$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: WGWPvJtT38eCm513QvHfyAUCeoqfoh+6DRpLHxJ7jO0= Subject key identifier: 9C:4B:DB:51:93:E1:3D:79:45:D3:F0:7B:FB:2F:28:61:6F:58:51:79 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 0406 Signing time: Sat 23 Nov 2024 00:00:30 +0000 Manifest this update: Sat 23 Nov 2024 00:00:30 +0000 Manifest next update: Sat 30 Nov 2024 00:00:30 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: YdA/h98Tv1k8t+Pi3smJjNq+Fc+rIHA5fZejvk3e6y4=) 2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: 70pXo7TPZehC7uJ0XdtVRKfDG1GkFpY/5x3mmDYZSxI=) 3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: w67HRNi/yFu6FrtkXk67zQVeYi9FWWK0Yn59oMaToP8=) 4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: c26DXYzcpQgya2lb6mPXdMatF2eIuHc37QpxkKWbfsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Nov 23 00:00:30 2024 GMT Not After : Nov 30 00:00:30 2024 GMT Subject: CN=67411b1e-8074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d1:38:f0:7d:7f:9d:06:93:91:b2:73:52:0a: db:ce:d0:ac:f1:fe:06:8a:c2:8d:d2:a5:83:af:59: 97:a1:59:b4:67:f7:4b:4e:07:9f:4b:80:a8:41:f9: 45:80:82:07:09:eb:73:c8:5a:8e:89:94:9a:dd:44: cf:4d:b2:87:93:b7:cd:05:cf:ba:5e:65:bd:0c:0e: ee:cc:6e:25:75:40:45:0f:2f:38:33:7c:9c:25:73: 11:88:96:3d:a9:54:b9:89:65:6c:df:80:fc:f5:74: 7d:62:ec:41:03:66:40:ec:62:5d:50:b6:7d:f1:5a: 2a:a8:b7:50:46:d2:a4:be:c0:5d:49:7d:4b:c8:85: ca:26:d3:cc:b2:b7:51:b3:38:f3:c5:2c:b6:7b:ef: 4c:0c:0d:60:6b:15:de:86:de:9c:f8:17:06:87:32: b2:78:9a:04:b8:91:0a:c0:01:24:6f:18:13:c9:e4: 91:7e:1f:f2:4e:65:19:49:13:3a:3a:62:5b:34:44: 20:56:82:fd:6c:65:78:4a:d9:d7:80:c5:1e:20:7a: 72:65:ab:87:5b:a0:64:45:1b:65:93:b2:b2:c6:06: b6:7b:df:a5:c6:b0:cc:95:00:11:2d:0b:e2:00:69: 4b:92:44:af:ad:c8:81:31:32:ff:03:a1:2f:41:20: d7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4B:DB:51:93:E1:3D:79:45:D3:F0:7B:FB:2F:28:61:6F:58:51:79 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:66:19:8f:e5:c8:d3:df:8a:ed:ce:db:8a:3e:9f:9e:02:17: a9:ca:0d:c4:58:c7:d0:7c:af:ee:42:15:84:93:89:38:d0:fc: 73:a3:92:60:10:60:08:e9:e7:0f:ef:db:fb:8f:e9:73:f1:d0: 09:9b:bc:d6:ed:d8:35:e1:78:87:5d:7e:d5:d6:16:10:a7:69: 39:e6:3c:7a:4f:76:2d:27:86:bb:f0:17:a8:6d:7a:89:1c:61: d2:92:c8:8f:97:d2:4b:62:d3:96:18:7c:10:d0:1e:f2:05:6f: c5:0e:1f:c7:9a:b8:1d:6d:f8:9a:0b:49:6c:0e:66:d7:9e:1a: b3:6b:66:04:40:3e:1e:70:12:26:aa:71:8b:47:8b:0f:0b:a7: 09:49:9d:e6:b3:74:ba:58:e1:76:c6:ee:4b:cc:ba:ad:b8:f6: f2:9a:bf:37:7b:e2:15:3d:26:5c:a2:3f:5d:c3:08:9f:d7:b4: 9d:b6:18:2a:8a:5f:f9:f3:98:af:84:be:d4:98:89:31:1a:62: e8:ad:f5:31:03:c4:35:1b:52:88:21:e9:f3:ad:62:c8:25:96: 08:8c:00:6a:c8:48:8a:33:7b:6c:f1:72:10:d6:95:1a:c9:5a: a2:01:f7:a3:1e:4c:ab:47:f8:c9:ee:94:12:45:69:36:b2:60: 8f:1a:96:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjQxMTIzMDAwMDMwWhcNMjQxMTMwMDAwMDMwWjAYMRYwFAYD VQQDEw02NzQxMWIxZS04MDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9E48H1/nQaTkbJzUgrbztCs8f4GisKN0qWDr1mXoVm0Z/dLTgefS4CoQflF gIIHCetzyFqOiZSa3UTPTbKHk7fNBc+6XmW9DA7uzG4ldUBFDy84M3ycJXMRiJY9 qVS5iWVs34D89XR9YuxBA2ZA7GJdULZ98VoqqLdQRtKkvsBdSX1LyIXKJtPMsrdR szjzxSy2e+9MDA1gaxXeht6c+BcGhzKyeJoEuJEKwAEkbxgTyeSRfh/yTmUZSRM6 OmJbNEQgVoL9bGV4StnXgMUeIHpyZauHW6BkRRtlk7Kyxga2e9+lxrDMlQARLQvi AGlLkkSvrciBMTL/A6EvQSDXNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxL21GT 4T15RdPwe/svKGFvWFF5MB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5ZhmP5cjT34rtztuKPp+eAhepyg3EWMfQfK/uQhWEk4k40Pxzo5Jg EGAI6ecP79v7j+lz8dAJm7zW7dg14XiHXX7V1hYQp2k55jx6T3YtJ4a78BeobXqJ HGHSksiPl9JLYtOWGHwQ0B7yBW/FDh/HmrgdbfiaC0lsDmbXnhqza2YEQD4ecBIm qnGLR4sPC6cJSZ3ms3S6WOF2xu5LzLqtuPbymr83e+IVPSZcoj9dwwif17Sdthgq il/585ivhL7UmIkxGmLorfUxA8Q1G1KIIenzrWLIJZYIjABqyEiKM3ts8XIQ1pUa yVqiAfejHkyrR/jJ7pQSRWk2smCPGpb2 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org