$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: sdOwYUy+/b3eoRGFAGkVQZd7ZIctIOW2ZIM6Zej2SnY= Subject key identifier: 66:69:E2:8B:AE:6F:56:C1:94:0E:91:0D:D4:4B:19:7A:4D:CC:EF:7D Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 026C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 0268 Signing time: Sat 23 Nov 2024 01:14:40 +0000 Manifest this update: Sat 23 Nov 2024 01:14:40 +0000 Manifest next update: Sat 30 Nov 2024 01:14:40 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: EsEN0aC1W59fH5JhbZQ5dsGtPTHjTQWyqkSxucFmoBA=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: 5l/0i4Mj7CkFahUXGxLru5zWwX7qpr1hA77tgI5t7fk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Nov 23 01:14:40 2024 GMT Not After : Nov 30 01:14:40 2024 GMT Subject: CN=67412c80-a06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:65:9b:03:4c:a7:e3:7a:db:c6:36:64:fa:27: d9:90:36:6a:dc:b1:25:33:c5:5d:5c:1a:31:e5:34: 18:15:06:37:72:b3:e7:ff:a3:89:78:38:6c:76:8e: 9f:fe:34:56:1c:6a:3d:c3:8c:46:94:36:5c:f5:7c: f7:31:38:a6:16:2a:54:76:07:5d:f3:87:86:32:4d: 65:0f:48:be:9a:9a:4b:45:33:e4:65:1d:0d:e2:9c: b8:98:17:91:be:37:a1:c9:60:23:76:1e:22:4a:3e: 3b:15:46:ca:f2:ff:4b:a8:f1:d3:9b:2b:11:ca:c6: b0:20:96:4f:e7:2b:4d:b9:41:d0:d7:85:64:1a:92: bd:63:98:a0:0d:36:1e:30:59:fb:3e:37:52:cf:e4: 88:46:10:eb:24:1c:f5:c9:a6:2d:07:d8:3e:21:c7: 21:26:0e:e5:cf:5d:13:ec:7a:dd:65:1a:f2:3c:ea: 0b:5b:b3:ee:90:9c:80:0f:e7:34:b0:86:28:de:54: c8:f9:c4:cd:c6:58:67:ad:63:eb:8a:8c:7b:89:04: 80:83:9e:8a:6a:fb:86:3e:46:c6:c4:3b:0f:a1:4e: df:fd:32:63:3f:a0:ef:58:b3:fc:be:ba:e7:44:e9: 15:7d:d1:25:42:1c:ee:ab:07:2e:9e:b2:a3:ac:fd: d7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:69:E2:8B:AE:6F:56:C1:94:0E:91:0D:D4:4B:19:7A:4D:CC:EF:7D X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:1d:0d:e4:80:68:86:a3:fb:41:92:e9:e3:04:1c:0e:6c:99: 9e:a7:56:03:ac:01:23:bf:1f:24:88:56:8d:d7:1f:8c:dc:71: 4b:44:7b:03:8d:2c:9d:5d:c8:05:82:0e:cf:4b:93:01:62:f6: af:27:5c:67:d2:09:51:eb:1b:7a:0a:28:a0:ff:39:80:1a:ec: 7e:53:2f:fd:d5:58:0a:b8:71:6f:17:06:12:27:31:26:b5:0b: 74:c7:64:f0:0d:c7:9c:d0:b7:65:b8:6d:4f:7c:d2:4e:43:b1: e5:b9:d2:72:3c:a5:8e:d4:16:97:6d:21:45:56:77:ab:a2:1f: 7f:0e:fc:2e:ed:e7:e3:59:dd:bb:d0:2c:29:45:79:03:76:6f: 72:e4:6f:d4:cd:92:e2:14:5a:71:b4:13:02:06:62:6f:5d:43: 2c:36:47:73:1a:20:6d:91:80:4e:ad:67:73:e6:8c:c3:b0:60: 8b:4f:02:80:37:28:d5:c0:61:a6:42:5d:f7:55:49:5a:64:2d: e7:af:17:36:8e:6f:80:90:6e:d3:86:91:bd:51:9b:ce:8c:fe: 0f:40:4b:3f:1a:04:6f:cb:67:3f:c1:50:ca:06:7c:9b:4c:78: f9:ee:0e:6d:bd:24:af:0d:6a:96:ea:20:17:9b:4e:97:7c:7c: 5e:52:cb:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjQxMTIzMDExNDQwWhcNMjQxMTMwMDExNDQwWjAYMRYwFAYD VQQDEw02NzQxMmM4MC1hMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6mWbA0yn43rbxjZk+ifZkDZq3LElM8VdXBox5TQYFQY3crPn/6OJeDhsdo6f /jRWHGo9w4xGlDZc9Xz3MTimFipUdgdd84eGMk1lD0i+mppLRTPkZR0N4py4mBeR vjehyWAjdh4iSj47FUbK8v9LqPHTmysRysawIJZP5ytNuUHQ14VkGpK9Y5igDTYe MFn7PjdSz+SIRhDrJBz1yaYtB9g+IcchJg7lz10T7HrdZRryPOoLW7PukJyAD+c0 sIYo3lTI+cTNxlhnrWPriox7iQSAg56KavuGPkbGxDsPoU7f/TJjP6DvWLP8vrrn ROkVfdElQhzuqwcunrKjrP3X6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZp4ouu b1bBlA6RDdRLGXpNzO99MB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqHQ3kgGiGo/tBkunjBBwObJmep1YDrAEjvx8kiFaN1x+M3HFLRHsD jSydXcgFgg7PS5MBYvavJ1xn0glR6xt6Ciig/zmAGux+Uy/91VgKuHFvFwYSJzEm tQt0x2TwDcec0LdluG1PfNJOQ7HludJyPKWO1BaXbSFFVneroh9/Dvwu7efjWd27 0CwpRXkDdm9y5G/UzZLiFFpxtBMCBmJvXUMsNkdzGiBtkYBOrWdz5ozDsGCLTwKA NyjVwGGmQl33VUlaZC3nrxc2jm+AkG7ThpG9UZvOjP4PQEs/GgRvy2c/wVDKBnyb THj57g5tvSSvDWqW6iAXm06XfHxeUsvY -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org