$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: /KPF6+7pUVZqoUHzV6zpTUXTk6eq4vUgmouO78Ot/cQ= Subject key identifier: 49:17:B3:CD:85:5D:F5:64:19:40:A8:12:10:F4:53:14:E2:F7:7B:4B Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0EF7 Signing time: Fri 22 Nov 2024 17:37:46 +0000 Manifest this update: Fri 22 Nov 2024 17:37:45 +0000 Manifest next update: Fri 29 Nov 2024 17:37:45 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: iEa2IWPL0HuLz5qxwPCJd1CeTY5vsm5SZJuIZp8yZGA=) 2: 12E476745E1A11EFB61C6844C4F9AE02.roa (hash: 3IAJ+9W9KeEq7QTVszcmLK1ObY/QRBXZfU+eVRZCpyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3850 (0xf0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Nov 22 17:37:45 2024 GMT Not After : Nov 29 17:37:45 2024 GMT Subject: CN=6740c169-6d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:69:1d:5e:0a:95:be:24:30:ae:fe:0b:15:eb: d2:79:5b:f8:43:52:77:7c:a9:fe:f9:6d:b5:00:d9: 3f:7a:0f:70:21:a4:da:f0:06:d3:5b:0d:03:eb:db: d1:36:c2:b0:10:af:c2:37:01:ca:85:67:f4:14:4d: 9b:0d:1d:72:50:4a:0e:c2:20:ea:3c:f0:91:94:d2: 0c:5c:f6:e7:5f:88:d0:eb:8d:8a:b4:23:83:86:d9: 22:89:e8:dd:05:cb:69:58:1c:9b:f4:2f:fa:de:58: c0:62:a9:6f:72:ae:91:54:97:2b:e5:6e:97:c8:d3: e1:25:44:39:6a:56:47:1c:34:06:87:b1:87:df:64: 71:36:f4:d4:44:58:74:ff:3b:94:aa:a0:71:1e:43: 3d:02:66:bc:45:02:1c:ed:8e:72:7c:17:7e:ce:52: 6a:a3:c4:9b:14:91:8e:e2:e3:69:34:6a:2f:ae:f2: 14:bd:bd:da:f1:04:e3:bc:4c:90:be:c6:b9:60:cc: a7:37:ed:96:4c:f0:8c:0a:d8:c9:fc:29:00:06:67: db:3d:1e:97:94:be:0d:75:32:74:e7:7f:e2:38:00: ec:c0:13:a2:11:9c:39:53:83:2d:c9:ba:df:c1:7d: c5:14:12:df:71:50:fc:c8:d6:63:39:2b:76:fd:f8: 5d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:17:B3:CD:85:5D:F5:64:19:40:A8:12:10:F4:53:14:E2:F7:7B:4B X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:70:cd:34:f0:0f:00:4f:25:94:e3:d7:11:fd:4e:4e:62:2f: 1e:99:eb:97:d7:0a:3a:ad:66:d6:af:6e:8f:18:00:38:b0:67: 49:b0:64:a1:e3:7b:9c:08:38:0b:a9:75:89:21:67:bd:77:99: 73:9e:72:a4:cd:eb:49:b9:73:a3:43:e0:15:e6:3d:7e:c3:57: 50:05:cf:a0:1e:cf:c1:2c:57:75:0f:03:f3:6a:81:f2:eb:b1: 59:c4:11:cd:63:f2:6b:d0:0e:02:00:92:35:d8:ab:08:fb:1c: 5d:d4:8f:4a:31:9a:71:5b:61:08:ec:f5:a7:e0:c6:56:32:6e: 0e:90:54:25:34:3a:16:0a:35:5f:c2:1a:f7:9f:82:a2:1e:dc: 85:2e:18:80:a5:d7:77:fe:68:01:62:97:b5:8f:c6:63:b2:fe: 40:bb:a3:d1:9b:a7:a8:63:27:e7:9f:f1:5f:d1:28:1c:c9:0a: 1f:94:b1:3c:e9:b1:92:1b:93:83:62:3d:bc:1f:93:82:44:9c: f2:27:84:d5:88:79:79:2b:48:ee:3c:fc:9e:3b:28:c9:f4:7d: 3d:91:d0:e2:a5:95:ff:67:26:3d:ec:25:3f:63:bf:50:74:1c: 1e:c6:5a:4b:a8:74:bb:26:9a:e7:48:91:13:6d:d1:da:0e:96: 89:06:3e:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjQxMTIyMTczNzQ1WhcNMjQxMTI5MTczNzQ1WjAYMRYwFAYD VQQDEw02NzQwYzE2OS02ZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9GkdXgqVviQwrv4LFevSeVv4Q1J3fKn++W21ANk/eg9wIaTa8AbTWw0D69vR NsKwEK/CNwHKhWf0FE2bDR1yUEoOwiDqPPCRlNIMXPbnX4jQ642KtCODhtkiiejd BctpWByb9C/63ljAYqlvcq6RVJcr5W6XyNPhJUQ5alZHHDQGh7GH32RxNvTURFh0 /zuUqqBxHkM9Ama8RQIc7Y5yfBd+zlJqo8SbFJGO4uNpNGovrvIUvb3a8QTjvEyQ vsa5YMynN+2WTPCMCtjJ/CkABmfbPR6XlL4NdTJ053/iOADswBOiEZw5U4Mtybrf wX3FFBLfcVD8yNZjOSt2/fhdyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkXs82F XfVkGUCoEhD0UxTi93tLMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPcM008A8ATyWU49cR/U5OYi8emeuX1wo6rWbWr26PGAA4sGdJsGSh 43ucCDgLqXWJIWe9d5lznnKkzetJuXOjQ+AV5j1+w1dQBc+gHs/BLFd1DwPzaoHy 67FZxBHNY/Jr0A4CAJI12KsI+xxd1I9KMZpxW2EI7PWn4MZWMm4OkFQlNDoWCjVf whr3n4KiHtyFLhiApdd3/mgBYpe1j8Zjsv5Au6PRm6eoYyfnn/Ff0SgcyQoflLE8 6bGSG5ODYj28H5OCRJzyJ4TViHl5K0juPPyeOyjJ9H09kdDipZX/ZyY97CU/Y79Q dBwexlpLqHS7JprnSJETbdHaDpaJBj4G -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org