$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: E06zW+htAgCIorbKWnI2EEa/LQRqra/tkZ5KJPIA6bk= Subject key identifier: 4A:F8:5D:FF:EB:37:5D:A0:3A:2F:3F:0B:A9:29:14:F2:05:11:2B:D7 Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:40:40 +0000 Manifest this update: Thu 21 Nov 2024 05:40:39 +0000 Manifest next update: Thu 28 Nov 2024 05:40:39 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: GykdZVQiZkDk89tG1oMRnrgH0W1CqP6/BwK51WGtJLA=) 2: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (hash: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Nov 21 05:40:39 2024 GMT Not After : Nov 28 05:40:39 2024 GMT Subject: CN=673ec7d8-d676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:6b:d2:d0:4b:dd:e6:db:83:1b:44:42:07: e4:3d:fe:e1:32:9b:a7:10:b5:df:97:a1:dc:25:36: f7:d6:d7:de:1a:05:e3:7d:dc:c7:62:23:77:ae:96: 07:62:08:cf:63:87:9c:da:b7:88:52:17:6d:53:fc: b4:5a:a2:ce:b1:43:18:a3:07:be:c2:81:f4:34:82: a0:f7:ec:00:71:fa:23:cb:b9:14:9c:23:e9:90:49: d6:1a:fc:75:b0:09:df:64:32:8e:fd:05:7a:19:48: 0d:62:40:97:cb:7d:25:55:fd:46:d4:61:1f:8f:0a: e1:3f:41:8f:ff:1d:4f:47:d6:ce:13:cf:0d:58:e5: a3:7d:0b:34:37:e3:d5:0c:b0:9e:a5:5a:bf:65:af: 74:f0:f3:30:85:87:9a:4d:06:2e:7a:89:17:47:e4: 44:ad:38:28:41:4b:2e:6a:b2:e8:40:a7:79:db:9f: 08:2b:8c:1f:31:e5:a7:41:71:72:46:50:bf:6b:a9: f5:cd:61:ea:37:cc:5b:c2:5f:d2:ad:03:85:e4:fd: c1:24:9b:9a:de:2d:ab:0d:69:50:91:e6:5a:62:97: 08:ce:f7:ab:b8:e2:c1:90:64:b9:6a:b7:f5:3b:3c: b7:4c:0f:97:23:de:7f:e7:ea:a1:46:62:53:11:35: 72:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F8:5D:FF:EB:37:5D:A0:3A:2F:3F:0B:A9:29:14:F2:05:11:2B:D7 X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:38:90:6f:bc:4c:47:ca:8c:ac:59:eb:3a:f0:fb:05:ba:bb: bd:ee:ac:37:69:6d:99:7a:41:59:31:19:78:b6:fe:56:98:55: 8d:64:4b:e0:a5:dc:3c:88:67:47:27:21:b3:aa:40:14:79:71: 46:1f:16:23:5d:b7:b9:8f:18:df:52:13:2f:74:79:9d:bf:7a: 3b:b0:3c:12:a3:85:75:89:a6:c0:17:34:57:19:bb:1c:2d:97: 19:52:d3:59:f6:80:16:74:19:b7:76:ab:30:cd:a4:53:b4:08: c7:4f:b6:1b:46:3e:bc:e9:25:bb:3d:9c:54:be:21:8a:ab:0c: 95:bf:5d:cc:c8:db:ee:14:d8:a0:dd:23:db:9b:a3:48:1f:b4: a9:43:b8:81:83:09:8b:81:b5:c3:85:30:ad:9b:22:38:6a:9b: 2c:d5:ce:2f:22:26:b3:85:c5:42:44:ab:45:5c:5a:8d:3d:c2: c6:f8:69:af:ce:09:50:93:7f:7a:5f:86:80:f6:de:8a:42:d2: 9a:fe:e0:90:6c:a7:b8:fb:d6:48:e3:4b:3e:9f:57:b8:5d:5b: a7:1b:c9:94:28:07:1e:30:15:91:30:d5:40:1b:f7:a6:e2:29: 32:86:20:3c:ef:ef:c6:e1:2e:48:fd:d5:dd:1d:e6:d9:6c:88: 4f:d4:68:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0NCQzExMC8GA1UEBRMoRDM5ODQ3NDcxNDI1N0JCRUYzQTVBOTc1RDkwQ0QwREM2 NUJEREJFRjAeFw0yNDExMjEwNTQwMzlaFw0yNDExMjgwNTQwMzlaMBgxFjAUBgNV BAMTDTY3M2VjN2Q4LWQ2NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLY2vS0Evd5tuDG0RCB+Q9/uEym6cQtd+XodwlNvfW194aBeN93MdiI3eulgdi CM9jh5zat4hSF21T/LRaos6xQxijB77CgfQ0gqD37ABx+iPLuRScI+mQSdYa/HWw Cd9kMo79BXoZSA1iQJfLfSVV/UbUYR+PCuE/QY//HU9H1s4Tzw1Y5aN9CzQ349UM sJ6lWr9lr3Tw8zCFh5pNBi56iRdH5EStOChBSy5qsuhAp3nbnwgrjB8x5adBcXJG UL9rqfXNYeo3zFvCX9KtA4Xk/cEkm5reLasNaVCR5lpilwjO96u44sGQZLlqt/U7 PLdMD5cj3n/n6qFGYlMRNXLfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSvhd/+s3 XaA6Lz8LqSkU8gURK9cwHwYDVR0jBBgwFoAU05hHRxQle77zpal12QzQ3GW92+8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3Q0JDLzk1MkJBRTJFNURG MDExRUZBQzcwRUQwQUM0RjlBRTAyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTIt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDVoSFJ4UWxlNzd6cGFsMTJRelEzR1c5Mi04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 Q0JDLzk1MkJBRTJFNURGMDExRUZBQzcwRUQwQUM0RjlBRTAyLzA1aEhSeFFsZTc3 enBhbDEyUXpRM0dXOTItOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALE4kG+8TEfKjKxZ6zrw+wW6u73urDdpbZl6QVkxGXi2/laYVY1kS+Cl 3DyIZ0cnIbOqQBR5cUYfFiNdt7mPGN9SEy90eZ2/ejuwPBKjhXWJpsAXNFcZuxwt lxlS01n2gBZ0Gbd2qzDNpFO0CMdPthtGPrzpJbs9nFS+IYqrDJW/XczI2+4U2KDd I9ubo0gftKlDuIGDCYuBtcOFMK2bIjhqmyzVzi8iJrOFxUJEq0VcWo09wsb4aa/O CVCTf3pfhoD23opC0pr+4JBsp7j71kjjSz6fV7hdW6cbyZQoBx4wFZEw1UAb96bi KTKGIDzv78bhLkj91d0d5tlsiE/UaH4= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:35 2024 by rpki-client on console-ams.rpki-client.org