$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft File: 2H4ClpVGrcVaesygjK2yh5vGmck.mft (raw, json) Hash identifier: rovdU451WNG/lG+AU23rAVBsgVkIfH7nsfNvIzEC+F4= Subject key identifier: 35:F3:C2:21:D2:99:34:7C:18:8A:18:AF:6B:A5:08:97:BC:95:98:82 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft Manifest number: 0122 Signing time: Sat 23 Nov 2024 02:56:20 +0000 Manifest this update: Sat 23 Nov 2024 02:56:20 +0000 Manifest next update: Sat 30 Nov 2024 02:56:20 +0000 Files and hashes: 1: 2H4ClpVGrcVaesygjK2yh5vGmck.crl (hash: wgssNw4mutHQbJ5vkgtLUUQwXnPzYqzAvXq6bs1uIek=) 2: A4B0D326F0A311ED99A1471CC4F9AE02.roa (hash: YT1DLrJvP+2w7lodtwm2stNsNaNoq+ytHid9uR561S8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Nov 23 02:56:20 2024 GMT Not After : Nov 30 02:56:20 2024 GMT Subject: CN=67414454-990e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:37:6e:5d:29:1c:1f:a0:83:fe:77:e8:75:82: 0d:73:41:fe:8b:71:09:41:92:d4:8d:b8:7a:a3:d2: e5:75:59:b6:dd:d4:ed:14:5c:89:59:40:c9:87:8e: a8:f9:f6:c5:04:b8:b1:9b:00:d6:65:ee:ef:5b:db: db:cd:07:0e:af:6b:72:2a:49:15:fc:9f:a7:bd:ee: d9:b3:e0:d2:79:9b:23:ff:9f:96:21:48:aa:f8:ab: 4d:cf:19:2d:b6:1d:bc:97:b5:b7:c9:a7:67:78:e8: 1c:eb:4b:f6:6b:92:14:0a:73:fd:1f:24:fb:29:b3: f4:fb:79:63:f0:97:06:1a:f0:32:de:a7:c2:79:b7: 49:9d:05:b7:1b:4a:53:52:c1:63:19:02:c5:fc:8d: 60:d5:6a:01:a5:36:7f:63:6e:29:66:a8:23:18:47: b3:b8:52:7b:de:67:d2:93:43:f3:7f:51:d9:3c:3e: 75:d2:00:30:a1:06:78:6c:af:7f:de:0b:16:ab:25: e4:44:01:58:4d:4e:ba:28:93:1a:88:48:de:e4:b1: 29:96:97:54:7c:27:58:ee:55:ad:bf:43:e6:d9:2a: 2d:5e:4c:1a:c9:f5:53:43:be:d2:a4:34:b9:d9:1c: 53:7c:90:36:97:7d:ce:ae:bd:ad:46:d3:10:45:f2: d1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F3:C2:21:D2:99:34:7C:18:8A:18:AF:6B:A5:08:97:BC:95:98:82 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ff:0a:0e:31:28:13:a7:86:75:aa:29:6c:4f:9d:d0:c5:37: 2d:a6:10:cb:4d:ef:ba:9c:33:20:a1:fc:19:ec:49:b2:9f:1b: 10:37:a1:56:18:a8:a7:65:a9:c2:cd:9e:0c:bb:14:fc:98:b9: b1:cb:3f:e7:da:d1:ef:4a:6a:0c:3f:f6:68:c7:dc:d7:c9:14: 90:27:00:21:db:90:8b:a4:11:a8:14:c5:45:0e:d0:69:5b:4b: 9c:c1:5e:08:eb:16:34:c1:c8:57:ef:f1:da:27:02:c0:7d:f6: f0:4b:24:1e:ec:d0:17:60:e8:be:92:ff:8d:94:a8:9c:ec:b8: f8:9a:7f:76:e9:47:b0:c8:2e:58:5b:31:0b:4e:6b:6d:27:cd: 94:34:60:df:35:e3:c2:ba:07:6a:47:cf:25:b9:e5:04:a0:44: b0:73:fa:1b:cf:af:c1:a4:ef:9f:5f:03:9f:e7:3a:ff:33:cf: e7:a2:84:b8:d4:32:14:48:ba:32:35:14:9c:e0:51:a0:07:7f: 94:75:8c:64:06:ef:ff:9e:53:f3:f2:f5:c4:76:cc:47:c6:71: 5c:ee:f9:37:ef:d0:4a:d4:b6:52:4d:75:5f:52:8b:80:27:c1: 06:9f:cf:4a:6c:1b:21:70:ce:ea:39:39:2f:c6:a1:6c:af:fe: a2:51:ed:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjQxMTIzMDI1NjIwWhcNMjQxMTMwMDI1NjIwWjAYMRYwFAYD VQQDEw02NzQxNDQ1NC05OTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjduXSkcH6CD/nfodYINc0H+i3EJQZLUjbh6o9LldVm23dTtFFyJWUDJh46o +fbFBLixmwDWZe7vW9vbzQcOr2tyKkkV/J+nve7Zs+DSeZsj/5+WIUiq+KtNzxkt th28l7W3yadneOgc60v2a5IUCnP9HyT7KbP0+3lj8JcGGvAy3qfCebdJnQW3G0pT UsFjGQLF/I1g1WoBpTZ/Y24pZqgjGEezuFJ73mfSk0Pzf1HZPD510gAwoQZ4bK9/ 3gsWqyXkRAFYTU66KJMaiEje5LEplpdUfCdY7lWtv0Pm2SotXkwayfVTQ77SpDS5 2RxTfJA2l33Orr2tRtMQRfLRxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXzwiHS mTR8GIoYr2ulCJe8lZiCMB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI1Ri84RTQxODAyMEYwOUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3Jj VmFlc3lnaksyeWg1dkdtY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf/woOMSgTp4Z1qilsT53QxTctphDLTe+6nDMgofwZ7EmynxsQN6FW GKinZanCzZ4MuxT8mLmxyz/n2tHvSmoMP/Zox9zXyRSQJwAh25CLpBGoFMVFDtBp W0ucwV4I6xY0wchX7/HaJwLAffbwSyQe7NAXYOi+kv+NlKic7Lj4mn926UewyC5Y WzELTmttJ82UNGDfNePCugdqR88lueUEoESwc/obz6/BpO+fXwOf5zr/M8/nooS4 1DIUSLoyNRSc4FGgB3+UdYxkBu//nlPz8vXEdsxHxnFc7vk379BK1LZSTXVfUouA J8EGn89KbBshcM7qOTkvxqFsr/6iUe3X -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org