$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft File: 8iz473at_fLPnv7b7BITSIY1b00.mft (raw, json) Hash identifier: hr9Kps/8HuP0Wn+HOd99FiQuWnVEGzUKKuqz+cAPugM= Subject key identifier: 74:80:1E:96:7B:B5:79:AA:F9:D1:BF:C5:9D:ED:28:BF:89:8B:F7:DE Authority key identifier: F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D Certificate issuer: /CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft Manifest number: 4B Signing time: Sat 23 Nov 2024 05:16:59 +0000 Manifest this update: Sat 23 Nov 2024 05:16:59 +0000 Manifest next update: Sat 30 Nov 2024 05:16:59 +0000 Files and hashes: 1: 8iz473at_fLPnv7b7BITSIY1b00.crl (hash: XcvLQnSz4uG2Y9/LTzpxnS7EEjd/vWq1qkQZS4baROc=) 2: E36214403D0011EFAD623342C4F9AE02.roa (hash: 420VAJueRLeEIyuOExcHcsg4aUQyw3PTMA6zp5xTQ8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604/serialNumber=F22CF8EF76ADFDF2CF9EFEDBEC12134886356F4D Validity Not Before: Nov 23 05:16:59 2024 GMT Not After : Nov 30 05:16:59 2024 GMT Subject: CN=6741654b-006b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:39:dd:57:0d:10:e4:0c:68:d8:e0:2c:cf:b8: 39:e8:30:b7:9b:01:c6:1b:8d:b9:1c:8b:db:9d:f5: 39:df:2a:6d:28:44:17:ef:90:c3:4e:36:2c:bb:3d: 72:11:76:11:41:a6:ee:39:f3:9e:c8:60:65:7a:fe: 24:b0:70:79:6c:10:a4:db:0e:5e:47:77:50:88:48: 9d:96:86:bd:cc:dc:41:7c:36:ae:23:05:42:b2:c7: 92:7a:00:b1:b3:42:84:ed:96:a0:ee:11:65:b5:b1: 12:61:f8:77:82:d5:5b:04:c8:33:a0:5f:19:cb:6f: 15:e1:66:53:e8:04:44:6b:13:bb:8d:b4:e4:fd:4f: 62:c8:a8:b3:4e:a7:f2:5c:25:ca:b9:5a:09:09:55: 8c:ad:c4:dc:3b:3e:82:56:83:ea:08:29:ee:77:19: bf:18:4f:93:ef:c1:2d:5e:64:df:43:20:05:8d:ad: da:a3:7a:da:1b:db:0c:dc:8b:a6:89:cb:a0:18:78: 43:68:f8:b4:43:77:8d:6a:0e:16:c5:08:9e:92:2a: 6f:cb:91:0f:68:31:a7:4a:d1:a9:b3:d8:c0:35:1b: ba:aa:e3:c0:70:ea:36:e9:a2:f8:40:99:cc:85:b8: 34:79:1d:1b:57:b7:0d:fc:c1:5c:13:cd:43:72:e0: ac:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:80:1E:96:7B:B5:79:AA:F9:D1:BF:C5:9D:ED:28:BF:89:8B:F7:DE X509v3 Authority Key Identifier: keyid:F2:2C:F8:EF:76:AD:FD:F2:CF:9E:FE:DB:EC:12:13:48:86:35:6F:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8iz473at_fLPnv7b7BITSIY1b00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/09A112343CEB11EF94E24F59C4F9AE02/8iz473at_fLPnv7b7BITSIY1b00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:66:3a:92:e1:10:7c:7b:2c:4b:f9:8a:03:5f:7b:4b:e3:58: 3c:73:ff:a1:b9:92:fa:ef:ac:d1:7a:e2:cc:0d:3b:a8:b0:c5: 70:8e:c4:93:ff:23:e4:12:2f:21:32:44:62:d2:ac:69:84:af: 21:0e:73:84:df:09:70:18:bf:74:c0:6f:11:b2:9a:ae:8d:aa: b9:4f:b7:15:04:f0:fe:fc:42:90:b0:82:e7:ad:df:8d:f1:75: cc:2f:6c:df:fa:d9:c1:d8:39:05:f9:df:8a:3f:2a:d8:34:56: 3f:31:5d:73:1b:8e:4c:db:34:30:91:ff:ab:b7:b3:25:be:7c: 61:01:47:f0:6e:11:ff:49:a4:e7:49:87:f7:0c:d5:a3:d8:08: 40:ea:bc:28:1c:bc:88:37:8f:1c:02:48:de:52:aa:e7:d3:ff: 6c:c9:40:a8:ce:23:96:9d:a2:e9:89:83:8d:6e:bd:14:cd:26: 36:c1:8b:34:be:23:a8:83:92:7e:1e:17:5f:31:9d:7a:8a:bf: 0a:ca:a1:c0:45:40:68:30:13:7e:ea:3d:7d:e3:2f:50:fd:8c: a2:8c:b3:24:e9:a0:c4:43:c3:4f:53:dd:f2:0f:33:ea:15:09: 70:c6:44:29:39:74:00:8a:ee:8d:cd:97:35:4c:b9:f0:05:55: e9:a8:3f:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTYwNDExMC8GA1UEBRMoRjIyQ0Y4RUY3NkFERkRGMkNGOUVGRURCRUMxMjEzNDg4 NjM1NkY0RDAeFw0yNDExMjMwNTE2NTlaFw0yNDExMzAwNTE2NTlaMBgxFjAUBgNV BAMTDTY3NDE2NTRiLTAwNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDROd1XDRDkDGjY4CzPuDnoMLebAcYbjbkci9ud9TnfKm0oRBfvkMNONiy7PXIR dhFBpu45857IYGV6/iSwcHlsEKTbDl5Hd1CISJ2Whr3M3EF8Nq4jBUKyx5J6ALGz QoTtlqDuEWW1sRJh+HeC1VsEyDOgXxnLbxXhZlPoBERrE7uNtOT9T2LIqLNOp/Jc Jcq5WgkJVYytxNw7PoJWg+oIKe53Gb8YT5PvwS1eZN9DIAWNrdqjetob2wzci6aJ y6AYeENo+LRDd41qDhbFCJ6SKm/LkQ9oMadK0amz2MA1G7qq48Bw6jbpovhAmcyF uDR5HRtXtw38wVwTzUNy4KyFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdIAelnu1 ear50b/Fne0ov4mL994wHwYDVR0jBBgwFoAU8iz473at/fLPnv7b7BITSIY1b00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNjA0LzA5QTExMjM0M0NF QjExRUY5NEUyNEY1OUM0RjlBRTAyLzhpejQ3M2F0X2ZMUG52N2I3QklUU0lZMWIw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGl6NDczYXRfZkxQbnY3YjdCSVRTSVkxYjAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NjA0LzA5QTExMjM0M0NFQjExRUY5NEUyNEY1OUM0RjlBRTAyLzhpejQ3M2F0X2ZM UG52N2I3QklUU0lZMWIwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEBmOpLhEHx7LEv5igNfe0vjWDxz/6G5kvrvrNF64swNO6iwxXCOxJP/ I+QSLyEyRGLSrGmEryEOc4TfCXAYv3TAbxGymq6NqrlPtxUE8P78QpCwguet343x dcwvbN/62cHYOQX534o/Ktg0Vj8xXXMbjkzbNDCR/6u3syW+fGEBR/BuEf9JpOdJ h/cM1aPYCEDqvCgcvIg3jxwCSN5SqufT/2zJQKjOI5adoumJg41uvRTNJjbBizS+ I6iDkn4eF18xnXqKvwrKocBFQGgwE37qPX3jL1D9jKKMsyTpoMRDw09T3fIPM+oV CXDGRCk5dACK7o3NlzVMufAFVemoP1w= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org