$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft File: ApuM4ulfRYWEYukHCxtRU6yRP-g.mft (raw, json) Hash identifier: /CI82fr7X/JWhfRZRmPhbAAWxXs8kl4N4ch0cpzWZTA= Subject key identifier: AA:E7:AD:39:01:CA:23:25:4F:C7:14:15:F2:59:7E:24:76:4C:A9:F5 Authority key identifier: 02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 Certificate issuer: /CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Certificate serial: 06C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft Manifest number: 06B4 Signing time: Sun 24 Nov 2024 21:37:18 +0000 Manifest this update: Sun 24 Nov 2024 21:37:18 +0000 Manifest next update: Sun 01 Dec 2024 21:37:18 +0000 Files and hashes: 1: ApuM4ulfRYWEYukHCxtRU6yRP-g.crl (hash: vOImBxPrX1afMs2Hclc4FJ5/Z7k0UWOZJoK1cLLW6hs=) 2: AA3A944A27EA11ECB1EBEA82C4F9AE02.roa (hash: H0CS/wDvj/j+OGq6CMvz4MaVZLlE1z8NE8iE80Ojvas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D67/serialNumber=029B8CE2E95F45858462E9070B1B5153AC913FE8 Validity Not Before: Nov 24 21:37:18 2024 GMT Not After : Dec 1 21:37:18 2024 GMT Subject: CN=67439c8e-68dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:17:7b:91:8b:18:16:20:45:3f:e1:ec:40:34: 25:14:83:49:42:a5:b3:e4:de:02:10:45:99:05:0f: ac:89:8d:df:f7:f2:2d:08:b5:cc:d1:6c:f3:af:e5: ef:4e:c0:ce:95:8c:f7:1b:a0:fb:7f:1e:b4:fc:cb: 70:fa:e4:5a:d1:dc:4b:d0:0c:26:0b:ee:4d:b7:3b: c8:6a:4a:fa:fd:ec:9e:3e:6f:d4:b6:f9:a7:5c:af: e8:e5:3d:26:38:1f:01:d3:b4:2b:8b:e6:70:0d:f3: b9:70:4c:d4:86:ba:06:3f:3b:74:fd:59:ca:9d:89: 7b:ee:eb:d8:d7:54:b0:74:0c:eb:ce:cf:f5:52:93: b0:a4:aa:06:10:dd:d8:0d:0d:a9:55:5e:d8:eb:c0: 39:00:45:f7:b3:43:19:63:6a:57:3e:2c:0d:c7:bf: b0:ef:91:e5:87:06:00:00:7a:4a:25:a0:1b:13:ab: 29:e2:5f:e5:97:da:08:e0:3a:b8:83:44:aa:71:3d: 4c:ba:63:ce:2e:5c:34:53:4c:94:57:83:85:c0:34: 44:4d:15:29:84:79:bc:6c:a9:c9:c5:5d:e1:40:2f: 2c:38:50:cf:fc:98:5f:2d:a9:3d:d2:15:7f:0b:61: 6a:8f:8b:6b:0d:3e:63:0b:a0:c6:17:a6:31:62:3a: fa:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E7:AD:39:01:CA:23:25:4F:C7:14:15:F2:59:7E:24:76:4C:A9:F5 X509v3 Authority Key Identifier: keyid:02:9B:8C:E2:E9:5F:45:85:84:62:E9:07:0B:1B:51:53:AC:91:3F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ApuM4ulfRYWEYukHCxtRU6yRP-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/60286638442A11EB9599AD38C4F9AE02/ApuM4ulfRYWEYukHCxtRU6yRP-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e7:2f:1a:61:93:e2:ed:45:2d:3c:b2:06:ba:65:ae:90:b2: 9e:fd:09:f1:41:c8:92:d4:91:09:1c:d5:7f:88:d2:f3:61:df: b7:b6:70:1f:fd:d5:62:c2:62:5f:39:8c:dc:df:16:d5:c2:a1: d0:e9:c2:fd:af:c9:74:30:59:e2:16:00:a6:52:15:75:3e:aa: 0f:21:7c:82:2c:62:5b:4f:b5:e2:e4:4b:19:5f:99:59:19:79: c6:30:54:55:fb:fa:df:3a:30:40:53:7d:fd:77:9e:a9:65:b5: 92:d9:2b:21:69:ae:13:81:da:36:99:0d:08:cb:12:6a:4a:1a: 0e:6a:1e:e3:fe:5d:65:5b:4e:33:eb:9f:f2:ae:cd:73:2b:82: 02:79:6c:dc:3c:fd:1f:0c:3e:4a:15:16:63:0f:65:b1:b2:72: d5:98:ea:ec:13:96:9c:1e:e1:0f:46:b9:8e:35:5a:d1:2b:80: aa:8a:83:24:31:b2:07:47:07:d9:23:83:8f:3a:f8:b1:b8:89: 60:9f:50:c9:ec:19:26:06:1a:50:60:b5:d4:19:7d:56:77:0c: 12:de:a5:a9:ae:4e:06:75:06:73:2c:3f:ae:f3:c3:41:a6:9c: d5:49:73:12:5f:ab:27:94:8d:33:7c:ab:d3:29:38:ee:37:a0: df:3e:c6:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdENjcxMTAvBgNVBAUTKDAyOUI4Q0UyRTk1RjQ1ODU4NDYyRTkwNzBCMUI1MTUz QUM5MTNGRTgwHhcNMjQxMTI0MjEzNzE4WhcNMjQxMjAxMjEzNzE4WjAYMRYwFAYD VQQDEw02NzQzOWM4ZS02OGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hd7kYsYFiBFP+HsQDQlFINJQqWz5N4CEEWZBQ+siY3f9/ItCLXM0Wzzr+Xv TsDOlYz3G6D7fx60/Mtw+uRa0dxL0AwmC+5NtzvIakr6/eyePm/UtvmnXK/o5T0m OB8B07Qri+ZwDfO5cEzUhroGPzt0/VnKnYl77uvY11SwdAzrzs/1UpOwpKoGEN3Y DQ2pVV7Y68A5AEX3s0MZY2pXPiwNx7+w75HlhwYAAHpKJaAbE6sp4l/ll9oI4Dq4 g0SqcT1MumPOLlw0U0yUV4OFwDRETRUphHm8bKnJxV3hQC8sOFDP/JhfLak90hV/ C2Fqj4trDT5jC6DGF6YxYjr6PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrnrTkB yiMlT8cUFfJZfiR2TKn1MB8GA1UdIwQYMBaAFAKbjOLpX0WFhGLpBwsbUVOskT/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q2Ny82MDI4NjYzODQ0 MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZV0VZdWtIQ3h0UlU2eVJQ LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FwdU00dWxmUllXRVl1a0hDeHRSVTZ5UlAtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q2Ny82MDI4NjYzODQ0MkExMUVCOTU5OUFEMzhDNEY5QUUwMi9BcHVNNHVsZlJZ V0VZdWtIQ3h0UlU2eVJQLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG5y8aYZPi7UUtPLIGumWukLKe/QnxQciS1JEJHNV/iNLzYd+3tnAf /dViwmJfOYzc3xbVwqHQ6cL9r8l0MFniFgCmUhV1PqoPIXyCLGJbT7Xi5EsZX5lZ GXnGMFRV+/rfOjBAU339d56pZbWS2Sshaa4Tgdo2mQ0IyxJqShoOah7j/l1lW04z 65/yrs1zK4ICeWzcPP0fDD5KFRZjD2WxsnLVmOrsE5acHuEPRrmONVrRK4CqioMk MbIHRwfZI4OPOvixuIlgn1DJ7BkmBhpQYLXUGX1WdwwS3qWprk4GdQZzLD+u88NB ppzVSXMSX6snlI0zfKvTKTjuN6DfPsb4 -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org