$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft File: STXJCZ1YAoESreyiiRQ1_MWPuiw.mft (raw, json) Hash identifier: kPIYt7nrv/jMdC2+AO/L0y9bBsC2dYrOrFlz8FT6WBs= Subject key identifier: 60:1F:5E:15:35:2D:85:FC:DC:AF:26:B1:AE:57:01:13:82:D3:01:4D Authority key identifier: 49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C Certificate issuer: /CN=A9142E1E/serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft Manifest number: 1C Signing time: Sat 23 Nov 2024 05:49:55 +0000 Manifest this update: Sat 23 Nov 2024 05:49:55 +0000 Manifest next update: Sat 30 Nov 2024 05:49:55 +0000 Files and hashes: 1: STXJCZ1YAoESreyiiRQ1_MWPuiw.crl (hash: QvPO1kkfJL/wypiPF0Sunxvr76KrH6UpFjVTRb6scNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E/serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Validity Not Before: Nov 23 05:49:55 2024 GMT Not After : Nov 30 05:49:55 2024 GMT Subject: CN=67416d03-9494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:42:fb:a8:a6:18:c7:54:14:bb:09:f0:88:80: be:1a:17:a0:fd:ea:f8:01:d0:cf:92:49:25:f1:4d: cb:9c:6f:48:15:be:02:2d:f5:1a:84:dd:cc:b4:cb: ac:f4:58:52:4f:20:07:90:5f:0e:42:9c:f8:e3:c8: 7e:02:77:2b:4c:1f:d8:84:7d:fa:f9:d1:e2:35:ce: 37:4d:c6:b7:7d:53:a3:5e:a5:85:ad:f4:41:20:95: 74:e2:9d:50:e2:7c:a6:c5:e6:a7:d8:43:fd:e2:fa: d8:79:c1:68:0a:35:f5:3d:b5:a8:3c:ca:3b:0f:9f: f0:88:08:c2:5e:94:0c:ae:35:ce:b0:29:3f:2c:5d: be:83:e8:e4:c7:87:02:81:e8:dd:a9:d0:7e:18:6c: 72:bc:c2:91:15:6a:4a:8e:3f:65:95:81:cc:0c:d3: bb:ae:85:f8:f0:df:fe:29:c2:17:71:11:09:fb:c1: b9:b0:86:0b:f7:1a:03:55:87:bd:b0:29:9f:2b:81: da:d9:85:c8:d9:24:2e:f1:84:97:96:cf:e5:a2:75: 65:d0:1d:59:2f:55:aa:09:61:b5:09:63:80:4f:5e: 61:5c:c1:98:0b:c2:91:98:7d:db:84:bd:ed:3a:d9: c4:a1:56:d7:cf:de:26:b0:0b:09:a7:c3:60:48:eb: 7d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1F:5E:15:35:2D:85:FC:DC:AF:26:B1:AE:57:01:13:82:D3:01:4D X509v3 Authority Key Identifier: keyid:49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:df:d1:e7:7a:a3:76:18:56:ba:4f:07:ef:8b:cf:3b:34:8b: f1:b7:03:fb:77:78:65:39:30:5c:07:a6:31:e6:a6:98:a6:b7: 33:e2:74:37:de:94:e5:e5:df:21:a3:07:61:8f:6e:e1:c6:ef: 68:41:3f:52:87:2a:62:69:9a:0e:64:fd:55:ee:a7:61:59:76: 12:30:9c:37:13:7e:cf:54:f6:66:70:89:b8:a5:7b:9e:86:8c: b4:f1:e4:ff:60:ed:39:6c:0a:13:0e:05:3f:10:48:23:ea:2b: f3:76:a2:f7:4a:34:18:5f:50:99:53:a2:9c:6d:f2:c7:c9:35: c0:8d:c4:cf:71:47:bc:bb:68:e8:ff:11:fe:8e:73:a5:9e:89: 5c:e6:02:4d:5d:20:e8:5c:5f:8e:bb:fa:a3:4f:15:d4:42:b9: 33:28:77:84:0b:00:51:9f:01:8c:be:3e:37:60:76:15:e1:29: 5b:46:9f:f0:92:dc:0a:64:9f:60:0f:93:08:c3:15:e5:39:32: 02:4b:e3:4e:aa:dd:67:12:ad:8d:dc:7a:30:a8:9a:42:d6:65: cd:08:94:e9:18:29:8b:50:8d:25:1f:d3:cd:93:56:8c:46:b3: 29:dd:6d:9f:1d:84:e2:9f:3d:48:36:2e:c1:6d:56:33:e4:0d: ae:e2:b5:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoNDkzNUM5MDk5RDU4MDI4MTEyQURFQ0EyODkxNDM1RkND NThGQkEyQzAeFw0yNDExMjMwNTQ5NTVaFw0yNDExMzAwNTQ5NTVaMBgxFjAUBgNV BAMTDTY3NDE2ZDAzLTk0OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIQvuophjHVBS7CfCIgL4aF6D96vgB0M+SSSXxTcucb0gVvgIt9RqE3cy0y6z0 WFJPIAeQXw5CnPjjyH4CdytMH9iEffr50eI1zjdNxrd9U6NepYWt9EEglXTinVDi fKbF5qfYQ/3i+th5wWgKNfU9tag8yjsPn/CICMJelAyuNc6wKT8sXb6D6OTHhwKB 6N2p0H4YbHK8wpEVakqOP2WVgcwM07uuhfjw3/4pwhdxEQn7wbmwhgv3GgNVh72w KZ8rgdrZhcjZJC7xhJeWz+WidWXQHVkvVaoJYbUJY4BPXmFcwZgLwpGYfduEve06 2cShVtfP3iawCwmnw2BI630nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYB9eFTUt hfzcryaxrlcBE4LTAU0wHwYDVR0jBBgwFoAUSTXJCZ1YAoESreyiiRQ1/MWPuiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFLzFDN0NERjY4ODI0 MjExRUZBRDNEODE4MUM0RjlBRTAyL1NUWEpDWjFZQW9FU3JleWlpUlExX01XUHVp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1RYSkNaMVlBb0VTcmV5aWlSUTFfTVdQdWl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFLzFDN0NERjY4ODI0MjExRUZBRDNEODE4MUM0RjlBRTAyL1NUWEpDWjFZQW9F U3JleWlpUlExX01XUHVpdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC/f0ed6o3YYVrpPB++Lzzs0i/G3A/t3eGU5MFwHpjHmppimtzPidDfe lOXl3yGjB2GPbuHG72hBP1KHKmJpmg5k/VXup2FZdhIwnDcTfs9U9mZwibile56G jLTx5P9g7TlsChMOBT8QSCPqK/N2ovdKNBhfUJlTopxt8sfJNcCNxM9xR7y7aOj/ Ef6Oc6WeiVzmAk1dIOhcX467+qNPFdRCuTMod4QLAFGfAYy+PjdgdhXhKVtGn/CS 3Apkn2APkwjDFeU5MgJL406q3WcSrY3cejComkLWZc0IlOkYKYtQjSUf082TVoxG syndbZ8dhOKfPUg2LsFtVjPkDa7itU4= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org