$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft File: 2h2yzTH0VPaVYdhmXck--BLzl7A.mft (raw, json) Hash identifier: 9V7DRxAHCpZGBiD5ObzfByjoR2qwGQxuRkqxLfGY1RI= Subject key identifier: 43:F0:0B:66:D1:75:B4:A1:BE:BB:A4:3A:80:CD:81:AE:E5:6D:BC:31 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft Manifest number: C5 Signing time: Thu 21 Nov 2024 04:01:07 +0000 Manifest this update: Thu 21 Nov 2024 04:01:06 +0000 Manifest next update: Thu 28 Nov 2024 04:01:06 +0000 Files and hashes: 1: 2h2yzTH0VPaVYdhmXck--BLzl7A.crl (hash: C552f0LM4bGpYT229/KLCLcuYpof3onv0hBpzp7ScL0=) 2: 730B201A81E911EEAEFE7735C4F9AE02.roa (hash: +MbNfxyhCamzN9tHOdSAmjfpdzIa0MaUiU8CGByu53M=) 3: 4317395081E611EE9EFE132BC4F9AE02.roa (hash: nEgdbI6cuLNeRuLPJnkG4QO1ReMDMeUPyTkJXfsO5xE=) 4: E71AB92A7F7D11EE8C183162C4F9AE02.roa (hash: shdTH9d6PBZ6zz9OKDDb+zRKMfpyDz4E/FhykKTuDEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Nov 21 04:01:06 2024 GMT Not After : Nov 28 04:01:06 2024 GMT Subject: CN=673eb083-c9a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cd:64:c7:d0:85:8e:c6:a9:d2:7b:3b:6f:0a: 31:11:36:c9:94:65:02:5b:a0:a7:a5:18:57:83:00: e8:a3:a4:d0:d0:7d:58:f7:a5:ff:9b:e9:ed:1b:0c: 2f:b3:58:5a:f1:cc:46:a8:31:db:f4:18:2b:89:2e: 29:1c:6f:70:91:2b:25:3d:b3:e1:ac:e2:33:7f:0a: 17:0c:da:73:76:f5:fc:bb:e3:40:48:05:5f:f4:63: 6d:b5:4e:fb:33:33:64:cd:01:fb:11:5a:6f:81:e0: f7:b5:d5:3f:10:2a:ce:73:1f:0b:81:50:88:1d:a5: 98:23:ac:6e:25:5e:46:76:a8:0a:b2:06:07:5d:d0: 0f:c0:c5:66:c1:81:98:0e:8a:6d:24:14:90:c9:ae: ed:24:fe:fb:88:11:2f:58:92:4a:49:62:07:b9:2c: fd:b8:1e:24:11:f3:e4:ef:62:16:b1:8a:ee:b9:a1: d0:90:35:84:08:e9:6d:31:0d:b2:4a:0f:12:c0:fe: 38:b5:95:8d:18:40:44:1a:c3:bd:bc:cd:a5:57:45: 94:5e:12:0f:3b:78:b4:49:55:7b:d8:83:6c:15:f0: 85:33:e4:91:89:05:8d:1b:bd:be:68:e2:6d:28:ae: f8:d9:7e:f8:82:ff:e8:e3:70:95:ee:9e:e4:1f:ba: 65:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F0:0B:66:D1:75:B4:A1:BE:BB:A4:3A:80:CD:81:AE:E5:6D:BC:31 X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:92:78:7b:15:7a:11:51:02:d8:e0:46:e0:2c:4a:a6:ec:ad: 2d:47:8c:3b:9e:6e:12:73:b0:66:8f:37:e7:3c:cf:66:74:60: 41:42:5f:6b:5a:31:33:51:25:68:fe:07:7b:e3:8c:c4:ca:91: 8f:5d:ba:ad:8b:c5:1f:a1:72:71:e6:f7:2f:bf:0f:e7:fd:3a: e6:dc:fc:5d:3d:5c:fc:a9:59:f7:9a:03:69:9c:b5:32:fd:50: f7:36:97:0b:77:1f:8f:02:1e:33:14:67:4f:10:75:8b:e7:5d: 8f:d9:e4:bf:ff:46:76:87:4e:ba:97:71:d3:8b:bb:66:6d:50: 26:5a:51:ca:b4:d5:2b:77:db:16:4a:39:36:c3:68:90:6d:84: dc:86:92:22:33:ec:81:f3:b0:95:80:1c:d2:49:de:26:27:86: 72:3c:24:be:64:bc:91:b8:e2:42:fe:60:e6:cd:f8:31:bf:5e: 1b:96:b9:a2:3c:cc:79:c0:66:3f:a5:77:41:6d:59:66:29:c0: 06:d9:9b:cf:f0:91:05:10:1c:de:50:2a:84:81:22:ef:55:79: cf:6a:42:c6:52:f8:14:5e:60:fb:b9:cc:bd:45:8d:7c:80:b4: 5d:14:df:1e:36:0d:5d:3d:1b:a9:1c:e4:52:a2:d3:42:24:ab: 8d:80:49:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3Q0ExMTAvBgNVBAUTKERBMURCMkNEMzFGNDU0RjY5NTYxRDg2NjVEQzkzRUY4 MTJGMzk3QjAwHhcNMjQxMTIxMDQwMTA2WhcNMjQxMTI4MDQwMTA2WjAYMRYwFAYD VQQDEw02NzNlYjA4My1jOWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1M1kx9CFjsap0ns7bwoxETbJlGUCW6CnpRhXgwDoo6TQ0H1Y96X/m+ntGwwv s1ha8cxGqDHb9BgriS4pHG9wkSslPbPhrOIzfwoXDNpzdvX8u+NASAVf9GNttU77 MzNkzQH7EVpvgeD3tdU/ECrOcx8LgVCIHaWYI6xuJV5GdqgKsgYHXdAPwMVmwYGY DoptJBSQya7tJP77iBEvWJJKSWIHuSz9uB4kEfPk72IWsYruuaHQkDWECOltMQ2y Sg8SwP44tZWNGEBEGsO9vM2lV0WUXhIPO3i0SVV72INsFfCFM+SRiQWNG72+aOJt KK742X74gv/o43CV7p7kH7plVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPwC2bR dbShvrukOoDNga7lbbwxMB8GA1UdIwQYMBaAFNodss0x9FT2lWHYZl3JPvgS85ew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTdDQS80Q0Y3RjE1ODdF QjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQYVZZZGhtWGNrLS1CTHps N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi8yaDJ5elRIMFZQ YVZZZGhtWGNrLS1CTHpsN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGknh7FXoRUQLY4EbgLEqm7K0tR4w7nm4Sc7BmjzfnPM9mdGBBQl9r WjEzUSVo/gd744zEypGPXbqti8UfoXJx5vcvvw/n/Trm3PxdPVz8qVn3mgNpnLUy /VD3NpcLdx+PAh4zFGdPEHWL512P2eS//0Z2h066l3HTi7tmbVAmWlHKtNUrd9sW Sjk2w2iQbYTchpIiM+yB87CVgBzSSd4mJ4ZyPCS+ZLyRuOJC/mDmzfgxv14blrmi PMx5wGY/pXdBbVlmKcAG2ZvP8JEFEBzeUCqEgSLvVXnPakLGUvgUXmD7ucy9RY18 gLRdFN8eNg1dPRupHORSotNCJKuNgEn+ -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org