$ rpki-client -vvf rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft File: Rhwv4neii8iX8PzKT3yRCN2XSQM.mft (raw, json) Hash identifier: Z4oZjWe8vhE+QeosvTyPUWbx+KUiDtFsTEwMu1/20dw= Subject key identifier: 9C:07:D4:49:C9:FA:58:4B:4E:E1:77:61:18:6F:FA:B7:48:81:F1:33 Authority key identifier: 46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 Certificate issuer: /CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Certificate serial: 0A53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft Manifest number: 0A53 Signing time: Fri 22 Nov 2024 19:26:00 +0000 Manifest this update: Fri 22 Nov 2024 19:26:00 +0000 Manifest next update: Fri 29 Nov 2024 19:26:00 +0000 Files and hashes: 1: Rhwv4neii8iX8PzKT3yRCN2XSQM.crl (hash: sFuZbDbMsOD6UYXFtA2NLvadFcVocWGTztiQmVz+Eh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2643 (0xa53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918711E/serialNumber=461C2FE277A28BC897F0FCCA4F7C9108DD974903 Validity Not Before: Nov 22 19:26:00 2024 GMT Not After : Nov 29 19:26:00 2024 GMT Subject: CN=6740dac8-8551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ea:d4:80:1b:17:9e:45:b9:7a:bc:30:50:6c: 01:77:a9:74:f8:90:78:97:88:c0:6c:b8:cd:c7:ed: 26:7a:3b:9c:01:df:20:e1:16:21:0c:9b:bf:8d:f1: 0f:45:bc:85:47:ac:99:c6:46:a1:09:5c:56:19:a6: d7:7d:12:6a:f3:f3:8d:79:c1:8e:25:34:db:3e:79: e3:96:00:fb:12:61:59:ce:5f:4c:51:68:f2:75:6a: fd:00:de:df:9c:dc:2e:e4:50:83:fb:0e:c6:63:77: 7f:bd:68:46:60:da:74:cb:7e:ee:21:01:8c:76:c4: 4a:38:91:3c:a2:b3:98:73:07:c8:15:0c:b9:df:2b: 84:ad:34:b0:41:ae:b6:d9:e8:6f:49:95:22:99:1b: 4c:df:4b:63:40:17:94:34:22:7d:d5:2a:bb:dc:c2: 3c:ec:fc:03:a3:bd:58:78:ca:f1:12:e6:8c:a7:84: 91:22:81:4b:41:74:6e:01:49:14:29:61:dc:71:97: 25:fa:04:79:5e:8e:19:25:7e:a9:5d:ef:c5:d7:ca: 4b:40:d3:53:08:21:7f:6a:19:8f:59:fc:7c:e3:a5: d9:1e:7b:57:50:de:9f:c2:2e:84:53:41:f6:fa:59: 12:d3:a8:fa:b9:d9:76:f3:94:19:3c:b6:4d:3b:c3: a4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:07:D4:49:C9:FA:58:4B:4E:E1:77:61:18:6F:FA:B7:48:81:F1:33 X509v3 Authority Key Identifier: keyid:46:1C:2F:E2:77:A2:8B:C8:97:F0:FC:CA:4F:7C:91:08:DD:97:49:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhwv4neii8iX8PzKT3yRCN2XSQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918711E/0B584C78513611EAAD6A1E4BC4F9AE02/Rhwv4neii8iX8PzKT3yRCN2XSQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:76:ac:a0:9a:77:af:53:f6:27:e5:65:ac:61:70:86:99:d8: 1b:23:bc:6e:0b:0b:85:11:0d:2d:e1:d6:fe:dd:5e:69:3d:41: a3:7b:ae:91:e1:ba:99:f7:9e:76:a6:13:d4:a4:8f:c8:39:bc: e5:ed:bb:70:3d:46:8f:27:d0:a5:e8:a1:9e:1e:94:9b:c3:e7: 0e:a8:93:e7:a6:c7:f0:40:b4:d8:5d:8a:ea:ed:0c:ed:e2:57: a3:31:cb:eb:4b:ee:03:60:9f:dc:22:a4:f5:a1:4c:a6:fa:d2: 36:8d:70:cb:ff:63:1b:d6:1b:ac:18:b7:e8:58:a3:75:20:8a: 7e:29:02:96:f9:86:ca:3c:a2:30:0f:b1:27:bb:aa:14:ac:b6: 1f:57:6e:bf:ed:fc:6a:fe:ab:9b:7c:fd:42:45:89:2e:32:d8: 45:53:d4:56:f5:84:57:cf:bc:c2:c2:2d:53:a1:c6:de:5f:6a: 16:f0:7c:a9:4e:8b:a0:fd:62:45:8d:26:e4:8e:78:10:23:8f: 71:c5:1f:ed:64:fd:ea:e0:02:f1:dd:ba:d2:d2:99:2a:89:23: 9e:4f:fa:ec:2b:c4:42:55:6a:0a:d5:d9:9d:26:08:5a:26:5e: d6:59:13:92:73:2f:21:85:08:a8:ca:55:c4:68:52:97:96:1f: 90:64:ff:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcxMUUxMTAvBgNVBAUTKDQ2MUMyRkUyNzdBMjhCQzg5N0YwRkNDQTRGN0M5MTA4 REQ5NzQ5MDMwHhcNMjQxMTIyMTkyNjAwWhcNMjQxMTI5MTkyNjAwWjAYMRYwFAYD VQQDEw02NzQwZGFjOC04NTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOrUgBsXnkW5erwwUGwBd6l0+JB4l4jAbLjNx+0mejucAd8g4RYhDJu/jfEP RbyFR6yZxkahCVxWGabXfRJq8/ONecGOJTTbPnnjlgD7EmFZzl9MUWjydWr9AN7f nNwu5FCD+w7GY3d/vWhGYNp0y37uIQGMdsRKOJE8orOYcwfIFQy53yuErTSwQa62 2ehvSZUimRtM30tjQBeUNCJ91Sq73MI87PwDo71YeMrxEuaMp4SRIoFLQXRuAUkU KWHccZcl+gR5Xo4ZJX6pXe/F18pLQNNTCCF/ahmPWfx846XZHntXUN6fwi6EU0H2 +lkS06j6udl285QZPLZNO8OkXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJwH1EnJ +lhLTuF3YRhv+rdIgfEzMB8GA1UdIwQYMBaAFEYcL+J3oovIl/D8yk98kQjdl0kD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzExRS8wQjU4NEM3ODUx MzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4aVg4UHpLVDN5UkNOMlhT UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Jod3Y0bmVpaThpWDhQektUM3lSQ04yWFNRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzExRS8wQjU4NEM3ODUxMzYxMUVBQUQ2QTFFNEJDNEY5QUUwMi9SaHd2NG5laWk4 aVg4UHpLVDN5UkNOMlhTUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPdqygmnevU/Yn5WWsYXCGmdgbI7xuCwuFEQ0t4db+3V5pPUGje66R 4bqZ9552phPUpI/IObzl7btwPUaPJ9Cl6KGeHpSbw+cOqJPnpsfwQLTYXYrq7Qzt 4lejMcvrS+4DYJ/cIqT1oUym+tI2jXDL/2Mb1husGLfoWKN1IIp+KQKW+YbKPKIw D7Enu6oUrLYfV26/7fxq/qubfP1CRYkuMthFU9RW9YRXz7zCwi1TocbeX2oW8Hyp Toug/WJFjSbkjngQI49xxR/tZP3q4ALx3brS0pkqiSOeT/rsK8RCVWoK1dmdJgha Jl7WWROScy8hhQioylXEaFKXlh+QZP/j -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:33 2024 by rpki-client on console-ams.rpki-client.org