$ rpki-client -vvf rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft File: cKH09V1h0yEhCBXRHZ1aIoGF49g.mft (raw, json) Hash identifier: iUjcccvc8sqEQ0F6ezVWFlIPs30b6p0XN+1Q3mc+N3k= Subject key identifier: 1D:3C:F7:86:18:3F:90:9F:CD:D5:8A:D4:1D:DD:D7:5F:A9:CB:DC:F3 Authority key identifier: 70:A1:F4:F5:5D:61:D3:21:21:08:15:D1:1D:9D:5A:22:81:85:E3:D8 Certificate issuer: /CN=A917368A/serialNumber=70A1F4F55D61D321210815D11D9D5A228185E3D8 Certificate serial: 02BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft Manifest number: 02BB Signing time: Sat 23 Nov 2024 01:00:31 +0000 Manifest this update: Sat 23 Nov 2024 01:00:30 +0000 Manifest next update: Sat 30 Nov 2024 01:00:30 +0000 Files and hashes: 1: cKH09V1h0yEhCBXRHZ1aIoGF49g.crl (hash: mME9pZfKNDa8yNV44QI1lzUa/sIS+/Koji1kh+KZr6o=) 2: EE0C8EC2CD4311EC8DA37755C4F9AE02.roa (hash: wp8vuIMIgu9u8/7IDWCkvLi4+gnieeCEzclE+crwT1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.crl rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 702 (0x2be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917368A/serialNumber=70A1F4F55D61D321210815D11D9D5A228185E3D8 Validity Not Before: Nov 23 01:00:30 2024 GMT Not After : Nov 30 01:00:30 2024 GMT Subject: CN=6741292e-5fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:92:55:ef:ba:c1:82:b7:a5:ea:a7:64:ac:b1: 08:22:bb:5b:43:da:11:1d:6a:53:4b:71:d3:d7:39: 70:41:ae:ac:4b:de:89:6b:d1:95:e5:e2:ea:a9:c7: 8a:8a:3c:ed:e5:94:31:53:2d:79:5e:9c:5d:c6:f5: 28:4f:d7:bc:25:0f:74:49:60:f2:76:9c:33:d2:6b: 67:82:e5:2a:2b:68:06:57:06:08:cc:f9:d4:32:bb: a2:ac:73:a4:9c:2f:ef:0b:6b:72:57:4b:1d:13:fd: 08:1f:bd:80:c9:2f:bb:43:7c:2f:d1:81:d9:e0:4d: b4:57:c7:5e:02:e8:71:7d:39:e5:84:4d:6e:5b:74: ad:33:3f:92:ba:f3:f1:01:dc:28:5e:f9:23:bc:c5: af:71:6b:63:49:e2:c0:bb:47:d9:65:80:54:ea:5f: c1:89:c4:bf:f6:1d:dc:3e:fd:2a:8c:97:f7:27:aa: 22:2e:e1:0e:7b:9a:42:06:23:1e:73:ae:80:5b:53: 9d:e8:64:cf:97:06:52:02:4d:96:af:5f:66:e3:c6: ba:bc:ac:42:0e:b7:9a:00:b2:cc:72:1a:21:7d:2e: cd:10:8a:3d:e4:d3:b5:a7:d7:44:36:bc:5a:3a:3f: 83:d0:ba:3c:ed:c6:cf:14:a4:96:b0:58:c2:1e:cd: bc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3C:F7:86:18:3F:90:9F:CD:D5:8A:D4:1D:DD:D7:5F:A9:CB:DC:F3 X509v3 Authority Key Identifier: keyid:70:A1:F4:F5:5D:61:D3:21:21:08:15:D1:1D:9D:5A:22:81:85:E3:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cKH09V1h0yEhCBXRHZ1aIoGF49g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917368A/A5996EA6CD3B11EC9D262145C4F9AE02/cKH09V1h0yEhCBXRHZ1aIoGF49g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:6a:68:7d:dc:ea:46:c2:4d:3b:f0:d8:89:19:09:41:70:1d: b3:11:d5:5c:d9:52:bb:00:c6:fc:2e:80:55:96:92:b2:10:ec: 49:48:da:ea:90:5c:42:2c:7a:68:17:6c:bc:9b:c9:c4:14:91: cf:37:bb:71:2c:f4:cf:15:16:43:5c:a4:08:40:9b:ae:b1:ee: 0d:4d:8e:b9:c9:a0:cb:11:86:27:7a:df:d6:58:7b:7a:d3:ed: 9a:a5:be:17:8a:28:fb:3c:c1:22:03:50:25:dc:13:26:bb:e8: c5:06:92:3b:37:b2:24:e8:3f:7a:dd:d1:2f:13:bd:f2:12:9e: d1:4f:16:4c:05:cb:ef:66:3f:24:c6:58:05:84:30:a4:ad:11: 74:d3:1d:2b:de:76:c0:b7:64:ff:86:1d:9c:0f:1d:45:21:9b: 09:54:0c:42:8c:97:e6:a7:9d:b1:13:12:1d:5c:f5:d1:d3:fb: 87:7c:1b:31:2a:c3:8a:8a:d6:15:7d:69:74:50:ed:5e:b5:fc: 4a:72:0b:fd:ae:4a:65:10:86:21:22:3d:32:ac:0f:f1:bf:ea: 57:af:f0:2c:79:55:60:a4:08:ff:7f:2f:b6:05:b9:a5:6a:71: e1:e8:77:84:6d:c5:7c:00:54:a5:78:ce:0c:69:b6:cd:1d:bb: 78:49:32:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2OEExMTAvBgNVBAUTKDcwQTFGNEY1NUQ2MUQzMjEyMTA4MTVEMTFEOUQ1QTIy ODE4NUUzRDgwHhcNMjQxMTIzMDEwMDMwWhcNMjQxMTMwMDEwMDMwWjAYMRYwFAYD VQQDEw02NzQxMjkyZS01ZmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pJV77rBgrel6qdkrLEIIrtbQ9oRHWpTS3HT1zlwQa6sS96Ja9GV5eLqqceK ijzt5ZQxUy15XpxdxvUoT9e8JQ90SWDydpwz0mtnguUqK2gGVwYIzPnUMruirHOk nC/vC2tyV0sdE/0IH72AyS+7Q3wv0YHZ4E20V8deAuhxfTnlhE1uW3StMz+SuvPx AdwoXvkjvMWvcWtjSeLAu0fZZYBU6l/BicS/9h3cPv0qjJf3J6oiLuEOe5pCBiMe c66AW1Od6GTPlwZSAk2Wr19m48a6vKxCDreaALLMchohfS7NEIo95NO1p9dENrxa Oj+D0Lo87cbPFKSWsFjCHs285wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0894YY P5CfzdWK1B3d11+py9zzMB8GA1UdIwQYMBaAFHCh9PVdYdMhIQgV0R2dWiKBhePY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzY4QS9BNTk5NkVBNkNE M0IxMUVDOUQyNjIxNDVDNEY5QUUwMi9jS0gwOVYxaDB5RWhDQlhSSFoxYUlvR0Y0 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NLSDA5VjFoMHlFaENCWFJIWjFhSW9HRjQ5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzY4QS9BNTk5NkVBNkNEM0IxMUVDOUQyNjIxNDVDNEY5QUUwMi9jS0gwOVYxaDB5 RWhDQlhSSFoxYUlvR0Y0OWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARamh93OpGwk078NiJGQlBcB2zEdVc2VK7AMb8LoBVlpKyEOxJSNrq kFxCLHpoF2y8m8nEFJHPN7txLPTPFRZDXKQIQJuuse4NTY65yaDLEYYnet/WWHt6 0+2apb4Xiij7PMEiA1Al3BMmu+jFBpI7N7Ik6D963dEvE73yEp7RTxZMBcvvZj8k xlgFhDCkrRF00x0r3nbAt2T/hh2cDx1FIZsJVAxCjJfmp52xExIdXPXR0/uHfBsx KsOKitYVfWl0UO1etfxKcgv9rkplEIYhIj0yrA/xv+pXr/AseVVgpAj/fy+2Bbml anHh6HeEbcV8AFSleM4MabbNHbt4STJl -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org