$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft File: iaMdROlPHMJ4ULusFsAsIKqznOU.mft (raw, json) Hash identifier: 8+VUyTYo+s84qOV5vmMl41diNhXCJWljWi2FC50beK0= Subject key identifier: 9B:F4:43:15:F9:37:2D:E5:E5:10:E0:44:0B:87:37:F2:A4:98:68:D1 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 0A62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft Manifest number: 0A52 Signing time: Wed 20 Nov 2024 19:26:30 +0000 Manifest this update: Wed 20 Nov 2024 19:26:30 +0000 Manifest next update: Wed 27 Nov 2024 19:26:30 +0000 Files and hashes: 1: iaMdROlPHMJ4ULusFsAsIKqznOU.crl (hash: M+YCcGuNAN0lspnPK7fOUKZEi8MIwRkMdl1ojDW/PlA=) 2: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (hash: jqqBqCZOKu2qIALXNmkWZIy2E6GEnPXSik4fgBrMrDA=) 3: F392CF9E53A311EAB1641213C4F9AE02.roa (hash: lxeOojn+XYimi3V1BZ9O9tBljDRntCvGVjoxX3VG+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2658 (0xa62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: Nov 20 19:26:30 2024 GMT Not After : Nov 27 19:26:30 2024 GMT Subject: CN=673e37e6-c81f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:45:d3:67:8e:a6:4d:51:e5:9f:e4:36:33: 60:aa:a2:fa:51:42:e5:ae:26:30:c6:2d:d9:a6:18: 71:e0:85:e4:2a:78:5b:61:df:51:df:cc:be:05:d9: b6:4e:7f:f5:1f:48:e1:79:6c:1b:c6:7f:b9:85:39: 0f:d7:cb:b7:8b:8e:a5:7e:2a:e3:93:65:fc:29:df: 0e:a8:74:bc:f7:e4:cd:59:b7:db:60:51:8d:27:ab: 97:54:a1:fd:de:50:98:f4:7f:e6:eb:5f:9c:62:ea: 59:2d:db:f4:2f:e7:f5:fe:b6:2b:6c:9d:21:d1:9d: 9e:0c:61:30:6a:de:6d:5d:86:51:7e:4d:c1:b2:1a: 83:79:4a:32:00:44:93:e8:a0:5d:59:59:19:4b:e8: 78:a1:25:97:f8:f5:db:12:6d:84:5e:65:6d:7a:06: eb:40:fd:2e:37:ec:37:89:61:b2:bf:b0:62:2f:ae: 5e:4d:21:cb:bf:9d:12:53:6a:60:11:c5:eb:bc:00: 35:18:a9:d4:05:23:e8:f4:80:bb:70:69:6c:c6:10: c7:6b:ec:74:bf:45:10:d9:86:69:0c:87:26:5d:51: 7e:cd:7e:b0:09:3d:54:62:13:2d:53:f2:16:f0:2d: b0:ad:4d:19:7e:0f:d5:61:e5:0e:f5:a2:a0:b0:4f: ca:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F4:43:15:F9:37:2D:E5:E5:10:E0:44:0B:87:37:F2:A4:98:68:D1 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:72:c7:71:8a:b4:c0:0a:f8:7f:f1:3d:f9:e0:a7:44:75:f1: bc:21:75:c3:1a:18:6d:c5:95:7f:d4:40:a7:47:59:7d:fd:88: 83:4a:34:f9:50:b1:d1:80:25:7e:38:b4:10:26:2a:1e:83:9e: 9c:b2:a4:c7:e5:4b:e5:ee:2c:56:2e:5c:2b:89:ff:5a:83:9d: 77:96:89:33:8a:ec:b2:62:03:60:20:2e:07:be:ff:54:62:c5: 22:a0:92:07:0d:1f:31:6c:0d:07:0e:db:d2:a6:a5:04:32:f1: f1:10:d7:62:da:ac:28:27:40:3c:dc:33:95:74:d9:51:50:07: 44:e8:47:e7:47:9d:a3:c1:3f:67:95:18:54:0d:af:a9:d7:ea: 5b:34:76:11:f3:a4:d0:6a:5d:69:74:e4:f6:6b:68:91:a7:8e: 5a:0f:89:39:ce:dd:29:5d:d1:54:23:bc:5e:dd:67:35:91:e6: 0d:14:15:81:6b:e1:f2:d4:94:46:1e:3e:2d:55:70:53:a6:f7: 3d:0b:6d:cd:d5:a6:5b:91:08:cf:74:c6:35:88:2c:d8:eb:48: 66:9e:3e:b2:7a:96:12:17:18:73:2f:1b:93:1d:01:b9:05:d5: 0d:54:d7:59:f8:93:f4:c6:7f:21:42:55:39:a2:65:17:7f:86: 4c:16:8f:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjQxMTIwMTkyNjMwWhcNMjQxMTI3MTkyNjMwWjAYMRYwFAYD VQQDEw02NzNlMzdlNi1jODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEdF02eOpk1R5Z/kNjNgqqL6UULlriYwxi3Zphhx4IXkKnhbYd9R38y+Bdm2 Tn/1H0jheWwbxn+5hTkP18u3i46lfirjk2X8Kd8OqHS89+TNWbfbYFGNJ6uXVKH9 3lCY9H/m61+cYupZLdv0L+f1/rYrbJ0h0Z2eDGEwat5tXYZRfk3BshqDeUoyAEST 6KBdWVkZS+h4oSWX+PXbEm2EXmVtegbrQP0uN+w3iWGyv7BiL65eTSHLv50SU2pg EcXrvAA1GKnUBSPo9IC7cGlsxhDHa+x0v0UQ2YZpDIcmXVF+zX6wCT1UYhMtU/IW 8C2wrU0Zfg/VYeUO9aKgsE/KPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJv0QxX5 Ny3l5RDgRAuHN/KkmGjRMB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3My9BMjk3MDdGNjUzQTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhN SjRVTHVzRnNBc0lLcXpuT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChcsdxirTACvh/8T354KdEdfG8IXXDGhhtxZV/1ECnR1l9/YiDSjT5 ULHRgCV+OLQQJioeg56csqTH5Uvl7ixWLlwrif9ag513lokziuyyYgNgIC4Hvv9U YsUioJIHDR8xbA0HDtvSpqUEMvHxENdi2qwoJ0A83DOVdNlRUAdE6EfnR52jwT9n lRhUDa+p1+pbNHYR86TQal1pdOT2a2iRp45aD4k5zt0pXdFUI7xe3Wc1keYNFBWB a+Hy1JRGHj4tVXBTpvc9C23N1aZbkQjPdMY1iCzY60hmnj6yepYSFxhzLxuTHQG5 BdUNVNdZ+JP0xn8hQlU5omUXf4ZMFo96 -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:43 2024 by rpki-client on console-fra.rpki-client.org