$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft File: chHmi1fNzfTtqDzwtGI7dpP2NDo.mft (raw, json) Hash identifier: cxTKj/XfKYtUC63G7PKcmIVTXto+vZSixvlsnpV+61Y= Subject key identifier: AD:30:12:6F:11:AE:72:A0:0C:34:6F:C9:B5:A3:43:94:06:13:5C:FB Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft Manifest number: 0135 Signing time: Sat 23 Nov 2024 02:46:28 +0000 Manifest this update: Sat 23 Nov 2024 02:46:28 +0000 Manifest next update: Sat 30 Nov 2024 02:46:28 +0000 Files and hashes: 1: chHmi1fNzfTtqDzwtGI7dpP2NDo.crl (hash: 9Vs9LVcHoVqc1+ULJylOF47hHN/GPyNMYuQMNz0xecc=) 2: 3FA4288CD29B11ED88E16742C4F9AE02.roa (hash: IKV0Cgq2EuODSbPKQtSmxiMFKVMR6YDH69S9tC4UdAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Nov 23 02:46:28 2024 GMT Not After : Nov 30 02:46:28 2024 GMT Subject: CN=67414204-e4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ce:88:d3:58:50:1d:7b:c7:44:dd:48:0c:63: 4e:c6:c5:9e:f8:d5:9a:fa:ff:3d:79:59:f6:7f:b8: e8:25:5c:9f:3e:a8:e6:3f:a5:14:27:6c:8c:b4:22: 2b:a0:21:c2:ae:af:fe:6c:79:b1:a7:85:54:6a:f7: 0b:73:05:54:a1:27:8f:a8:5a:17:e4:98:16:e1:3d: 2d:28:53:9b:96:f1:13:f2:78:1c:46:43:63:69:20: b6:c9:f3:7e:e6:c4:d2:01:d5:19:a1:a0:3a:2f:6e: 11:b7:22:7c:7f:97:11:18:ce:18:e8:49:e1:46:e8: b4:54:f4:f5:54:e0:7b:5b:38:7d:8e:38:00:0e:b3: f6:b1:1c:fe:4a:f4:85:76:04:79:99:49:4f:dc:76: 66:3f:ca:36:2e:ae:38:05:0f:d0:75:f8:6b:e3:12: db:8e:91:32:2b:c0:a5:4e:23:58:34:45:52:38:c3: fc:a4:ed:07:cc:2a:4d:7c:c6:4b:30:bf:93:32:e2: ba:47:6f:58:d5:ef:0c:ad:24:29:d7:78:d7:1d:6a: fc:89:95:c4:01:1a:84:11:2c:14:3a:db:1f:f5:dc: 02:ed:5e:e7:e4:a9:46:8b:d2:57:f8:02:21:bd:0e: 2d:30:8e:96:4b:a4:d1:4d:70:41:84:bf:1b:dd:d9: 8e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:30:12:6F:11:AE:72:A0:0C:34:6F:C9:B5:A3:43:94:06:13:5C:FB X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:07:5c:87:57:cb:55:ca:3a:f2:24:43:23:5a:cc:6d:af:db: 4d:ae:38:d1:34:01:ef:60:0f:ea:83:ec:a8:2d:30:82:c5:4e: 5d:44:5e:19:dc:22:5e:d4:31:fc:b6:4d:40:b0:b5:27:65:d5: a0:92:94:ae:7c:95:47:e8:35:d0:17:73:10:56:fa:d2:da:fb: a4:8a:39:bc:08:18:b5:7e:de:5a:10:70:27:ec:40:26:db:5c: 65:d2:ed:79:61:d4:f6:ab:df:24:11:5f:7c:e1:1c:40:64:c3: c7:b7:76:f3:a9:ed:e8:50:a6:fb:53:65:cf:f8:b9:97:7a:d9: f4:a6:e7:55:91:5b:bc:00:88:1e:32:7d:1e:61:4c:b2:c4:af: 0e:df:7b:21:df:69:76:34:5e:5c:a3:04:58:8f:34:39:3d:cf: 48:4b:c3:78:0c:8a:1f:4b:82:e0:8f:21:8f:5a:74:4c:44:a3: 42:0f:ca:19:2d:2d:07:bc:6a:09:8e:25:86:68:36:fa:f5:46: 23:0e:3d:22:97:e8:10:b3:2c:51:19:8b:7a:a2:d0:9e:63:fe: 1e:96:32:b2:63:e8:3a:0f:2b:de:e6:96:3f:de:87:49:f0:ee: 79:de:94:f9:2a:64:d6:47:f1:8b:b7:ea:17:2c:66:cc:e6:e8: ea:3d:5a:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjQxMTIzMDI0NjI4WhcNMjQxMTMwMDI0NjI4WjAYMRYwFAYD VQQDEw02NzQxNDIwNC1lNGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw86I01hQHXvHRN1IDGNOxsWe+NWa+v89eVn2f7joJVyfPqjmP6UUJ2yMtCIr oCHCrq/+bHmxp4VUavcLcwVUoSePqFoX5JgW4T0tKFOblvET8ngcRkNjaSC2yfN+ 5sTSAdUZoaA6L24RtyJ8f5cRGM4Y6EnhRui0VPT1VOB7Wzh9jjgADrP2sRz+SvSF dgR5mUlP3HZmP8o2Lq44BQ/Qdfhr4xLbjpEyK8ClTiNYNEVSOMP8pO0HzCpNfMZL ML+TMuK6R29Y1e8MrSQp13jXHWr8iZXEARqEESwUOtsf9dwC7V7n5KlGi9JX+AIh vQ4tMI6WS6TRTXBBhL8b3dmOQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0wEm8R rnKgDDRvybWjQ5QGE1z7MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpm VHRxRHp3dEdJN2RwUDJORG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiB1yHV8tVyjryJEMjWsxtr9tNrjjRNAHvYA/qg+yoLTCCxU5dRF4Z 3CJe1DH8tk1AsLUnZdWgkpSufJVH6DXQF3MQVvrS2vukijm8CBi1ft5aEHAn7EAm 21xl0u15YdT2q98kEV984RxAZMPHt3bzqe3oUKb7U2XP+LmXetn0pudVkVu8AIge Mn0eYUyyxK8O33sh32l2NF5cowRYjzQ5Pc9IS8N4DIofS4LgjyGPWnRMRKNCD8oZ LS0HvGoJjiWGaDb69UYjDj0il+gQsyxRGYt6otCeY/4eljKyY+g6Dyve5pY/3odJ 8O553pT5KmTWR/GLt+oXLGbM5ujqPVpF -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org