$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft File: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft (raw, json) Hash identifier: DQOl+OTrUHoS2QUXRb5bHOhzVJ7995RGGco14g0uZ9k= Subject key identifier: 39:EB:B2:3C:C5:59:F4:ED:31:7E:89:EA:4D:B4:D2:F0:C5:F9:B8:FC Authority key identifier: 3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E Certificate issuer: /CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Certificate serial: 074B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft Manifest number: 0746 Signing time: Fri 22 Nov 2024 21:06:53 +0000 Manifest this update: Fri 22 Nov 2024 21:06:53 +0000 Manifest next update: Fri 29 Nov 2024 21:06:53 +0000 Files and hashes: 1: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl (hash: Drk45mOp1KAuyM/E8ue6XU/DjWyiVlefqHggxkt7qxw=) 2: 2037569602BD11EBB333DA0FC4F9AE02.roa (hash: UJ0bU4f3uH4Z6a7SPUdvCu78gkyrlN+fVyocNr2pahc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Validity Not Before: Nov 22 21:06:53 2024 GMT Not After : Nov 29 21:06:53 2024 GMT Subject: CN=6740f26d-46d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c2:00:24:37:dd:e7:fe:cb:61:c7:16:e0:43: 92:f9:f6:b7:53:ea:bb:ce:c6:5a:4c:f0:cb:81:ab: 43:7f:35:f8:ea:37:2d:5a:06:f0:de:2e:7d:f0:c0: 4b:ae:f9:39:d1:cc:80:76:24:aa:fa:7f:4c:56:43: de:ee:e0:fa:5a:f5:96:8d:d2:03:98:ea:37:ff:2b: cc:fb:83:fd:e2:c6:cf:97:a8:57:b6:f4:68:ff:80: 8d:f8:bb:8a:40:00:f5:df:fd:93:6d:f9:d5:08:97: f0:08:c3:91:32:8e:8b:20:87:df:35:d7:32:4d:83: 88:d1:a8:f8:5b:c5:52:d2:16:e4:7d:bf:ac:03:f2: e7:c5:fe:04:28:0c:d2:79:e3:0f:7c:ec:9c:da:0c: 8a:64:b1:90:01:63:08:de:e1:98:1e:6a:d3:92:27: 42:3c:f6:6b:04:40:41:79:ee:d2:00:26:42:20:60: fe:c3:7c:db:9e:97:ff:00:36:09:4e:13:9a:6a:29: a2:f6:dc:5a:2b:b0:5a:b6:a1:f6:f7:1b:21:dd:14: 0d:07:c8:87:8d:c9:28:8e:8e:05:17:f2:14:8d:c3: 0f:84:f5:57:10:af:5f:4d:a5:f2:6e:e0:d9:ae:9b: 83:91:fe:a6:6e:fe:e7:43:89:10:a4:1e:28:37:5e: 76:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EB:B2:3C:C5:59:F4:ED:31:7E:89:EA:4D:B4:D2:F0:C5:F9:B8:FC X509v3 Authority Key Identifier: keyid:3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:8c:e8:34:13:24:c7:2c:30:b8:83:b0:01:6f:b7:ac:d3:3d: a7:f3:b7:b3:53:1b:61:a3:aa:48:da:1d:b1:c5:ba:0c:12:78: 01:7a:04:98:c3:1b:ae:67:95:8a:b9:4b:04:b0:9a:12:dd:9b: 77:7c:e1:9f:8c:f8:d7:10:fd:87:21:54:e4:05:b4:d1:9b:9e: bb:bd:d3:43:aa:92:ea:be:d0:67:3b:ba:2f:7b:1f:74:46:ca: f1:12:fd:e3:a6:6e:db:ee:0a:24:be:5e:d4:a8:76:bd:df:37: e0:f8:a2:a2:fd:35:85:a5:7c:ac:35:67:0e:62:76:4b:e3:07: 45:6b:d5:61:0c:19:91:0a:ef:36:b0:de:a3:d7:ef:fa:ef:e3: b7:c5:5a:ba:cd:e8:2f:63:74:39:4a:3b:e6:43:08:75:27:f8: 82:40:31:35:a9:24:54:b9:a9:a6:3c:ab:72:64:e9:53:d9:56: d0:af:af:f8:0e:f0:39:90:2d:0b:41:e5:6f:b4:38:a0:6f:e9: 75:f4:5c:9a:a5:d2:d4:64:54:33:ff:37:e3:a4:3a:e8:f0:cb: 1c:a8:cb:e0:c7:ec:b3:a2:85:60:0c:54:67:ac:b3:f2:b4:0c: 16:10:21:75:07:e0:a1:72:28:91:76:8d:2d:f4:2f:2b:b7:5c: b4:dc:2e:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzRkIxMTAvBgNVBAUTKDNEMUY3RkIxNDY0MTBBM0MzMzVCMzNDNDk4MkE3MzYz OEJFNTQwOUUwHhcNMjQxMTIyMjEwNjUzWhcNMjQxMTI5MjEwNjUzWjAYMRYwFAYD VQQDEw02NzQwZjI2ZC00NmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMIAJDfd5/7LYccW4EOS+fa3U+q7zsZaTPDLgatDfzX46jctWgbw3i598MBL rvk50cyAdiSq+n9MVkPe7uD6WvWWjdIDmOo3/yvM+4P94sbPl6hXtvRo/4CN+LuK QAD13/2TbfnVCJfwCMORMo6LIIffNdcyTYOI0aj4W8VS0hbkfb+sA/Lnxf4EKAzS eeMPfOyc2gyKZLGQAWMI3uGYHmrTkidCPPZrBEBBee7SACZCIGD+w3zbnpf/ADYJ ThOaaimi9txaK7BatqH29xsh3RQNB8iHjckojo4FF/IUjcMPhPVXEK9fTaXybuDZ rpuDkf6mbv7nQ4kQpB4oN152ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnrsjzF WfTtMX6J6k200vDF+bj8MB8GA1UdIwQYMBaAFD0ff7FGQQo8M1szxJgqc2OL5UCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDNGQi80MjEyQkM5RTAy QkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNqd3pXelBFbUNwelk0dmxR SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSOV9zVVpCQ2p3eld6UEVtQ3B6WTR2bFFKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDNGQi80MjEyQkM5RTAyQkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNq d3pXelBFbUNwelk0dmxRSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEjOg0EyTHLDC4g7ABb7es0z2n87ezUxtho6pI2h2xxboMEngBegSY wxuuZ5WKuUsEsJoS3Zt3fOGfjPjXEP2HIVTkBbTRm567vdNDqpLqvtBnO7ovex90 RsrxEv3jpm7b7gokvl7UqHa93zfg+KKi/TWFpXysNWcOYnZL4wdFa9VhDBmRCu82 sN6j1+/67+O3xVq6zegvY3Q5SjvmQwh1J/iCQDE1qSRUuammPKtyZOlT2VbQr6/4 DvA5kC0LQeVvtDigb+l19FyapdLUZFQz/zfjpDro8MscqMvgx+yzooVgDFRnrLPy tAwWECF1B+ChciiRdo0t9C8rt1y03C5F -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:42 2024 by rpki-client on console-ams.rpki-client.org