$ rpki-client -vvf rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft File: DDegHLYzYjRPtzlnYP2U2cm5fHo.mft (raw, json) Hash identifier: XrHYXjDPEyhhM8P8z9rMmbpgGhGCOdG5DrCudLLuynw= Subject key identifier: D9:E9:89:D2:19:4F:1E:32:87:F1:8E:3B:3F:B0:7E:E8:EB:F0:57:FE Authority key identifier: 0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A Certificate issuer: /CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft Manifest number: E9 Signing time: Sat 23 Nov 2024 03:29:32 +0000 Manifest this update: Sat 23 Nov 2024 03:29:32 +0000 Manifest next update: Sat 30 Nov 2024 03:29:32 +0000 Files and hashes: 1: DDegHLYzYjRPtzlnYP2U2cm5fHo.crl (hash: 8W4dEUtUgTkh7eG/8f0L+hf9szKDqA/D+j7TBnuaNGg=) 2: 865B3F7C467C11EEBDE3D43CC4F9AE02.roa (hash: MTq717nmucrc35Yd/8a9v/UNjUpnghaYXRqZ7x8/L7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B64D/serialNumber=0C37A01CB63362344FB7396760FD94D9C9B97C7A Validity Not Before: Nov 23 03:29:32 2024 GMT Not After : Nov 30 03:29:32 2024 GMT Subject: CN=67414c1c-1457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:15:f3:7a:c0:3e:ba:fe:4f:0a:e4:b9:eb: dd:2b:2b:ed:c2:94:09:d9:77:27:a5:b7:e0:81:a4: 89:d5:06:07:a3:7f:9a:0f:f8:2e:1a:9f:c0:7a:55: e1:79:de:5a:a0:2c:69:87:f3:31:36:07:68:fa:e7: 5d:b4:0a:f3:ce:1e:de:69:d8:36:2d:71:f8:ea:d8: 4c:d9:80:23:2b:9e:11:1d:c7:16:58:fc:16:b4:cd: ab:be:3e:7b:e3:3f:ea:05:2e:88:1d:24:79:2d:33: 15:2e:9f:f3:48:f9:c9:1a:e6:f8:5b:6e:df:c9:9c: a7:e3:a4:06:a2:f2:2e:8d:2e:f6:ab:8a:00:7d:fe: 0e:c5:8b:96:62:9d:67:3d:3f:5e:21:50:cc:37:d5: 20:23:53:0a:eb:a4:09:38:7f:bb:50:c9:64:46:24: 33:84:a3:6a:16:90:80:73:9b:e7:a8:a6:e0:f7:50: db:26:b8:00:1d:ac:e7:33:95:6a:2b:b7:e2:36:be: 76:60:2f:5a:80:97:88:69:2b:a8:19:69:53:09:a9: 2d:33:d2:fc:1d:95:b4:b4:c6:71:21:43:39:a9:85: da:87:7b:7d:f6:ea:ea:3a:70:8b:36:3d:6b:cf:e0: 5b:3d:6a:26:af:d7:46:1e:94:df:58:3e:1a:fe:0f: 45:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:E9:89:D2:19:4F:1E:32:87:F1:8E:3B:3F:B0:7E:E8:EB:F0:57:FE X509v3 Authority Key Identifier: keyid:0C:37:A0:1C:B6:33:62:34:4F:B7:39:67:60:FD:94:D9:C9:B9:7C:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDegHLYzYjRPtzlnYP2U2cm5fHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B64D/2BBE4014467C11EE92D6463CC4F9AE02/DDegHLYzYjRPtzlnYP2U2cm5fHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e2:49:cd:16:c5:e3:45:af:07:1b:f7:7f:de:b8:5b:81:9e: b5:e2:d2:92:f1:4a:ac:c0:7e:cc:9f:c5:96:7e:ed:d3:d5:7a: 8b:33:79:57:73:b7:c3:bb:02:cf:32:fb:5f:08:f8:8a:21:d8: 6f:0e:c1:24:d8:a9:85:d8:cf:37:05:8f:52:8f:3f:1c:ae:86: 1a:25:65:86:de:22:a9:1b:76:77:50:0a:94:c0:d4:58:9f:a6: 88:a9:4c:ce:8c:32:c2:ec:bc:93:4a:92:90:6e:ca:ac:c5:9d: d1:a3:b6:36:b9:b5:ab:1f:58:69:bc:e3:4a:02:fa:85:25:0a: d3:3c:bb:8f:6a:dc:35:48:d4:4b:51:b5:11:b6:00:33:5d:6b: 43:39:9a:e9:43:29:a1:e0:0a:4a:5c:b8:62:14:9f:6d:a2:84: d6:73:56:00:b9:93:d8:ad:94:d4:e5:90:66:ca:5a:31:70:34: b5:9c:79:04:54:3b:35:6c:2a:4d:2d:cc:ba:6e:9a:df:ab:10: e6:cf:46:03:45:33:83:44:a8:bb:68:8c:74:87:cb:03:75:68: ec:0e:bd:7c:9e:f6:30:6e:02:10:09:31:0a:76:38:54:ad:3a: a9:f8:d4:22:d5:d1:77:a9:d1:93:11:f1:88:bc:9f:e7:71:2e: 10:ec:bb:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI2NEQxMTAvBgNVBAUTKDBDMzdBMDFDQjYzMzYyMzQ0RkI3Mzk2NzYwRkQ5NEQ5 QzlCOTdDN0EwHhcNMjQxMTIzMDMyOTMyWhcNMjQxMTMwMDMyOTMyWjAYMRYwFAYD VQQDEw02NzQxNGMxYy0xNDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxakV83rAPrr+TwrkuevdKyvtwpQJ2XcnpbfggaSJ1QYHo3+aD/guGp/AelXh ed5aoCxph/MxNgdo+uddtArzzh7eadg2LXH46thM2YAjK54RHccWWPwWtM2rvj57 4z/qBS6IHSR5LTMVLp/zSPnJGub4W27fyZyn46QGovIujS72q4oAff4OxYuWYp1n PT9eIVDMN9UgI1MK66QJOH+7UMlkRiQzhKNqFpCAc5vnqKbg91DbJrgAHaznM5Vq K7fiNr52YC9agJeIaSuoGWlTCaktM9L8HZW0tMZxIUM5qYXah3t99urqOnCLNj1r z+BbPWomr9dGHpTfWD4a/g9F6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNnpidIZ Tx4yh/GOOz+wfujr8Ff+MB8GA1UdIwQYMBaAFAw3oBy2M2I0T7c5Z2D9lNnJuXx6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjY0RC8yQkJFNDAxNDQ2 N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellqUlB0emxuWVAyVTJjbTVm SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0REZWdITFl6WWpSUHR6bG5ZUDJVMmNtNWZIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjY0RC8yQkJFNDAxNDQ2N0MxMUVFOTJENjQ2M0NDNEY5QUUwMi9ERGVnSExZellq UlB0emxuWVAyVTJjbTVmSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF4knNFsXjRa8HG/d/3rhbgZ614tKS8UqswH7Mn8WWfu3T1XqLM3lX c7fDuwLPMvtfCPiKIdhvDsEk2KmF2M83BY9Sjz8croYaJWWG3iKpG3Z3UAqUwNRY n6aIqUzOjDLC7LyTSpKQbsqsxZ3Ro7Y2ubWrH1hpvONKAvqFJQrTPLuPatw1SNRL UbURtgAzXWtDOZrpQymh4ApKXLhiFJ9tooTWc1YAuZPYrZTU5ZBmyloxcDS1nHkE VDs1bCpNLcy6bprfqxDmz0YDRTODRKi7aIx0h8sDdWjsDr18nvYwbgIQCTEKdjhU rTqp+NQi1dF3qdGTEfGIvJ/ncS4Q7Lv0 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org