$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: U17bXGJNtSTTNIUwCo3WlznEY154iVFbqBiR0Jsriik= Subject key identifier: CA:CC:E8:69:82:16:16:CE:D1:B4:03:5C:4B:EA:6B:8C:E4:58:F1:C7 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 01A6 Signing time: Sat 23 Nov 2024 01:50:20 +0000 Manifest this update: Sat 23 Nov 2024 01:50:19 +0000 Manifest next update: Sat 30 Nov 2024 01:50:19 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: l/iTNkfMV4CiMiFBcjvouM5qiUdJyRvMUmISpFG4fhc=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: 8tU0+bWbTseOr25wJKvheZneGGhgRMUkg1uHcFDydtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:50:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Nov 23 01:50:19 2024 GMT Not After : Nov 30 01:50:19 2024 GMT Subject: CN=674134db-29b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:39:69:03:ff:eb:e9:16:b3:54:95:7d:c5: 55:f3:59:9e:7c:86:af:d5:18:cd:c7:46:4f:c2:22: fc:ce:8a:35:a4:d8:57:7d:06:9a:8f:24:54:27:4f: 9c:b5:f9:5c:4f:d6:7a:df:f4:21:6e:25:4e:a4:3f: 11:20:fe:77:b1:59:fb:5e:40:eb:61:61:e4:83:99: 27:ec:75:52:9d:7a:8a:e8:a5:70:0e:22:28:be:77: 99:6f:f3:38:d1:4e:2c:65:70:a9:a8:d3:df:90:49: 94:b4:46:21:0f:53:0e:99:ed:00:49:cc:5a:f2:d4: 39:b9:6f:c1:9d:3c:65:c3:f8:a1:e1:c3:96:75:ae: 00:03:0b:57:42:f1:39:cb:75:11:3a:1c:9f:8a:17: aa:de:1b:3e:31:46:7d:2f:07:e1:0f:9f:68:72:13: f1:31:75:60:eb:85:b0:3d:c8:ff:e6:1f:fe:88:15: d0:2b:ad:70:0d:de:e9:ef:be:b7:5f:4e:ac:ef:e8: 97:f9:e0:75:4f:9f:10:e1:4b:36:cf:20:ff:ec:36: 2b:a4:6c:b2:3d:da:e4:9e:78:fe:a9:91:bc:2c:63: d4:1b:20:99:62:e4:12:8f:7b:81:3e:43:9f:13:ca: 7a:21:80:65:e5:17:bc:a6:97:f2:c6:9b:8e:77:eb: 85:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:CC:E8:69:82:16:16:CE:D1:B4:03:5C:4B:EA:6B:8C:E4:58:F1:C7 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:a9:fc:75:cf:24:a9:0f:74:6e:b3:81:fc:07:6e:50:b6:0d: 48:67:36:b1:4e:c2:6c:98:f4:29:7d:4d:93:71:ca:45:1b:2a: f4:67:57:42:fb:70:1b:42:f2:9b:11:c6:e9:e7:41:e2:08:3c: 91:dd:25:7e:94:55:ed:55:6f:ba:54:5e:0d:da:21:45:54:7c: 1b:71:20:19:4f:8a:b7:dd:65:58:46:42:be:b8:0f:4b:33:b6: 7d:87:c3:dd:5d:46:61:a2:8f:5f:ee:26:a1:61:37:74:5f:ce: 0d:57:75:13:2f:90:e0:ae:8c:32:7a:04:6d:63:69:f3:55:61: 53:4c:a2:fa:4b:25:f4:68:52:5b:36:84:8b:06:fd:0e:bf:38: 4d:6a:ac:34:f0:37:4f:2e:fc:1e:18:b2:90:20:f3:b8:b5:d3: b8:2b:f1:a8:75:48:76:84:bc:19:37:5b:41:a9:fc:fc:7f:a7: 6c:8b:08:d2:17:3d:1d:0f:77:50:86:0f:b7:95:b9:85:74:cf: b0:52:1a:78:43:b9:fd:64:d4:a3:63:8f:c3:4b:dd:e9:7e:d6: 39:07:9d:1f:8b:8a:ab:40:5b:18:23:05:a5:5f:f5:d9:2f:f5: 5e:fd:a1:f6:67:25:75:de:d8:29:a3:3b:ca:aa:eb:57:56:99: 1e:61:26:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjQxMTIzMDE1MDE5WhcNMjQxMTMwMDE1MDE5WjAYMRYwFAYD VQQDEw02NzQxMzRkYi0yOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssk5aQP/6+kWs1SVfcVV81mefIav1RjNx0ZPwiL8zoo1pNhXfQaajyRUJ0+c tflcT9Z63/QhbiVOpD8RIP53sVn7XkDrYWHkg5kn7HVSnXqK6KVwDiIovneZb/M4 0U4sZXCpqNPfkEmUtEYhD1MOme0AScxa8tQ5uW/BnTxlw/ih4cOWda4AAwtXQvE5 y3UROhyfiheq3hs+MUZ9LwfhD59ochPxMXVg64WwPcj/5h/+iBXQK61wDd7p7763 X06s7+iX+eB1T58Q4Us2zyD/7DYrpGyyPdrknnj+qZG8LGPUGyCZYuQSj3uBPkOf E8p6IYBl5Re8ppfyxpuOd+uFLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrM6GmC FhbO0bQDXEvqa4zkWPHHMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBqfx1zySpD3Rus4H8B25Qtg1IZzaxTsJsmPQpfU2TccpFGyr0Z1dC +3AbQvKbEcbp50HiCDyR3SV+lFXtVW+6VF4N2iFFVHwbcSAZT4q33WVYRkK+uA9L M7Z9h8PdXUZhoo9f7iahYTd0X84NV3UTL5DgrowyegRtY2nzVWFTTKL6SyX0aFJb NoSLBv0OvzhNaqw08DdPLvweGLKQIPO4tdO4K/GodUh2hLwZN1tBqfz8f6dsiwjS Fz0dD3dQhg+3lbmFdM+wUhp4Q7n9ZNSjY4/DS93pftY5B50fi4qrQFsYIwWlX/XZ L/Ve/aH2ZyV13tgpozvKqutXVpkeYSY/ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org