$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft File: k32ZUe4fk_ysJDM7CD-dfy458Pk.mft (raw, json) Hash identifier: AqAdjLejxVZnREJlXj7DzYHV8UAngLHsjYOFQ2UfnMg= Subject key identifier: DC:BA:29:62:D4:6E:9A:D7:26:1A:F9:03:DA:8C:39:93:A3:F1:A5:95 Authority key identifier: 93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 Certificate issuer: /CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Certificate serial: 083A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft Manifest number: 0834 Signing time: Fri 22 Nov 2024 20:30:31 +0000 Manifest this update: Fri 22 Nov 2024 20:30:30 +0000 Manifest next update: Fri 29 Nov 2024 20:30:30 +0000 Files and hashes: 1: k32ZUe4fk_ysJDM7CD-dfy458Pk.crl (hash: s/fNLXB43UXsqNJwgc3SSqUd0wMRgGWEN1XBAp20Pk8=) 2: 6A3C327ABD1711EA8A3C8E20C4F9AE02.roa (hash: ZaOhtNpoJXpwbixd1fVCzbCopkeyjuePv/WgNhSqITE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2106 (0x83a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8C4/serialNumber=937D9951EE1F93FCAC24333B083F9D7F2E39F0F9 Validity Not Before: Nov 22 20:30:30 2024 GMT Not After : Nov 29 20:30:30 2024 GMT Subject: CN=6740e9e6-031d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e7:49:43:0b:78:a7:04:af:c3:bb:93:d0:8a: 77:45:37:a1:53:58:a8:01:7c:18:39:82:ee:2e:83: d0:a0:e4:00:97:a8:08:b6:2f:b8:38:d7:65:3a:fc: 12:6a:f7:ce:75:28:3d:2c:6e:3b:61:3e:87:01:9e: f6:34:57:ab:7d:f8:44:d6:9e:0d:0e:61:c6:da:ac: 25:87:31:eb:ad:39:46:b3:97:87:62:03:fd:a3:17: 40:93:6e:86:80:78:34:cc:da:01:68:3e:2c:84:7b: 1c:53:d8:8f:be:8f:6f:22:1a:f9:05:2e:a5:be:82: 64:c2:b6:8c:06:c1:50:f5:a1:8c:1d:bd:f2:77:b5: 8b:25:f0:6a:d7:2d:e4:82:7c:79:3f:bc:f9:9a:16: 38:c1:a0:00:4c:86:5e:c1:cb:49:a3:cd:6e:ac:4b: 36:28:d7:6c:d7:12:73:01:bc:79:9f:cf:35:8d:e7: c0:f4:48:04:59:7b:47:84:43:37:a9:a4:8c:1f:67: 44:8f:1f:a0:67:9d:db:bf:dd:80:86:7d:25:29:3b: 49:35:3e:35:82:a5:35:9d:14:33:b0:4d:9b:24:18: bb:58:91:2c:9c:a9:36:f9:a8:4e:9b:70:be:8c:c4: c5:48:45:bc:28:33:43:07:59:ac:e1:f4:50:70:a0: 6d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BA:29:62:D4:6E:9A:D7:26:1A:F9:03:DA:8C:39:93:A3:F1:A5:95 X509v3 Authority Key Identifier: keyid:93:7D:99:51:EE:1F:93:FC:AC:24:33:3B:08:3F:9D:7F:2E:39:F0:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k32ZUe4fk_ysJDM7CD-dfy458Pk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8C4/C244C83ABD1511EAABDEB01DC4F9AE02/k32ZUe4fk_ysJDM7CD-dfy458Pk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:26:8b:6c:a2:9a:dc:b3:38:64:07:0b:69:bf:47:db:c5:14: ff:a6:f8:a5:c6:f1:c5:69:ce:0e:ea:fe:60:aa:fd:c3:d2:ff: 56:de:d6:39:9e:10:6a:44:fb:be:b5:fa:f4:53:a0:b4:2c:0e: 41:e7:b9:d1:dd:33:2f:0e:d8:08:ee:9c:f4:e4:5c:e2:32:84: a3:db:6d:b1:c9:3c:68:d7:21:d9:09:b3:13:d7:ed:18:fa:6b: 85:dc:d3:6f:45:e2:b9:e4:02:95:21:56:f3:71:56:79:03:7d: f1:66:3a:6c:e2:2e:34:54:a4:77:1c:94:20:82:05:0c:ff:45: 98:2e:77:36:ba:b3:42:41:41:6a:ef:29:d0:f9:39:da:77:c7: 40:2e:96:c3:f5:e5:47:72:f7:4f:40:7c:eb:5d:64:40:36:42: 84:ec:7a:7f:f7:82:0a:2b:8a:d7:fe:d1:c8:f6:dd:a0:f7:24: c9:a3:6f:91:09:ac:ac:d1:a6:9b:82:54:e3:3f:93:23:af:39: ae:d3:27:b0:ae:b3:75:27:f1:d8:49:c7:71:ba:d2:53:58:b5: 8d:8d:f8:3b:72:27:05:b1:e0:20:18:bb:2d:19:86:17:d6:a7: 0f:25:53:c9:19:75:34:24:37:00:3d:1d:a8:93:2b:cb:b0:ab: a8:86:ab:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4QzQxMTAvBgNVBAUTKDkzN0Q5OTUxRUUxRjkzRkNBQzI0MzMzQjA4M0Y5RDdG MkUzOUYwRjkwHhcNMjQxMTIyMjAzMDMwWhcNMjQxMTI5MjAzMDMwWjAYMRYwFAYD VQQDEw02NzQwZTllNi0wMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzedJQwt4pwSvw7uT0Ip3RTehU1ioAXwYOYLuLoPQoOQAl6gIti+4ONdlOvwS avfOdSg9LG47YT6HAZ72NFerffhE1p4NDmHG2qwlhzHrrTlGs5eHYgP9oxdAk26G gHg0zNoBaD4shHscU9iPvo9vIhr5BS6lvoJkwraMBsFQ9aGMHb3yd7WLJfBq1y3k gnx5P7z5mhY4waAATIZewctJo81urEs2KNds1xJzAbx5n881jefA9EgEWXtHhEM3 qaSMH2dEjx+gZ53bv92Ahn0lKTtJNT41gqU1nRQzsE2bJBi7WJEsnKk2+ahOm3C+ jMTFSEW8KDNDB1ms4fRQcKBt/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNy6KWLU bprXJhr5A9qMOZOj8aWVMB8GA1UdIwQYMBaAFJN9mVHuH5P8rCQzOwg/nX8uOfD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhDNC9DMjQ0QzgzQUJE MTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0ZmtfeXNKRE03Q0QtZGZ5NDU4 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szMlpVZTRma195c0pETTdDRC1kZnk0NThQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzhDNC9DMjQ0QzgzQUJEMTUxMUVBQUJERUIwMURDNEY5QUUwMi9rMzJaVWU0Zmtf eXNKRE03Q0QtZGZ5NDU4UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0JotsoprcszhkBwtpv0fbxRT/pvilxvHFac4O6v5gqv3D0v9W3tY5 nhBqRPu+tfr0U6C0LA5B57nR3TMvDtgI7pz05FziMoSj222xyTxo1yHZCbMT1+0Y +muF3NNvReK55AKVIVbzcVZ5A33xZjps4i40VKR3HJQgggUM/0WYLnc2urNCQUFq 7ynQ+Tnad8dALpbD9eVHcvdPQHzrXWRANkKE7Hp/94IKK4rX/tHI9t2g9yTJo2+R Cays0aabglTjP5Mjrzmu0yewrrN1J/HYScdxutJTWLWNjfg7cicFseAgGLstGYYX 1qcPJVPJGXU0JDcAPR2okyvLsKuohqs1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org