$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft File: vIYhQTCXFsDk3Dff_zPlqwxVStA.mft (raw, json) Hash identifier: ZyzpM4ejlErKAgMWLl0leKrHPylIVVjGPgC9iF+xWCM= Subject key identifier: 24:E9:7F:73:99:81:FE:D0:E9:AC:09:28:C6:CF:3E:2D:02:DB:F1:48 Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft Manifest number: 0192 Signing time: Sat 23 Nov 2024 01:53:14 +0000 Manifest this update: Sat 23 Nov 2024 01:53:13 +0000 Manifest next update: Sat 30 Nov 2024 01:53:13 +0000 Files and hashes: 1: vIYhQTCXFsDk3Dff_zPlqwxVStA.crl (hash: 6XfA/TtfQt4Hhixv2De+2ivBUJs0PSujeKAc3IzmIjY=) 2: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (hash: MoE7MEPCOyGB/9EMlTXV0tN9ZG/UinteAkee65hBGJ0=) 3: 3F2E65045F0811EDB42DC97FC4F9AE02.roa (hash: IgAv5ZJEhwoH7uEYAUCxosir/fX/9UUdUT7CtlM0EKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Nov 23 01:53:13 2024 GMT Not After : Nov 30 01:53:13 2024 GMT Subject: CN=6741358a-e825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:bb:2e:95:c0:f3:9f:25:44:a2:78:8b:ea:86: 5d:64:2f:b7:90:6c:fb:1b:01:28:f9:42:4c:6e:22: f0:5b:91:79:00:93:11:2a:59:21:ba:9f:71:43:96: 4f:29:d0:e1:b1:f0:30:fe:a0:4f:1b:17:1a:22:2b: 54:b8:f9:0a:01:6d:a3:a0:84:32:94:0b:6c:69:2b: e8:24:08:b2:0f:2a:1e:45:46:ad:20:6a:6c:00:02: 56:13:99:01:69:90:91:f6:0a:f6:52:a9:c4:50:98: 6b:4b:ff:b7:c1:a4:63:08:59:15:91:d5:0b:d0:e6: a0:01:94:cd:b7:83:f7:d7:44:26:06:f5:b9:48:0f: 43:bc:ee:10:52:5a:32:51:ed:d1:42:67:88:5c:a0: 7f:41:08:c2:70:4b:6c:f0:3f:04:fa:53:b0:33:6e: 82:03:d8:5c:1e:82:4c:1d:8c:4f:2f:9d:d5:c9:83: 00:66:f2:e8:91:6e:26:46:f6:df:94:b6:b1:54:5c: 0c:4f:7b:ab:22:f3:2e:ba:f0:e9:ea:4c:ca:c8:34: 24:a4:8d:9b:59:2f:27:8a:a5:92:02:c5:61:c7:f3: 20:77:09:27:ab:36:24:cf:17:26:ec:0b:6c:4b:f4: 38:b9:a8:bc:77:84:02:5f:60:1e:ec:a1:c6:53:75: 3e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E9:7F:73:99:81:FE:D0:E9:AC:09:28:C6:CF:3E:2D:02:DB:F1:48 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:ed:87:d0:04:57:44:d8:7d:4b:c7:b1:68:83:77:75:d7:be: 79:46:e7:c1:f6:7e:73:e1:5b:e9:65:d2:ba:b6:0b:7c:35:b5: c5:c9:d1:cc:33:ab:0e:58:b3:71:b7:a2:9e:ca:5b:12:ff:ae: d0:7d:54:ec:af:ef:28:1f:0f:1a:34:9a:f9:11:13:14:b8:9b: fc:c6:15:43:dc:52:5e:7d:c4:15:d0:85:97:e8:fe:98:3b:50: 89:c8:ec:f4:f0:c7:6a:60:f1:ef:29:eb:1e:6e:40:c3:41:79: 5d:5c:a7:f9:7e:d7:23:04:d6:ea:de:e9:96:0b:d0:9c:a6:47: 44:b2:33:ea:4a:34:93:8d:1a:07:aa:85:5d:dc:31:0e:cb:6a: 0e:28:15:12:a8:d8:46:f5:89:52:d7:af:14:18:d4:13:9c:65: 00:8c:d9:fc:fb:54:6b:b5:a0:b1:19:e9:01:24:5a:98:2d:34: 34:0d:59:ed:58:5d:ec:fe:e2:55:f2:e8:25:81:f5:3b:32:65: 86:e3:13:e6:a9:46:0a:8d:ac:88:0f:50:da:6f:e5:07:37:06: 8d:c9:db:6f:1f:b7:87:0a:d6:bb:21:5f:aa:e8:77:3a:62:0b: e0:fe:74:d1:1f:7e:d8:58:e6:08:1b:ee:85:86:90:ca:b7:44: d4:44:68:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjQxMTIzMDE1MzEzWhcNMjQxMTMwMDE1MzEzWjAYMRYwFAYD VQQDEw02NzQxMzU4YS1lODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17sulcDznyVEoniL6oZdZC+3kGz7GwEo+UJMbiLwW5F5AJMRKlkhup9xQ5ZP KdDhsfAw/qBPGxcaIitUuPkKAW2joIQylAtsaSvoJAiyDyoeRUatIGpsAAJWE5kB aZCR9gr2UqnEUJhrS/+3waRjCFkVkdUL0OagAZTNt4P310QmBvW5SA9DvO4QUloy Ue3RQmeIXKB/QQjCcEts8D8E+lOwM26CA9hcHoJMHYxPL53VyYMAZvLokW4mRvbf lLaxVFwMT3urIvMuuvDp6kzKyDQkpI2bWS8niqWSAsVhx/MgdwknqzYkzxcm7Ats S/Q4uai8d4QCX2Ae7KHGU3U+iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTpf3OZ gf7Q6awJKMbPPi0C2/FIMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUEyNy82QThCRDA4QzQ0NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZz RGszRGZmX3pQbHF3eFZTdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW7YfQBFdE2H1Lx7Fog3d11755RufB9n5z4VvpZdK6tgt8NbXFydHM M6sOWLNxt6KeylsS/67QfVTsr+8oHw8aNJr5ERMUuJv8xhVD3FJefcQV0IWX6P6Y O1CJyOz08MdqYPHvKesebkDDQXldXKf5ftcjBNbq3umWC9CcpkdEsjPqSjSTjRoH qoVd3DEOy2oOKBUSqNhG9YlS168UGNQTnGUAjNn8+1RrtaCxGekBJFqYLTQ0DVnt WF3s/uJV8uglgfU7MmWG4xPmqUYKjayID1Dab+UHNwaNydtvH7eHCta7IV+q6Hc6 Ygvg/nTRH37YWOYIG+6FhpDKt0TURGhe -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org