$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: lQIzz6gyFceiPw3KFTKd6nwLdWBNrO5NHB1HtSsVTt0= Subject key identifier: 63:F4:91:A3:DF:54:DA:00:4F:44:59:0D:BF:50:CB:E9:8C:0C:7B:5A Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 58 Signing time: Thu 21 Nov 2024 05:12:25 +0000 Manifest this update: Thu 21 Nov 2024 05:12:25 +0000 Manifest next update: Thu 28 Nov 2024 05:12:25 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: KeTQF/qNrESWT80Tgy9jR5srWSnfV1VNQF0xUhbZwzc=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: 8wJfVmwicvQp5ybkXyvh/U8tiFP/mOR8lTRB18DXQ0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Nov 21 05:12:25 2024 GMT Not After : Nov 28 05:12:25 2024 GMT Subject: CN=673ec139-69bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:df:fc:cc:25:7f:85:92:69:54:2d:8e:37: f6:7b:f5:03:dd:0f:68:53:93:0f:da:fc:c6:1a:9f: fd:d6:98:b9:6b:e0:e4:07:1a:8c:f6:71:50:cd:6e: 10:e2:41:f7:a8:af:81:ce:6c:e6:a6:64:c6:6d:14: 75:50:30:1d:36:e4:c2:c8:c3:94:9e:d4:08:ce:c0: 22:c8:46:dd:4a:02:f2:38:73:48:5e:18:94:a9:35: ac:23:b1:33:ff:39:0c:07:b8:b5:d7:9c:0e:6d:19: dc:d3:6f:32:c1:88:75:9f:c7:1c:6f:bb:28:ea:cf: d6:51:95:5c:79:c2:7d:18:f8:74:51:fa:04:2c:d1: b6:80:40:a2:fc:0e:07:58:dc:de:28:8c:32:da:16: ab:64:d4:d7:28:2b:b2:4b:0e:ee:e8:38:d4:a9:d2: 68:59:a4:92:77:a7:fe:d1:ca:e9:40:21:14:e2:32: ef:60:29:3e:4d:90:6c:48:57:2c:e0:83:b3:7d:d5: 14:09:e6:fc:1f:af:00:60:c6:87:b8:a7:ad:6f:a0: ef:a4:66:c0:df:e5:4a:29:f8:9c:f1:d9:fd:72:0c: dd:2a:b7:31:08:35:d1:b8:b8:84:b3:f9:20:80:45: ce:6b:bf:e4:0b:25:17:2b:e8:f1:4d:5f:c1:c8:dd: 15:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F4:91:A3:DF:54:DA:00:4F:44:59:0D:BF:50:CB:E9:8C:0C:7B:5A X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:68:67:13:e6:71:b4:d7:a2:fa:b5:2e:a5:99:9a:9f:2d:03: 80:ba:6a:5b:92:e1:ae:3c:cd:26:73:23:bc:96:bf:87:21:6c: 47:0a:01:cd:40:51:0f:bb:e4:89:56:2a:69:1b:36:35:8d:ca: ee:22:c0:95:57:8b:55:ed:ff:21:0b:40:13:2d:64:53:aa:84: 8a:8b:e2:e7:19:cd:29:96:31:dd:0d:cd:59:27:00:d7:36:ea: 9e:b7:f6:40:1c:9e:70:4a:36:28:e8:e1:41:01:02:ea:38:ed: 79:ad:11:af:cd:ac:7a:c8:d0:9d:55:47:eb:a0:22:fd:8d:ec: 88:8b:56:b7:c2:00:53:5e:33:4e:a1:38:78:27:f3:ff:70:7f: 36:6d:51:6b:67:56:2c:e8:dd:1a:27:ed:4f:99:30:88:5b:9c: d3:c9:0f:4b:0f:24:d4:2a:f1:78:dc:09:29:b2:e8:67:e2:b0: 17:f3:3c:a6:10:8f:30:9a:d1:b3:56:fa:41:70:d0:db:88:0a: 83:aa:bd:cf:da:2d:ed:d3:00:0b:68:44:91:d1:45:7e:0f:8d: cb:51:51:d9:5d:21:bd:35:30:4a:51:ab:0c:fd:71:85:cb:8a: a6:8a:80:2a:b3:f2:fb:2e:4a:11:4b:05:b8:31:a5:cf:bc:40: 1a:a9:d6:f4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0NCNTExMC8GA1UEBRMoRkE4MTFGNTJFNTE5NUE0MjlENzA2RDE5QzAwMzIzN0Mz MjA5QUEzNzAeFw0yNDExMjEwNTEyMjVaFw0yNDExMjgwNTEyMjVaMBgxFjAUBgNV BAMTDTY3M2VjMTM5LTY5YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJTt/8zCV/hZJpVC2ON/Z79QPdD2hTkw/a/MYan/3WmLlr4OQHGoz2cVDNbhDi Qfeor4HObOamZMZtFHVQMB025MLIw5Se1AjOwCLIRt1KAvI4c0heGJSpNawjsTP/ OQwHuLXXnA5tGdzTbzLBiHWfxxxvuyjqz9ZRlVx5wn0Y+HRR+gQs0baAQKL8DgdY 3N4ojDLaFqtk1NcoK7JLDu7oONSp0mhZpJJ3p/7RyulAIRTiMu9gKT5NkGxIVyzg g7N91RQJ5vwfrwBgxoe4p61voO+kZsDf5Uop+Jzx2f1yDN0qtzEINdG4uISz+SCA Rc5rv+QLJRcr6PFNX8HI3RX1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY/SRo99U 2gBPRFkNv1DL6YwMe1owHwYDVR0jBBgwFoAU+oEfUuUZWkKdcG0ZwAMjfDIJqjcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Q0I1L0ZBMzdDNjNFMjI1 NjExRUZCNzU2MUY0NkM0RjlBRTAyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFq Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLW9FZlV1VVpXa0tkY0cwWndBTWpmRElKcWpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 Q0I1L0ZBMzdDNjNFMjI1NjExRUZCNzU2MUY0NkM0RjlBRTAyLy1vRWZVdVVaV2tL ZGNHMFp3QU1qZkRJSnFqYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI5oZxPmcbTXovq1LqWZmp8tA4C6aluS4a48zSZzI7yWv4chbEcKAc1A UQ+75IlWKmkbNjWNyu4iwJVXi1Xt/yELQBMtZFOqhIqL4ucZzSmWMd0NzVknANc2 6p639kAcnnBKNijo4UEBAuo47XmtEa/NrHrI0J1VR+ugIv2N7IiLVrfCAFNeM06h OHgn8/9wfzZtUWtnVizo3Ron7U+ZMIhbnNPJD0sPJNQq8XjcCSmy6GfisBfzPKYQ jzCa0bNW+kFw0NuICoOqvc/aLe3TAAtoRJHRRX4PjctRUdldIb01MEpRqwz9cYXL iqaKgCqz8vsuShFLBbgxpc+8QBqp1vQ= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org