$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: eAT2bkCzuDwHIXdVOp+mWMVQtW/cPWFkM+xagJp4RU0= Subject key identifier: 32:21:BB:B2:1D:7A:39:32:5A:FE:27:16:E6:83:72:AE:1A:BC:84:0D Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: D1 Signing time: Thu 21 Nov 2024 03:50:48 +0000 Manifest this update: Thu 21 Nov 2024 03:50:47 +0000 Manifest next update: Thu 28 Nov 2024 03:50:47 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: Ae+tyBYIMVyiS8zC3cqhtJt8LJPcpXtH1i4xlbYxBA4=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: YEagGQfd4UV4nz53l/WybeYAt4w6+zm6QyFgV48pGBc=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: zzpFcIYATvvz+ehYyoXcGsAYVOBFYBXyZDv/oX18Mx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Nov 21 03:50:47 2024 GMT Not After : Nov 28 03:50:47 2024 GMT Subject: CN=673eae18-07d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5b:ae:6d:4e:c6:64:26:47:c3:4f:a3:03:98: 1d:9d:1c:8d:da:a3:df:46:83:69:fa:d0:33:da:d9: aa:c1:47:2d:e2:e9:51:eb:71:3c:93:6b:b7:5a:99: 8c:93:38:24:bf:40:93:86:a0:59:b4:3a:3e:74:59: 70:23:7f:c2:23:0e:15:9a:9c:84:3b:27:e9:f4:25: 82:1f:cc:bb:0e:fb:c7:7e:e5:75:be:af:d0:e2:71: fc:51:7b:fb:34:8d:d9:c6:e7:c4:84:4b:9c:d4:29: de:ae:07:09:27:e6:5f:7a:6f:68:f1:7a:74:69:be: 07:49:62:f6:f6:2f:4e:4f:ad:61:b2:d8:76:35:58: 3d:d3:e6:48:63:ab:c3:15:23:3a:3d:f0:fd:4b:d9: ea:29:e9:4d:a7:b0:dd:9a:5a:b7:89:f6:e6:c5:32: c6:83:3d:32:c4:2a:b9:89:ea:50:0a:c8:f8:ec:e2: 8a:20:8e:0e:7c:1d:32:7e:6b:18:b5:58:92:77:07: 45:14:3a:de:ad:ee:70:41:2c:aa:23:ef:0b:b0:cb: 23:cd:3a:0e:b3:36:e9:5b:ee:70:a3:a6:cf:61:ec: 9b:b4:40:ff:2a:47:45:c4:24:46:bd:f4:03:6e:91: 2f:83:f2:3c:4b:c5:19:4b:d5:aa:dc:d6:8a:68:68: 13:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:21:BB:B2:1D:7A:39:32:5A:FE:27:16:E6:83:72:AE:1A:BC:84:0D X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:e0:e2:6d:f8:75:79:75:36:8f:b0:48:49:9f:03:bc:73:9d: fd:5f:19:45:ba:c0:8c:20:f0:9e:a8:a4:ea:dd:c5:03:8b:a6: 8a:82:19:b4:2e:9c:b9:a8:16:69:ed:c9:fc:d7:3e:7a:b7:b7: 23:a5:42:66:ce:f6:af:e3:5a:ff:31:ac:73:26:6d:8e:5d:8a: c9:59:49:d0:26:74:00:fc:55:ab:df:3e:b2:06:e9:e6:09:8e: 19:62:c5:2d:75:7a:81:17:2f:42:1e:1f:db:e7:70:43:32:b8: d7:05:54:54:7a:c4:7c:bc:f7:52:b8:13:d9:95:f9:2b:7c:2a: ae:7a:33:e6:f6:4a:55:43:5e:ee:1b:67:46:c2:26:d0:8f:7d: c7:a5:35:25:54:88:4a:20:10:a2:d5:59:31:34:d8:cf:7e:97: ad:45:56:47:6e:43:d5:ed:00:f1:58:18:ed:9e:27:da:85:78: 3e:4c:21:6e:ed:8c:a9:d5:e3:9b:0a:42:87:f3:60:ef:ef:fc: 73:93:ee:20:62:b1:de:8f:61:83:a3:a2:6e:a1:ab:db:a6:c8: 91:58:01:dc:87:b8:ba:dd:64:fb:0a:47:01:c7:5c:d5:9f:fd: 69:78:c8:2d:de:cb:f3:a0:18:8d:a0:ea:1a:a5:94:8a:5f:12: e7:d7:60:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjQxMTIxMDM1MDQ3WhcNMjQxMTI4MDM1MDQ3WjAYMRYwFAYD VQQDEw02NzNlYWUxOC0wN2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FuubU7GZCZHw0+jA5gdnRyN2qPfRoNp+tAz2tmqwUct4ulR63E8k2u3WpmM kzgkv0CThqBZtDo+dFlwI3/CIw4VmpyEOyfp9CWCH8y7DvvHfuV1vq/Q4nH8UXv7 NI3ZxufEhEuc1CnergcJJ+Zfem9o8Xp0ab4HSWL29i9OT61hsth2NVg90+ZIY6vD FSM6PfD9S9nqKelNp7Ddmlq3ifbmxTLGgz0yxCq5iepQCsj47OKKII4OfB0yfmsY tViSdwdFFDrere5wQSyqI+8LsMsjzToOszbpW+5wo6bPYeybtED/KkdFxCRGvfQD bpEvg/I8S8UZS9Wq3NaKaGgTdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIhu7Id ejkyWv4nFuaDcq4avIQNMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDV4OJt+HV5dTaPsEhJnwO8c539XxlFusCMIPCeqKTq3cUDi6aKghm0 Lpy5qBZp7cn81z56t7cjpUJmzvav41r/MaxzJm2OXYrJWUnQJnQA/FWr3z6yBunm CY4ZYsUtdXqBFy9CHh/b53BDMrjXBVRUesR8vPdSuBPZlfkrfCquejPm9kpVQ17u G2dGwibQj33HpTUlVIhKIBCi1VkxNNjPfpetRVZHbkPV7QDxWBjtnifahXg+TCFu 7Yyp1eObCkKH82Dv7/xzk+4gYrHej2GDo6JuoavbpsiRWAHch7i63WT7CkcBx1zV n/1peMgt3svzoBiNoOoapZSKXxLn12Ca -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org