$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft File: VKpPIROg0aG37lUSvq5TcextpCE.mft (raw, json) Hash identifier: DAawryFGL6z4eBDn4Srpqv8I8HrcLzDRUGkS04csg6E= Subject key identifier: 5C:EB:E7:E3:8C:78:CC:EB:74:00:BA:41:F2:FB:71:70:89:E2:87:87 Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft Manifest number: 74 Signing time: Sat 23 Nov 2024 04:52:12 +0000 Manifest this update: Sat 23 Nov 2024 04:52:12 +0000 Manifest next update: Sat 30 Nov 2024 04:52:12 +0000 Files and hashes: 1: VKpPIROg0aG37lUSvq5TcextpCE.crl (hash: jneoQTlRPbb9q/2+bqKnMWhYnlE6FEL4p0Y4CewKxJo=) 2: E135D94C04A511EF84B5D783C4F9AE02.roa (hash: qeKpax6tWFd6dXRCCgHpRrEIFHUWf08cbXJ0Npcf3Z0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: Nov 23 04:52:12 2024 GMT Not After : Nov 30 04:52:12 2024 GMT Subject: CN=67415f7c-3fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:39:9b:91:64:82:94:7c:a0:e6:a1:58:d9:52: 6a:a5:60:ab:23:96:4f:7a:f6:e1:2f:9f:d2:75:2c: 19:14:b1:ee:1a:e1:77:24:1d:4e:de:68:f2:2b:66: fe:de:8f:ce:01:ff:74:96:51:53:b3:7b:30:b1:e4: a1:d1:71:d0:cf:27:0e:97:c1:9e:12:87:49:58:35: 0e:3e:df:2b:71:b4:17:eb:b8:9c:a4:c8:c7:7f:f7: 7f:92:0d:70:e6:7d:ed:41:93:94:d2:6e:95:0b:de: f5:9e:da:fa:60:44:43:5a:38:ae:38:b4:d6:4d:31: 8e:9c:a6:26:a8:97:7d:4d:3e:07:d6:27:a2:23:40: 44:d5:71:47:bb:32:ca:f2:e4:68:75:ee:5a:8d:ab: 30:cf:03:58:95:8f:02:ce:85:52:a0:52:90:04:65: 30:32:94:dc:9a:88:83:bd:29:aa:64:78:bd:17:52: 17:2d:2c:c8:73:22:73:db:20:51:23:8c:8d:25:28: 4f:29:f4:bc:6f:7f:76:49:cf:d7:38:4e:a1:20:2a: f2:dd:c4:d8:c2:98:e9:da:57:48:c4:bf:e7:fc:21: 37:ea:f0:a9:80:27:70:3b:cd:e3:b8:18:76:ee:1e: f7:10:00:8a:5c:63:27:91:89:9e:48:3b:2b:90:58: 6d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:EB:E7:E3:8C:78:CC:EB:74:00:BA:41:F2:FB:71:70:89:E2:87:87 X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:99:5a:3e:b7:69:e0:46:7d:bb:1c:42:99:2e:b6:e0:21:4a: d7:36:0b:f3:d7:ab:d7:e3:32:9e:20:06:fe:20:93:21:9c:79: 85:1d:a6:85:fc:ca:0f:ed:73:ea:f6:5a:cc:a1:78:b2:eb:ce: 59:5c:9f:90:26:0c:c7:bb:dc:f2:57:41:ce:64:bf:1e:14:f4: 00:c2:1c:ac:ab:c6:87:ae:a3:2c:de:97:ba:fc:b4:95:04:0b: 67:0d:c6:3d:85:4c:44:67:50:1e:b2:74:a4:1b:7c:66:a4:c9: f7:f0:28:74:5b:33:6f:71:4e:b3:2e:64:82:b7:67:8d:18:00: b1:36:76:ea:7b:d9:9b:36:2d:6e:9c:1c:4f:55:9c:6e:20:5c: 17:7c:8c:6e:97:da:e0:b1:27:57:e3:1e:af:56:9d:2e:63:9b: c4:63:a2:c2:32:43:cf:66:c0:d7:53:77:1f:cd:f0:bd:f3:95: 61:4c:fd:f4:07:ec:63:23:d8:58:d4:da:7d:3f:37:11:d8:50: b1:cd:5a:29:73:ab:0a:7f:ad:01:6a:7d:dd:8d:01:96:a4:fe: e3:01:b2:96:fd:81:26:c7:e7:ae:f7:fb:ec:79:9f:aa:6a:c3: ff:3f:33:b1:f4:39:07:ff:c3:9e:20:39:e2:47:0d:d7:29:9f: f8:a0:84:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTU1NjExMC8GA1UEBRMoNTRBQTRGMjExM0EwRDFBMUI3RUU1NTEyQkVBRTUzNzFF QzZEQTQyMTAeFw0yNDExMjMwNDUyMTJaFw0yNDExMzAwNDUyMTJaMBgxFjAUBgNV BAMTDTY3NDE1ZjdjLTNmZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaOZuRZIKUfKDmoVjZUmqlYKsjlk969uEvn9J1LBkUse4a4XckHU7eaPIrZv7e j84B/3SWUVOzezCx5KHRcdDPJw6XwZ4Sh0lYNQ4+3ytxtBfruJykyMd/93+SDXDm fe1Bk5TSbpUL3vWe2vpgRENaOK44tNZNMY6cpiaol31NPgfWJ6IjQETVcUe7Msry 5Gh17lqNqzDPA1iVjwLOhVKgUpAEZTAylNyaiIO9KapkeL0XUhctLMhzInPbIFEj jI0lKE8p9Lxvf3ZJz9c4TqEgKvLdxNjCmOnaV0jEv+f8ITfq8KmAJ3A7zeO4GHbu HvcQAIpcYyeRiZ5IOyuQWG1JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXOvn44x4 zOt0ALpB8vtxcInih4cwHwYDVR0jBBgwFoAUVKpPIROg0aG37lUSvq5TcextpCEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NTU2L0IxNDVEMDJFMDE3 QzExRUZCODY0MzI1QUM0RjlBRTAyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBD RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVktwUElST2cwYUczN2xVU3ZxNVRjZXh0cENFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 NTU2L0IxNDVEMDJFMDE3QzExRUZCODY0MzI1QUM0RjlBRTAyL1ZLcFBJUk9nMGFH MzdsVVN2cTVUY2V4dHBDRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJWZWj63aeBGfbscQpkutuAhStc2C/PXq9fjMp4gBv4gkyGceYUdpoX8 yg/tc+r2WsyheLLrzllcn5AmDMe73PJXQc5kvx4U9ADCHKyrxoeuoyzel7r8tJUE C2cNxj2FTERnUB6ydKQbfGakyffwKHRbM29xTrMuZIK3Z40YALE2dup72Zs2LW6c HE9VnG4gXBd8jG6X2uCxJ1fjHq9WnS5jm8RjosIyQ89mwNdTdx/N8L3zlWFM/fQH 7GMj2FjU2n0/NxHYULHNWilzqwp/rQFqfd2NAZak/uMBspb9gSbH5673++x5n6pq w/8/M7H0OQf/w54gOeJHDdcpn/ighLc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org