$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: z7TL+hyE9879E7iOozYCwhEhAmOxatwzGO09LNkVuqo= Subject key identifier: 29:18:0B:37:51:18:27:71:54:69:C7:A2:0B:68:68:D0:7C:5C:A4:62 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 0433 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 041D Signing time: Wed 20 Nov 2024 23:56:57 +0000 Manifest this update: Wed 20 Nov 2024 23:56:56 +0000 Manifest next update: Wed 27 Nov 2024 23:56:56 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: 8fdXxxPjxFvn41+i975G9eNn8+NTuYAjzmSbhS11STU=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: 01FpccdP/MsW2CvA7hmJMpiDNjJ1dNkKkLEpim6H7/0=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: qr8b4jL6pkulS0zDMbButEnYyv8gZUas09Wk3ymII28=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: TI6U5DDyMx2oNjPAY1onItBRjW+RoIBeg5nOMGrAMag=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: hL3IFyg9Xwqq4SM4WYiBZDcso6a27q9sQZQ/dFLeUNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1075 (0x433) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Nov 20 23:56:56 2024 GMT Not After : Nov 27 23:56:56 2024 GMT Subject: CN=673e7748-66f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:1a:3b:9c:e3:79:64:fb:9f:29:a0:b7:d9: f5:6a:d1:9e:d2:c2:44:71:71:89:47:0a:66:a6:9a: b2:b4:bb:76:ae:0e:a5:c3:2c:da:2a:99:d8:fe:d9: aa:0a:7e:ab:16:cf:d8:9a:d1:ef:a4:6b:43:bf:b6: 3d:cb:7d:0c:d1:67:bc:6e:93:01:a3:b0:a1:fd:a9: 00:39:a0:cf:e1:29:c9:2d:f1:5f:dd:fe:d5:f2:b2: 5c:5b:bd:ea:8d:9e:e6:73:37:d4:fd:b5:29:76:00: 36:33:ee:a3:86:dc:dc:27:74:e1:9c:d6:b6:6e:08: 45:73:b1:05:ed:1c:47:c0:7e:cb:7a:a8:d6:4f:0b: 93:c9:13:77:88:34:18:5d:a2:49:4f:51:cf:c8:72: f5:59:ee:0b:47:85:24:6d:41:3d:77:5a:3c:8a:1a: 7c:b4:f6:39:a1:f6:1b:e4:80:94:48:b5:00:e9:5d: ae:e7:fb:cf:d3:4f:8b:93:05:2c:81:21:ec:29:21: 02:db:e2:f1:55:63:58:03:e6:4a:55:f0:57:e9:f2: ae:d6:2b:a3:71:c8:25:84:ff:0f:6a:04:35:21:03: c2:61:90:e0:52:10:a8:99:f8:fb:73:95:f3:e6:54: 3e:7f:0b:61:d0:33:e6:d3:5d:21:00:f8:8e:d5:37: cd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:18:0B:37:51:18:27:71:54:69:C7:A2:0B:68:68:D0:7C:5C:A4:62 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:e4:1b:60:a6:2f:9b:2e:f5:68:d2:7b:fa:a8:b1:55:79:44: 89:66:19:2c:57:a3:e9:97:5e:34:3f:eb:d0:01:29:c6:f8:95: 46:6b:32:70:e5:5e:eb:bb:17:bf:0a:73:f2:a1:da:1f:91:da: e9:e2:7b:4a:74:34:da:a1:5c:bd:c7:43:77:b5:a9:c2:98:70: 1d:01:8e:8e:0b:9a:b3:e2:3b:46:67:6d:50:41:f4:15:5b:e1: 29:74:39:f9:88:e5:b8:02:4c:b2:49:db:43:88:90:6b:e3:74: ad:08:d3:eb:7f:04:86:5c:b7:d7:f4:03:14:4c:a1:bc:e0:71: 67:3c:0b:32:09:45:68:56:e4:d0:6d:ba:f2:15:36:d1:81:ce: 4f:21:b2:39:95:95:9e:9b:ee:2b:9c:70:90:f0:8d:fd:04:3d: a0:04:73:9f:4a:3d:5a:24:72:9f:17:78:69:80:e8:2d:48:76: cd:9c:cc:e9:a9:4a:3f:3d:56:8c:de:a2:e8:2d:ee:b3:aa:4e: 96:55:c8:8f:84:56:9f:d3:b2:01:e9:4c:e4:cf:6e:9c:cc:f8: 01:29:c8:9d:3a:0a:fa:4a:79:09:77:7f:7d:ba:dd:32:70:a0: 53:c8:85:a7:af:41:f9:b4:dd:97:ed:1f:78:6e:04:1b:a0:a8: 2c:76:29:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjQxMTIwMjM1NjU2WhcNMjQxMTI3MjM1NjU2WjAYMRYwFAYD VQQDEw02NzNlNzc0OC02NmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBkaO5zjeWT7nymgt9n1atGe0sJEcXGJRwpmppqytLt2rg6lwyzaKpnY/tmq Cn6rFs/YmtHvpGtDv7Y9y30M0We8bpMBo7Ch/akAOaDP4SnJLfFf3f7V8rJcW73q jZ7mczfU/bUpdgA2M+6jhtzcJ3ThnNa2bghFc7EF7RxHwH7LeqjWTwuTyRN3iDQY XaJJT1HPyHL1We4LR4UkbUE9d1o8ihp8tPY5ofYb5ICUSLUA6V2u5/vP00+LkwUs gSHsKSEC2+LxVWNYA+ZKVfBX6fKu1iujccglhP8PagQ1IQPCYZDgUhComfj7c5Xz 5lQ+fwth0DPm010hAPiO1TfNYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkYCzdR GCdxVGnHogtoaNB8XKRiMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu5Btgpi+bLvVo0nv6qLFVeUSJZhksV6Ppl140P+vQASnG+JVGazJw 5V7ruxe/CnPyodofkdrp4ntKdDTaoVy9x0N3tanCmHAdAY6OC5qz4jtGZ21QQfQV W+EpdDn5iOW4AkyySdtDiJBr43StCNPrfwSGXLfX9AMUTKG84HFnPAsyCUVoVuTQ bbryFTbRgc5PIbI5lZWem+4rnHCQ8I39BD2gBHOfSj1aJHKfF3hpgOgtSHbNnMzp qUo/PVaM3qLoLe6zqk6WVciPhFaf07IB6Uzkz26czPgBKcidOgr6SnkJd399ut0y cKBTyIWnr0H5tN2X7R94bgQboKgsdim2 -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:59 2024 by rpki-client on console-ams.rpki-client.org