$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: giIkaZ3oH5H0R75e/ySViNkqPP9DpGfKGcLeSu++8xQ= Subject key identifier: 65:AB:1A:EE:4C:AD:4A:D2:A9:A6:E2:04:EC:79:85:E0:E0:CD:46:75 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 063B Signing time: Fri 22 Nov 2024 22:02:23 +0000 Manifest this update: Fri 22 Nov 2024 22:02:23 +0000 Manifest next update: Fri 29 Nov 2024 22:02:23 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: qsGnCcP2c/zkNkuC2EdvWcgPbrhOVTsWo4WPYLKF62Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Nov 22 22:02:23 2024 GMT Not After : Nov 29 22:02:23 2024 GMT Subject: CN=6740ff6f-e9d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b3:cb:72:81:6a:48:2a:47:29:8f:4c:f9:d2: c5:70:4f:40:bb:d0:4d:fe:20:2c:e6:44:d8:11:2d: e0:79:59:ff:19:20:9c:d6:32:51:0d:8a:49:74:c7: 94:0c:a7:2b:66:4d:fb:11:af:5a:e8:05:8e:ea:19: a3:9a:80:40:f4:b7:cc:61:d1:fe:64:4c:a4:50:08: ce:ff:70:f1:6a:68:18:f1:cc:4f:79:7e:55:64:fa: 49:3f:5e:cf:7e:a8:b9:7b:e0:e4:ac:d7:6d:59:e6: 9a:8d:ee:fb:3c:4d:b6:b8:5b:dd:d3:3d:ab:c6:8b: 90:f6:6f:8f:c8:e1:b3:eb:43:07:40:d2:21:c0:9f: c3:69:9e:92:9f:64:4b:1f:4d:3a:41:10:ac:11:72: 74:6b:1f:93:37:d5:22:1b:c2:90:46:8f:a5:e5:30: da:cd:57:02:3f:67:1a:12:d8:07:04:d2:fc:9f:5b: f8:07:22:21:1a:c8:d8:3c:d0:35:2c:7a:31:a0:c6: 47:19:fc:1a:9c:6e:86:0d:c0:f2:c5:1d:e7:ea:56: a4:ae:df:57:c8:e4:90:7d:a8:62:1f:96:0c:db:b0: 56:47:ea:4d:10:c0:59:35:08:70:50:b5:dd:98:e8: 94:1c:1e:32:db:44:59:37:22:29:fa:d5:2d:ea:7f: 9b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:AB:1A:EE:4C:AD:4A:D2:A9:A6:E2:04:EC:79:85:E0:E0:CD:46:75 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:4b:9c:df:e3:82:40:99:2f:b4:63:70:20:b8:9a:20:66:75: 2b:48:ab:4d:cf:e2:12:4c:ff:99:a4:71:bf:87:f6:9b:38:0e: 7a:04:1a:0c:c8:6f:9a:d0:21:62:bd:e1:24:18:5e:8c:ab:4d: bc:3f:6a:5a:f7:06:85:cd:fa:78:71:8e:1e:36:67:85:20:22: 28:b2:30:5e:d1:7f:41:7e:ca:aa:04:0a:0b:c0:34:e5:2e:65: 4d:21:0b:2c:4a:c4:ff:ce:bd:08:f7:65:5c:f9:7e:25:d0:e6: 5f:ca:98:60:1f:fa:4e:68:d3:91:13:fa:6c:ac:e5:c8:09:d5: 3f:c6:61:4c:1f:14:94:06:d5:f2:5f:60:77:4b:5c:8d:16:3e: 22:66:54:53:5a:82:5e:29:99:ce:86:d1:3c:c6:05:53:a0:61: 22:c9:3b:a4:06:c6:53:a9:36:a5:56:0a:3b:fa:bc:36:4a:01: bb:56:f3:e8:89:88:de:60:f3:a6:17:41:c2:d0:c1:68:15:4a: 1b:93:cc:73:81:10:06:c8:e6:2e:88:7c:e4:74:be:f2:d4:6d: fe:9e:b9:ad:19:fa:33:53:a6:8f:a0:9c:b8:0f:25:01:73:6f: 9a:2c:b3:84:85:0c:94:6e:11:41:94:08:80:04:89:a6:8f:de: c0:12:a5:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjQxMTIyMjIwMjIzWhcNMjQxMTI5MjIwMjIzWjAYMRYwFAYD VQQDEw02NzQwZmY2Zi1lOWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLPLcoFqSCpHKY9M+dLFcE9Au9BN/iAs5kTYES3geVn/GSCc1jJRDYpJdMeU DKcrZk37Ea9a6AWO6hmjmoBA9LfMYdH+ZEykUAjO/3DxamgY8cxPeX5VZPpJP17P fqi5e+DkrNdtWeaaje77PE22uFvd0z2rxouQ9m+PyOGz60MHQNIhwJ/DaZ6Sn2RL H006QRCsEXJ0ax+TN9UiG8KQRo+l5TDazVcCP2caEtgHBNL8n1v4ByIhGsjYPNA1 LHoxoMZHGfwanG6GDcDyxR3n6lakrt9XyOSQfahiH5YM27BWR+pNEMBZNQhwULXd mOiUHB4y20RZNyIp+tUt6n+bPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWrGu5M rUrSqabiBOx5heDgzUZ1MB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJS5zf44JAmS+0Y3AguJogZnUrSKtNz+ISTP+ZpHG/h/abOA56BBoM yG+a0CFiveEkGF6Mq028P2pa9waFzfp4cY4eNmeFICIosjBe0X9BfsqqBAoLwDTl LmVNIQssSsT/zr0I92Vc+X4l0OZfyphgH/pOaNORE/psrOXICdU/xmFMHxSUBtXy X2B3S1yNFj4iZlRTWoJeKZnOhtE8xgVToGEiyTukBsZTqTalVgo7+rw2SgG7VvPo iYjeYPOmF0HC0MFoFUobk8xzgRAGyOYuiHzkdL7y1G3+nrmtGfozU6aPoJy4DyUB c2+aLLOEhQyUbhFBlAiABImmj97AEqVi -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:45 2024 by rpki-client on console-ams.rpki-client.org