$ rpki-client -vvf rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft File: rHE1BMtD6841eUt90irqe7WCPEk.mft (raw, json) Hash identifier: 96daf+x3IfZwvvWvEKYYRJolnksV4yFW67wlcte/bkc= Subject key identifier: C5:D8:05:B9:AB:76:82:48:C6:A8:09:39:3C:18:0B:ED:B0:62:C4:C7 Authority key identifier: AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 Certificate issuer: /CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Certificate serial: 0BD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft Manifest number: 0BCB Signing time: Fri 22 Nov 2024 18:35:08 +0000 Manifest this update: Fri 22 Nov 2024 18:35:08 +0000 Manifest next update: Fri 29 Nov 2024 18:35:08 +0000 Files and hashes: 1: rHE1BMtD6841eUt90irqe7WCPEk.crl (hash: esiY0TJQyu5Ucd2e9A++XLF0GfD0xtbHj8VevXTHGmw=) 2: 54E193E20AD511EA8397192EC4F9AE02.roa (hash: iayrZJYEitBNATqG7kmIbJVdbWLvR5eomEWbBMlShno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3029 (0xbd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186777/serialNumber=AC713504CB43EBCE35794B7DD22AEA7BB5823C49 Validity Not Before: Nov 22 18:35:08 2024 GMT Not After : Nov 29 18:35:08 2024 GMT Subject: CN=6740cedc-9525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:87:0c:cb:59:f4:4f:96:fb:89:ab:ea:47:15: fd:34:c4:51:c1:04:00:2b:8f:12:80:03:68:af:2c: 89:9b:e1:76:06:4f:13:96:82:ff:28:0c:80:ff:98: 2b:4e:22:61:ee:95:30:44:91:b9:56:58:30:d5:c1: 80:ac:0f:fc:1b:93:67:4e:9e:74:59:3b:09:b3:ea: 12:5c:12:f8:fa:a8:9c:5e:70:c5:bf:86:76:61:c6: 30:67:75:9b:16:68:cc:87:c0:8c:2d:6a:f3:38:29: 1d:91:46:f1:f4:38:8e:ca:2c:3b:70:a4:b0:21:8d: d9:42:86:01:7e:ad:88:15:8f:ea:78:45:74:06:eb: b9:dd:eb:ef:c5:86:a7:25:f5:43:10:b8:9c:20:07: 0f:17:2c:b9:4c:26:cd:1d:2d:b5:ce:4f:5b:27:66: cf:ce:0d:ba:98:1a:71:96:85:63:71:d7:28:f4:06: 99:32:79:d2:95:14:21:5c:2f:de:96:43:49:91:99: 3b:82:f7:d3:27:89:00:ad:59:96:5f:3c:6c:d5:9f: 27:75:62:12:6a:33:0a:f0:23:3b:66:6f:0e:2d:fb: c5:2f:ae:40:98:eb:13:37:10:2e:51:6f:4a:c3:3f: 1c:ac:4e:59:d4:99:6c:53:96:59:c7:58:72:74:e0: 90:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D8:05:B9:AB:76:82:48:C6:A8:09:39:3C:18:0B:ED:B0:62:C4:C7 X509v3 Authority Key Identifier: keyid:AC:71:35:04:CB:43:EB:CE:35:79:4B:7D:D2:2A:EA:7B:B5:82:3C:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHE1BMtD6841eUt90irqe7WCPEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186777/FDAA77200AD311EA9ADF772CC4F9AE02/rHE1BMtD6841eUt90irqe7WCPEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ee:f3:b2:4b:f9:6e:a4:5e:c3:d6:6e:fc:51:e5:53:cd:35:49: 6f:d5:0b:0b:05:e0:39:d6:14:00:61:1a:8f:f6:10:3b:5e:f8: 3a:37:0b:e9:ab:a8:ea:c8:89:97:f0:34:2a:d2:3f:1d:61:5d: 2b:ee:f7:51:8d:91:ca:c0:a9:c5:d2:12:59:2c:f9:8e:ce:3d: 9b:94:c1:ec:0f:a1:8b:71:65:18:20:4d:4a:d0:0d:61:0a:09: 42:3f:29:72:77:c8:23:f0:a2:1c:50:7b:de:fc:58:f5:fe:41: a6:59:9d:56:bd:25:80:55:7f:96:b3:a5:97:b7:36:38:8e:0f: 03:ba:45:51:4c:d5:8f:37:ae:67:12:05:5e:16:11:f4:04:19: 14:f4:b3:2f:bd:09:1f:b4:48:99:9f:67:16:be:df:fc:5a:90: d2:c2:78:5a:90:1e:7e:46:4f:b2:06:5d:58:50:3f:eb:26:4a: 5a:42:29:3f:32:3e:9d:d6:59:e6:e4:08:39:8e:e1:01:fa:18: 92:59:70:c3:f8:8f:cb:61:24:46:1c:8e:a6:fe:3f:2d:fb:31: 51:54:5f:99:21:b2:86:eb:e1:9a:d2:8e:0d:c8:29:39:71:de: ce:9d:31:31:53:32:df:87:55:b1:e4:72:66:9e:68:6b:97:1b: 69:14:66:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3NzcxMTAvBgNVBAUTKEFDNzEzNTA0Q0I0M0VCQ0UzNTc5NEI3REQyMkFFQTdC QjU4MjNDNDkwHhcNMjQxMTIyMTgzNTA4WhcNMjQxMTI5MTgzNTA4WjAYMRYwFAYD VQQDEw02NzQwY2VkYy05NTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4cMy1n0T5b7iavqRxX9NMRRwQQAK48SgANoryyJm+F2Bk8TloL/KAyA/5gr TiJh7pUwRJG5Vlgw1cGArA/8G5NnTp50WTsJs+oSXBL4+qicXnDFv4Z2YcYwZ3Wb FmjMh8CMLWrzOCkdkUbx9DiOyiw7cKSwIY3ZQoYBfq2IFY/qeEV0Buu53evvxYan JfVDELicIAcPFyy5TCbNHS21zk9bJ2bPzg26mBpxloVjcdco9AaZMnnSlRQhXC/e lkNJkZk7gvfTJ4kArVmWXzxs1Z8ndWISajMK8CM7Zm8OLfvFL65AmOsTNxAuUW9K wz8crE5Z1JlsU5ZZx1hydOCQ5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXYBbmr doJIxqgJOTwYC+2wYsTHMB8GA1UdIwQYMBaAFKxxNQTLQ+vONXlLfdIq6nu1gjxJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Njc3Ny9GREFBNzcyMDBB RDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4NDFlVXQ5MGlycWU3V0NQ RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIRTFCTXRENjg0MWVVdDkwaXJxZTdXQ1BFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Njc3Ny9GREFBNzcyMDBBRDMxMUVBOUFERjc3MkNDNEY5QUUwMi9ySEUxQk10RDY4 NDFlVXQ5MGlycWU3V0NQRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDu87JL+W6kXsPWbvxR5VPNNUlv1QsLBeA51hQAYRqP9hA7Xvg6Nwvp q6jqyImX8DQq0j8dYV0r7vdRjZHKwKnF0hJZLPmOzj2blMHsD6GLcWUYIE1K0A1h CglCPylyd8gj8KIcUHve/Fj1/kGmWZ1WvSWAVX+Ws6WXtzY4jg8DukVRTNWPN65n EgVeFhH0BBkU9LMvvQkftEiZn2cWvt/8WpDSwnhakB5+Rk+yBl1YUD/rJkpaQik/ Mj6d1lnm5Ag5juEB+hiSWXDD+I/LYSRGHI6m/j8t+zFRVF+ZIbKG6+Ga0o4NyCk5 cd7OnTExUzLfh1Wx5HJmnmhrlxtpFGaK -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org