$ rpki-client -vvf rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft File: JthkXujuOl0esdLfl5uFSbh2Hio.mft (raw, json) Hash identifier: T1Pd46iJbEvaHWKWE+OPFNsPMJ8Mf3G8XNePLyhh5cA= Subject key identifier: FD:49:98:C4:D8:E4:9E:06:97:F6:0F:8F:A7:D0:A0:F4:B9:2F:BC:47 Authority key identifier: 26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A Certificate issuer: /CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft Manifest number: 24 Signing time: Thu 21 Nov 2024 05:53:58 +0000 Manifest this update: Thu 21 Nov 2024 05:53:57 +0000 Manifest next update: Thu 28 Nov 2024 05:53:57 +0000 Files and hashes: 1: JthkXujuOl0esdLfl5uFSbh2Hio.crl (hash: 7KWTOK3wKf+4bG1N/+DfrLFk0/VVXE04Upf3NctEwH8=) 2: B0D54166830311EFBF66FC21C4F9AE02.roa (hash: tZx4V13WdS1YqkwOo/f+c5fdIh0lni7XzhM0Rn3v6tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D6C1/serialNumber=26D8645EE8EE3A5D1EB1D2DF979B8549B8761E2A Validity Not Before: Nov 21 05:53:57 2024 GMT Not After : Nov 28 05:53:57 2024 GMT Subject: CN=673ecaf6-e784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6b:57:54:81:e6:48:e8:15:9c:0c:84:8f:c7: 9e:61:7c:e5:b7:74:cf:37:0d:05:6c:96:88:49:0e: b6:6d:fc:f6:55:b3:c8:9b:40:5b:d0:1d:92:f6:11: d5:6e:d9:13:96:b2:ac:04:d8:ba:59:43:fc:ee:75: 63:28:a4:af:94:fb:93:32:7b:a3:c7:31:e4:44:5d: 72:cd:5e:9d:8c:e5:a5:ea:f4:79:c2:ee:6f:a8:5c: 18:34:a7:0a:1a:70:16:7a:bd:c4:56:d0:26:48:97: 76:f7:54:17:50:04:5c:d4:7f:65:b4:06:50:02:3d: 4d:77:53:7a:99:51:6f:e2:a0:55:4d:e2:1d:0b:7c: 8c:e4:b6:6d:8f:99:a7:ec:b6:31:f3:0e:f7:9c:7f: e8:76:ac:6d:bb:b9:64:cc:31:05:3a:37:86:0d:fc: 22:2b:39:08:79:f5:a9:a1:b2:7b:bd:6c:a8:71:45: fb:19:95:c3:3e:40:47:06:63:f5:06:ba:c9:2c:9d: 08:76:cf:cb:66:2a:c8:67:5c:14:ff:15:d6:90:03: ad:60:e2:79:aa:00:48:08:6a:1d:d5:ae:60:72:c8: 08:0c:dc:4c:87:02:bc:6a:14:68:0e:fc:df:ee:9a: 5c:25:f4:a1:a4:0e:97:7a:47:91:af:94:3a:d9:7e: be:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:49:98:C4:D8:E4:9E:06:97:F6:0F:8F:A7:D0:A0:F4:B9:2F:BC:47 X509v3 Authority Key Identifier: keyid:26:D8:64:5E:E8:EE:3A:5D:1E:B1:D2:DF:97:9B:85:49:B8:76:1E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JthkXujuOl0esdLfl5uFSbh2Hio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D6C1/DB7044E27A2611EFAF07B655C4F9AE02/JthkXujuOl0esdLfl5uFSbh2Hio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f4:fe:9f:2e:25:09:f0:45:dc:1b:0e:b4:31:3c:f9:06:d5: 8e:e0:b9:65:41:38:56:48:1e:80:b1:65:08:5d:62:93:4e:93: 8b:c5:cb:f6:83:ef:f3:3f:10:15:34:04:79:9e:78:76:a7:2b: fa:54:37:c3:ec:7b:09:38:b2:f2:9d:84:44:0e:12:b5:3e:01: 28:88:5f:21:a3:2b:55:81:83:4b:38:63:76:44:4e:e4:e8:44: c4:50:0f:83:34:b5:be:37:d2:2d:c0:b1:c4:c8:6c:99:8f:f5: c2:ce:05:f4:ff:7d:dd:29:44:24:de:a2:26:bd:d8:a9:50:81: a4:d1:21:26:5d:3b:cc:8c:a5:57:ce:55:e9:dd:4f:f0:f6:88: 99:cf:a8:6f:47:a5:08:e8:94:94:2c:17:8b:d0:dd:7a:e7:e1: 6b:62:4e:fd:d8:cb:89:e8:97:e7:1d:e9:33:dc:22:42:4b:2a: 46:32:fc:dc:e8:38:3f:91:d9:f5:8f:71:29:4c:ee:dd:2d:68: 41:ea:a5:98:21:eb:c0:49:eb:b3:e7:e9:e0:4f:96:59:84:a4: f5:62:55:5b:23:20:58:0c:2c:65:d5:db:1f:02:bb:b2:6a:e7: fc:74:32:bc:aa:cb:d1:b2:68:0c:e3:36:64:ba:68:86:77:aa: 5e:52:fc:0b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RDZDMTExMC8GA1UEBRMoMjZEODY0NUVFOEVFM0E1RDFFQjFEMkRGOTc5Qjg1NDlC ODc2MUUyQTAeFw0yNDExMjEwNTUzNTdaFw0yNDExMjgwNTUzNTdaMBgxFjAUBgNV BAMTDTY3M2VjYWY2LWU3ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCia1dUgeZI6BWcDISPx55hfOW3dM83DQVslohJDrZt/PZVs8ibQFvQHZL2EdVu 2ROWsqwE2LpZQ/zudWMopK+U+5Mye6PHMeREXXLNXp2M5aXq9HnC7m+oXBg0pwoa cBZ6vcRW0CZIl3b3VBdQBFzUf2W0BlACPU13U3qZUW/ioFVN4h0LfIzktm2Pmafs tjHzDvecf+h2rG27uWTMMQU6N4YN/CIrOQh59amhsnu9bKhxRfsZlcM+QEcGY/UG usksnQh2z8tmKshnXBT/FdaQA61g4nmqAEgIah3VrmByyAgM3EyHArxqFGgO/N/u mlwl9KGkDpd6R5GvlDrZfr7nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/UmYxNjk ngaX9g+Pp9Cg9LkvvEcwHwYDVR0jBBgwFoAUJthkXujuOl0esdLfl5uFSbh2Hiow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZENkMxL0RCNzA0NEUyN0Ey NjExRUZBRjA3QjY1NUM0RjlBRTAyL0p0aGtYdWp1T2wwZXNkTGZsNXVGU2JoMkhp by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSnRoa1h1anVPbDBlc2RMZmw1dUZTYmgySGlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE NkMxL0RCNzA0NEUyN0EyNjExRUZBRjA3QjY1NUM0RjlBRTAyL0p0aGtYdWp1T2ww ZXNkTGZsNXVGU2JoMkhpby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI/0/p8uJQnwRdwbDrQxPPkG1Y7guWVBOFZIHoCxZQhdYpNOk4vFy/aD 7/M/EBU0BHmeeHanK/pUN8Psewk4svKdhEQOErU+ASiIXyGjK1WBg0s4Y3ZETuTo RMRQD4M0tb430i3AscTIbJmP9cLOBfT/fd0pRCTeoia92KlQgaTRISZdO8yMpVfO VendT/D2iJnPqG9HpQjolJQsF4vQ3Xrn4WtiTv3Yy4nol+cd6TPcIkJLKkYy/Nzo OD+R2fWPcSlM7t0taEHqpZgh68BJ67Pn6eBPllmEpPViVVsjIFgMLGXV2x8Cu7Jq 5/x0Mryqy9GyaAzjNmS6aIZ3ql5S/As= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org