$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: RvCeP5v75urcQBPctPw1RwLkSSTFLF/NTQxZj/jwZsk= Subject key identifier: 3B:0C:6F:A0:E5:70:BB:E7:0F:03:07:B8:78:E5:52:AA:55:00:62:18 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 072E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 0729 Signing time: Fri 22 Nov 2024 21:15:51 +0000 Manifest this update: Fri 22 Nov 2024 21:15:51 +0000 Manifest next update: Fri 29 Nov 2024 21:15:51 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: TpgAIzf9rNWCv/GDtxwhnIRMG/HyKbyXLn9QZJWP7Ro=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: 0rr8K1LQ/thtLtkFZc4kC3SiEr3iL8XaKJgB3Bca1+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1838 (0x72e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Nov 22 21:15:51 2024 GMT Not After : Nov 29 21:15:51 2024 GMT Subject: CN=6740f487-c60e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:21:92:fb:3f:1b:a3:ae:fc:70:1e:bb:4e:3b: 58:7c:6c:9b:b1:a9:18:87:84:73:61:56:5e:f3:2f: 96:31:16:2f:71:0b:e9:f4:7f:45:8d:6e:aa:ff:40: 95:95:79:3a:0c:1a:e9:a0:54:60:2a:45:00:fa:da: f0:0d:97:05:89:a4:6d:4f:dd:8b:0c:b7:b5:4d:d0: a9:39:81:c1:e9:0c:c1:ae:10:84:be:d2:e5:81:56: 7d:d4:a9:0e:66:ec:fe:8d:ae:2d:9c:a2:c4:7a:23: 8c:08:d6:71:71:24:8e:7c:34:5d:c9:62:e2:d6:ac: 7b:21:9c:ac:3c:1d:14:04:fb:8e:70:2f:16:dd:a0: 56:63:98:9a:2f:0c:07:b2:cd:71:95:bc:c4:69:3d: 66:ce:39:c2:3b:24:43:56:4c:a5:58:da:58:8d:d0: 0a:eb:59:a2:c5:39:ff:c1:bb:30:54:49:e5:36:af: 1f:35:6d:72:9a:22:03:cb:19:14:9d:14:81:e8:b6: 87:87:b6:06:5e:8c:78:ff:94:2f:52:1a:1b:85:58: 04:fa:97:c6:e9:aa:57:6b:99:70:f4:58:9e:b8:ac: 65:7e:2a:38:3f:04:61:56:11:b9:a9:50:80:bf:46: 25:e9:80:42:45:a2:92:68:ea:6a:36:bc:77:91:4b: 36:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0C:6F:A0:E5:70:BB:E7:0F:03:07:B8:78:E5:52:AA:55:00:62:18 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:97:73:98:39:87:ec:5a:68:4c:6b:e4:df:50:95:c5:47:48: c0:09:01:b9:14:e5:d5:c3:f4:93:3c:cf:51:c5:fb:8f:27:89: e8:35:d9:c9:f2:99:cd:eb:d8:74:03:69:10:44:3c:ea:8a:1e: 72:1b:a9:60:3f:c8:04:a1:cc:d9:a9:42:c2:4c:63:a5:1e:b8: d2:dc:47:57:8b:a9:4d:d9:3f:3f:8b:22:cb:65:d8:bf:84:1f: d4:13:22:d7:c2:25:a9:0e:51:2d:dd:c8:30:92:0b:06:19:99: 98:04:f5:df:49:36:33:9f:a0:78:32:6f:a6:66:9e:2a:06:68: 93:5f:37:99:c5:86:a3:98:b1:f2:c5:b8:e6:e0:c9:3c:11:52: 82:a7:cf:0c:7c:be:9e:b5:5e:51:05:fc:b5:80:43:75:d6:8c: 37:be:68:44:ee:7a:ee:59:46:dc:44:21:17:35:bf:45:e9:c3: ee:91:0b:1b:f9:39:36:a5:d7:3d:99:1c:c6:ba:cc:e2:ea:ae: d7:4a:ae:20:f4:65:93:e2:20:21:f6:b2:1b:f9:ae:f4:1b:5c: a1:a1:2d:e0:60:9e:8a:52:94:26:22:1d:9a:e1:0e:9b:60:65: 56:28:1b:81:ae:e7:bf:2d:51:fe:50:9b:b3:59:01:4b:7a:65: bc:03:22:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjQxMTIyMjExNTUxWhcNMjQxMTI5MjExNTUxWjAYMRYwFAYD VQQDEw02NzQwZjQ4Ny1jNjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSGS+z8bo678cB67TjtYfGybsakYh4RzYVZe8y+WMRYvcQvp9H9FjW6q/0CV lXk6DBrpoFRgKkUA+trwDZcFiaRtT92LDLe1TdCpOYHB6QzBrhCEvtLlgVZ91KkO Zuz+ja4tnKLEeiOMCNZxcSSOfDRdyWLi1qx7IZysPB0UBPuOcC8W3aBWY5iaLwwH ss1xlbzEaT1mzjnCOyRDVkylWNpYjdAK61mixTn/wbswVEnlNq8fNW1ymiIDyxkU nRSB6LaHh7YGXox4/5QvUhobhVgE+pfG6apXa5lw9FieuKxlfio4PwRhVhG5qVCA v0Yl6YBCRaKSaOpqNrx3kUs2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsMb6Dl cLvnDwMHuHjlUqpVAGIYMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACl3OYOYfsWmhMa+TfUJXFR0jACQG5FOXVw/STPM9RxfuPJ4noNdnJ 8pnN69h0A2kQRDzqih5yG6lgP8gEoczZqULCTGOlHrjS3EdXi6lN2T8/iyLLZdi/ hB/UEyLXwiWpDlEt3cgwkgsGGZmYBPXfSTYzn6B4Mm+mZp4qBmiTXzeZxYajmLHy xbjm4Mk8EVKCp88MfL6etV5RBfy1gEN11ow3vmhE7nruWUbcRCEXNb9F6cPukQsb +Tk2pdc9mRzGuszi6q7XSq4g9GWT4iAh9rIb+a70G1yhoS3gYJ6KUpQmIh2a4Q6b YGVWKBuBrue/LVH+UJuzWQFLemW8AyL1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org