$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: OdYTYMkEHeDM2Pas99TxbtFHjEucfyHanqSwq2gjh48= Subject key identifier: 6A:EF:F7:F9:7B:0A:FB:24:01:BB:2C:9D:B7:24:0B:A5:BA:99:42:55 Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: BA Signing time: Sat 23 Nov 2024 04:01:09 +0000 Manifest this update: Sat 23 Nov 2024 04:01:09 +0000 Manifest next update: Sat 30 Nov 2024 04:01:09 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: 1xchbSKQcz9dIpKhpwEmpzP+Pa9LkpSPMgMI1C1Syms=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: 8p5oyeJWoCkbAhlsrDLfWLW3ixfy6hkbFthdXEroMts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Nov 23 04:01:09 2024 GMT Not After : Nov 30 04:01:09 2024 GMT Subject: CN=67415385-6bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fc:11:81:5d:d0:c2:67:e5:d8:87:30:bc:35: 5c:44:d1:47:be:03:4b:84:81:64:ad:b8:ec:fc:e2: 33:40:49:67:73:44:7e:92:15:3f:c0:6e:f1:55:aa: 98:fa:39:3f:d7:6f:39:cf:41:d3:fc:7f:9f:13:34: 04:aa:85:d2:2e:39:5e:e9:26:41:7a:33:d9:a3:a5: 8a:c3:b2:89:98:78:73:c5:08:0f:1f:6d:38:2b:e4: 6c:c3:5f:b4:d6:3f:c6:60:c0:c7:a3:aa:39:f8:52: 80:3b:5d:15:fc:5c:f2:05:58:73:4e:4d:a6:8d:2d: f0:64:f9:e7:07:05:7b:ea:bf:87:13:80:4d:b8:32: ca:18:6a:d2:b0:51:9d:86:ab:d4:9d:40:dc:f1:b1: 82:63:44:2e:56:b5:b4:26:34:fa:dc:9b:bd:b9:9a: bf:2b:2b:d8:74:9c:02:ff:0a:a2:c8:d1:e5:9f:f3: a9:4b:c9:d0:33:ce:a8:12:a7:99:a7:a4:b6:23:e1: a3:08:e0:69:8b:7e:57:4a:04:b5:95:de:8e:37:df: 12:33:c1:60:a6:7f:94:49:5f:b0:1d:c5:02:56:09: 78:d7:cb:ac:ff:4e:f0:0e:04:74:8f:37:ca:73:c9: 10:4b:93:34:14:a1:fd:9c:8d:02:0e:27:11:3e:6f: c2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EF:F7:F9:7B:0A:FB:24:01:BB:2C:9D:B7:24:0B:A5:BA:99:42:55 X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:74:f0:1a:2b:8a:d0:47:3c:d4:de:3c:94:d5:b1:1f:f7:c2: cf:f6:ff:0d:1e:a3:04:f3:64:01:b3:08:d4:ef:f6:55:81:97: 43:c5:60:58:62:7b:cd:2b:38:60:21:2d:84:f8:51:f0:b6:15: 15:0d:bb:c2:c4:9f:e0:f3:b8:09:a9:91:e5:2c:a5:2b:e1:72: 6b:f4:73:ad:21:11:ae:af:44:57:86:73:45:6f:84:48:9f:72: 36:ff:7f:f0:f0:d4:31:4a:5e:16:ca:4b:b3:63:06:c9:36:83: df:81:e4:fb:cb:2b:65:42:c6:0e:aa:b1:ef:5d:69:e2:fe:d8: 61:50:dc:f7:43:29:e2:03:9f:ca:d7:da:09:d4:19:0c:79:9e: bf:f0:bb:d0:db:6c:f7:10:c3:00:c2:6e:b0:c3:5c:2b:e7:60: 71:c6:81:ac:c5:cd:31:b7:ea:1f:24:07:86:33:e1:59:c8:1d: 82:f4:0b:5f:c8:05:1e:54:2b:e7:99:30:75:81:42:8b:5a:c3: ef:50:51:63:06:fe:1c:a0:7b:35:09:e5:ae:af:8f:b0:6d:7e: 26:9b:20:7c:d6:7e:0e:21:4e:04:da:3f:36:dc:29:4d:53:30: 83:19:de:44:98:ea:49:9d:00:01:a1:c9:d7:94:ab:85:76:81: cc:77:90:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjQxMTIzMDQwMTA5WhcNMjQxMTMwMDQwMTA5WjAYMRYwFAYD VQQDEw02NzQxNTM4NS02YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvwRgV3Qwmfl2IcwvDVcRNFHvgNLhIFkrbjs/OIzQElnc0R+khU/wG7xVaqY +jk/1285z0HT/H+fEzQEqoXSLjle6SZBejPZo6WKw7KJmHhzxQgPH204K+Rsw1+0 1j/GYMDHo6o5+FKAO10V/FzyBVhzTk2mjS3wZPnnBwV76r+HE4BNuDLKGGrSsFGd hqvUnUDc8bGCY0QuVrW0JjT63Ju9uZq/KyvYdJwC/wqiyNHln/OpS8nQM86oEqeZ p6S2I+GjCOBpi35XSgS1ld6ON98SM8Fgpn+USV+wHcUCVgl418us/07wDgR0jzfK c8kQS5M0FKH9nI0CDicRPm/C7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrv9/l7 CvskAbssnbckC6W6mUJVMB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedPAaK4rQRzzU3jyU1bEf98LP9v8NHqME82QBswjU7/ZVgZdDxWBY YnvNKzhgIS2E+FHwthUVDbvCxJ/g87gJqZHlLKUr4XJr9HOtIRGur0RXhnNFb4RI n3I2/3/w8NQxSl4WykuzYwbJNoPfgeT7yytlQsYOqrHvXWni/thhUNz3QyniA5/K 19oJ1BkMeZ6/8LvQ22z3EMMAwm6ww1wr52BxxoGsxc0xt+ofJAeGM+FZyB2C9Atf yAUeVCvnmTB1gUKLWsPvUFFjBv4coHs1CeWur4+wbX4mmyB81n4OIU4E2j823ClN UzCDGd5EmOpJnQABocnXlKuFdoHMd5AP -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org