$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft File: CmH1ryEJpoNhH7ogbyCM7-NImCE.mft (raw, json) Hash identifier: /hbIJql5/u8KzPXak2yQS67CYt/f1pR5uCP+WAaPZ9g= Subject key identifier: 5F:EE:95:A5:7B:5E:7E:F7:7A:4E:4E:15:8A:B9:EA:A4:7D:F6:86:04 Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0A22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft Manifest number: 0A18 Signing time: Fri 22 Nov 2024 19:35:03 +0000 Manifest this update: Fri 22 Nov 2024 19:35:02 +0000 Manifest next update: Fri 29 Nov 2024 19:35:02 +0000 Files and hashes: 1: CmH1ryEJpoNhH7ogbyCM7-NImCE.crl (hash: HQA0bauPpjVsCUYSkhUrDyNm7Auf6Lby4bfkXQoZ+DQ=) 2: FE32E0965F8E11EA935F3E69C4F9AE02.roa (hash: U0A5yh5nwOlME8D4OdBtuWBfWXJcBZCG31TD2q/Y4RY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:35:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: Nov 22 19:35:02 2024 GMT Not After : Nov 29 19:35:02 2024 GMT Subject: CN=6740dce7-c9ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a9:80:be:61:da:0b:69:9e:03:8a:4b:45:11: c9:9f:fa:e8:f4:19:64:86:8f:82:af:9a:43:ad:e0: a2:29:3a:e6:05:30:3b:8a:12:8e:a5:19:48:4b:3d: 29:da:1f:15:29:31:9b:49:e4:b0:05:ce:ac:aa:6d: f1:78:da:44:d4:6d:0e:c5:37:69:73:01:ca:e4:15: 2e:f9:05:c3:1f:88:f5:a7:a5:0f:59:c3:10:1a:57: f3:78:51:5b:b4:b1:57:33:2a:76:6c:09:10:4a:78: 6e:a0:56:86:3c:8d:1e:35:3d:4d:69:f3:bb:65:23: 55:6f:9d:e9:40:c4:f2:b5:62:b6:14:36:52:c6:71: 40:a7:d6:4b:17:b9:53:96:6a:53:68:b7:7f:93:8c: 6f:92:28:32:72:8f:f3:7e:9b:bb:cf:90:b7:aa:46: 69:d2:68:bb:e1:fd:17:c1:e1:18:fd:1c:9d:1c:d7: 3b:53:51:74:15:b2:30:27:f5:4f:6a:ea:42:44:60: 1c:ac:2f:bf:7a:78:7c:c3:4d:2b:07:2e:7d:19:13: 8f:08:e5:40:a7:fc:d3:ba:0b:5c:c6:e9:3f:d6:d4: a2:53:7b:90:3a:ca:62:81:4b:79:b1:57:e0:d0:24: d2:61:b2:33:bd:c1:e8:a1:d8:f0:77:8b:51:35:02: 9c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EE:95:A5:7B:5E:7E:F7:7A:4E:4E:15:8A:B9:EA:A4:7D:F6:86:04 X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e2:b3:b7:05:18:25:d1:2c:c4:c2:58:9e:9e:7b:9b:97:ba: c2:c3:26:3a:8f:f9:50:31:8b:8a:ed:17:f3:f7:d1:f6:0e:5f: 21:f2:e8:ed:a5:3a:53:b9:e9:ae:2e:36:88:da:02:34:23:4f: 16:26:c6:7b:54:bc:2e:68:7e:a0:df:d4:48:d7:a5:f0:95:fb: ff:42:94:f6:7d:0b:f4:34:ce:98:7e:19:35:27:9f:17:92:18: 15:41:d7:ce:cb:ec:88:ed:25:2d:59:84:ba:2a:c7:c1:9c:1b: c9:69:d1:8b:21:df:8f:73:e5:8b:84:9b:f4:97:78:26:c8:37: bf:c3:2b:aa:76:9f:1b:ff:92:0a:36:a3:8c:18:f2:a6:98:6d: 5a:43:89:1d:54:e6:58:2a:af:b4:06:7d:41:0a:62:28:20:c2: 2d:d9:05:76:df:1e:2b:e1:be:58:9c:15:bc:3a:d8:81:70:04: cb:5f:f3:8f:6c:43:5d:42:ec:12:46:a6:0d:ea:59:47:cf:5e: bf:3f:fc:8b:1d:ca:a9:9c:6f:85:f7:b4:e4:df:27:aa:9d:63: 56:84:b1:8c:1e:d5:eb:d9:82:f9:65:fa:fa:00:ac:97:34:68: 94:c9:1b:e6:0c:53:1f:56:c8:5a:69:05:40:fb:22:82:2f:53: f6:bb:05:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjQxMTIyMTkzNTAyWhcNMjQxMTI5MTkzNTAyWjAYMRYwFAYD VQQDEw02NzQwZGNlNy1jOWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qmAvmHaC2meA4pLRRHJn/ro9Blkho+Cr5pDreCiKTrmBTA7ihKOpRlISz0p 2h8VKTGbSeSwBc6sqm3xeNpE1G0OxTdpcwHK5BUu+QXDH4j1p6UPWcMQGlfzeFFb tLFXMyp2bAkQSnhuoFaGPI0eNT1NafO7ZSNVb53pQMTytWK2FDZSxnFAp9ZLF7lT lmpTaLd/k4xvkigyco/zfpu7z5C3qkZp0mi74f0XweEY/RydHNc7U1F0FbIwJ/VP aupCRGAcrC+/enh8w00rBy59GROPCOVAp/zTugtcxuk/1tSiU3uQOspigUt5sVfg 0CTSYbIzvcHoodjwd4tRNQKcDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/ulaV7 Xn73ek5OFYq56qR99oYEMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTlBQy9DMDYxMzUxNjVGOEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBv TmhIN29nYnlDTTctTkltQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf4rO3BRgl0SzEwliennubl7rCwyY6j/lQMYuK7Rfz99H2Dl8h8ujt pTpTuemuLjaI2gI0I08WJsZ7VLwuaH6g39RI16Xwlfv/QpT2fQv0NM6Yfhk1J58X khgVQdfOy+yI7SUtWYS6KsfBnBvJadGLId+Pc+WLhJv0l3gmyDe/wyuqdp8b/5IK NqOMGPKmmG1aQ4kdVOZYKq+0Bn1BCmIoIMIt2QV23x4r4b5YnBW8OtiBcATLX/OP bENdQuwSRqYN6llHz16/P/yLHcqpnG+F97Tk3yeqnWNWhLGMHtXr2YL5Zfr6AKyX NGiUyRvmDFMfVshaaQVA+yKCL1P2uwXJ -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org