$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: QQ13+aVqDe0BscHSJsATyxHbNGfP5bKKnv2iO2jOwnk= Subject key identifier: 25:20:49:AD:D9:F6:85:5F:6B:5E:9D:C4:DB:7A:AA:BB:FD:AB:BF:B6 Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: E7 Signing time: Sat 23 Nov 2024 03:30:24 +0000 Manifest this update: Sat 23 Nov 2024 03:30:23 +0000 Manifest next update: Sat 30 Nov 2024 03:30:23 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: f/5bUZ6wLP2acK/cl2g9eEKzjiMKO70YJJwdkeUzShI=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: xolDRhSXt2WA8L+8gCDvdLVCLWfk24OE5JGsb3rd3QE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Nov 23 03:30:23 2024 GMT Not After : Nov 30 03:30:23 2024 GMT Subject: CN=67414c4f-87c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:51:a5:00:9f:f5:3f:e8:af:5b:13:08:cb:67: 9c:85:2f:b3:bb:bc:2b:d3:a2:20:df:fe:96:7f:68: f6:75:4d:b4:32:c1:39:ff:53:a4:a9:3f:98:1a:f0: 40:98:3b:f4:e6:9d:93:9c:83:de:7f:e9:3a:8b:a5: 7e:e5:3b:c9:22:56:56:86:4d:4d:92:fe:19:ab:d8: 15:d5:7f:18:3e:70:b0:53:00:4f:59:62:df:d1:61: 0a:f5:bf:a7:a5:23:4d:4e:90:d5:05:d1:62:17:bf: 31:32:fd:72:ed:56:54:e4:28:f5:11:6e:19:ce:02: 81:90:85:ca:12:f4:ea:47:ec:36:06:55:91:f3:e0: 35:2f:d9:0b:57:6e:38:15:9e:bb:b8:07:19:f1:dc: 03:89:ca:6f:5a:5d:c8:9a:57:41:39:cb:16:8b:42: 71:cc:1e:75:b9:45:66:46:78:63:e5:70:cb:13:34: c1:9d:94:c2:2e:9e:25:4c:65:22:4e:f9:ad:ef:46: 7e:94:41:b6:4d:b5:3d:60:13:bc:c5:21:e5:17:83: 6a:cd:cb:c9:2b:b8:2c:2d:5a:a7:43:ed:6e:dd:46: a6:fc:c3:b2:98:fe:a1:33:28:40:89:fa:98:17:14: 17:8c:db:e1:c4:ad:94:ef:a6:31:0b:72:b7:8a:a6: 5c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:20:49:AD:D9:F6:85:5F:6B:5E:9D:C4:DB:7A:AA:BB:FD:AB:BF:B6 X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:9a:0b:0f:29:83:61:ad:73:b4:54:74:2a:c7:36:f7:aa:e9: ef:81:f7:67:73:13:7d:26:32:b7:3c:43:bf:73:00:4e:57:d7: 3a:0d:0d:39:06:34:16:67:e8:a6:43:0b:bb:29:7a:77:3b:43: 30:b3:c3:c2:cd:12:fc:96:3e:9f:1d:4f:58:b4:aa:c5:80:ff: bb:dc:51:10:16:82:8e:fd:66:9d:c1:b1:18:15:27:3a:7f:23: 74:6e:43:14:22:15:45:57:13:e3:85:bc:ab:30:d9:c1:43:ed: fc:c7:6d:44:b7:76:95:9b:09:55:b2:c4:da:54:c1:bd:2b:95: ed:84:23:c5:15:3d:30:00:41:ba:5e:f1:ff:57:91:93:e1:71: 1a:bf:eb:aa:8d:cf:9b:04:6c:aa:6f:58:cc:97:78:21:16:58: 05:9f:4c:28:27:0b:67:db:67:47:10:ce:92:00:ba:31:25:e4: d8:47:b9:54:7c:8b:2e:0b:9b:08:7a:ba:6f:5e:ef:cd:7b:cd: 84:cf:f9:06:e9:ab:4e:a6:99:44:49:04:a5:89:c4:42:d4:6f: ba:a5:bf:c7:01:90:95:1d:e5:54:90:10:d0:5d:91:3b:63:3d: f7:ec:1d:62:71:e5:5c:46:5b:17:12:b2:94:45:9f:e0:05:b2: e0:25:7c:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjQxMTIzMDMzMDIzWhcNMjQxMTMwMDMzMDIzWjAYMRYwFAYD VQQDEw02NzQxNGM0Zi04N2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11GlAJ/1P+ivWxMIy2echS+zu7wr06Ig3/6Wf2j2dU20MsE5/1OkqT+YGvBA mDv05p2TnIPef+k6i6V+5TvJIlZWhk1Nkv4Zq9gV1X8YPnCwUwBPWWLf0WEK9b+n pSNNTpDVBdFiF78xMv1y7VZU5Cj1EW4ZzgKBkIXKEvTqR+w2BlWR8+A1L9kLV244 FZ67uAcZ8dwDicpvWl3ImldBOcsWi0JxzB51uUVmRnhj5XDLEzTBnZTCLp4lTGUi Tvmt70Z+lEG2TbU9YBO8xSHlF4NqzcvJK7gsLVqnQ+1u3Uam/MOymP6hMyhAifqY FxQXjNvhxK2U76YxC3K3iqZcNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUgSa3Z 9oVfa16dxNt6qrv9q7+2MB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTmgsPKYNhrXO0VHQqxzb3qunvgfdncxN9JjK3PEO/cwBOV9c6DQ05 BjQWZ+imQwu7KXp3O0Mws8PCzRL8lj6fHU9YtKrFgP+73FEQFoKO/WadwbEYFSc6 fyN0bkMUIhVFVxPjhbyrMNnBQ+38x21Et3aVmwlVssTaVMG9K5XthCPFFT0wAEG6 XvH/V5GT4XEav+uqjc+bBGyqb1jMl3ghFlgFn0woJwtn22dHEM6SALoxJeTYR7lU fIsuC5sIerpvXu/Ne82Ez/kG6atOpplESQSlicRC1G+6pb/HAZCVHeVUkBDQXZE7 Yz337B1iceVcRlsXErKURZ/gBbLgJXz+ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org