$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: y/jg9w8R+SIcuVPjwvdcraMXEuvgUASEXuH5p+Zo+oQ= Subject key identifier: A9:7F:04:94:56:BA:B0:06:2C:4C:85:5C:2A:03:66:44:F5:EC:00:91 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 02B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 02B1 Signing time: Sat 23 Nov 2024 01:02:38 +0000 Manifest this update: Sat 23 Nov 2024 01:02:38 +0000 Manifest next update: Sat 30 Nov 2024 01:02:38 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: 8y2vo3IIIZresZEW1qeKZ40xmXrHm5+BTGCp7TTgGGk=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: Es4xWH/MOyfkkc/RYd9IRsc0K3PRc1MXcB8ZFrJBb4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Nov 23 01:02:38 2024 GMT Not After : Nov 30 01:02:38 2024 GMT Subject: CN=674129ae-c9fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b3:69:f2:b2:46:90:52:d2:d6:81:02:31:8d: a3:99:7d:ee:0a:28:c1:0b:d0:cd:dd:40:49:e2:65: cc:1e:3e:7d:fe:75:4c:eb:dd:79:f0:05:f4:d2:8f: 1b:28:f2:6e:ec:73:21:7f:91:fa:f1:c1:19:0a:0a: 78:f1:14:04:92:97:a9:51:73:92:57:1c:40:8d:fc: 5b:d3:55:01:1e:b5:d9:c2:f4:64:1e:28:e0:f3:1a: d1:db:f1:f1:08:38:08:c4:b2:5c:40:c7:1a:29:78: 13:b5:eb:ae:1e:c4:48:c7:5a:99:15:f8:97:fb:28: de:22:99:f8:25:dd:2f:6a:21:9d:95:de:0a:64:32: f1:6b:23:ae:ce:55:56:72:5b:07:ec:bd:a4:3e:83: 86:41:0b:53:da:3a:41:2d:02:f3:9e:0d:cd:37:5f: fa:d4:37:7b:3e:7f:0e:7d:ae:07:cc:f3:d0:05:9c: b8:e7:23:07:74:61:00:63:6e:25:97:1c:fc:6d:4c: 9e:2c:75:fc:2c:7f:60:86:08:2c:4a:37:48:df:98: b3:4f:e0:a4:74:e1:e4:04:c8:7a:5a:57:71:32:ce: 4c:97:0d:0c:b2:ca:51:14:f5:f6:e3:1a:04:3c:f3: 50:4c:94:bc:86:bb:06:0d:35:75:ad:a6:61:93:44: 8a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:7F:04:94:56:BA:B0:06:2C:4C:85:5C:2A:03:66:44:F5:EC:00:91 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cf:1c:3e:ad:dc:f7:ac:47:b7:62:f2:3a:df:c2:7f:26:50: 51:f1:b3:ba:f0:44:5d:6e:8b:50:81:cd:36:43:9a:5d:89:c4: 1d:74:d3:74:d7:48:21:4d:1c:47:5d:5a:f0:c4:51:6d:b7:d6: 1f:c7:02:b2:e3:fd:0d:ff:cc:58:e3:4c:4a:7b:2a:73:0b:cb: e2:16:6e:de:7f:9d:96:51:dc:6a:6b:dd:3e:53:ff:e0:f7:48: a5:98:7d:20:b4:53:f7:ff:47:09:72:03:84:b5:9f:a2:05:c9: 1f:95:02:3a:56:4c:9e:8a:8d:54:c7:9e:01:c2:99:0b:01:10: dd:57:34:cf:2b:e1:72:8d:1c:16:bd:66:f1:45:82:66:3d:21: af:d1:f1:29:69:ff:e5:ec:7e:07:f5:c9:a5:4a:7f:a7:0c:b3: b4:ec:2f:31:ed:b7:48:61:25:45:32:35:d3:ed:44:14:aa:6a: 47:32:86:af:11:54:08:04:b5:9d:47:21:6a:f3:7e:8f:07:8b: 70:48:b6:62:f8:14:27:27:e5:f0:0e:dd:a0:5a:29:b6:cf:25: 50:d1:97:bc:ed:de:06:b7:9a:ae:4a:ce:db:9f:d9:21:e6:c1: d7:5d:5e:df:84:66:07:ed:3d:19:c9:d1:9f:7c:3c:97:46:d9: c4:cb:1a:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjQxMTIzMDEwMjM4WhcNMjQxMTMwMDEwMjM4WjAYMRYwFAYD VQQDEw02NzQxMjlhZS1jOWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurNp8rJGkFLS1oECMY2jmX3uCijBC9DN3UBJ4mXMHj59/nVM69158AX00o8b KPJu7HMhf5H68cEZCgp48RQEkpepUXOSVxxAjfxb01UBHrXZwvRkHijg8xrR2/Hx CDgIxLJcQMcaKXgTteuuHsRIx1qZFfiX+yjeIpn4Jd0vaiGdld4KZDLxayOuzlVW clsH7L2kPoOGQQtT2jpBLQLzng3NN1/61Dd7Pn8Ofa4HzPPQBZy45yMHdGEAY24l lxz8bUyeLHX8LH9ghggsSjdI35izT+CkdOHkBMh6WldxMs5Mlw0MsspRFPX24xoE PPNQTJS8hrsGDTV1raZhk0SKmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKl/BJRW urAGLEyFXCoDZkT17ACRMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbzxw+rdz3rEe3YvI638J/JlBR8bO68ERdbotQgc02Q5pdicQddNN0 10ghTRxHXVrwxFFtt9YfxwKy4/0N/8xY40xKeypzC8viFm7ef52WUdxqa90+U//g 90ilmH0gtFP3/0cJcgOEtZ+iBckflQI6Vkyeio1Ux54BwpkLARDdVzTPK+FyjRwW vWbxRYJmPSGv0fEpaf/l7H4H9cmlSn+nDLO07C8x7bdIYSVFMjXT7UQUqmpHMoav EVQIBLWdRyFq836PB4twSLZi+BQnJ+XwDt2gWim2zyVQ0Ze87d4Gt5quSs7bn9kh 5sHXXV7fhGYH7T0ZydGffDyXRtnEyxoO -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org