$ rpki-client -vvf rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft File: IffNCqAWhDVSmHRj5kIpcu8DnOg.mft (raw, json) Hash identifier: QnOKz/sNYrq+LWBgtl74yP+hD6jNeLCp1Gc9q4WJEgQ= Subject key identifier: AA:77:ED:1B:25:CB:03:76:CA:51:D4:BE:E6:AE:2A:9F:88:F4:46:94 Authority key identifier: 21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 Certificate issuer: /CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft Manifest number: 040B Signing time: Fri 22 Nov 2024 23:59:15 +0000 Manifest this update: Fri 22 Nov 2024 23:59:14 +0000 Manifest next update: Fri 29 Nov 2024 23:59:14 +0000 Files and hashes: 1: IffNCqAWhDVSmHRj5kIpcu8DnOg.crl (hash: RK5aG373lM+t2X3ec2hkGU/TsxsSZ+6fKoHMW4HD0Qg=) 2: F47ED252878B11EEA8C62644C4F9AE02.roa (hash: qTXBNw7mfhaErKZnovnNFuD402t8u0aLC3Cx70bCvCg=) 3: E097013E910C11EFB994E187C4F9AE02.roa (hash: 6iwr6VYb5feSdMcufjsCe6jPARf4GSvhQnloLGq2csk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919710C/serialNumber=21F7CD0AA016843552987463E6422972EF039CE8 Validity Not Before: Nov 22 23:59:14 2024 GMT Not After : Nov 29 23:59:14 2024 GMT Subject: CN=67411ad3-aa4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5e:d8:3a:5a:2b:00:72:23:a2:00:c7:1e:56: a9:69:65:be:c4:48:d0:01:a2:27:d9:4a:9c:68:b7: f8:09:7b:b7:10:4a:04:6e:90:65:2b:fd:f9:41:65: 48:a3:64:84:ff:98:81:8c:66:79:61:fc:f4:59:c2: 7c:ad:33:e8:e2:5a:db:90:d1:9a:2a:84:23:23:cd: 8e:2f:51:99:03:4d:fb:5a:75:ab:c0:cc:20:0b:dc: 31:98:09:2c:bc:e6:88:fd:3e:f2:d9:89:66:6a:be: 48:98:6b:3a:e5:6f:8c:0b:b7:1d:a7:d4:55:ce:51: 43:50:6a:50:f2:ac:f8:97:72:72:3b:d0:79:b2:d6: b6:e2:f5:52:88:11:5a:80:5f:d1:02:c8:86:73:78: cf:4f:7a:1f:6b:1f:5e:56:66:29:e3:a8:46:8e:8a: 31:aa:55:a7:c0:24:04:0d:60:d3:01:89:c9:83:b6: 5b:90:1f:75:2e:b8:f5:dc:9a:72:6b:48:b5:49:fe: 1f:c0:2a:a5:99:a9:0e:82:cb:a0:b2:22:ea:ed:9c: c7:5f:9b:b5:4b:77:7c:e2:b5:a8:53:f3:49:df:05: 5a:84:f2:5f:d8:ea:5b:65:73:56:f5:bb:26:b1:f5: 35:04:3f:9c:66:aa:8a:3f:3c:84:b4:c6:b4:56:3d: e0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:77:ED:1B:25:CB:03:76:CA:51:D4:BE:E6:AE:2A:9F:88:F4:46:94 X509v3 Authority Key Identifier: keyid:21:F7:CD:0A:A0:16:84:35:52:98:74:63:E6:42:29:72:EF:03:9C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IffNCqAWhDVSmHRj5kIpcu8DnOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919710C/2F3676124B6011EC9554DC50C4F9AE02/IffNCqAWhDVSmHRj5kIpcu8DnOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:f8:06:08:c4:bd:ce:38:4a:46:be:46:e7:cd:60:56:8b:af: 3f:3e:fe:af:32:0a:4f:8f:fb:37:df:1b:5c:82:07:75:e9:36: 49:f7:0a:68:14:33:39:92:6c:95:c3:60:3b:69:46:4f:c2:6f: 0a:0e:ac:54:d5:b1:cb:4d:75:7d:38:69:95:0e:6d:ec:d0:e8: 93:5f:f3:68:c2:38:46:b8:c4:13:f7:1d:27:c1:22:4a:1b:e3: 78:f0:38:23:e2:4d:a1:ff:b9:15:1d:26:61:6a:e4:b4:fa:ac: 73:76:fb:67:2c:b2:af:58:0a:79:9e:1b:8c:91:a0:ce:ff:81: 73:a4:25:97:5a:4e:5e:95:c2:e5:7c:3e:28:4a:83:24:c6:12: 6b:7d:0a:6b:2e:9f:6d:f3:a2:ac:0f:fc:bb:f8:63:8d:33:9f: 47:bb:75:56:64:e5:25:2c:8e:22:b6:9b:27:04:2a:3f:a7:c3: 5b:f8:57:7b:e1:3a:91:26:bd:7b:6e:a4:74:4d:ea:e5:ad:80: e3:0f:be:86:f9:56:1d:8f:59:03:54:e8:d7:95:28:b3:90:cc: 51:c6:3c:37:27:61:b1:22:5c:6e:3a:8d:dd:bd:56:6d:01:e0: f6:62:91:36:43:da:33:24:71:4f:68:00:af:03:87:37:48:37: 76:96:ad:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxMEMxMTAvBgNVBAUTKDIxRjdDRDBBQTAxNjg0MzU1Mjk4NzQ2M0U2NDIyOTcy RUYwMzlDRTgwHhcNMjQxMTIyMjM1OTE0WhcNMjQxMTI5MjM1OTE0WjAYMRYwFAYD VQQDEw02NzQxMWFkMy1hYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm17YOlorAHIjogDHHlapaWW+xEjQAaIn2UqcaLf4CXu3EEoEbpBlK/35QWVI o2SE/5iBjGZ5Yfz0WcJ8rTPo4lrbkNGaKoQjI82OL1GZA037WnWrwMwgC9wxmAks vOaI/T7y2Ylmar5ImGs65W+MC7cdp9RVzlFDUGpQ8qz4l3JyO9B5sta24vVSiBFa gF/RAsiGc3jPT3ofax9eVmYp46hGjooxqlWnwCQEDWDTAYnJg7ZbkB91Lrj13Jpy a0i1Sf4fwCqlmakOgsugsiLq7ZzHX5u1S3d84rWoU/NJ3wVahPJf2OpbZXNW9bsm sfU1BD+cZqqKPzyEtMa0Vj3gcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp37Rsl ywN2ylHUvuauKp+I9EaUMB8GA1UdIwQYMBaAFCH3zQqgFoQ1Uph0Y+ZCKXLvA5zo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzEwQy8yRjM2NzYxMjRC NjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hEVlNtSFJqNWtJcGN1OERu T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lmZk5DcUFXaERWU21IUmo1a0lwY3U4RG5PZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzEwQy8yRjM2NzYxMjRCNjAxMUVDOTU1NERDNTBDNEY5QUUwMi9JZmZOQ3FBV2hE VlNtSFJqNWtJcGN1OERuT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG+AYIxL3OOEpGvkbnzWBWi68/Pv6vMgpPj/s33xtcggd16TZJ9wpo FDM5kmyVw2A7aUZPwm8KDqxU1bHLTXV9OGmVDm3s0OiTX/NowjhGuMQT9x0nwSJK G+N48Dgj4k2h/7kVHSZhauS0+qxzdvtnLLKvWAp5nhuMkaDO/4FzpCWXWk5elcLl fD4oSoMkxhJrfQprLp9t86KsD/y7+GONM59Hu3VWZOUlLI4itpsnBCo/p8Nb+Fd7 4TqRJr17bqR0TerlrYDjD76G+VYdj1kDVOjXlSizkMxRxjw3J2GxIlxuOo3dvVZt AeD2YpE2Q9ozJHFPaACvA4c3SDd2lq3b -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org