$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: jReYLhH/YDVVSloc20WEAEMqxxkxZ8+/HBNG/y2BPTM= Subject key identifier: E4:27:53:35:04:01:01:38:A4:4F:54:C4:AA:F3:E0:E7:28:99:EA:9B Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 0140 Signing time: Sat 23 Nov 2024 02:40:00 +0000 Manifest this update: Sat 23 Nov 2024 02:40:00 +0000 Manifest next update: Sat 30 Nov 2024 02:40:00 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: QA9hwJEQlEAqRvLrsqxLX4QzrXs/kyDjnA9yfG6G5MI=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: l8Gj0m9EkG6Fdaxl7SxKrM92rnUZHTkx+j8ukMd+sL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Nov 23 02:40:00 2024 GMT Not After : Nov 30 02:40:00 2024 GMT Subject: CN=67414080-b4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:45:39:c6:b7:54:d7:90:71:9e:4a:00:d7:57: b3:b4:cb:68:fd:6d:3b:32:a3:9f:05:ba:87:91:80: 66:9d:21:dd:28:52:84:a9:59:c6:36:20:8e:29:dd: 4c:eb:b5:21:a7:a4:db:a4:95:d3:1e:ba:4d:41:4b: f3:ef:13:89:38:1a:a7:42:1e:cd:4e:56:04:d4:4f: 9b:63:a7:ec:77:03:dc:09:0b:85:f8:2a:b1:27:c7: db:fc:4c:c6:4f:28:bb:ee:8d:84:28:c9:a4:10:a0: e4:6d:87:ef:67:50:af:f6:d8:2e:dc:1f:25:80:da: 3c:3b:d2:46:56:c1:39:11:1d:64:df:21:25:47:ee: c2:9f:30:f7:81:9d:f0:3e:6d:f7:ca:80:56:6f:f5: 4a:4b:cc:30:e6:bb:4c:c1:9a:4f:cd:36:f5:0d:88: 87:d1:b6:03:4c:c5:17:35:a8:3a:00:6b:56:0a:fa: 9e:fb:17:ad:57:93:1e:09:19:ec:4f:1c:e6:e8:f0: 00:5f:d7:ba:8f:9d:59:40:3e:db:30:52:de:17:81: 9b:e3:7f:c2:32:f5:9d:8e:ee:84:f4:21:a1:d1:dc: 9a:58:6c:c3:85:84:9c:77:ab:0c:e9:2a:a4:3b:f3: 7a:d8:31:1f:38:7f:5e:4f:45:41:f7:df:6b:ac:7b: 11:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:27:53:35:04:01:01:38:A4:4F:54:C4:AA:F3:E0:E7:28:99:EA:9B X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:57:cc:79:50:0c:9a:86:52:7d:70:1d:56:40:3b:0b:8a:a9: 20:91:9b:dd:9c:7d:4a:fc:db:1b:cd:2b:5d:9b:fb:7c:e2:6e: 56:68:99:10:06:e0:18:67:71:01:ba:1b:ba:0b:56:5e:ab:d3: da:7c:14:ed:6a:5d:19:25:dc:5e:5e:a6:b3:fd:69:44:68:84: b1:fa:fa:45:92:8c:4e:a0:fb:a6:a4:33:b8:d5:22:71:71:2c: 64:79:8f:84:01:f0:35:dc:a1:14:f2:98:0a:f3:17:44:0a:0f: 3a:ea:ba:a6:65:1f:f5:a7:42:cb:e1:22:94:6c:80:1e:16:55: da:4c:7a:d4:58:f2:75:89:99:d7:39:f2:4c:65:18:42:61:76: ca:02:a0:ff:c5:c7:b8:a5:88:61:7b:1a:95:39:9e:c2:c9:d9: 25:19:53:5a:da:ae:15:d4:3d:a2:59:0d:ae:d8:03:87:5a:2b: 0d:75:4b:37:4c:b7:60:ae:fe:c0:e5:39:da:c2:be:95:9b:d0: be:bc:ac:78:88:d2:d6:ae:6a:a1:13:76:5d:78:0f:84:47:d8: 1c:27:e7:06:97:89:ec:3e:76:c3:b3:2b:25:98:11:f3:ca:3f: 7f:91:e3:12:54:1d:12:eb:24:9e:30:0b:22:2f:02:29:ad:06: 9f:60:2d:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjQxMTIzMDI0MDAwWhcNMjQxMTMwMDI0MDAwWjAYMRYwFAYD VQQDEw02NzQxNDA4MC1iNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kU5xrdU15BxnkoA11eztMto/W07MqOfBbqHkYBmnSHdKFKEqVnGNiCOKd1M 67Uhp6TbpJXTHrpNQUvz7xOJOBqnQh7NTlYE1E+bY6fsdwPcCQuF+CqxJ8fb/EzG Tyi77o2EKMmkEKDkbYfvZ1Cv9tgu3B8lgNo8O9JGVsE5ER1k3yElR+7CnzD3gZ3w Pm33yoBWb/VKS8ww5rtMwZpPzTb1DYiH0bYDTMUXNag6AGtWCvqe+xetV5MeCRns Txzm6PAAX9e6j51ZQD7bMFLeF4Gb43/CMvWdju6E9CGh0dyaWGzDhYScd6sM6Sqk O/N62DEfOH9eT0VB999rrHsRTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQnUzUE AQE4pE9UxKrz4OcomeqbMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzV8x5UAyahlJ9cB1WQDsLiqkgkZvdnH1K/NsbzStdm/t84m5WaJkQ BuAYZ3EBuhu6C1Zeq9PafBTtal0ZJdxeXqaz/WlEaISx+vpFkoxOoPumpDO41SJx cSxkeY+EAfA13KEU8pgK8xdECg866rqmZR/1p0LL4SKUbIAeFlXaTHrUWPJ1iZnX OfJMZRhCYXbKAqD/xce4pYhhexqVOZ7CydklGVNa2q4V1D2iWQ2u2AOHWisNdUs3 TLdgrv7A5Tnawr6Vm9C+vKx4iNLWrmqhE3ZdeA+ER9gcJ+cGl4nsPnbDsyslmBHz yj9/keMSVB0S6ySeMAsiLwIprQafYC2E -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org