$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: p0W/h4ImDNyAtZ3t++/5jbY3Qnd5lJ7l4mhAaV0aER0= Subject key identifier: 37:6A:AE:B2:3B:F3:0A:92:3E:45:97:B3:2D:4E:61:50:67:F5:DA:50 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0152 Signing time: Thu 21 Nov 2024 02:34:57 +0000 Manifest this update: Thu 21 Nov 2024 02:34:57 +0000 Manifest next update: Thu 28 Nov 2024 02:34:57 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: Q5WnWVI6PULC9rGUEBoUkZrLeMUVU9gOvEl3S/gv1S0=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: gp0c0TAvNcGzlWuq4DB/NpWsaDumiulUkd34eH+poTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Nov 21 02:34:57 2024 GMT Not After : Nov 28 02:34:57 2024 GMT Subject: CN=673e9c51-bafb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:27:52:a0:08:e3:b0:a9:cf:a2:42:54:fe:dd: 13:b8:35:3b:6f:ef:8d:0f:1a:1e:bf:05:22:46:ca: 4e:a6:9f:09:fe:74:b5:4d:89:a2:ff:be:46:f4:5f: b4:3c:19:f2:9b:c5:af:76:83:e8:52:00:ca:44:38: fb:0b:0c:03:13:c6:7d:3c:63:1e:05:e9:18:85:18: 81:1f:78:cd:8c:c4:f2:e0:73:60:0c:4a:b7:92:2a: b9:ee:6f:27:a3:1e:9a:aa:a6:21:68:7b:f1:d2:7b: 78:61:71:00:84:74:98:bd:77:ef:82:a5:f7:15:58: ac:a7:90:88:b1:76:37:22:f2:2d:0b:0c:40:38:93: 22:e8:a1:a1:3a:02:d9:48:fb:c9:3d:80:50:3b:e5: 81:8b:ae:02:16:7c:71:16:1c:a0:c0:9f:15:5f:13: 68:2e:92:25:9f:cc:ed:05:3c:a7:5c:f1:1a:58:4e: 55:c3:69:21:d3:a0:ce:0b:26:6a:67:cd:17:66:3b: d6:4d:fd:5d:ad:e4:fd:22:5e:26:11:49:02:4b:86: 55:cd:37:c5:a7:fb:e5:96:83:44:5f:b0:fd:0c:a1: 0e:6e:ea:b8:d6:c7:15:47:99:b1:ca:4b:03:33:cd: 5b:b5:12:19:33:6e:30:64:77:eb:c5:41:10:29:c5: d4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6A:AE:B2:3B:F3:0A:92:3E:45:97:B3:2D:4E:61:50:67:F5:DA:50 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:d3:23:7c:6f:fe:23:9b:39:26:f0:32:ac:ff:43:d9:d4:64: 67:36:6b:ca:06:3a:ec:9f:1b:b7:a7:e7:c9:f7:c2:57:aa:82: e6:f1:af:3e:28:83:8e:26:9e:3d:81:64:bb:60:5e:d4:67:9e: 73:08:43:91:0f:c9:10:10:3c:71:de:6f:9d:9e:fa:b2:4e:c6: 2b:a5:d9:8d:51:d1:9a:b2:3e:b4:e1:72:a3:93:34:f9:87:b7: c9:98:46:00:b2:f6:71:c9:ad:d1:46:2b:ca:15:cc:34:83:11: 20:91:c1:40:bd:71:a0:0d:3e:af:06:19:23:67:92:9c:a0:17: 97:ce:66:98:f8:12:89:19:4a:a9:ec:44:3b:42:3b:de:86:45: 24:90:1c:72:e1:1e:6b:14:fd:e0:d1:07:03:34:8e:a4:b6:f6: b5:01:a9:f9:7b:bf:9e:99:0b:82:19:59:d9:fd:ff:d7:0a:f3: 8e:f6:09:9e:43:0f:cf:cc:ee:ee:9c:e5:6b:94:dc:7d:a7:bb: 8d:71:43:cb:1b:3a:ff:36:2c:b6:a4:6d:b5:fa:c1:34:1d:5e: d8:b7:50:1b:3a:8d:64:65:db:38:53:27:cd:70:65:3a:0f:c4: dd:f1:84:0b:0f:09:65:75:b0:d2:fc:7e:2c:b2:bf:6d:8a:06: c3:12:c0:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjQxMTIxMDIzNDU3WhcNMjQxMTI4MDIzNDU3WjAYMRYwFAYD VQQDEw02NzNlOWM1MS1iYWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4idSoAjjsKnPokJU/t0TuDU7b++NDxoevwUiRspOpp8J/nS1TYmi/75G9F+0 PBnym8WvdoPoUgDKRDj7CwwDE8Z9PGMeBekYhRiBH3jNjMTy4HNgDEq3kiq57m8n ox6aqqYhaHvx0nt4YXEAhHSYvXfvgqX3FVisp5CIsXY3IvItCwxAOJMi6KGhOgLZ SPvJPYBQO+WBi64CFnxxFhygwJ8VXxNoLpIln8ztBTynXPEaWE5Vw2kh06DOCyZq Z80XZjvWTf1dreT9Il4mEUkCS4ZVzTfFp/vlloNEX7D9DKEObuq41scVR5mxyksD M81btRIZM24wZHfrxUEQKcXUSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdqrrI7 8wqSPkWXsy1OYVBn9dpQMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm0yN8b/4jmzkm8DKs/0PZ1GRnNmvKBjrsnxu3p+fJ98JXqoLm8a8+ KIOOJp49gWS7YF7UZ55zCEORD8kQEDxx3m+dnvqyTsYrpdmNUdGasj604XKjkzT5 h7fJmEYAsvZxya3RRivKFcw0gxEgkcFAvXGgDT6vBhkjZ5KcoBeXzmaY+BKJGUqp 7EQ7QjvehkUkkBxy4R5rFP3g0QcDNI6ktva1Aan5e7+emQuCGVnZ/f/XCvOO9gme Qw/PzO7unOVrlNx9p7uNcUPLGzr/Niy2pG21+sE0HV7Yt1AbOo1kZds4UyfNcGU6 D8Td8YQLDwlldbDS/H4ssr9tigbDEsAw -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org