$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft File: rTu2A7FO-ybXFWgvsEE1Hsj502c.mft (raw, json) Hash identifier: FhZdVgcYaDOjUOU0LMydnJ7P+MgF1F6KL/HFkvDPfBA= Subject key identifier: 3A:F4:6A:EA:DA:38:F1:54:7B:50:98:E0:24:5A:4F:80:02:C1:6D:62 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 1260 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft Manifest number: 1244 Signing time: Wed 20 Nov 2024 17:05:27 +0000 Manifest this update: Wed 20 Nov 2024 17:05:26 +0000 Manifest next update: Wed 27 Nov 2024 17:05:26 +0000 Files and hashes: 1: rTu2A7FO-ybXFWgvsEE1Hsj502c.crl (hash: mjXXcgQQAF6lyXRqxXleFveOsU+ttuX4Gci+grMgKnw=) 2: C31D6D082BA611EF82D8BF21C4F9AE02.roa (hash: KaW9aZSDLK+mKsP8fjkAgqpDDnd+a3UW3uKsVuShP/I=) 3: 403398AA233111EEAF768F66C4F9AE02.roa (hash: 0mDJIUk6aRUJMQh8NxIXz/sLiUXKdkHoURNuoOWSBUc=) 4: E4AFD636233211EE8737EE2AC4F9AE02.roa (hash: I4Cnkf7lzkqLnc4f4vTRyRNiopCEkAOSa+SBIvRJfZM=) 5: 4426B244F6A011EC8E197883C4F9AE02.roa (hash: bBZfLoHpOK0OlB0OzQEVHa924CCG++Yge8OBC7CQuI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4704 (0x1260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Nov 20 17:05:26 2024 GMT Not After : Nov 27 17:05:26 2024 GMT Subject: CN=673e16d6-f326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:98:95:ff:6e:7d:bb:7e:52:02:6a:0b:9f:d1: d3:dc:31:3a:b1:9b:48:c4:b4:01:02:e7:05:77:a4: 81:0c:52:97:67:2c:e8:bb:98:e1:f0:03:92:3f:43: 11:8a:9d:ba:fe:2f:4b:7d:73:f8:90:3b:5d:54:53: b5:14:8f:73:b3:93:a0:a4:32:bb:9d:23:e4:b0:e3: ea:a9:c3:7a:63:2c:a7:2c:1e:a7:7d:89:4f:11:12: 5c:51:01:ca:88:e3:07:c8:5b:fa:6a:50:f6:40:38: 32:e0:bd:93:03:d2:96:20:fe:7a:42:61:a7:16:10: db:fb:67:16:e0:e2:a3:5d:ab:86:1c:2a:45:98:a1: 16:ff:57:7d:3d:e2:63:74:3c:a9:e9:26:a9:b6:a5: 82:fb:76:5f:af:c8:9f:bb:4b:7c:ff:9f:03:5a:8b: 09:6c:ac:24:94:f9:76:7c:a1:15:a2:dc:28:58:21: 4d:0a:68:34:68:d9:8c:5c:a2:42:ea:6b:89:82:dd: f3:36:22:c2:6b:2b:dc:49:a5:b5:4b:c9:14:20:3b: 40:db:a9:76:dd:6e:14:90:72:41:33:47:6b:7c:0d: 56:91:75:38:5d:9e:b0:f6:85:1a:95:e0:1c:da:2a: 79:06:29:9b:73:a4:6e:59:cf:66:b7:40:74:c9:a9: 76:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:F4:6A:EA:DA:38:F1:54:7B:50:98:E0:24:5A:4F:80:02:C1:6D:62 X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:66:6e:6c:c3:02:d4:79:4c:b9:0c:df:24:a3:ce:60:47:db: 65:e6:d8:b5:d9:e4:fe:49:b3:9c:aa:2f:92:f0:20:32:b0:17: 82:72:5c:2b:fa:15:d3:15:9a:37:28:a2:af:10:20:9d:a0:4e: 8e:3c:f1:81:a3:89:61:5f:56:52:f3:df:68:53:5d:39:68:ae: f5:34:c6:03:fb:12:e5:64:c0:0f:b1:8d:82:3c:fe:27:16:e0: d2:3d:6e:1c:ae:ea:13:43:bc:cd:0d:ca:f8:63:53:bc:1e:a0: 51:3e:a1:7a:7b:fe:79:40:0d:ba:c0:d1:12:3d:fb:48:d0:8b: 38:9b:85:0c:19:30:92:8e:30:17:63:61:be:32:a1:b8:31:bc: f1:22:66:98:fb:37:10:57:f0:76:8f:2d:dd:17:e6:9e:13:a0: 63:c3:0a:ab:99:1f:b2:ce:3b:cf:8e:e8:a7:25:8c:93:c9:2a: 35:53:19:c5:ae:ed:6d:33:33:d9:03:94:91:bd:0a:5c:ac:18: 65:8c:62:45:67:5c:92:70:41:06:03:62:ff:13:c4:93:59:c2: 23:cb:28:fb:c1:e6:95:96:14:36:1f:cb:41:cb:8f:2e:d0:ad: 31:d6:12:f5:df:3e:14:ae:31:64:75:a7:57:60:6a:5b:6c:0b: 65:06:20:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjQxMTIwMTcwNTI2WhcNMjQxMTI3MTcwNTI2WjAYMRYwFAYD VQQDEw02NzNlMTZkNi1mMzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1piV/259u35SAmoLn9HT3DE6sZtIxLQBAucFd6SBDFKXZyzou5jh8AOSP0MR ip26/i9LfXP4kDtdVFO1FI9zs5OgpDK7nSPksOPqqcN6YyynLB6nfYlPERJcUQHK iOMHyFv6alD2QDgy4L2TA9KWIP56QmGnFhDb+2cW4OKjXauGHCpFmKEW/1d9PeJj dDyp6SaptqWC+3Zfr8ifu0t8/58DWosJbKwklPl2fKEVotwoWCFNCmg0aNmMXKJC 6muJgt3zNiLCayvcSaW1S8kUIDtA26l23W4UkHJBM0drfA1WkXU4XZ6w9oUaleAc 2ip5Bimbc6RuWc9mt0B0yal2DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDr0aura OPFUe1CY4CRaT4ACwW1iMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTQzNi9BMzBCNUE0QUM3OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15 YlhGV2d2c0VFMUhzajUwMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSZm5swwLUeUy5DN8ko85gR9tl5ti12eT+SbOcqi+S8CAysBeCclwr +hXTFZo3KKKvECCdoE6OPPGBo4lhX1ZS899oU105aK71NMYD+xLlZMAPsY2CPP4n FuDSPW4cruoTQ7zNDcr4Y1O8HqBRPqF6e/55QA26wNESPftI0Is4m4UMGTCSjjAX Y2G+MqG4MbzxImaY+zcQV/B2jy3dF+aeE6BjwwqrmR+yzjvPjuinJYyTySo1UxnF ru1tMzPZA5SRvQpcrBhljGJFZ1yScEEGA2L/E8STWcIjyyj7weaVlhQ2H8tBy48u 0K0x1hL13z4UrjFkdadXYGpbbAtlBiC/ -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:01 2024 by rpki-client on console-ams.rpki-client.org