$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft File: 40soVCBWzp4GUP78CrEkIWy1-cE.mft (raw, json) Hash identifier: GjkpBCdX0uyEQ0JVMSe1Ldo5Xb1NoT8A+nmr+nscXFg= Subject key identifier: 93:F0:10:56:42:74:B1:06:B5:A7:58:86:08:1D:E4:01:24:22:A2:1B Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft Manifest number: 027B Signing time: Sat 23 Nov 2024 01:11:29 +0000 Manifest this update: Sat 23 Nov 2024 01:11:28 +0000 Manifest next update: Sat 30 Nov 2024 01:11:28 +0000 Files and hashes: 1: 40soVCBWzp4GUP78CrEkIWy1-cE.crl (hash: 1WxzD2GTmEZv/kpBTjrGGpD/zU/Mf+tiCMCFbggCU9Q=) 2: FB1BF574E7E411EC84283679C4F9AE02.roa (hash: ZM5rRUd00+nBfPasOFVmxXpUPYX0MShZkN1FXso/iDI=) 3: FBB9FE90E7E411EC84283679C4F9AE02.roa (hash: pjNUbtH7HoaOJ7Yp/zo9LBV9AiGXTeeEg0CufDMnsg0=) 4: 43CEF64C5E7111EDAD328E21C4F9AE02.roa (hash: CMs488Hhl5oLPF4YmVkuRaqJu0RzsjH0FTfUHm+gkes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:11:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: Nov 23 01:11:28 2024 GMT Not After : Nov 30 01:11:28 2024 GMT Subject: CN=67412bc1-ced5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ef:af:b2:52:91:9a:54:be:87:6c:a0:a3:86: dc:55:de:1c:8e:28:82:0b:a3:f0:fa:df:e3:38:1f: c8:b8:64:78:c7:11:70:72:80:c0:23:20:3c:ff:3c: 93:27:5c:6c:b1:60:c9:68:76:0e:67:51:0f:b4:c9: 20:c4:ac:3f:77:d4:30:28:e5:f6:e8:25:0b:88:cb: 7d:90:85:7a:4d:09:30:bc:be:0d:80:98:3c:83:84: 4e:0e:86:0f:dc:fd:2d:7d:3b:83:8b:fb:f2:dd:fe: 77:9e:d6:d7:ac:e5:89:30:27:9e:d0:19:7f:ea:43: 08:4e:35:a1:21:95:0f:d7:0d:5c:f1:6c:d4:3f:3b: 24:7d:54:c6:46:1d:84:1d:d0:6e:3f:b8:de:15:27: 64:ea:46:ee:ac:0d:8b:e6:72:df:39:79:1b:ce:e9: 89:af:0f:dd:31:8d:30:31:ae:1b:7c:2f:4b:fd:29: 94:da:07:0b:5c:f5:d6:b2:c9:34:0f:25:cd:a8:95: c9:74:f5:d2:09:a0:6c:09:52:a1:97:9b:26:82:dd: 48:b0:06:99:1a:a3:c9:1f:e3:5b:e4:93:93:55:1e: f6:06:41:37:74:2e:20:3a:20:49:dc:49:50:4d:ed: d0:dd:86:fc:79:cf:ee:f8:dd:80:30:b6:ed:a0:ae: 3f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F0:10:56:42:74:B1:06:B5:A7:58:86:08:1D:E4:01:24:22:A2:1B X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:00:e5:42:a6:46:7f:02:dd:ff:30:67:b7:57:d0:15:72:05: 3a:ef:3c:13:d8:f7:ae:24:3c:28:b0:b8:57:2e:6a:c8:da:d7: 93:0c:e6:90:be:43:c4:31:6a:f6:f1:9e:f1:79:9b:e9:18:f1: 1c:ca:9f:89:46:ab:c5:7c:f5:71:9f:64:ac:b5:1a:c2:21:6a: df:d6:de:a4:75:cd:fa:19:49:d0:8f:4e:2b:11:d4:ed:05:6d: d1:e0:49:7e:5d:ca:52:03:d3:9b:fb:4b:3c:45:15:1c:43:cd: f0:c7:ff:89:5a:4c:0d:ed:f0:bc:bd:f7:47:8e:48:36:7e:ad: 57:78:0c:35:1c:b2:28:4c:52:8b:bc:b0:a7:3d:4e:89:0c:28: bb:58:67:7f:1e:dc:a4:22:ff:86:da:2e:76:2e:c9:0d:69:04: 7a:0f:21:82:f7:3a:01:3d:27:1a:e4:f7:3f:f7:b8:c8:ca:79: ac:bc:dd:71:38:d6:d9:50:b7:9f:06:ae:2d:8a:d0:9b:34:b1: 21:48:2e:d6:1f:70:0c:f6:e3:63:83:15:3d:7d:77:5d:b5:f6: 2b:9f:ff:27:ce:9e:d8:5d:9d:69:47:0b:d7:56:ae:dd:55:70: aa:c4:83:b8:70:d2:01:f9:12:a8:38:e9:59:b0:71:09:e8:93: fb:07:5c:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjQxMTIzMDExMTI4WhcNMjQxMTMwMDExMTI4WjAYMRYwFAYD VQQDEw02NzQxMmJjMS1jZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve+vslKRmlS+h2ygo4bcVd4cjiiCC6Pw+t/jOB/IuGR4xxFwcoDAIyA8/zyT J1xssWDJaHYOZ1EPtMkgxKw/d9QwKOX26CULiMt9kIV6TQkwvL4NgJg8g4RODoYP 3P0tfTuDi/vy3f53ntbXrOWJMCee0Bl/6kMITjWhIZUP1w1c8WzUPzskfVTGRh2E HdBuP7jeFSdk6kburA2L5nLfOXkbzumJrw/dMY0wMa4bfC9L/SmU2gcLXPXWssk0 DyXNqJXJdPXSCaBsCVKhl5smgt1IsAaZGqPJH+Nb5JOTVR72BkE3dC4gOiBJ3ElQ Te3Q3Yb8ec/u+N2AMLbtoK4/5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPwEFZC dLEGtadYhggd5AEkIqIbMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzZFMS9BNTdEODZEOEU3REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pw NEdVUDc4Q3JFa0lXeTEtY0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiAOVCpkZ/At3/MGe3V9AVcgU67zwT2PeuJDwosLhXLmrI2teTDOaQ vkPEMWr28Z7xeZvpGPEcyp+JRqvFfPVxn2SstRrCIWrf1t6kdc36GUnQj04rEdTt BW3R4El+XcpSA9Ob+0s8RRUcQ83wx/+JWkwN7fC8vfdHjkg2fq1XeAw1HLIoTFKL vLCnPU6JDCi7WGd/HtykIv+G2i52LskNaQR6DyGC9zoBPSca5Pc/97jIynmsvN1x ONbZULefBq4titCbNLEhSC7WH3AM9uNjgxU9fXddtfYrn/8nzp7YXZ1pRwvXVq7d VXCqxIO4cNIB+RKoOOlZsHEJ6JP7B1wQ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org