$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: Dhm15hpxf4GKGxT/uhA+BfLgRJzDpsw8yb74/6lj4P8= Subject key identifier: BE:09:FD:8F:10:E9:E7:17:FB:8C:91:6B:37:6C:6C:D3:DF:13:CF:29 Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0178 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 0175 Signing time: Sat 23 Nov 2024 02:10:51 +0000 Manifest this update: Sat 23 Nov 2024 02:10:50 +0000 Manifest next update: Sat 30 Nov 2024 02:10:50 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: 5UebN0pJz27lSJrZJQnmeT/4m8wBamZ+Th6QJDobihk=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: YOFyOlTHwQt80VE+lXNOUMnksRbADb71CcqhR7ykXMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 376 (0x178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: Nov 23 02:10:50 2024 GMT Not After : Nov 30 02:10:50 2024 GMT Subject: CN=674139aa-e0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:68:45:27:ae:a3:02:97:b2:20:96:f5:6d:7f: 15:ef:be:8a:2c:a7:3e:63:c9:84:47:e5:b3:22:c4: 7c:26:e3:a4:75:2a:cc:8b:8b:db:0f:6c:3f:66:23: 5b:e6:65:6e:a3:48:ab:27:5d:4c:53:67:81:35:09: bd:18:db:e6:fe:23:bb:e4:49:92:5f:4b:90:3d:02: 7d:7d:32:f0:3b:fa:59:4a:1d:8f:60:9c:37:ae:ea: 40:2a:8e:5e:df:c5:c8:e9:b2:49:91:7e:cd:24:ff: 7b:b2:5b:49:3a:32:d8:c6:b1:f9:10:00:62:bb:62: 13:6b:0f:f1:66:be:33:dc:77:29:84:60:72:1f:68: 65:4b:5b:84:ec:d9:dd:b1:e2:2d:e8:47:8e:96:3e: 4f:6f:7b:fb:a3:71:d7:81:2a:fa:8f:d7:18:89:61: 3f:6a:50:3d:04:c4:d4:b4:c6:6d:6a:ee:9a:8f:62: 94:f9:aa:13:52:a0:ea:85:2f:88:ba:67:22:cf:f6: 39:9f:ce:f2:f1:a2:56:6b:2c:ef:fb:1b:8e:de:3b: e6:eb:a8:a5:7b:ac:9c:de:4e:bd:1d:85:1e:a3:52: 2c:a9:be:30:d3:cb:a0:6e:6c:59:82:01:7c:1c:05: e3:97:9b:c3:a6:03:2d:b2:0c:2d:bd:e4:40:65:82: 41:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:09:FD:8F:10:E9:E7:17:FB:8C:91:6B:37:6C:6C:D3:DF:13:CF:29 X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:14:fc:07:96:bb:13:7a:f1:71:f0:ec:20:bb:51:f8:14:63: 0d:3f:b9:d5:cb:83:a9:2a:85:12:55:27:99:94:16:13:51:82: 83:8e:9f:79:03:69:ae:4a:7e:e7:20:5f:b3:fd:3e:cc:3a:6f: 75:34:eb:0e:fe:7c:bf:56:2a:85:36:28:4b:0a:db:4d:1e:7d: 99:5a:2d:c0:cf:7a:0b:86:e2:25:73:65:49:7e:d6:0a:56:25: b3:86:64:4f:62:03:52:b6:11:f5:b7:ca:0b:e5:8b:bc:10:a5: e7:8a:7d:fc:95:13:98:cd:38:88:60:0b:8d:67:df:6d:0b:20: 79:30:e3:fb:e5:e4:b5:50:07:07:67:97:b5:56:34:6d:15:87: 82:37:44:09:bc:3d:2a:e2:e1:b4:bc:66:22:66:19:05:69:a9: 43:48:4b:80:eb:df:e5:49:d9:eb:08:c0:b6:9c:6d:32:18:42: f6:01:5a:3f:27:c1:f6:6d:8f:e1:54:4e:4b:31:f7:d8:6c:3f: c1:a7:6a:65:41:1f:10:cb:5a:0c:32:08:bd:82:9c:5c:1b:a5: 27:58:f9:2c:33:25:61:52:00:8e:ae:cf:da:f1:ca:99:6a:dc: 79:16:7a:c3:d2:24:3a:13:ae:2c:5f:5c:6a:0a:86:65:59:8f: 22:63:8b:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjQxMTIzMDIxMDUwWhcNMjQxMTMwMDIxMDUwWjAYMRYwFAYD VQQDEw02NzQxMzlhYS1lMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmhFJ66jApeyIJb1bX8V776KLKc+Y8mER+WzIsR8JuOkdSrMi4vbD2w/ZiNb 5mVuo0irJ11MU2eBNQm9GNvm/iO75EmSX0uQPQJ9fTLwO/pZSh2PYJw3rupAKo5e 38XI6bJJkX7NJP97sltJOjLYxrH5EABiu2ITaw/xZr4z3HcphGByH2hlS1uE7Nnd seIt6EeOlj5Pb3v7o3HXgSr6j9cYiWE/alA9BMTUtMZtau6aj2KU+aoTUqDqhS+I umciz/Y5n87y8aJWayzv+xuO3jvm66ile6yc3k69HYUeo1Isqb4w08ugbmxZggF8 HAXjl5vDpgMtsgwtveRAZYJBiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4J/Y8Q 6ecX+4yRazdsbNPfE88pMB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzFPwHlrsTevFx8Owgu1H4FGMNP7nVy4OpKoUSVSeZlBYTUYKDjp95 A2muSn7nIF+z/T7MOm91NOsO/ny/ViqFNihLCttNHn2ZWi3Az3oLhuIlc2VJftYK ViWzhmRPYgNSthH1t8oL5Yu8EKXnin38lROYzTiIYAuNZ99tCyB5MOP75eS1UAcH Z5e1VjRtFYeCN0QJvD0q4uG0vGYiZhkFaalDSEuA69/lSdnrCMC2nG0yGEL2AVo/ J8H2bY/hVE5LMffYbD/Bp2plQR8Qy1oMMgi9gpxcG6UnWPksMyVhUgCOrs/a8cqZ atx5FnrD0iQ6E64sX1xqCoZlWY8iY4vk -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org