$ rpki-client -vvf rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft File: D5BpKh7v5_ChrGi14awJ9wJpccw.mft (raw, json) Hash identifier: eDSTRu9Peztvp1Jhm2VU+56cGdB99OjidzwYmDGncfU= Subject key identifier: 8B:9C:CC:DE:9E:C5:C9:1F:20:3A:23:2F:64:0E:1F:85:F0:16:7F:B9 Authority key identifier: 0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC Certificate issuer: /CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft Manifest number: 0141 Signing time: Thu 21 Nov 2024 02:40:28 +0000 Manifest this update: Thu 21 Nov 2024 02:40:28 +0000 Manifest next update: Thu 28 Nov 2024 02:40:28 +0000 Files and hashes: 1: D5BpKh7v5_ChrGi14awJ9wJpccw.crl (hash: nmse1Hd8Uh5zc5R19ab5NZEttsqnhxdlWPPhjMnKHlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91185B8/serialNumber=0F90692A1EEFE7F0A1AC68B5E1AC09F7026971CC Validity Not Before: Nov 21 02:40:28 2024 GMT Not After : Nov 28 02:40:28 2024 GMT Subject: CN=673e9d9c-7fbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a3:2e:54:86:d8:07:2f:34:e3:8c:04:d5:f1: 6f:bf:0e:3f:a0:2b:af:e2:b1:b1:9d:c2:cc:0d:2b: 16:da:59:fd:11:f3:f9:28:b1:5f:84:d3:fd:ad:49: 4c:86:32:4a:c2:bc:b5:6c:0d:bc:f2:ec:72:5a:c2: bf:e1:7c:43:15:fc:81:65:ec:73:52:19:25:a1:dc: 4e:08:6b:0f:85:1e:6f:44:10:75:cf:35:65:10:be: 42:95:3f:5e:44:f5:20:06:9d:50:a6:ef:e5:77:10: 48:4f:4a:60:b6:b9:40:a0:ce:90:bb:da:ad:81:8d: fe:c5:1c:8a:54:86:61:d7:ab:c2:ba:13:22:f5:4d: 40:a8:0b:bf:70:82:1d:0d:40:c7:e5:fe:51:7a:32: 26:1e:f3:da:f1:60:17:3a:69:e2:af:ca:68:08:a0: 92:66:73:fd:fc:03:bf:70:b5:56:87:7a:2b:6a:29: b8:a2:7d:97:16:78:cf:27:d6:45:c8:f0:80:60:f8: 05:6a:08:7c:f4:19:8e:f9:ce:a9:b4:5c:04:af:07: 27:a1:bc:1d:1d:35:00:38:8f:75:e7:f4:15:dc:8d: 33:0d:86:c5:8d:7f:24:95:56:aa:67:1b:d8:1a:0d: 77:ea:4c:2b:88:7b:31:d6:5c:4b:50:d3:04:6b:97: 66:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:9C:CC:DE:9E:C5:C9:1F:20:3A:23:2F:64:0E:1F:85:F0:16:7F:B9 X509v3 Authority Key Identifier: keyid:0F:90:69:2A:1E:EF:E7:F0:A1:AC:68:B5:E1:AC:09:F7:02:69:71:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D5BpKh7v5_ChrGi14awJ9wJpccw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91185B8/CFA3409ABE3111EDB4FF7D34C4F9AE02/D5BpKh7v5_ChrGi14awJ9wJpccw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:22:1c:8f:34:03:43:0a:fc:25:e2:64:7f:0f:6f:b7:ea:54: 91:9a:5e:4e:69:13:68:15:55:30:f5:17:b5:4f:95:3f:2a:be: 95:39:de:b8:28:91:86:eb:eb:80:53:de:4b:1e:0d:3a:51:8d: 41:60:ea:af:51:96:89:5a:fd:21:3c:26:98:f3:03:15:4e:b5: 69:5e:96:5b:df:c9:17:fa:00:67:90:77:42:70:c7:e4:9a:7c: 3a:87:39:21:23:d2:31:bc:e3:c2:88:ca:db:0b:83:98:79:38: c1:4c:14:3b:da:fe:65:d8:96:5c:43:f8:25:41:25:a2:ab:7a: 85:29:8a:f3:52:1f:8f:ca:b2:46:19:e1:d8:d1:bf:40:bd:65: a5:81:2b:a9:6d:fa:e6:2a:bd:7e:8d:1c:50:87:be:bd:00:be: b5:96:84:11:cb:56:67:ff:b2:5b:83:ab:cd:10:03:b3:ed:05: 7c:77:c0:99:99:bc:c7:b0:11:11:d1:3c:75:5d:4b:d0:70:24: 33:06:d0:dc:70:2d:75:ad:78:7d:22:de:17:42:3a:2f:6f:f3: bd:b3:e1:42:b3:e1:eb:ef:88:c5:41:50:f1:04:8d:d1:12:50: 31:4b:32:22:e1:e0:3c:7e:b7:30:7a:0f:6d:e7:de:cf:be:ad: b7:27:a0:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg1QjgxMTAvBgNVBAUTKDBGOTA2OTJBMUVFRkU3RjBBMUFDNjhCNUUxQUMwOUY3 MDI2OTcxQ0MwHhcNMjQxMTIxMDI0MDI4WhcNMjQxMTI4MDI0MDI4WjAYMRYwFAYD VQQDEw02NzNlOWQ5Yy03ZmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqMuVIbYBy8044wE1fFvvw4/oCuv4rGxncLMDSsW2ln9EfP5KLFfhNP9rUlM hjJKwry1bA288uxyWsK/4XxDFfyBZexzUhklodxOCGsPhR5vRBB1zzVlEL5ClT9e RPUgBp1Qpu/ldxBIT0pgtrlAoM6Qu9qtgY3+xRyKVIZh16vCuhMi9U1AqAu/cIId DUDH5f5RejImHvPa8WAXOmnir8poCKCSZnP9/AO/cLVWh3oraim4on2XFnjPJ9ZF yPCAYPgFagh89BmO+c6ptFwErwcnobwdHTUAOI915/QV3I0zDYbFjX8klVaqZxvY Gg136kwriHsx1lxLUNMEa5dmXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuczN6e xckfIDojL2QOH4XwFn+5MB8GA1UdIwQYMBaAFA+QaSoe7+fwoaxoteGsCfcCaXHM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODVCOC9DRkEzNDA5QUJF MzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVfQ2hyR2kxNGF3Sjl3SnBj Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q1QnBLaDd2NV9DaHJHaTE0YXdKOXdKcGNjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODVCOC9DRkEzNDA5QUJFMzExMUVEQjRGRjdEMzRDNEY5QUUwMi9ENUJwS2g3djVf Q2hyR2kxNGF3Sjl3SnBjY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5IhyPNANDCvwl4mR/D2+36lSRml5OaRNoFVUw9Re1T5U/Kr6VOd64 KJGG6+uAU95LHg06UY1BYOqvUZaJWv0hPCaY8wMVTrVpXpZb38kX+gBnkHdCcMfk mnw6hzkhI9IxvOPCiMrbC4OYeTjBTBQ72v5l2JZcQ/glQSWiq3qFKYrzUh+PyrJG GeHY0b9AvWWlgSupbfrmKr1+jRxQh769AL61loQRy1Zn/7Jbg6vNEAOz7QV8d8CZ mbzHsBER0Tx1XUvQcCQzBtDccC11rXh9It4XQjovb/O9s+FCs+Hr74jFQVDxBI3R ElAxSzIi4eA8frcweg9t597Pvq23J6DL -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org