$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: 8ZKVpfVmoydPuRrsm5aTPbrZNWo6/6eSHlPgnHV6RWQ= Subject key identifier: 5A:A8:BC:50:FB:D8:DF:78:B2:F4:88:56:EA:A6:C1:0B:19:7E:E6:62 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 027F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 0268 Signing time: Sat 23 Nov 2024 01:17:35 +0000 Manifest this update: Sat 23 Nov 2024 01:17:34 +0000 Manifest next update: Sat 30 Nov 2024 01:17:34 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: piYfYpz7xf5M1cODm5GQfDPyM/gaGCmNHJIEz8rccIo=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: 53m8lgTS9MVUv1Vw8PSfBdAvCrqd3v5hMo0nMfwS2c0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Nov 23 01:17:34 2024 GMT Not After : Nov 30 01:17:34 2024 GMT Subject: CN=67412d2e-9308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7e:6b:f4:58:59:ee:74:c1:ce:c0:73:66:67: 7b:eb:f6:b4:3c:73:fc:35:dc:59:5c:69:86:15:2d: 4c:d1:ce:c6:f8:18:ec:7c:79:5b:26:54:e6:ec:27: be:aa:6a:e9:71:ec:27:64:bc:fa:31:8c:d9:d4:54: 98:7e:e5:af:ea:b9:66:44:45:4b:65:e1:2b:6e:44: 1e:80:0f:bf:ff:13:f5:b6:ea:e8:a2:7c:1b:0b:6e: d0:f2:d3:d2:d2:10:06:92:1c:74:60:eb:71:8d:60: 29:c7:b9:33:d5:7b:1e:a2:44:8d:46:35:cb:db:1d: e9:85:67:92:3a:f5:9a:4e:db:bf:db:97:24:1c:27: c9:ea:a6:3f:db:d6:c4:a4:20:72:80:4c:6f:1b:50: 54:e0:bf:89:1f:b7:58:74:b8:5e:3b:b2:52:23:fb: a1:26:59:86:82:83:94:c7:67:eb:71:ca:ac:ff:da: 9f:54:cd:c2:97:67:7c:76:2d:dc:4d:ce:98:82:4c: af:d5:ba:1d:e8:4c:fa:08:35:29:18:14:46:38:9c: 18:fa:2f:ac:82:8c:84:93:9c:a1:3b:0e:52:de:fe: fa:4a:0d:d8:48:88:96:e6:da:55:07:91:16:9e:06: f3:ea:05:f0:da:36:79:99:3b:ec:16:5b:e3:78:e3: 47:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A8:BC:50:FB:D8:DF:78:B2:F4:88:56:EA:A6:C1:0B:19:7E:E6:62 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:7c:38:8f:32:69:9d:b3:ed:04:7c:c4:ae:7e:2b:04:46:c2: f2:03:ae:f2:83:ab:0b:f7:30:62:88:fd:45:b3:6c:9d:63:a2: ae:50:7e:1b:23:7d:81:13:d7:8e:ee:e9:24:2e:a0:32:da:3f: 2f:47:46:5b:54:dd:87:24:57:78:bd:40:0a:d8:b3:af:e5:13: 32:4a:fa:40:9c:60:86:d4:79:75:32:c9:9b:ba:2d:a9:8f:27: 29:fc:d2:d8:aa:0d:23:95:df:ba:ab:ce:5f:af:db:54:5c:73: f0:c9:5b:19:dc:ce:19:5b:43:b4:64:9d:80:ce:60:7d:ad:e3: 91:35:d7:74:8d:00:a5:b0:f8:e0:0d:24:91:8d:89:bb:7f:27: c3:73:84:3c:dd:83:b0:9c:e8:be:60:67:d7:a7:40:d1:18:52: 7d:3f:40:6a:f8:d4:4a:60:83:27:d4:7e:6d:66:4b:b1:9c:fb: f0:18:a7:d2:6d:96:b2:8b:e9:6b:b7:5f:7b:e2:6f:13:2e:93: 57:8e:be:b5:9e:ad:c8:65:6c:f4:a5:94:98:40:06:41:6b:9e: a7:9e:a2:a8:ca:d1:55:ab:89:93:26:43:1c:f5:1f:3e:5d:d3: 2b:c1:99:f2:6c:e0:ba:0b:a5:c1:80:dc:66:3a:97:42:99:1a: ce:96:87:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjQxMTIzMDExNzM0WhcNMjQxMTMwMDExNzM0WjAYMRYwFAYD VQQDEw02NzQxMmQyZS05MzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H5r9FhZ7nTBzsBzZmd76/a0PHP8NdxZXGmGFS1M0c7G+BjsfHlbJlTm7Ce+ qmrpcewnZLz6MYzZ1FSYfuWv6rlmREVLZeErbkQegA+//xP1turoonwbC27Q8tPS 0hAGkhx0YOtxjWApx7kz1XseokSNRjXL2x3phWeSOvWaTtu/25ckHCfJ6qY/29bE pCBygExvG1BU4L+JH7dYdLheO7JSI/uhJlmGgoOUx2frccqs/9qfVM3Cl2d8di3c Tc6Ygkyv1bod6Ez6CDUpGBRGOJwY+i+sgoyEk5yhOw5S3v76Sg3YSIiW5tpVB5EW ngbz6gXw2jZ5mTvsFlvjeONHOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqovFD7 2N94svSIVuqmwQsZfuZiMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAefDiPMmmds+0EfMSufisERsLyA67yg6sL9zBiiP1Fs2ydY6KuUH4b I32BE9eO7ukkLqAy2j8vR0ZbVN2HJFd4vUAK2LOv5RMySvpAnGCG1Hl1Msmbui2p jycp/NLYqg0jld+6q85fr9tUXHPwyVsZ3M4ZW0O0ZJ2AzmB9reORNdd0jQClsPjg DSSRjYm7fyfDc4Q83YOwnOi+YGfXp0DRGFJ9P0Bq+NRKYIMn1H5tZkuxnPvwGKfS bZayi+lrt1974m8TLpNXjr61nq3IZWz0pZSYQAZBa56nnqKoytFVq4mTJkMc9R8+ XdMrwZnybOC6C6XBgNxmOpdCmRrOlof/ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org