$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: JRkGiUYdCXssLX780lqLkytNNhKir3YGvKYoPz4TuZg= Subject key identifier: C5:94:B6:2C:F9:59:BE:FC:3B:E0:12:AC:FA:B1:0D:D4:07:FB:E5:16 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: 58 Signing time: Thu 21 Nov 2024 05:12:28 +0000 Manifest this update: Thu 21 Nov 2024 05:12:27 +0000 Manifest next update: Thu 28 Nov 2024 05:12:27 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: /3VsPvvOyb5Bk8PI4UuKpuIMkhPOQwtb8vmY5CwJrxM=) 2: D055D382225711EF975F6747C4F9AE02.roa (hash: vSUF8UhOaMH+V+SNryLP4jUhOyX0+t5vpdmlCLCB3Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Nov 21 05:12:27 2024 GMT Not After : Nov 28 05:12:27 2024 GMT Subject: CN=673ec13b-61cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:72:0d:53:af:76:b6:6f:5d:05:61:0e:b9:86: 1a:76:b8:0f:5a:4e:d2:a6:f4:a2:f8:a7:af:4d:ee: 1a:c9:a8:40:44:b0:0c:9a:e7:94:f7:eb:a8:79:65: e8:4c:74:73:23:5c:7c:80:fe:b3:48:bd:d7:c5:13: da:d8:39:bc:0f:41:c9:82:e5:f4:94:77:3c:40:d5: 38:83:5f:ec:43:6b:8a:e8:b9:84:fa:97:1d:f8:b7: 6b:8b:82:a3:40:24:81:4f:c9:80:3c:63:0a:51:95: 0a:4d:36:f4:29:a9:de:0f:81:9b:7b:41:55:17:0e: f9:d9:de:a4:bd:4d:53:94:22:b9:4c:5f:68:6e:34: 6c:8f:dc:79:f8:08:00:29:51:12:9e:78:54:98:d0: b1:a2:0b:63:cb:22:ad:ce:86:3e:77:1a:da:7f:ca: 25:87:60:bb:ce:22:12:85:4d:ca:7e:fb:25:46:57: a9:cd:c2:60:5d:1e:4b:ee:ec:ad:e0:17:e4:2f:fe: 5a:8e:6c:c7:a0:cc:01:09:d3:4f:19:f1:c6:b5:57: ed:8f:63:5e:00:5d:ad:a5:08:d3:9c:a1:03:bb:c1: e8:5f:82:0e:b9:60:aa:8d:fe:ef:b2:ed:25:88:2d: c6:69:77:23:39:a0:21:a2:97:74:e5:f5:ec:ee:92: d3:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:94:B6:2C:F9:59:BE:FC:3B:E0:12:AC:FA:B1:0D:D4:07:FB:E5:16 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:88:a9:d6:d7:2a:42:4a:92:09:6b:f7:92:1e:8e:1d:47:10: 99:3e:1d:9a:4c:95:c4:6c:08:fb:12:5c:90:f0:07:a5:28:9e: 32:66:e0:c7:b2:70:07:79:0b:9a:d3:a1:e7:9a:46:1f:a2:e7: 09:a5:fd:85:3e:30:79:08:f1:3d:63:80:61:71:cb:9d:b0:4e: c0:14:a4:8d:c9:cb:66:5d:5d:e8:cb:e1:0b:64:dc:9f:08:7f: 1b:62:a0:ae:24:69:a2:a7:bf:fa:13:ca:a0:f7:2e:99:34:19: 53:3f:c6:a7:87:99:32:e2:b7:53:4e:dd:f5:1a:22:2d:51:2e: fb:32:59:57:43:e3:78:23:91:ba:86:2e:ef:21:8a:98:c0:93: 84:20:06:21:f9:19:f4:02:93:3d:b5:63:0f:be:93:31:13:67: 59:c9:1f:f5:3b:9f:94:8e:18:f9:2e:39:e4:03:79:e4:2f:62: ad:6a:c5:81:55:41:f0:b8:73:cd:1a:05:cb:59:24:0c:52:0c: 37:ef:46:90:76:c4:b9:e2:2c:37:ac:9a:cd:fc:6e:bc:b1:77: ab:0c:33:31:b9:8b:66:6d:6e:dc:a8:0d:ff:fa:cb:a8:ce:b4: c9:49:dc:ec:89:36:d6:ed:80:0d:c0:bf:0f:16:a3:8b:15:ba: ec:49:6b:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0NCNTExMC8GA1UEBRMoOEFFNUFFRUYyQTkxRjNERjg2NjAzRURDNTRGRTg0QzVC QjU3OUMxNTAeFw0yNDExMjEwNTEyMjdaFw0yNDExMjgwNTEyMjdaMBgxFjAUBgNV BAMTDTY3M2VjMTNiLTYxY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrcg1Tr3a2b10FYQ65hhp2uA9aTtKm9KL4p69N7hrJqEBEsAya55T366h5ZehM dHMjXHyA/rNIvdfFE9rYObwPQcmC5fSUdzxA1TiDX+xDa4rouYT6lx34t2uLgqNA JIFPyYA8YwpRlQpNNvQpqd4PgZt7QVUXDvnZ3qS9TVOUIrlMX2huNGyP3Hn4CAAp URKeeFSY0LGiC2PLIq3Ohj53Gtp/yiWHYLvOIhKFTcp++yVGV6nNwmBdHkvu7K3g F+Qv/lqObMegzAEJ008Z8ca1V+2PY14AXa2lCNOcoQO7wehfgg65YKqN/u+y7SWI LcZpdyM5oCGil3Tl9ezuktMrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxZS2LPlZ vvw74BKs+rEN1Af75RYwHwYDVR0jBBgwFoAUiuWu7yqR89+GYD7cVP6ExbtXnBUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Q0I1L0VGRDQ3RDU0MjI1 NjExRUZCNzU2MUY0NkM0RjlBRTAyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5C VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaXVXdTd5cVI4OS1HWUQ3Y1ZQNkV4YnRYbkJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 Q0I1L0VGRDQ3RDU0MjI1NjExRUZCNzU2MUY0NkM0RjlBRTAyL2l1V3U3eXFSODkt R1lEN2NWUDZFeGJ0WG5CVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADeIqdbXKkJKkglr95Iejh1HEJk+HZpMlcRsCPsSXJDwB6UonjJm4Mey cAd5C5rToeeaRh+i5wml/YU+MHkI8T1jgGFxy52wTsAUpI3Jy2ZdXejL4Qtk3J8I fxtioK4kaaKnv/oTyqD3Lpk0GVM/xqeHmTLit1NO3fUaIi1RLvsyWVdD43gjkbqG Lu8hipjAk4QgBiH5GfQCkz21Yw++kzETZ1nJH/U7n5SOGPkuOeQDeeQvYq1qxYFV QfC4c80aBctZJAxSDDfvRpB2xLniLDesms38bryxd6sMMzG5i2ZtbtyoDf/6y6jO tMlJ3OyJNtbtgA3Avw8Wo4sVuuxJa1E= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org