$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: foP2n5lSWG+rU1kV0Jiqxy7fue+W7yBI34baLstJ8Bc= Subject key identifier: FD:56:FA:1E:03:5B:37:D2:34:B6:C9:5E:DD:93:89:9B:3C:F8:1A:9C Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 0928 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 0920 Signing time: Fri 22 Nov 2024 20:05:32 +0000 Manifest this update: Fri 22 Nov 2024 20:05:32 +0000 Manifest next update: Fri 29 Nov 2024 20:05:32 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: ALsjeg6yhHdoPGr8KV7cCAZhrJjhMEEGxO4fEeNZiO4=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: eNqcJy9MbfULRfN7s1K38VlPL6Fzdy+Md4Shbxk/lNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2344 (0x928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Nov 22 20:05:32 2024 GMT Not After : Nov 29 20:05:32 2024 GMT Subject: CN=6740e40c-d385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5e:93:a4:73:87:ed:e5:bb:24:54:c7:7d:c7: 7e:8b:e1:b2:c6:06:5f:a0:72:3a:b2:81:91:b8:d1: df:05:f4:5c:8c:1d:38:36:3c:19:87:b8:9a:e5:ad: e0:06:82:2c:e6:a9:8b:12:8d:d8:16:ca:2e:d3:7d: 9d:ca:b4:dc:cc:23:94:6b:ce:af:3c:d2:7c:3b:0f: db:ee:05:29:f2:f3:bf:57:33:9c:4b:7c:9f:4c:69: e9:07:cc:1d:f0:cc:12:51:9a:98:d9:89:bf:b8:48: 4c:44:f0:a4:aa:c2:b5:fc:de:a6:82:ee:91:1d:7c: 8f:46:8e:61:05:d0:53:62:5c:67:98:f3:ca:b3:8c: 5c:33:06:7e:54:c1:9b:ce:6c:bc:02:ee:a0:db:c5: d1:5b:7e:17:5a:fb:c8:fe:82:74:c0:60:dd:25:74: ca:a8:a1:1e:da:65:fe:e8:c6:6a:64:9c:aa:39:0d: b9:f4:80:d6:69:4f:73:32:0f:80:74:df:a8:25:6a: 8d:fc:ad:37:44:23:02:2e:87:36:4d:91:24:7d:5c: af:a7:86:bf:c3:4c:b2:14:15:1b:b9:32:01:e8:5a: 48:60:58:e1:3f:b6:cd:71:91:c4:9c:05:f0:47:6a: e0:0f:59:9e:ad:49:04:81:37:d0:d5:68:81:c8:8b: 8d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:56:FA:1E:03:5B:37:D2:34:B6:C9:5E:DD:93:89:9B:3C:F8:1A:9C X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:7c:b4:e1:cb:c9:f0:69:af:14:6d:65:fe:2d:23:5b:95:ef: a0:c0:b1:4a:67:69:e3:ef:b8:0a:e3:00:36:a8:75:b2:0b:17: 3d:9e:44:26:07:01:67:90:07:16:80:1e:57:11:8c:be:75:f8: 83:a6:d4:72:d4:97:07:39:85:cd:44:7c:38:12:e3:6d:9e:c9: 93:5d:80:80:79:98:f6:f2:ac:1c:89:60:0c:35:ca:58:b6:26: 96:28:85:28:32:10:2f:89:93:da:8e:23:5f:3e:6a:19:0d:8e: d3:b2:8c:87:4d:7b:55:de:3a:ea:b4:c2:5b:d8:80:c2:d9:30: df:57:4e:37:d9:6c:3a:12:7b:fd:49:59:ae:9d:b3:ed:17:d2: fa:4c:d0:96:d9:84:2c:74:5a:b7:4e:6d:fb:21:69:a7:c7:37: b8:3d:b1:f0:40:6f:3b:dd:6a:ba:d8:01:f2:39:2d:96:bd:92: e5:54:73:0e:f3:a8:45:e6:fe:24:1b:ba:aa:a7:fc:0a:59:ea: 37:51:2e:bc:54:59:23:f4:b3:c6:8f:47:f0:31:a6:6e:74:be: 7d:cd:67:dc:f5:c1:cc:6f:03:87:69:28:fe:bf:15:b2:68:c5: e6:b9:b7:1c:92:be:3e:5b:34:d1:04:06:dc:9c:0f:6b:55:03: 8b:5e:64:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjQxMTIyMjAwNTMyWhcNMjQxMTI5MjAwNTMyWjAYMRYwFAYD VQQDEw02NzQwZTQwYy1kMzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwl6TpHOH7eW7JFTHfcd+i+GyxgZfoHI6soGRuNHfBfRcjB04NjwZh7ia5a3g BoIs5qmLEo3YFsou032dyrTczCOUa86vPNJ8Ow/b7gUp8vO/VzOcS3yfTGnpB8wd 8MwSUZqY2Ym/uEhMRPCkqsK1/N6mgu6RHXyPRo5hBdBTYlxnmPPKs4xcMwZ+VMGb zmy8Au6g28XRW34XWvvI/oJ0wGDdJXTKqKEe2mX+6MZqZJyqOQ259IDWaU9zMg+A dN+oJWqN/K03RCMCLoc2TZEkfVyvp4a/w0yyFBUbuTIB6FpIYFjhP7bNcZHEnAXw R2rgD1merUkEgTfQ1WiByIuNuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1W+h4D WzfSNLbJXt2TiZs8+BqcMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9fLThy8nwaa8UbWX+LSNble+gwLFKZ2nj77gK4wA2qHWyCxc9nkQm BwFnkAcWgB5XEYy+dfiDptRy1JcHOYXNRHw4EuNtnsmTXYCAeZj28qwciWAMNcpY tiaWKIUoMhAviZPajiNfPmoZDY7TsoyHTXtV3jrqtMJb2IDC2TDfV0432Ww6Env9 SVmunbPtF9L6TNCW2YQsdFq3Tm37IWmnxze4PbHwQG873Wq62AHyOS2WvZLlVHMO 86hF5v4kG7qqp/wKWeo3US68VFkj9LPGj0fwMaZudL59zWfc9cHMbwOHaSj+vxWy aMXmubcckr4+WzTRBAbcnA9rVQOLXmQq -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org