$ rpki-client -vvf rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft File: Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft (raw, json) Hash identifier: lCyiRIvYqXjny/TtsyfZqK57rBwpEGcetIg3BpvaWjQ= Subject key identifier: 0C:53:2B:BE:CC:DE:D4:F9:4D:0D:1F:F1:58:2C:A7:B2:07:8C:BC:F3 Authority key identifier: 4A:16:E1:EB:3B:DF:8D:D4:60:73:C2:55:73:53:A4:FC:E8:70:87:CD Certificate issuer: /CN=A915BDD9/serialNumber=4A16E1EB3BDF8DD46073C2557353A4FCE87087CD Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft Manifest number: 77 Signing time: Sat 23 Nov 2024 04:45:56 +0000 Manifest this update: Sat 23 Nov 2024 04:45:56 +0000 Manifest next update: Sat 30 Nov 2024 04:45:56 +0000 Files and hashes: 1: Shbh6zvfjdRgc8JVc1Ok_Ohwh80.crl (hash: 8/Qsdw57ghfSvQJccXsdHEUg3YR/qy3SvXCyHmWcyVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.crl rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BDD9/serialNumber=4A16E1EB3BDF8DD46073C2557353A4FCE87087CD Validity Not Before: Nov 23 04:45:56 2024 GMT Not After : Nov 30 04:45:56 2024 GMT Subject: CN=67415e04-8a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:a0:a6:8c:a2:89:9e:fb:02:fe:de:d3:47: 54:e5:95:5a:c9:af:62:7d:d2:be:54:a0:14:d1:9f: 27:65:8a:7d:cb:94:9d:70:8d:ca:25:14:e5:83:16: 62:33:21:49:79:dc:3f:19:b4:47:ac:bb:81:0a:0c: c1:ba:31:b4:a7:ef:c4:19:c4:15:7c:e3:0c:74:a8: 93:a6:de:2b:12:3d:67:e0:39:c0:03:49:b7:2f:7f: 92:e9:c6:ea:00:7f:51:2b:a3:b1:b7:9b:cf:cb:b0: f4:31:b1:a0:73:71:7b:7c:3f:ad:7c:bd:ad:05:f7: ba:bf:16:a0:2d:f0:c1:6b:00:1e:d8:95:9a:6a:e8: d9:dd:56:58:28:eb:bc:05:cf:95:80:ab:58:6f:41: c6:63:2a:7b:11:d6:6b:14:0c:ed:76:08:4a:36:8f: d8:99:24:6e:43:58:ab:be:30:e4:8f:05:b3:4e:50: e9:6d:2d:fc:15:00:50:d9:d0:9e:12:76:e8:15:64: b2:01:ea:b3:3e:c0:3d:9e:80:7f:a2:74:48:bb:ad: 19:a6:ff:c4:bd:8c:36:12:17:ad:19:52:93:a8:1d: 44:94:16:da:f9:02:ed:c6:f4:3b:0b:ce:c3:7f:10: 91:7d:e4:55:1d:ee:12:72:6f:1f:19:5b:35:e2:57: 87:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:53:2B:BE:CC:DE:D4:F9:4D:0D:1F:F1:58:2C:A7:B2:07:8C:BC:F3 X509v3 Authority Key Identifier: keyid:4A:16:E1:EB:3B:DF:8D:D4:60:73:C2:55:73:53:A4:FC:E8:70:87:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BDD9/2272C5F0F1B411EE9FDFB867C4F9AE02/Shbh6zvfjdRgc8JVc1Ok_Ohwh80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:91:dd:2d:a4:f7:09:9d:a9:eb:cf:e1:4d:46:ea:d3:01:d6: e6:4a:3a:06:56:09:0e:e9:5c:15:4b:9b:7a:9b:66:65:12:5a: 62:e9:6f:94:49:50:8e:b1:7a:cf:21:ef:dc:0a:74:23:8b:09: e4:f1:9f:8b:66:c2:72:7b:80:96:49:0b:a1:a1:00:54:8f:43: 59:68:60:0c:50:c0:8e:38:c2:57:d6:b2:d3:99:e7:d3:a3:99: 5d:71:11:76:51:ec:b3:5d:09:55:f1:41:02:a1:2f:38:df:c9: d3:89:94:a0:f2:c0:5c:76:94:a1:03:43:79:66:a3:9f:c8:90: a3:f5:63:84:dd:ea:bd:89:cc:72:d9:b3:e8:1f:8f:93:dc:1a: 54:79:b7:46:51:1f:8b:51:98:93:4f:9e:12:95:d2:f5:aa:09: 24:17:39:29:12:85:17:26:75:68:da:9e:2d:5a:e3:50:bd:56: ee:62:7d:ef:82:8e:ad:40:a8:c4:27:3f:0e:30:c5:63:b4:84: bc:f1:be:84:cb:ef:b7:f7:77:db:df:9c:e2:3e:53:87:42:33: ec:fd:b2:e0:05:56:3e:c4:04:0d:4f:3b:82:79:29:2d:80:83: 8e:b4:85:ef:c6:eb:77:1b:0a:87:d1:c3:f4:33:b7:63:23:77: a6:2a:91:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QkREOTExMC8GA1UEBRMoNEExNkUxRUIzQkRGOERENDYwNzNDMjU1NzM1M0E0RkNF ODcwODdDRDAeFw0yNDExMjMwNDQ1NTZaFw0yNDExMzAwNDQ1NTZaMBgxFjAUBgNV BAMTDTY3NDE1ZTA0LThhMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKraCmjKKJnvsC/t7TR1TllVrJr2J90r5UoBTRnydlin3LlJ1wjcolFOWDFmIz IUl53D8ZtEesu4EKDMG6MbSn78QZxBV84wx0qJOm3isSPWfgOcADSbcvf5LpxuoA f1Ero7G3m8/LsPQxsaBzcXt8P618va0F97q/FqAt8MFrAB7YlZpq6NndVlgo67wF z5WAq1hvQcZjKnsR1msUDO12CEo2j9iZJG5DWKu+MOSPBbNOUOltLfwVAFDZ0J4S dugVZLIB6rM+wD2egH+idEi7rRmm/8S9jDYSF60ZUpOoHUSUFtr5Au3G9DsLzsN/ EJF95FUd7hJybx8ZWzXiV4cJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDFMrvsze 1PlNDR/xWCynsgeMvPMwHwYDVR0jBBgwFoAUShbh6zvfjdRgc8JVc1Ok/Ohwh80w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCREQ5LzIyNzJDNUYwRjFC NDExRUU5RkRGQjg2N0M0RjlBRTAyL1NoYmg2enZmamRSZ2M4SlZjMU9rX09od2g4 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2hiaDZ6dmZqZFJnYzhKVmMxT2tfT2h3aDgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVC REQ5LzIyNzJDNUYwRjFCNDExRUU5RkRGQjg2N0M0RjlBRTAyL1NoYmg2enZmamRS Z2M4SlZjMU9rX09od2g4MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABOR3S2k9wmdqevP4U1G6tMB1uZKOgZWCQ7pXBVLm3qbZmUSWmLpb5RJ UI6xes8h79wKdCOLCeTxn4tmwnJ7gJZJC6GhAFSPQ1loYAxQwI44wlfWstOZ59Oj mV1xEXZR7LNdCVXxQQKhLzjfydOJlKDywFx2lKEDQ3lmo5/IkKP1Y4Td6r2JzHLZ s+gfj5PcGlR5t0ZRH4tRmJNPnhKV0vWqCSQXOSkShRcmdWjani1a41C9Vu5ife+C jq1AqMQnPw4wxWO0hLzxvoTL77f3d9vfnOI+U4dCM+z9suAFVj7EBA1PO4J5KS2A g460he/G63cbCofRw/Qzt2Mjd6YqkXs= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org