$ rpki-client -vvf rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft File: c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft (raw, json) Hash identifier: DSSrY/7FIYFaQK8FQKnXRD5ZThAL9pT6uwrQfjCPw3o= Subject key identifier: 29:B0:E1:40:83:9F:15:9C:C6:BD:FB:96:0D:F2:F8:BA:2D:42:34:C5 Authority key identifier: 73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 Certificate issuer: /CN=A911C3BB/serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft Manifest number: 014E Signing time: Sat 23 Nov 2024 02:29:54 +0000 Manifest this update: Sat 23 Nov 2024 02:29:53 +0000 Manifest next update: Sat 30 Nov 2024 02:29:53 +0000 Files and hashes: 1: c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl (hash: 9xVCcixW3n54SnKSGKye0e12EhYTU1p+Uda9USG1YYI=) 2: CB2788CAAB4C11EDB3DC7336C4F9AE02.roa (hash: y9v0FSsT+mxiOFAaAJ7M5RjFM0To/dNcbG/XdZ3DuW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C3BB/serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Validity Not Before: Nov 23 02:29:53 2024 GMT Not After : Nov 30 02:29:53 2024 GMT Subject: CN=67413e22-f9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6b:a2:ff:0b:eb:4e:7e:a3:23:a1:9b:b5:b4: 4f:7f:aa:0e:05:ae:a0:9f:dd:aa:d9:c8:4e:c7:fa: 31:db:80:a9:94:fa:65:36:0d:71:2e:0a:c8:29:8e: 4e:ae:93:1b:94:b3:a4:21:68:dd:90:b4:e7:ed:b7: ce:d4:22:84:46:7b:14:c7:ff:9b:54:4c:7d:3b:e1: ff:e8:d5:3d:bf:d0:7f:bd:e7:52:d0:35:80:77:f8: 55:df:ca:57:99:33:c1:f7:74:15:7d:f4:68:9a:20: da:8b:27:ac:0a:8a:cb:d4:6a:eb:20:b7:fd:9f:80: 44:7c:06:af:11:bf:39:39:37:fe:cb:55:0e:42:81: d4:de:9e:90:e3:32:39:f4:7f:34:4a:0e:ef:1f:9e: fe:ba:91:9e:79:68:90:39:a4:6d:dd:93:6f:15:d2: 92:da:ae:d2:1c:0e:17:40:cf:a8:e3:9d:bf:56:29: f1:1a:4a:d7:36:8a:23:ae:44:89:fb:dd:0a:ce:60: ee:cc:18:d4:7a:29:f0:d1:cc:f3:06:d3:87:f7:02: df:a7:c1:ff:f8:0d:7e:88:b8:fc:83:c1:aa:a0:18: b2:46:9f:21:7b:11:a9:4c:4e:83:9c:e3:19:e5:b7: 80:6b:50:94:f8:01:f0:1c:ae:d4:dc:39:e2:3a:dc: 57:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B0:E1:40:83:9F:15:9C:C6:BD:FB:96:0D:F2:F8:BA:2D:42:34:C5 X509v3 Authority Key Identifier: keyid:73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:70:c2:0e:ba:0e:98:bb:93:17:31:99:90:75:3a:fc:9c:71: 7f:38:0f:ed:68:35:0e:c3:22:18:c4:39:f0:5e:ef:96:82:32: 94:63:f4:87:a8:e2:a3:65:f0:92:00:fb:95:75:b3:dc:32:d2: c9:56:ae:a9:19:1a:f0:24:9c:fd:c3:4b:c6:cb:41:d2:a4:63: d9:2f:0b:64:32:2e:36:22:1c:22:71:9a:a2:30:b0:d3:14:c4: 16:a3:4e:85:5b:5b:a0:06:79:22:19:49:f4:16:12:74:83:09: 69:ab:ce:e3:ea:49:91:eb:47:85:25:9a:69:83:a7:be:31:1c: c0:cd:af:00:fb:d5:c5:2a:f6:d3:9e:14:e7:0a:c8:d8:cb:03: e8:f8:51:1e:71:fe:57:ba:2a:16:3b:1e:5b:37:a4:59:49:5d: 14:4d:9e:bf:5e:fb:e9:0e:ac:3f:16:28:79:22:d1:16:38:29: 02:fb:80:f7:04:e4:85:7a:59:81:b1:28:49:4e:09:0d:e8:19: 3e:72:f5:ef:45:d2:0b:4b:f8:52:62:9b:e6:f6:f5:2a:04:f6: 06:ca:2a:0a:f0:40:0a:8d:95:6d:3c:28:f5:18:1c:19:26:32: 5f:0c:94:fc:a0:b6:6b:24:98:3a:a7:45:ce:c2:17:72:48:d9: c9:f8:84:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzQkIxMTAvBgNVBAUTKDczRkJCNThGNTU3MUYzRjRDNjJBNjNGREY1QUZFRjlD QjcwRTc0MDMwHhcNMjQxMTIzMDIyOTUzWhcNMjQxMTMwMDIyOTUzWjAYMRYwFAYD VQQDEw02NzQxM2UyMi1mOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2ui/wvrTn6jI6GbtbRPf6oOBa6gn92q2chOx/ox24CplPplNg1xLgrIKY5O rpMblLOkIWjdkLTn7bfO1CKERnsUx/+bVEx9O+H/6NU9v9B/vedS0DWAd/hV38pX mTPB93QVffRomiDaiyesCorL1GrrILf9n4BEfAavEb85OTf+y1UOQoHU3p6Q4zI5 9H80Sg7vH57+upGeeWiQOaRt3ZNvFdKS2q7SHA4XQM+o452/VinxGkrXNoojrkSJ +90KzmDuzBjUeinw0czzBtOH9wLfp8H/+A1+iLj8g8GqoBiyRp8hexGpTE6DnOMZ 5beAa1CU+AHwHK7U3DniOtxXFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmw4UCD nxWcxr37lg3y+LotQjTFMB8GA1UdIwQYMBaAFHP7tY9VcfP0xipj/fWv75y3DnQD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzNCQi9DOTA4ODc5QUFC NDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhfVEdLbVA5OWFfdm5MY09k QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NfdTFqMVZ4OF9UR0ttUDk5YV92bkxjT2RBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzNCQi9DOTA4ODc5QUFCNDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhf VEdLbVA5OWFfdm5MY09kQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzcMIOug6Yu5MXMZmQdTr8nHF/OA/taDUOwyIYxDnwXu+WgjKUY/SH qOKjZfCSAPuVdbPcMtLJVq6pGRrwJJz9w0vGy0HSpGPZLwtkMi42IhwicZqiMLDT FMQWo06FW1ugBnkiGUn0FhJ0gwlpq87j6kmR60eFJZppg6e+MRzAza8A+9XFKvbT nhTnCsjYywPo+FEecf5XuioWOx5bN6RZSV0UTZ6/XvvpDqw/Fih5ItEWOCkC+4D3 BOSFelmBsShJTgkN6Bk+cvXvRdILS/hSYpvm9vUqBPYGyioK8EAKjZVtPCj1GBwZ JjJfDJT8oLZrJJg6p0XOwhdySNnJ+IRu -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:33 2024 by rpki-client on console-ams.rpki-client.org