$ rpki-client -vvf rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft File: RCHzqdfkHW9Ht4b90-eojeQrB7k.mft (raw, json) Hash identifier: 1ZVqEl+5e8Dlj6WvGEF+GpZX9lW9VBt/rB/0PNSdIUs= Subject key identifier: 80:16:BB:32:6B:AD:F5:79:58:73:21:9F:89:F9:60:9E:D1:E6:22:88 Authority key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 Certificate issuer: /CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft Manifest number: 0246 Signing time: Sat 23 Nov 2024 01:20:14 +0000 Manifest this update: Sat 23 Nov 2024 01:20:13 +0000 Manifest next update: Sat 30 Nov 2024 01:20:13 +0000 Files and hashes: 1: RCHzqdfkHW9Ht4b90-eojeQrB7k.crl (hash: 0NziCGx7cwF96WdTxmkKPZOthqjVsQ3fH3Gkg1i/lRk=) 2: 0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa (hash: 5LtQSX5vsNltnL8EwaCWb4W4bCqyFzBXrqfQ3KUZW5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Validity Not Before: Nov 23 01:20:13 2024 GMT Not After : Nov 30 01:20:13 2024 GMT Subject: CN=67412dce-0842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fb:e5:0c:4e:5d:f2:ae:59:50:64:a0:86:12: 9b:74:19:1a:06:03:bf:ac:04:a0:cd:b5:8d:5c:3d: 31:32:62:37:ea:fc:63:29:d9:c4:b6:06:26:74:ab: 40:7e:b9:e6:73:d1:1c:db:de:8e:11:f8:0e:52:67: cd:d4:7f:3a:76:40:97:b2:96:6b:46:88:20:bc:4a: 79:7b:e3:00:03:00:d7:2d:46:8c:e4:2e:f1:ec:2b: af:a0:19:6b:28:c9:66:49:08:c3:0b:b1:f6:d2:60: 61:2c:08:73:86:bf:30:fc:e8:76:e9:45:22:bd:ab: 25:21:a7:1f:2f:56:24:7f:ea:26:fa:48:34:5b:f3: 2e:7d:0e:f5:18:1b:2a:0b:bc:80:2c:6e:93:53:f9: 86:57:d9:7b:05:2f:b4:d0:f6:68:56:01:36:43:a1: f5:97:5b:bd:54:90:26:07:5d:cc:42:e4:fc:47:ae: cd:48:67:44:f2:4f:2e:d0:44:e0:5f:fa:7e:13:79: f7:9b:99:4a:4c:88:4b:21:b3:30:b0:2e:fd:ab:f3: af:7e:15:23:3b:f1:2b:e2:dc:f8:8a:99:63:5b:d8: 99:8a:fb:d5:db:b2:d7:8d:75:9a:5c:de:59:58:b6: 08:7f:2f:8f:d7:93:f8:bf:2a:ec:6f:ff:59:9d:62: 2c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:16:BB:32:6B:AD:F5:79:58:73:21:9F:89:F9:60:9E:D1:E6:22:88 X509v3 Authority Key Identifier: keyid:44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:5f:c7:ee:e9:9e:e5:d6:b8:41:60:1d:d7:bf:df:4f:a6:a4: 2c:13:dd:97:37:6b:de:c2:04:6f:fb:8e:51:86:f1:7f:73:23: e0:d8:f6:d4:b3:bc:fc:21:63:59:9f:40:d5:5b:cf:87:c0:08: 4a:62:9a:c8:2f:43:d6:42:7c:6b:8e:cf:c8:c4:ee:c9:a1:ee: 2b:e7:5c:b9:fb:04:3b:43:5e:0c:56:93:56:73:87:ec:f3:09: 27:da:f2:e3:70:98:95:67:30:ea:54:19:1a:ed:f6:2b:33:2b: 01:17:b1:d7:fd:e7:91:08:56:95:af:d6:7b:0a:f9:9e:7d:f7: 3b:b3:24:8a:79:49:27:52:e1:be:a7:bb:c0:ce:83:59:ec:aa: c1:ef:0e:c9:58:92:5c:db:51:f3:87:29:5c:13:e4:cb:4b:34: 73:c4:65:5a:37:b5:85:2e:90:43:42:c6:85:da:bf:72:f1:bf: d0:38:71:8d:56:5f:89:68:d8:88:05:b0:26:15:48:2a:4f:b9: af:a6:b3:ae:fd:99:7c:e2:9e:99:f4:17:15:ce:b9:bf:e5:dd: 01:ec:79:64:55:92:ba:23:9f:ab:8b:f9:4a:3f:ad:33:c2:2c: 9b:ef:e8:f6:ec:b6:2b:b6:0a:ac:9d:f7:55:44:97:d4:b9:a2: 8d:0c:2c:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ0MkExMTAvBgNVBAUTKDQ0MjFGM0E5RDdFNDFENkY0N0I3ODZGREQzRTdBODhE RTQyQjA3QjkwHhcNMjQxMTIzMDEyMDEzWhcNMjQxMTMwMDEyMDEzWjAYMRYwFAYD VQQDEw02NzQxMmRjZS0wODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvvlDE5d8q5ZUGSghhKbdBkaBgO/rASgzbWNXD0xMmI36vxjKdnEtgYmdKtA frnmc9Ec296OEfgOUmfN1H86dkCXspZrRoggvEp5e+MAAwDXLUaM5C7x7CuvoBlr KMlmSQjDC7H20mBhLAhzhr8w/Oh26UUivaslIacfL1Ykf+om+kg0W/MufQ71GBsq C7yALG6TU/mGV9l7BS+00PZoVgE2Q6H1l1u9VJAmB13MQuT8R67NSGdE8k8u0ETg X/p+E3n3m5lKTIhLIbMwsC79q/OvfhUjO/Er4tz4ipljW9iZivvV27LXjXWaXN5Z WLYIfy+P15P4vyrsb/9ZnWIs0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAWuzJr rfV5WHMhn4n5YJ7R5iKIMB8GA1UdIwQYMBaAFEQh86nX5B1vR7eG/dPnqI3kKwe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDQyQS9BQjRFNTI0NEZD MzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hXOUh0NGI5MC1lb2plUXJC N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JDSHpxZGZrSFc5SHQ0YjkwLWVvamVRckI3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDQyQS9BQjRFNTI0NEZDMzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hX OUh0NGI5MC1lb2plUXJCN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTX8fu6Z7l1rhBYB3Xv99PpqQsE92XN2vewgRv+45RhvF/cyPg2PbU s7z8IWNZn0DVW8+HwAhKYprIL0PWQnxrjs/IxO7Joe4r51y5+wQ7Q14MVpNWc4fs 8wkn2vLjcJiVZzDqVBka7fYrMysBF7HX/eeRCFaVr9Z7Cvmeffc7sySKeUknUuG+ p7vAzoNZ7KrB7w7JWJJc21HzhylcE+TLSzRzxGVaN7WFLpBDQsaF2r9y8b/QOHGN Vl+JaNiIBbAmFUgqT7mvprOu/Zl84p6Z9BcVzrm/5d0B7HlkVZK6I5+ri/lKP60z wiyb7+j27LYrtgqsnfdVRJfUuaKNDCy6 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org