$ rpki-client -vvf rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft File: DvqgEPOwbVMhkO827SAodPggF8k.mft (raw, json) Hash identifier: /fyrZwrpdOx5QjXr+VO2dijsLm+6e0Mr+RfYC6+HDzI= Subject key identifier: 50:11:0D:6B:8C:41:A6:F1:F1:06:B4:D9:E9:11:2B:5E:1F:52:DB:8C Authority key identifier: 0E:FA:A0:10:F3:B0:6D:53:21:90:EF:36:ED:20:28:74:F8:20:17:C9 Certificate issuer: /CN=A9167F0C/serialNumber=0EFAA010F3B06D532190EF36ED202874F82017C9 Certificate serial: 0ED8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft Manifest number: 1865 Signing time: Fri 22 Nov 2024 17:38:56 +0000 Manifest this update: Fri 22 Nov 2024 17:38:56 +0000 Manifest next update: Fri 29 Nov 2024 17:38:56 +0000 Files and hashes: 1: DvqgEPOwbVMhkO827SAodPggF8k.crl (hash: JV+LLNebwEKoY5p51vmKGLTnhM8nWVdSS7jzIz2VhoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.crl rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3800 (0xed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167F0C/serialNumber=0EFAA010F3B06D532190EF36ED202874F82017C9 Validity Not Before: Nov 22 17:38:56 2024 GMT Not After : Nov 29 17:38:56 2024 GMT Subject: CN=6740c1b0-c61a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e2:79:97:b0:b5:b7:81:db:d9:f0:c1:1b:b2: 07:76:85:cf:6a:d5:03:6d:d0:54:49:67:49:c9:47: 6a:6d:95:56:42:dd:f7:2f:1e:c1:17:a5:8e:a5:9f: 5f:9b:58:9e:7b:57:24:09:27:d7:e6:13:c7:69:af: c3:6c:24:e3:ab:87:cf:5c:17:74:8b:f9:70:a4:ea: 01:98:a6:21:ba:46:76:da:2d:86:82:d6:7c:1e:8e: d7:21:94:c2:56:6a:9d:7c:5b:b4:51:42:c6:ab:9a: dc:33:4d:23:3f:53:92:a9:dc:47:f2:70:3a:e2:32: 99:37:f9:b9:e7:e3:0a:61:35:8a:8e:5d:ea:ba:7e: b6:da:fd:d9:4d:43:a2:24:3c:24:59:2f:e6:69:e9: 92:e0:0f:6b:f0:33:cf:a9:1c:93:68:07:63:08:0f: 19:d5:7d:16:79:e7:a7:41:19:cf:c3:0b:95:5a:ff: af:ce:f7:d2:df:4b:9e:67:04:90:a2:55:9d:c4:f5: da:7b:1d:d2:3c:4d:7e:2d:bc:76:ee:f2:c3:e0:bc: f5:62:96:25:24:b2:2f:12:c3:e4:52:09:94:0a:18: 43:f9:e3:17:f5:26:dc:b5:aa:7b:83:97:8d:58:15: 2f:90:43:c7:fd:ad:51:eb:3f:d9:b6:ad:35:35:16: 30:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:11:0D:6B:8C:41:A6:F1:F1:06:B4:D9:E9:11:2B:5E:1F:52:DB:8C X509v3 Authority Key Identifier: keyid:0E:FA:A0:10:F3:B0:6D:53:21:90:EF:36:ED:20:28:74:F8:20:17:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:5b:f2:39:fb:f2:d9:0f:9e:80:82:12:41:e6:37:84:9e:cb: df:9a:66:13:e8:74:2d:74:24:52:63:bd:b4:c9:b1:cb:e2:e2: 60:73:71:86:bd:61:2b:bd:2c:09:2b:cc:6e:49:ce:79:58:83: 31:9c:12:a2:3c:92:10:be:3c:a2:6e:77:ba:25:85:4d:d4:d6: 0d:51:55:65:9f:c4:61:8c:c3:01:a0:7a:dd:9b:d3:d2:99:1b: df:c4:1e:76:63:c6:be:79:fd:8d:96:be:cc:6d:2c:a4:fb:92: 67:8f:be:ad:44:3a:c4:b7:b8:c3:2c:68:a2:38:52:49:c9:fe: 8d:29:56:6d:01:36:ec:d4:19:e3:fc:80:6a:e4:29:c5:0b:32: 1e:53:e5:71:68:bf:64:6f:1b:bc:3e:71:55:61:25:65:e2:8a: 14:77:1a:17:e2:72:c9:7c:fb:23:db:2d:26:4b:e8:7f:ed:6f: 0f:05:f3:16:c2:d8:32:c0:08:40:a9:7e:08:cf:cf:6f:b3:32: 99:fa:4e:d3:ad:99:54:bc:7d:79:ee:74:13:98:34:0f:d0:15: 70:0e:fd:0a:ca:d4:64:33:7a:06:02:08:e7:f8:ac:9e:18:b7: 13:dc:8d:5a:b4:3f:4e:b9:f4:51:0c:26:49:85:42:2f:31:b4: c1:dd:6c:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGMEMxMTAvBgNVBAUTKDBFRkFBMDEwRjNCMDZENTMyMTkwRUYzNkVEMjAyODc0 RjgyMDE3QzkwHhcNMjQxMTIyMTczODU2WhcNMjQxMTI5MTczODU2WjAYMRYwFAYD VQQDEw02NzQwYzFiMC1jNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uJ5l7C1t4Hb2fDBG7IHdoXPatUDbdBUSWdJyUdqbZVWQt33Lx7BF6WOpZ9f m1iee1ckCSfX5hPHaa/DbCTjq4fPXBd0i/lwpOoBmKYhukZ22i2GgtZ8Ho7XIZTC VmqdfFu0UULGq5rcM00jP1OSqdxH8nA64jKZN/m55+MKYTWKjl3qun622v3ZTUOi JDwkWS/maemS4A9r8DPPqRyTaAdjCA8Z1X0WeeenQRnPwwuVWv+vzvfS30ueZwSQ olWdxPXaex3SPE1+Lbx27vLD4Lz1YpYlJLIvEsPkUgmUChhD+eMX9Sbctap7g5eN WBUvkEPH/a1R6z/Ztq01NRYwcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFARDWuM Qabx8Qa02ekRK14fUtuMMB8GA1UdIwQYMBaAFA76oBDzsG1TIZDvNu0gKHT4IBfJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0YwQy8wQTU4QTE5QTcw QUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9EdnFnRVBPd2JWTWhrTzgyN1NBb2RQZ2dG OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R2cWdFUE93YlZNaGtPODI3U0FvZFBnZ0Y4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0YwQy8wQTU4QTE5QTcwQUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9EdnFnRVBPd2JW TWhrTzgyN1NBb2RQZ2dGOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoW/I5+/LZD56AghJB5jeEnsvfmmYT6HQtdCRSY720ybHL4uJgc3GG vWErvSwJK8xuSc55WIMxnBKiPJIQvjyibne6JYVN1NYNUVVln8RhjMMBoHrdm9PS mRvfxB52Y8a+ef2Nlr7MbSyk+5Jnj76tRDrEt7jDLGiiOFJJyf6NKVZtATbs1Bnj /IBq5CnFCzIeU+VxaL9kbxu8PnFVYSVl4ooUdxoX4nLJfPsj2y0mS+h/7W8PBfMW wtgywAhAqX4Iz89vszKZ+k7TrZlUvH157nQTmDQP0BVwDv0KytRkM3oGAgjn+Kye GLcT3I1atD9OufRRDCZJhUIvMbTB3Wzr -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org