$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft File: JCq5H6fHpkrOd9m09mHijAsVuOA.mft (raw, json) Hash identifier: VT7Nfm09GSrQshnTyZGYMxbEVIvOGmyCcd4sEGaqQ8A= Subject key identifier: 15:C4:4F:91:C8:E9:2D:B9:5C:A9:DE:32:5A:CE:CF:8A:E3:77:25:9B Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft Manifest number: 4B Signing time: Sat 23 Nov 2024 05:14:05 +0000 Manifest this update: Sat 23 Nov 2024 05:14:04 +0000 Manifest next update: Sat 30 Nov 2024 05:14:04 +0000 Files and hashes: 1: JCq5H6fHpkrOd9m09mHijAsVuOA.crl (hash: qcsPsp+PthLafDB7fhV10sGEGolfXio/RvNUZQW8msg=) 2: 95C79E36379611EF87CBA24DC4F9AE02.roa (hash: VSLP0SurFYr7NQK9R5lJWuMTjXBESVuwKDdrtUvBsXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Validity Not Before: Nov 23 05:14:04 2024 GMT Not After : Nov 30 05:14:04 2024 GMT Subject: CN=6741649d-1224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bc:7d:7d:0b:fe:5c:57:9c:12:b3:1c:d8:84: 53:80:37:d8:a7:f5:54:b2:5f:d4:cf:73:a0:d8:59: 05:0b:91:ed:ee:99:bc:cd:b1:8a:ab:78:7d:e2:5b: 32:3e:a0:f4:f5:0f:6e:1a:80:1e:86:15:8f:bf:20: 10:67:fc:ed:3b:33:4e:0d:ce:eb:63:11:f4:4b:61: 59:24:a7:39:35:6e:aa:c7:ed:a4:c9:5f:8d:b0:08: 8f:01:ee:cc:f6:5c:99:4c:c2:aa:e7:e6:50:0c:78: cc:16:cc:c4:08:ac:f8:5a:aa:ed:50:48:d8:c1:56: fc:ed:5b:60:67:21:08:28:71:24:ab:1e:74:04:d6: cd:d2:42:da:b3:fe:a5:54:ae:80:ff:b6:26:43:fb: 4a:aa:7d:39:fd:ce:05:c6:36:e6:3e:7c:39:4e:4c: 13:94:19:7b:ae:d8:87:de:c3:c6:c3:80:ea:22:a5: ae:bb:c5:f9:e4:97:df:82:31:bb:9c:78:db:aa:1a: f1:cc:8b:5b:47:e0:14:1b:05:e1:3a:78:fd:3a:bf: 9b:f1:e7:75:f5:5b:2b:0c:d9:74:3f:ce:8e:c9:cf: 72:d3:d3:be:dc:49:52:1a:d3:bc:f7:03:35:64:d1: 26:c1:dc:f2:3f:97:d0:70:80:26:b5:3a:52:59:c3: 50:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C4:4F:91:C8:E9:2D:B9:5C:A9:DE:32:5A:CE:CF:8A:E3:77:25:9B X509v3 Authority Key Identifier: keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:41:6c:93:c9:06:67:3a:87:bf:74:53:b0:d5:2f:de:ba:9a: 9a:81:f0:a4:0e:ac:eb:2e:01:fc:08:5b:29:5d:3c:41:fe:c8: 19:8d:b2:be:77:fc:f7:5f:85:13:92:0f:ff:41:b9:fb:8d:a5: 63:c6:3b:44:ff:12:da:99:0c:cf:94:cd:62:04:2e:40:1b:bb: eb:ee:e5:a0:c2:e6:89:fe:e1:17:b5:92:30:3c:f0:16:11:21: f6:9d:59:ad:d5:99:10:8b:59:05:90:f9:b0:c1:69:fd:18:d4: 9a:ad:d7:8c:e9:87:38:3d:6b:26:6e:ba:ac:6c:47:23:d9:ff: 92:4d:96:e4:18:dc:27:e6:95:34:d0:e6:10:1c:09:42:e1:96: 9c:48:69:b3:ee:2d:a5:24:0d:e4:bc:66:59:00:7a:ba:1a:6f: 36:bd:cc:23:0c:ed:58:cf:b0:d7:73:9b:c4:9b:a2:a1:ef:3d: 32:2e:6b:54:4d:f5:31:a3:ed:9e:59:77:15:0e:60:82:b4:37: 27:a1:6f:78:1a:10:cf:c9:95:89:94:82:3d:d7:e8:5f:fa:ab: f8:d9:a4:b3:85:61:bd:57:ec:fb:ea:2e:b2:a3:c6:ae:ab:16: 9b:54:ab:ec:b4:eb:ab:b3:04:d5:1e:53:a8:7e:2d:7b:45:9a: 17:bf:3a:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QjIyRTExMC8GA1UEBRMoMjQyQUI5MUZBN0M3QTY0QUNFNzdEOUI0RjY2MUUyOEMw QjE1QjhFMDAeFw0yNDExMjMwNTE0MDRaFw0yNDExMzAwNTE0MDRaMBgxFjAUBgNV BAMTDTY3NDE2NDlkLTEyMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBvH19C/5cV5wSsxzYhFOAN9in9VSyX9TPc6DYWQULke3umbzNsYqreH3iWzI+ oPT1D24agB6GFY+/IBBn/O07M04NzutjEfRLYVkkpzk1bqrH7aTJX42wCI8B7sz2 XJlMwqrn5lAMeMwWzMQIrPhaqu1QSNjBVvztW2BnIQgocSSrHnQE1s3SQtqz/qVU roD/tiZD+0qqfTn9zgXGNuY+fDlOTBOUGXuu2Ifew8bDgOoipa67xfnkl9+CMbuc eNuqGvHMi1tH4BQbBeE6eP06v5vx53X1WysM2XQ/zo7Jz3LT077cSVIa07z3AzVk 0SbB3PI/l9BwgCa1OlJZw1BNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFcRPkcjp Lblcqd4yWs7PiuN3JZswHwYDVR0jBBgwFoAUJCq5H6fHpkrOd9m09mHijAsVuOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFCMjJFLzgzNDE1QjM2Mzc5 NTExRUY4N0NGRDY0QkM0RjlBRTAyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSkNxNUg2Zkhwa3JPZDltMDltSGlqQXNWdU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFC MjJFLzgzNDE1QjM2Mzc5NTExRUY4N0NGRDY0QkM0RjlBRTAyL0pDcTVINmZIcGty T2Q5bTA5bUhpakFzVnVPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEpBbJPJBmc6h790U7DVL966mpqB8KQOrOsuAfwIWyldPEH+yBmNsr53 /PdfhROSD/9BufuNpWPGO0T/EtqZDM+UzWIELkAbu+vu5aDC5on+4Re1kjA88BYR IfadWa3VmRCLWQWQ+bDBaf0Y1Jqt14zphzg9ayZuuqxsRyPZ/5JNluQY3CfmlTTQ 5hAcCULhlpxIabPuLaUkDeS8ZlkAeroabza9zCMM7VjPsNdzm8SboqHvPTIua1RN 9TGj7Z5ZdxUOYIK0Nyehb3gaEM/JlYmUgj3X6F/6q/jZpLOFYb1X7PvqLrKjxq6r FptUq+y066uzBNUeU6h+LXtFmhe/OiA= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org