$ rpki-client -vvf rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft (raw, json) Hash identifier: 5VlUiI/nbDL/7neZhTx1drbcZ9bGq/uhUKMzkgyFP/w= Subject key identifier: 1B:9E:C8:95:0A:D6:02:B2:9E:5B:FE:0E:E4:7F:F8:9C:3C:ED:E4:05 Authority key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 Certificate issuer: /CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Certificate serial: 05D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft Manifest number: 05CF Signing time: Fri 22 Nov 2024 22:32:46 +0000 Manifest this update: Fri 22 Nov 2024 22:32:46 +0000 Manifest next update: Fri 29 Nov 2024 22:32:46 +0000 Files and hashes: 1: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl (hash: mtMvEW0bfDhU/JfIDPrtiyRHrhubDUHKdlvxs9jk5IM=) 2: EA266BB0965911EB9A717E21C4F9AE02.roa (hash: gli6G9isd7214k/XwPb4QWIehT/cx5I/c38k571CPVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1492 (0x5d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Validity Not Before: Nov 22 22:32:46 2024 GMT Not After : Nov 29 22:32:46 2024 GMT Subject: CN=6741068e-03a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:fd:b3:14:26:05:5b:f2:c8:02:3c:c3:21: 0c:90:51:46:86:eb:1c:54:9e:7b:fa:7e:7d:41:29: c9:fb:f9:92:16:d8:4b:7f:b9:6f:f4:cb:42:61:39: 5b:ea:2d:9f:2f:2e:06:d5:c4:74:1d:2d:21:57:d1: dd:a0:7f:ae:e7:09:f3:42:d5:d3:b7:0f:f4:1e:2e: 9e:45:c4:af:11:c4:55:10:dd:8d:31:2a:34:34:5e: 46:6b:05:f1:81:df:65:6f:52:15:d9:8f:45:dd:90: af:5b:fa:cc:20:3a:d1:2f:a1:84:90:2f:ee:a9:a0: 88:ff:fb:e4:8f:9d:14:a1:13:9c:88:10:22:2a:73: 88:9e:f3:03:bb:d5:0a:b9:38:1b:b7:be:1c:34:6b: 41:00:b1:c2:53:ad:b9:a2:15:f2:5e:5c:7d:bd:0e: dd:dd:d6:9c:46:7a:03:0a:61:50:42:30:40:44:6c: ef:0e:a8:65:0c:30:11:09:b6:dd:ec:c9:8f:dd:14: 06:a9:65:99:f2:68:68:f9:2d:eb:7c:03:ef:1d:ed: cc:3a:41:2a:d4:56:e6:10:63:d1:09:95:0b:ca:de: bf:c7:25:13:d8:ad:b9:ec:ab:f4:e8:c6:67:19:66: 29:91:1e:49:6c:f8:38:f0:00:f3:35:97:19:da:3c: 39:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9E:C8:95:0A:D6:02:B2:9E:5B:FE:0E:E4:7F:F8:9C:3C:ED:E4:05 X509v3 Authority Key Identifier: keyid:45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6b:48:3d:7b:ba:67:14:11:90:9b:e1:e8:2b:ce:00:ba:e4: 6a:ab:78:0a:e9:7d:bf:08:de:ba:6a:8b:bd:bd:ae:b3:dd:95: 63:82:d9:9b:41:37:36:03:d7:e9:ca:15:d8:27:09:9f:99:92: c7:b5:db:3c:f7:0b:c9:a8:19:41:87:54:26:9e:06:4a:b6:48: 42:0d:dc:ea:19:32:12:ca:52:84:b9:dd:37:d6:6a:1e:10:08: c8:ca:be:18:03:35:0a:16:8f:0c:5c:42:43:cc:49:63:40:94: 24:14:27:bd:10:9b:27:6d:66:34:45:27:27:cb:70:90:1b:6a: 5d:e9:71:67:c0:ed:f5:36:f9:f7:b9:e8:2d:9f:c2:25:b1:fc: 34:96:db:9c:e2:3f:65:3f:77:47:3d:85:4e:1f:9e:a9:2e:f4: 8b:a4:b7:d6:50:0f:f2:09:2b:11:58:18:35:88:9e:ee:0f:61: cb:ed:a6:b8:ec:ea:0f:48:d2:26:ad:9c:a9:88:13:04:9c:25: 2a:3c:95:e5:f9:3d:ea:75:11:f8:ff:50:d3:2e:72:4d:d0:0f: 4f:a3:2e:77:a3:61:16:bf:49:74:fa:cb:39:c0:20:0b:9a:62: 7d:e5:23:67:8b:61:34:be:e2:77:a5:62:ad:8d:8a:d6:65:19: 14:a5:03:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg1ODAxMTAvBgNVBAUTKDQ1QzlCOUJENDdEODIxODQ4NTk5QTY3RDdGMjI5NTZF MDkxM0M3RjYwHhcNMjQxMTIyMjIzMjQ2WhcNMjQxMTI5MjIzMjQ2WjAYMRYwFAYD VQQDEw02NzQxMDY4ZS0wM2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeP9sxQmBVvyyAI8wyEMkFFGhuscVJ57+n59QSnJ+/mSFthLf7lv9MtCYTlb 6i2fLy4G1cR0HS0hV9HdoH+u5wnzQtXTtw/0Hi6eRcSvEcRVEN2NMSo0NF5GawXx gd9lb1IV2Y9F3ZCvW/rMIDrRL6GEkC/uqaCI//vkj50UoROciBAiKnOInvMDu9UK uTgbt74cNGtBALHCU625ohXyXlx9vQ7d3dacRnoDCmFQQjBARGzvDqhlDDARCbbd 7MmP3RQGqWWZ8mho+S3rfAPvHe3MOkEq1FbmEGPRCZULyt6/xyUT2K257Kv06MZn GWYpkR5JbPg48ADzNZcZ2jw5tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBueyJUK 1gKynlv+DuR/+Jw87eQFMB8GA1UdIwQYMBaAFEXJub1H2CGEhZmmfX8ilW4JE8f2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODU4MC8zOUY5NjZGODk2 NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZU0ZtYVo5ZnlLVmJna1R4 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbTV2VWZZSVlTRm1hWjlmeUtWYmdrVHhfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODU4MC8zOUY5NjZGODk2NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZ U0ZtYVo5ZnlLVmJna1R4X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGa0g9e7pnFBGQm+HoK84AuuRqq3gK6X2/CN66aou9va6z3ZVjgtmb QTc2A9fpyhXYJwmfmZLHtds89wvJqBlBh1QmngZKtkhCDdzqGTISylKEud031moe EAjIyr4YAzUKFo8MXEJDzEljQJQkFCe9EJsnbWY0RScny3CQG2pd6XFnwO31Nvn3 uegtn8Ilsfw0ltuc4j9lP3dHPYVOH56pLvSLpLfWUA/yCSsRWBg1iJ7uD2HL7aa4 7OoPSNImrZypiBMEnCUqPJXl+T3qdRH4/1DTLnJN0A9Poy53o2EWv0l0+ss5wCAL mmJ95SNni2E0vuJ3pWKtjYrWZRkUpQNV -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org