$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: lsuFS5kxRZP4GCY51UMAUcPSnh4sF/Cb5nsoU2BmRzw= Subject key identifier: 6D:65:CD:B0:12:39:D2:C0:D6:B2:1E:99:55:E4:9C:0F:E0:FA:B8:3A Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 017C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 0171 Signing time: Sat 23 Nov 2024 02:18:29 +0000 Manifest this update: Sat 23 Nov 2024 02:18:28 +0000 Manifest next update: Sat 30 Nov 2024 02:18:28 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: yTTbx9jYZQvDAE9kaQ1Dr16VMFx8G5qmCyRx+Z67/3w=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: OYx0ivaLSuUbR/65DlkjyPYiwNzBJusc4fYNblQt2KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:18:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Nov 23 02:18:28 2024 GMT Not After : Nov 30 02:18:28 2024 GMT Subject: CN=67413b74-c1cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9b:f2:80:18:4c:81:7c:1b:5d:17:15:65:ae: 84:97:90:38:fd:f4:ad:d0:5b:6b:8e:4e:2c:85:f1: d5:90:92:44:60:da:f6:b0:b2:2b:13:84:76:10:5a: 21:f2:39:e6:68:54:1e:f3:d4:d5:17:9c:3b:0d:4e: 6b:6d:df:8a:0f:12:66:5f:f3:fb:e7:ab:1a:e6:b9: 15:83:42:a9:70:fd:9d:25:a6:f9:ea:a8:d9:f6:49: c4:84:67:9b:21:a5:e4:c4:1c:a6:52:a9:18:2e:11: 58:60:c6:a4:ca:c5:26:66:f3:63:ae:be:6f:1a:d2: 58:a1:d4:78:35:fe:08:e6:e1:82:34:a6:b1:7b:c1: 51:5e:0e:b6:d1:12:30:7e:f5:82:10:4b:73:a9:db: 0c:b4:7d:43:ae:a8:52:7e:7a:f0:fa:58:2e:79:3c: ec:f7:a0:94:db:4f:ec:94:d1:b8:d2:2d:ce:89:f2: 39:f1:18:c8:66:9f:05:8d:17:d8:85:55:f4:fe:c6: 2f:45:34:3f:3d:0f:51:e4:a3:30:8d:d8:2d:6c:e8: 20:13:24:8b:2a:cd:78:31:ad:d9:df:d0:23:b9:f8: 2e:a3:2c:8a:92:20:6e:b6:c6:d8:de:06:4f:4d:54: 38:63:5b:05:1c:1f:97:1b:a4:d4:7a:88:a9:eb:9a: 47:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:65:CD:B0:12:39:D2:C0:D6:B2:1E:99:55:E4:9C:0F:E0:FA:B8:3A X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:6b:61:18:d7:57:31:5b:28:e8:47:22:f1:68:ed:37:64:34: 9e:f6:0c:e3:4a:62:1d:24:d4:42:13:30:c1:e1:f2:f4:b5:f4: d6:64:8b:58:9e:06:66:c7:19:da:51:34:68:b9:3a:a8:a6:14: 44:b0:f4:02:34:ae:41:54:9c:c8:c7:81:dd:0d:32:85:c9:71: ba:57:be:2d:0c:4e:01:78:4f:f6:4a:ec:db:d1:17:fd:47:f3: c9:bf:b1:98:b3:cb:96:e1:45:a0:3e:65:52:96:a4:66:9b:2d: 13:f8:37:39:2f:aa:e8:36:17:24:c8:34:a1:3a:26:4e:12:9e: 86:47:02:d9:53:34:32:05:ac:4b:e5:56:09:03:c2:67:21:3c: 81:c3:bb:83:9f:76:cc:3e:7b:84:64:7b:f0:91:e5:8f:20:70: ca:2c:42:d3:40:55:4c:a7:24:80:d6:db:be:14:29:43:d2:d0: eb:66:77:58:a9:69:8a:ca:c9:bc:d7:cc:33:2f:87:1d:5e:b3: e2:8d:ed:53:60:5f:e7:16:a6:08:82:7f:fa:15:55:32:3c:d5: 18:13:19:38:1b:75:23:51:8e:f3:9f:4b:f9:b7:54:cc:64:5f: 0f:7b:7e:aa:bd:24:b9:8d:e3:92:0a:09:e2:62:4d:5e:a5:6c: 92:75:a5:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjQxMTIzMDIxODI4WhcNMjQxMTMwMDIxODI4WjAYMRYwFAYD VQQDEw02NzQxM2I3NC1jMWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZvygBhMgXwbXRcVZa6El5A4/fSt0Ftrjk4shfHVkJJEYNr2sLIrE4R2EFoh 8jnmaFQe89TVF5w7DU5rbd+KDxJmX/P756sa5rkVg0KpcP2dJab56qjZ9knEhGeb IaXkxBymUqkYLhFYYMakysUmZvNjrr5vGtJYodR4Nf4I5uGCNKaxe8FRXg620RIw fvWCEEtzqdsMtH1DrqhSfnrw+lgueTzs96CU20/slNG40i3OifI58RjIZp8FjRfY hVX0/sYvRTQ/PQ9R5KMwjdgtbOggEySLKs14Ma3Z39AjufguoyyKkiButsbY3gZP TVQ4Y1sFHB+XG6TUeoip65pHwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1lzbAS OdLA1rIemVXknA/g+rg6MB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSa2EY11cxWyjoRyLxaO03ZDSe9gzjSmIdJNRCEzDB4fL0tfTWZItY ngZmxxnaUTRouTqophREsPQCNK5BVJzIx4HdDTKFyXG6V74tDE4BeE/2Suzb0Rf9 R/PJv7GYs8uW4UWgPmVSlqRmmy0T+Dc5L6roNhckyDShOiZOEp6GRwLZUzQyBaxL 5VYJA8JnITyBw7uDn3bMPnuEZHvwkeWPIHDKLELTQFVMpySA1tu+FClD0tDrZndY qWmKysm818wzL4cdXrPije1TYF/nFqYIgn/6FVUyPNUYExk4G3UjUY7zn0v5t1TM ZF8Pe36qvSS5jeOSCgniYk1epWySdaWt -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org