jefkzt1i2Yi2cBMcBPaxbwDrUh/41F6lFTGxhB/9pZtaWrN b792sc2vJxCCCqtjqP//jb53E2GEE+t6Fx56MFOEVaWT8lEX0L9H8osb1VeOWJ0o dmMTArj976U5Tej/vUg6Y5sihviAF/3uU6Yys6Pz3bG7W2TVhmTmzHlqLcqTS7Mg A75VfJlZQWBEQARVgPttenl/bzRWaDlyv6mtFSGq+xQLZQ+WGuCWlCAXUZH+f6Yn 70mBdKsPjcs1FZt3COxpXxtEGIFvspE83jwgq0PeFVGo6ODVPJPO0f40NEmAA5mf lMpPjX8a6r5LX/YFqZEyoDh/LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/RapCp wMSqy4dSvxOh0LAnlgGzMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj/U6lgrBCXMhVj/OCMBp8DX7pYWJSnyiyat9LiOoxu0f2BfzNGq8l EgCd+2FUOqN5KwFqpzcfPY2vABVWbmNNlh4vBRgDBVp/GD9Y6U8XI+Y0mWBC3Mgr T+oH27+vqq3vzwWNp7Eawxq4dLgH1SmGqc8lIBS+zrAGLnfAj5H7WQlrIy4wzwmZ J/knqx/C1nsLzVii+aKnXYB9KhFzEjFYax9GFsiM5owhpu+hUQ2m4wg/yr9l67Ow x+Ia+my1hoW7KQIylvYNHOeHdp9oZrgKLvGNrh0v1J+USczxNdc/rLPfoD+adP0q me11mfLKXOmcfWIhsACK4rVV84ffbWpw -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org