$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: G3/YbxgaFpQGncgezkAvKISk+0xJDvRSrbZwtKhsh2o= Subject key identifier: 68:C0:78:0D:E9:69:08:15:F6:85:7A:C4:80:E7:D4:23:49:5E:5A:EA Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0187 Signing time: Thu 21 Nov 2024 01:58:51 +0000 Manifest this update: Thu 21 Nov 2024 01:58:50 +0000 Manifest next update: Thu 28 Nov 2024 01:58:50 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: woke1Jm8PhzMwRSDBxFdpGH17+TjcWol1GwSdBnsJRA=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: OY0zr2n6spxnIHGbL3oStlwDmEG60mOZ/pJc1RRwfOk=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: YxeOVJUAGpB4uR8Uh6hpe+MVw/LDcqDhKKHxSAXAZM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Nov 21 01:58:50 2024 GMT Not After : Nov 28 01:58:50 2024 GMT Subject: CN=673e93da-41b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:58:b4:5c:c0:b1:19:db:cb:9c:54:59:22: 9b:10:e2:46:58:bd:ad:b9:3d:22:61:90:ac:cc:c8: 38:d9:98:91:ed:43:9f:3e:91:ae:7a:bc:b2:4b:ac: 43:2b:17:ff:e8:16:3e:27:07:e6:5b:e0:a7:9e:1b: ef:7d:fa:64:29:0a:f8:49:9e:28:cb:d5:44:26:20: 55:8b:e0:a9:43:69:bf:67:01:8f:81:4f:24:7a:e4: 2b:bd:6b:bb:7a:a2:cb:4b:2f:d5:fd:39:a1:1a:b4: dd:c6:51:1b:7e:de:4d:27:da:7b:89:0b:16:89:62: 53:8c:16:69:2c:d7:bb:dc:b7:c1:09:04:8b:c8:c2: 6d:76:cb:6b:23:73:33:08:e4:e0:e0:d6:6c:ae:da: d9:c5:73:d4:87:5d:9d:2d:47:52:5d:5d:fc:c9:a0: 66:4f:31:0a:6f:f0:0d:a0:42:07:d2:14:ec:37:6b: 17:e6:4f:9a:57:91:8e:27:4a:e8:41:40:7b:3e:9a: 7f:f3:a9:7b:63:66:5a:4a:dd:fa:6c:2e:63:e3:1c: f7:ff:2e:4a:1f:62:65:ec:d2:06:e6:3f:9c:a9:76: 1d:ed:10:f9:2e:5c:b1:fe:5e:4b:e5:38:88:27:28: 57:9f:4b:8c:ba:4a:02:a0:c7:12:6e:a3:17:6d:d5: fd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C0:78:0D:E9:69:08:15:F6:85:7A:C4:80:E7:D4:23:49:5E:5A:EA X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:5b:c3:3c:2c:1b:c3:27:28:70:21:88:cc:b3:73:27:26:25: c4:bd:76:35:79:cb:ca:88:3c:db:9d:93:21:f7:40:84:68:48: a6:ee:15:03:18:87:52:43:90:fe:e3:28:53:bc:8e:02:75:9f: 1f:21:66:db:06:58:09:46:9b:51:57:c1:ee:b0:99:e8:4e:e8: ce:6c:7b:d2:9e:16:cd:0f:87:ee:cc:e1:9f:7b:1b:e4:ce:66: 00:c4:09:95:40:6a:5c:bc:7a:f9:ce:71:20:b5:df:b2:dd:fb: 92:7f:f1:37:94:66:75:ff:26:2b:f6:38:64:a3:2f:1b:2e:a4: 6f:e5:cb:ca:df:ea:75:9a:0a:cf:d7:89:f1:44:7b:6c:93:c7: 0c:c0:de:5a:b8:c1:ef:fa:43:35:9e:2a:2e:cd:8b:f6:42:b0: 61:1b:6e:58:3a:e9:68:ed:d5:58:e3:f4:36:83:8c:41:e1:40: f3:ca:49:27:4d:8a:b0:c5:11:d3:cf:77:f8:b9:8f:31:03:66: 8c:64:5b:15:d7:5b:e4:59:c0:1f:cf:f2:ee:20:76:64:fc:9a: e3:06:65:ea:40:42:4a:2a:80:9c:50:a0:8d:7e:c6:08:98:0f: 1f:42:0b:9a:06:d2:47:2c:c4:9b:ff:e6:b8:cc:28:26:47:97: 2a:59:92:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjQxMTIxMDE1ODUwWhcNMjQxMTI4MDE1ODUwWjAYMRYwFAYD VQQDEw02NzNlOTNkYS00MWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeRYtFzAsRnby5xUWSKbEOJGWL2tuT0iYZCszMg42ZiR7UOfPpGueryyS6xD Kxf/6BY+JwfmW+CnnhvvffpkKQr4SZ4oy9VEJiBVi+CpQ2m/ZwGPgU8keuQrvWu7 eqLLSy/V/TmhGrTdxlEbft5NJ9p7iQsWiWJTjBZpLNe73LfBCQSLyMJtdstrI3Mz COTg4NZsrtrZxXPUh12dLUdSXV38yaBmTzEKb/ANoEIH0hTsN2sX5k+aV5GOJ0ro QUB7Ppp/86l7Y2ZaSt36bC5j4xz3/y5KH2Jl7NIG5j+cqXYd7RD5Llyx/l5L5TiI JyhXn0uMukoCoMcSbqMXbdX9lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjAeA3p aQgV9oV6xIDn1CNJXlrqMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlW8M8LBvDJyhwIYjMs3MnJiXEvXY1ecvKiDzbnZMh90CEaEim7hUD GIdSQ5D+4yhTvI4CdZ8fIWbbBlgJRptRV8HusJnoTujObHvSnhbND4fuzOGfexvk zmYAxAmVQGpcvHr5znEgtd+y3fuSf/E3lGZ1/yYr9jhkoy8bLqRv5cvK3+p1mgrP 14nxRHtsk8cMwN5auMHv+kM1niouzYv2QrBhG25YOulo7dVY4/Q2g4xB4UDzykkn TYqwxRHTz3f4uY8xA2aMZFsV11vkWcAfz/LuIHZk/JrjBmXqQEJKKoCcUKCNfsYI mA8fQguaBtJHLMSb/+a4zCgmR5cqWZLA -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org