$ rpki-client -vvf rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft File: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft (raw, json) Hash identifier: Aw2fpt5BTpsV7OZC1eBijW75NvY+Wytd1EcIubFOm3A= Subject key identifier: 6D:82:5A:3A:6D:87:83:1A:A5:00:98:A2:40:48:F7:ED:31:6E:A5:9D Authority key identifier: 0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 Certificate issuer: /CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft Manifest number: 01C7 Signing time: Thu 21 Nov 2024 01:45:59 +0000 Manifest this update: Thu 21 Nov 2024 01:45:59 +0000 Manifest next update: Thu 28 Nov 2024 01:45:59 +0000 Files and hashes: 1: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl (hash: WUTRtBK+EbzycLbIv7keAZ7UbGzhLJsTAXAqdOm0u3E=) 2: 88FCD2C62DBA11ED94AFED62C4F9AE02.roa (hash: XW5eQLHT9pjam4DydX+MPOf7MxBb8MiFoha5U/4pDCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Validity Not Before: Nov 21 01:45:59 2024 GMT Not After : Nov 28 01:45:59 2024 GMT Subject: CN=673e90d7-9727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4e:26:ee:39:99:6f:09:4c:07:c3:eb:29:a6: f8:19:46:28:20:e5:ba:f4:16:be:46:84:9e:82:07: 9e:eb:a2:a3:5f:d4:11:af:74:42:71:8e:bf:4b:94: 20:08:63:af:8c:8f:36:be:aa:a0:36:e3:87:1d:6f: bb:29:84:fe:77:db:b3:79:7e:b4:4e:20:ff:92:3c: 07:82:68:57:50:a0:ab:3e:3f:50:d9:a6:b9:bf:2d: 16:3c:67:53:bc:e3:ab:3f:47:a7:76:18:ba:05:6e: c0:ab:fe:df:95:60:46:c1:71:0d:b7:66:cf:f0:91: f4:9d:e6:e4:e7:6e:65:a6:9b:16:86:1a:c6:ef:3f: cf:3a:82:7f:4e:90:57:1f:6d:76:be:2f:17:23:ca: 2d:84:3c:d7:0e:a2:46:d1:bc:86:30:eb:bc:68:69: 07:e5:9b:cf:7a:1b:e2:f9:ab:41:bc:3b:c9:14:fc: be:32:4a:d3:51:0d:04:63:ed:fc:19:89:65:1b:bd: 4e:62:7d:ad:71:c3:3e:fa:a5:d0:24:dc:2a:a7:81: f6:6f:bd:54:ba:93:8a:8c:e3:da:87:cd:07:38:eb: 2c:26:38:fc:06:26:b3:a4:e3:b5:ab:5c:2d:7b:13: 75:0c:fb:74:99:a1:bc:18:a6:57:e2:8f:b4:cd:da: 0a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:82:5A:3A:6D:87:83:1A:A5:00:98:A2:40:48:F7:ED:31:6E:A5:9D X509v3 Authority Key Identifier: keyid:0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:2d:93:0f:0e:47:78:b5:ee:6f:f0:6d:ed:c6:69:e0:31:02: aa:c3:aa:15:e5:1c:68:bf:17:28:41:35:dc:9a:f4:59:6e:07: ba:1c:53:89:dd:97:65:08:ed:16:5d:9d:8d:20:8e:ca:a8:54: 3b:84:08:27:21:fb:a9:a9:3f:d2:b2:f9:e6:41:26:4d:06:e0: 4f:bc:c7:b2:66:0b:72:0f:4d:61:0b:6e:35:54:99:3d:af:3d: f4:3e:2f:60:ee:d6:ef:4d:28:3c:bb:ac:10:a7:7a:01:bf:0e: cf:3d:1d:cc:59:ae:43:61:0a:05:06:7c:21:c0:cf:c1:19:fc: 3d:23:11:fd:f1:08:cf:6e:a8:11:1b:47:71:2e:59:45:59:d3: af:40:e2:67:9f:5d:8d:e8:fd:a4:bb:a2:be:10:c8:67:97:f4: d8:8d:aa:ad:d8:9f:08:d9:5b:6f:8c:c8:cc:ad:92:e6:0f:dc: b4:1a:5b:10:9b:62:38:5b:fd:a7:1e:ef:8a:cb:76:80:86:a6: 6c:66:e3:da:57:c6:50:20:3b:19:6c:ca:6b:4e:cd:62:ad:77: 24:95:9c:18:6d:ab:0d:a5:a6:12:79:ef:4e:bc:8b:ee:5d:53: f5:26:25:02:98:4e:a3:74:d4:db:46:0d:1a:51:73:61:4f:1b: 17:ea:3f:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBREMxMTAvBgNVBAUTKDBDNEMxNzIyOUM2QUI2N0Y1NDNGRUM5QzREMDNFNUZF RTRFRDJGRjYwHhcNMjQxMTIxMDE0NTU5WhcNMjQxMTI4MDE0NTU5WjAYMRYwFAYD VQQDEw02NzNlOTBkNy05NzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv04m7jmZbwlMB8PrKab4GUYoIOW69Ba+RoSeggee66KjX9QRr3RCcY6/S5Qg CGOvjI82vqqgNuOHHW+7KYT+d9uzeX60TiD/kjwHgmhXUKCrPj9Q2aa5vy0WPGdT vOOrP0endhi6BW7Aq/7flWBGwXENt2bP8JH0nebk525lppsWhhrG7z/POoJ/TpBX H212vi8XI8othDzXDqJG0byGMOu8aGkH5ZvPehvi+atBvDvJFPy+MkrTUQ0EY+38 GYllG71OYn2tccM++qXQJNwqp4H2b71UupOKjOPah80HOOssJjj8BiazpOO1q1wt exN1DPt0maG8GKZX4o+0zdoKlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2CWjpt h4MapQCYokBI9+0xbqWdMB8GA1UdIwQYMBaAFAxMFyKcarZ/VD/snE0D5f7k7S/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0FEQy9GNTc1ODlFMjJE QjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRuOVVQLXljVFFQbF91VHRM X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFd1hJcHhxdG45VVAteWNUUVBsX3VUdExfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0FEQy9GNTc1ODlFMjJEQjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRu OVVQLXljVFFQbF91VHRMX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBLZMPDkd4te5v8G3txmngMQKqw6oV5RxovxcoQTXcmvRZbge6HFOJ 3ZdlCO0WXZ2NII7KqFQ7hAgnIfupqT/SsvnmQSZNBuBPvMeyZgtyD01hC241VJk9 rz30Pi9g7tbvTSg8u6wQp3oBvw7PPR3MWa5DYQoFBnwhwM/BGfw9IxH98QjPbqgR G0dxLllFWdOvQOJnn12N6P2ku6K+EMhnl/TYjaqt2J8I2VtvjMjMrZLmD9y0GlsQ m2I4W/2nHu+Ky3aAhqZsZuPaV8ZQIDsZbMprTs1irXcklZwYbasNpaYSee9OvIvu XVP1JiUCmE6jdNTbRg0aUXNhTxsX6j+O -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:38 2024 by rpki-client on console-ams.rpki-client.org