$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft File: EawzZ40YMzz-vUmJK1aJnifqY0g.mft (raw, json) Hash identifier: lE7HcLL8BSd3H69HoJZegKDWkwlgeZMdurXCzwl5lEg= Subject key identifier: 91:95:A8:83:B0:AB:FD:17:48:91:CB:DD:9C:17:B5:B4:0B:B1:C8:AA Authority key identifier: 11:AC:33:67:8D:18:33:3C:FE:BD:49:89:2B:56:89:9E:27:EA:63:48 Certificate issuer: /CN=A919DA26/serialNumber=11AC33678D18333CFEBD49892B56899E27EA6348 Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EawzZ40YMzz-vUmJK1aJnifqY0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft Manifest number: 0160 Signing time: Sat 23 Nov 2024 02:22:31 +0000 Manifest this update: Sat 23 Nov 2024 02:22:30 +0000 Manifest next update: Sat 30 Nov 2024 02:22:30 +0000 Files and hashes: 1: EawzZ40YMzz-vUmJK1aJnifqY0g.crl (hash: VcMam22Vwjm9Tt9XRQY8ew1EsT9knnWjLtaCfSO+dl8=) 2: A7119C2E8FEE11ED83F3C543C4F9AE02.roa (hash: +93D0eusWWNntkjGYUSo149HmgTU1FPvVrCP6VBiF1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.crl rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EawzZ40YMzz-vUmJK1aJnifqY0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA26/serialNumber=11AC33678D18333CFEBD49892B56899E27EA6348 Validity Not Before: Nov 23 02:22:30 2024 GMT Not After : Nov 30 02:22:30 2024 GMT Subject: CN=67413c67-24f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:48:8e:85:6b:e8:e5:3d:b7:c6:b6:3c:c6: 29:91:29:60:2b:f1:f6:8c:9d:26:0a:da:83:58:f3: 69:7b:87:03:af:47:0b:42:d5:f1:d6:4e:6e:50:49: 8e:e3:b1:88:5f:f3:79:96:39:77:7d:1a:ee:f8:00: b2:ef:2f:ab:8e:62:b5:81:2b:fd:c0:3e:4e:df:ed: c7:7b:e4:99:50:47:ab:69:f9:3b:99:c8:87:f5:26: 79:ce:05:e6:81:d4:84:f5:8a:7d:9c:ae:49:40:70: ef:27:e8:bc:b6:c6:5b:58:11:60:d8:d8:6e:08:0b: 16:79:14:ca:a6:32:4f:61:76:58:82:a0:37:90:05: ba:a5:b3:92:90:c5:ed:9e:dc:99:bc:c6:83:7b:e0: a1:23:63:84:dd:7a:41:56:93:f6:2f:86:5f:f4:e0: 8e:26:aa:c7:27:10:c9:63:1b:6c:50:5e:5f:6f:38: 97:4a:e1:e6:c7:67:df:92:4a:2d:5d:55:73:3f:80: 19:7d:68:aa:f9:a9:22:90:49:83:57:c4:4c:a4:d6: 1f:9d:8b:a6:2c:f3:7f:4f:39:12:b0:32:4a:87:a6: df:b6:27:3d:08:e1:5d:aa:10:ff:09:06:64:2f:ba: ab:37:7d:4e:17:87:ce:ea:d4:06:65:29:b9:07:eb: 64:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:95:A8:83:B0:AB:FD:17:48:91:CB:DD:9C:17:B5:B4:0B:B1:C8:AA X509v3 Authority Key Identifier: keyid:11:AC:33:67:8D:18:33:3C:FE:BD:49:89:2B:56:89:9E:27:EA:63:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EawzZ40YMzz-vUmJK1aJnifqY0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:73:0e:50:b2:b8:7d:bb:c6:63:b9:f2:79:b9:da:74:3a:fe: bb:94:2d:9f:e9:4b:67:be:41:51:d9:8d:ec:61:04:39:38:ff: 4b:91:a0:33:74:9f:c2:ce:00:38:93:81:d6:8d:f5:b5:cf:a4: 0f:22:7c:14:af:66:5c:89:6f:12:26:a2:a4:7c:d2:84:d7:15: ba:7c:36:22:6a:a5:11:2e:5d:55:c5:cb:e7:c2:02:67:91:03: 03:d4:e4:3b:f0:d2:b5:68:7a:e4:c2:49:d3:fb:04:b4:98:33: 5d:3a:ac:ae:d5:70:b6:0a:7b:b3:ae:9f:0d:e0:e0:1d:87:76: ee:e8:dc:d6:72:ee:c8:65:0b:df:3d:87:f8:85:de:8b:e5:21: ad:8c:c5:d7:a7:fa:bb:4d:b4:55:32:18:d9:f7:48:39:a8:e3: 18:f1:fa:2a:14:68:72:10:50:a8:4c:0d:8b:d2:3e:0b:05:fa: 5d:34:4c:31:2e:df:5a:0d:b8:1d:98:63:4c:0b:eb:b0:65:c1: 11:35:57:52:ef:3f:e3:a2:06:e3:4a:c4:ae:d1:0a:ea:4f:6d: bd:2c:71:41:f3:62:f6:80:2e:f5:2b:57:1b:c5:8f:81:b9:fb: 49:8e:67:17:4a:42:51:fa:9a:89:76:ef:22:5a:d6:12:cc:ce: 12:0c:16:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBMjYxMTAvBgNVBAUTKDExQUMzMzY3OEQxODMzM0NGRUJENDk4OTJCNTY4OTlF MjdFQTYzNDgwHhcNMjQxMTIzMDIyMjMwWhcNMjQxMTMwMDIyMjMwWjAYMRYwFAYD VQQDEw02NzQxM2M2Ny0yNGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLVIjoVr6OU9t8a2PMYpkSlgK/H2jJ0mCtqDWPNpe4cDr0cLQtXx1k5uUEmO 47GIX/N5ljl3fRru+ACy7y+rjmK1gSv9wD5O3+3He+SZUEerafk7mciH9SZ5zgXm gdSE9Yp9nK5JQHDvJ+i8tsZbWBFg2NhuCAsWeRTKpjJPYXZYgqA3kAW6pbOSkMXt ntyZvMaDe+ChI2OE3XpBVpP2L4Zf9OCOJqrHJxDJYxtsUF5fbziXSuHmx2ffkkot XVVzP4AZfWiq+akikEmDV8RMpNYfnYumLPN/TzkSsDJKh6bftic9COFdqhD/CQZk L7qrN31OF4fO6tQGZSm5B+tkEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGVqIOw q/0XSJHL3ZwXtbQLsciqMB8GA1UdIwQYMBaAFBGsM2eNGDM8/r1JiStWiZ4n6mNI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REEyNi85QjA3MjBBNDhG RUMxMUVEQjkwMUE3NDNDNEY5QUUwMi9FYXd6WjQwWU16ei12VW1KSzFhSm5pZnFZ MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Vhd3paNDBZTXp6LXZVbUpLMWFKbmlmcVkwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REEyNi85QjA3MjBBNDhGRUMxMUVEQjkwMUE3NDNDNEY5QUUwMi9FYXd6WjQwWU16 ei12VW1KSzFhSm5pZnFZMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGcw5Qsrh9u8ZjufJ5udp0Ov67lC2f6UtnvkFR2Y3sYQQ5OP9LkaAz dJ/CzgA4k4HWjfW1z6QPInwUr2ZciW8SJqKkfNKE1xW6fDYiaqURLl1VxcvnwgJn kQMD1OQ78NK1aHrkwknT+wS0mDNdOqyu1XC2Cnuzrp8N4OAdh3bu6NzWcu7IZQvf PYf4hd6L5SGtjMXXp/q7TbRVMhjZ90g5qOMY8foqFGhyEFCoTA2L0j4LBfpdNEwx Lt9aDbgdmGNMC+uwZcERNVdS7z/jogbjSsSu0QrqT229LHFB82L2gC71K1cbxY+B uftJjmcXSkJR+pqJdu8iWtYSzM4SDBZj -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org