$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: K/hTSvYsAuqZpCLSfrtZKHrY+8tbqzV8BnJAA4B4ZTc= Subject key identifier: 49:4B:8C:90:C7:E2:78:13:4F:27:67:C2:FC:6C:30:E7:C6:F8:F9:AA Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 3423 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 3423 Signing time: Fri 22 Nov 2024 14:59:42 +0000 Manifest this update: Fri 22 Nov 2024 14:59:41 +0000 Manifest next update: Fri 29 Nov 2024 14:59:41 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: HiRg5XEc/+6D5Vx41cyxOr3xvUnaIqE1Fa2t00nkh4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13347 (0x3423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Nov 22 14:59:41 2024 GMT Not After : Nov 29 14:59:41 2024 GMT Subject: CN=67409c5d-fad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:5c:40:64:81:fa:a1:14:7f:6b:26:c6:f1: 14:e8:1c:46:48:ec:37:af:00:90:b0:89:cf:f5:c1: f7:ed:81:52:65:66:6f:52:0f:54:db:d0:b7:6d:f0: ca:5b:2d:4b:bf:c1:3a:53:98:f2:83:81:e4:21:3e: b9:fa:fe:ea:d6:12:ce:82:92:34:d1:af:71:9a:7e: 3e:f9:39:76:28:8b:05:7e:49:1c:2e:4e:fa:f9:8f: 70:ad:96:04:ff:46:66:b2:39:a7:36:6f:da:bc:49: 66:9e:73:55:2b:9c:9d:85:16:60:b0:b1:21:45:d5: fb:70:15:94:60:67:6a:f1:6e:2c:59:bc:c2:16:4e: 64:96:46:d9:71:2d:13:30:2e:a9:50:ea:f1:c4:6e: ea:39:bf:a6:43:f2:bc:40:17:d0:ee:a9:3c:8f:b5: 09:5c:a0:b5:00:51:48:ac:a3:78:8e:0b:0c:c5:f8: 13:b2:16:f4:72:af:d6:8d:bb:55:ec:35:be:38:ac: f6:83:27:af:9c:8c:de:2e:f0:aa:19:31:e2:2b:65: e7:d5:33:16:14:38:f0:82:55:bc:a8:6b:c5:b4:b9: 91:6f:05:f2:e2:72:41:17:ec:f6:63:20:e9:02:19: 3f:a9:cc:38:8f:c4:da:bf:d4:1e:7a:20:2a:f3:7e: c8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4B:8C:90:C7:E2:78:13:4F:27:67:C2:FC:6C:30:E7:C6:F8:F9:AA X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:5f:b9:3e:f6:2e:21:5d:9f:59:18:d8:9b:c8:aa:6c:7e:49: c5:4f:58:85:1a:71:08:6c:8c:ad:1c:98:be:0f:06:49:f1:11: 95:83:a6:fc:19:4c:6c:68:3c:23:e5:cc:6f:ec:ed:a1:35:2c: 36:5f:f8:01:8d:43:bb:07:ae:86:da:3d:5e:0a:0c:0d:05:be: e8:22:3d:92:c3:fa:a3:db:3d:09:b0:60:e3:6b:f5:ea:54:82: d2:78:f0:28:36:c3:ff:e1:33:20:9e:83:5b:28:77:ef:fa:bd: 66:29:36:47:40:ae:9d:94:db:4e:ea:43:94:d1:69:4b:8a:27: 9d:37:47:f2:50:8d:94:38:92:b0:07:c2:72:43:a7:78:c0:36: ed:20:fe:2c:fe:e6:1c:56:94:98:6e:a4:aa:b9:ed:99:56:1b: 26:c6:ff:10:01:49:bb:fa:de:ee:9b:f8:23:db:d7:1a:d1:8c: 02:01:ee:0d:ef:a8:ee:be:15:6e:c1:25:a9:7c:8f:3b:64:4f: b2:e1:6b:96:4a:c9:94:7f:25:5d:a3:1b:2c:e6:ac:ee:bd:c5: 16:73:ec:61:d2:3a:86:2d:d1:12:f8:29:19:95:73:da:fe:8e: 85:ae:dc:49:19:96:47:6b:e1:09:b5:41:d8:d9:9f:e9:c4:62: 7c:38:c1:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjQxMTIyMTQ1OTQxWhcNMjQxMTI5MTQ1OTQxWjAYMRYwFAYD VQQDEw02NzQwOWM1ZC1mYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWNcQGSB+qEUf2smxvEU6BxGSOw3rwCQsInP9cH37YFSZWZvUg9U29C3bfDK Wy1Lv8E6U5jyg4HkIT65+v7q1hLOgpI00a9xmn4++Tl2KIsFfkkcLk76+Y9wrZYE /0ZmsjmnNm/avElmnnNVK5ydhRZgsLEhRdX7cBWUYGdq8W4sWbzCFk5klkbZcS0T MC6pUOrxxG7qOb+mQ/K8QBfQ7qk8j7UJXKC1AFFIrKN4jgsMxfgTshb0cq/WjbtV 7DW+OKz2gyevnIzeLvCqGTHiK2Xn1TMWFDjwglW8qGvFtLmRbwXy4nJBF+z2YyDp Ahk/qcw4j8Tav9QeeiAq837IUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElLjJDH 4ngTTydnwvxsMOfG+PmqMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiX7k+9i4hXZ9ZGNibyKpsfknFT1iFGnEIbIytHJi+DwZJ8RGVg6b8 GUxsaDwj5cxv7O2hNSw2X/gBjUO7B66G2j1eCgwNBb7oIj2Sw/qj2z0JsGDja/Xq VILSePAoNsP/4TMgnoNbKHfv+r1mKTZHQK6dlNtO6kOU0WlLiiedN0fyUI2UOJKw B8JyQ6d4wDbtIP4s/uYcVpSYbqSque2ZVhsmxv8QAUm7+t7um/gj29ca0YwCAe4N 76juvhVuwSWpfI87ZE+y4WuWSsmUfyVdoxss5qzuvcUWc+xh0jqGLdES+CkZlXPa /o6FrtxJGZZHa+EJtUHY2Z/pxGJ8OMEb -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org