$ rpki-client -vvf rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft File: ehMEShEYWGwP2hOLs-vdSEiRTjc.mft (raw, json) Hash identifier: u5oqEBMkw62Sz1DeOJDJBwqXybkFCS4WVckYDefCqfU= Subject key identifier: BA:68:99:95:43:4D:43:9E:BA:B2:77:F2:30:1F:EF:26:B0:CB:4D:8E Authority key identifier: 7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 Certificate issuer: /CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft Manifest number: 01FF Signing time: Sat 23 Nov 2024 01:36:50 +0000 Manifest this update: Sat 23 Nov 2024 01:36:49 +0000 Manifest next update: Sat 30 Nov 2024 01:36:49 +0000 Files and hashes: 1: ehMEShEYWGwP2hOLs-vdSEiRTjc.crl (hash: uGyI5cp2LYCSjX8Teq5oRdwWV3IDUkHdZb2R4VhjV8s=) 2: 62A0C17A16C511ED91E80F56C4F9AE02.roa (hash: kng6fCGLTbPsbCoI7dxHc95AMq1MgoPXW3QCzJfYN0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154EAF/serialNumber=7A13044A1118586C0FDA138BB3EBDD4848914E37 Validity Not Before: Nov 23 01:36:49 2024 GMT Not After : Nov 30 01:36:49 2024 GMT Subject: CN=674131b2-831e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:5e:ae:7a:d9:f7:76:a2:25:33:10:1a:96:0b: bb:df:df:31:c8:4f:97:de:ae:83:aa:50:41:01:18: 2d:05:8e:9a:35:97:23:17:6a:2e:36:6c:92:7f:7c: 80:79:75:cf:55:ae:0d:37:6c:a6:40:f1:d6:0c:bd: cd:14:9a:b1:0e:ca:41:62:f2:7f:4e:2c:c2:16:44: 51:31:89:3a:1d:e1:11:0c:90:76:56:7e:7f:e1:e7: 3d:7b:6b:fe:12:01:66:d1:95:d3:47:da:b3:39:b9: df:93:99:ab:c7:24:99:15:45:21:f3:5e:d8:4e:85: 61:61:27:20:6c:85:73:82:76:d5:33:61:3a:7e:28: b9:ec:03:b0:c1:41:95:92:29:1a:05:2d:55:0d:67: 0a:81:70:81:b0:94:f2:dc:24:8d:a0:71:f0:c7:d5: 2b:68:27:40:93:36:5b:ba:a8:d4:1a:80:3c:cc:97: 86:1a:c1:04:4f:cf:f9:00:cc:37:6f:41:e1:96:4f: 8b:f7:ed:4d:b9:c8:7e:81:fd:b7:10:74:96:47:9b: 16:db:8e:90:0e:1a:07:fb:c1:69:8d:d6:02:85:eb: 23:7f:b6:fc:02:7c:e9:46:8b:ea:9d:e2:38:fe:37: 72:71:55:48:91:00:7c:91:32:89:c6:38:f7:c0:89: 3b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:68:99:95:43:4D:43:9E:BA:B2:77:F2:30:1F:EF:26:B0:CB:4D:8E X509v3 Authority Key Identifier: keyid:7A:13:04:4A:11:18:58:6C:0F:DA:13:8B:B3:EB:DD:48:48:91:4E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ehMEShEYWGwP2hOLs-vdSEiRTjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154EAF/47D5A7E016C311EDAE7EB955C4F9AE02/ehMEShEYWGwP2hOLs-vdSEiRTjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:5b:6a:74:48:ee:dd:92:f8:0f:60:e9:62:98:51:06:ca:9d: 43:41:8c:82:54:d5:53:76:73:b1:36:22:c6:e9:17:aa:3f:37: 42:31:2b:08:7b:7e:2f:3a:7c:88:39:40:2b:1e:52:fe:77:e2: 6b:39:30:60:c8:b7:07:25:a8:e2:f0:46:ad:ec:06:bc:ba:1c: e5:6b:65:5e:15:ab:8c:8c:3d:70:84:30:b0:ec:23:92:5f:56: 5a:ea:d8:a2:8d:08:af:3a:d0:57:c0:b3:89:7c:89:00:36:ed: 51:d3:b8:09:a1:76:e8:51:6f:30:d8:66:93:0d:7c:18:d5:03: 75:9f:fb:36:58:f5:ba:39:ae:58:88:f1:67:80:f3:bf:3a:08: ed:93:33:9e:c3:57:a1:3c:30:16:bd:c9:38:eb:c9:97:4d:89: b3:49:e1:81:21:a7:14:4f:6c:e0:4c:d9:f5:e7:fe:b1:cd:e1: 84:68:fa:a9:54:0e:5c:82:3a:d3:3b:aa:6d:0e:a6:74:f4:c8: 47:59:3c:d4:98:ca:95:2a:be:bf:7d:61:da:d4:cc:02:aa:97: 36:0c:b7:8e:2d:46:3d:7e:7f:8a:4b:3a:17:f3:61:40:c8:b5: 85:20:18:96:eb:c5:48:20:9b:39:3e:37:e4:51:bb:2d:78:3d: 07:4a:1a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRFQUYxMTAvBgNVBAUTKDdBMTMwNDRBMTExODU4NkMwRkRBMTM4QkIzRUJERDQ4 NDg5MTRFMzcwHhcNMjQxMTIzMDEzNjQ5WhcNMjQxMTMwMDEzNjQ5WjAYMRYwFAYD VQQDEw02NzQxMzFiMi04MzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6V6uetn3dqIlMxAalgu7398xyE+X3q6DqlBBARgtBY6aNZcjF2ouNmySf3yA eXXPVa4NN2ymQPHWDL3NFJqxDspBYvJ/TizCFkRRMYk6HeERDJB2Vn5/4ec9e2v+ EgFm0ZXTR9qzObnfk5mrxySZFUUh817YToVhYScgbIVzgnbVM2E6fii57AOwwUGV kikaBS1VDWcKgXCBsJTy3CSNoHHwx9UraCdAkzZbuqjUGoA8zJeGGsEET8/5AMw3 b0Hhlk+L9+1Nuch+gf23EHSWR5sW246QDhoH+8FpjdYChesjf7b8AnzpRovqneI4 /jdycVVIkQB8kTKJxjj3wIk7qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpomZVD TUOeurJ38jAf7yawy02OMB8GA1UdIwQYMBaAFHoTBEoRGFhsD9oTi7Pr3UhIkU43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEVBRi80N0Q1QTdFMDE2 QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdHd1AyaE9Mcy12ZFNFaVJU amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VoTUVTaEVZV0d3UDJoT0xzLXZkU0VpUlRqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NEVBRi80N0Q1QTdFMDE2QzMxMUVEQUU3RUI5NTVDNEY5QUUwMi9laE1FU2hFWVdH d1AyaE9Mcy12ZFNFaVJUamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmW2p0SO7dkvgPYOlimFEGyp1DQYyCVNVTdnOxNiLG6ReqPzdCMSsI e34vOnyIOUArHlL+d+JrOTBgyLcHJaji8Eat7Aa8uhzla2VeFauMjD1whDCw7COS X1Za6tiijQivOtBXwLOJfIkANu1R07gJoXboUW8w2GaTDXwY1QN1n/s2WPW6Oa5Y iPFngPO/OgjtkzOew1ehPDAWvck468mXTYmzSeGBIacUT2zgTNn15/6xzeGEaPqp VA5cgjrTO6ptDqZ09MhHWTzUmMqVKr6/fWHa1MwCqpc2DLeOLUY9fn+KSzoX82FA yLWFIBiW68VIIJs5PjfkUbsteD0HSho+ -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org