$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft File: CKtUearwyEilFC1v5NyZFitFwzc.mft (raw, json) Hash identifier: gzoh703YR7Ox62cYThzM5X+jpj+PYwj9oZtAuzYDj5A= Subject key identifier: A2:DF:E1:CD:C1:B5:D9:6E:E8:DA:70:A5:6E:89:3D:6C:B4:4D:97:71 Authority key identifier: 08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 Certificate issuer: /CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft Manifest number: 39 Signing time: Thu 21 Nov 2024 00:45:18 +0000 Manifest this update: Thu 21 Nov 2024 00:45:18 +0000 Manifest next update: Thu 28 Nov 2024 00:45:18 +0000 Files and hashes: 1: CKtUearwyEilFC1v5NyZFitFwzc.crl (hash: XcdvH5MDBOifcp1nLbpl2iij2/HFMqmPijQOJH8gv7o=) 2: 710957A8559411EFA07E1C5AC4F9AE02.roa (hash: Mlxt5emszaeJ3fsjQmXEkAwHWwex3p02yZAD82J2nVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC7C/serialNumber=08AB5479AAF0C848A5142D6FE4DC99162B45C337 Validity Not Before: Nov 21 00:45:18 2024 GMT Not After : Nov 28 00:45:18 2024 GMT Subject: CN=673e829e-4220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c0:cc:a1:a6:9f:92:dc:7f:d8:cf:b8:e7:e7: 50:3f:12:7e:1f:7e:12:d4:19:2e:92:a7:45:e6:1f: 24:32:b8:52:48:9a:7a:ba:ee:56:74:a2:27:e0:6f: 42:5d:95:f4:ba:2a:4f:f3:fa:08:2a:c6:44:ef:03: d3:a1:28:ec:23:c4:87:dc:53:96:92:da:66:f5:9d: 18:ca:71:df:46:57:fa:63:87:94:98:84:b0:be:7c: 91:3c:4e:fe:a9:d6:85:b2:30:ec:dd:f5:c1:2b:df: fd:02:3f:e7:3c:11:6b:da:67:02:be:f4:db:c6:77: 8b:28:be:be:51:c9:f2:51:64:76:27:46:b1:63:f7: ef:6d:7e:38:e4:51:50:da:c9:a2:9a:9a:37:58:b9: 30:f2:e3:d5:7a:78:71:64:73:c5:e0:b4:f6:3b:08: a7:be:23:6e:bb:d8:58:97:a8:8a:62:e5:10:6c:7f: 20:af:8b:51:bd:f7:0a:58:90:de:10:48:eb:93:7f: 85:54:13:1e:3e:31:71:a9:3d:6b:f9:be:67:94:ad: a3:9b:fb:11:12:b0:f8:c1:18:ad:86:6f:58:a9:f6: d8:d4:67:92:68:31:30:5a:e6:59:d5:1e:51:e3:89: 79:90:92:aa:2f:b2:49:54:79:40:4a:4e:d0:50:88: d8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DF:E1:CD:C1:B5:D9:6E:E8:DA:70:A5:6E:89:3D:6C:B4:4D:97:71 X509v3 Authority Key Identifier: keyid:08:AB:54:79:AA:F0:C8:48:A5:14:2D:6F:E4:DC:99:16:2B:45:C3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKtUearwyEilFC1v5NyZFitFwzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC7C/A4C14628554911EF82B5D36FC4F9AE02/CKtUearwyEilFC1v5NyZFitFwzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:4e:a5:13:84:f1:d8:a8:e4:fc:98:11:df:28:f4:79:bf:3c: e7:94:05:c4:7f:59:66:0f:98:18:86:5d:ef:f2:8b:df:a8:dc: be:65:7e:22:cf:5b:83:3d:dc:10:90:d2:d7:67:e6:98:56:f2: 6d:f6:dd:18:fa:bf:fa:70:7a:00:f9:5f:df:d0:9b:6f:40:d6: d4:0c:e3:8a:48:43:da:2b:db:8b:46:9c:df:f1:0f:2a:68:9e: 96:ac:26:43:a3:b1:26:c1:4d:46:0e:81:f0:96:19:71:5e:85: 46:d0:2c:b8:b5:23:d3:78:be:ba:5c:77:79:44:13:37:6f:53: be:fe:cc:7d:fa:08:5b:8a:83:5c:1d:a9:b6:53:3a:2a:50:ab: 9a:02:ac:51:03:2a:c3:bf:1b:d4:61:86:d6:ab:ef:6d:a1:8d: 74:f9:44:0b:a2:3c:6d:9a:69:3d:23:e7:84:cd:84:a5:28:87: 10:9f:c1:f9:29:46:95:4e:8b:e6:a2:a4:cf:0a:7b:2f:af:f4: 00:5f:3f:18:8b:03:c2:80:31:7a:a3:5a:70:fc:4c:d4:85:78: 4b:b2:5c:91:5b:80:0c:3f:c2:4c:41:9b:76:0d:c0:60:50:9d: 43:52:0a:a6:20:f6:53:3e:24:4e:7e:95:f1:c3:66:86:69:ed: a1:79:36:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REM3QzExMC8GA1UEBRMoMDhBQjU0NzlBQUYwQzg0OEE1MTQyRDZGRTREQzk5MTYy QjQ1QzMzNzAeFw0yNDExMjEwMDQ1MThaFw0yNDExMjgwMDQ1MThaMBgxFjAUBgNV BAMTDTY3M2U4MjllLTQyMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtwMyhpp+S3H/Yz7jn51A/En4ffhLUGS6Sp0XmHyQyuFJImnq67lZ0oifgb0Jd lfS6Kk/z+ggqxkTvA9OhKOwjxIfcU5aS2mb1nRjKcd9GV/pjh5SYhLC+fJE8Tv6p 1oWyMOzd9cEr3/0CP+c8EWvaZwK+9NvGd4sovr5RyfJRZHYnRrFj9+9tfjjkUVDa yaKamjdYuTDy49V6eHFkc8XgtPY7CKe+I2672FiXqIpi5RBsfyCvi1G99wpYkN4Q SOuTf4VUEx4+MXGpPWv5vmeUraOb+xESsPjBGK2Gb1ip9tjUZ5JoMTBa5lnVHlHj iXmQkqovsklUeUBKTtBQiNhZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUot/hzcG1 2W7o2nClbok9bLRNl3EwHwYDVR0jBBgwFoAUCKtUearwyEilFC1v5NyZFitFwzcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZEQzdDL0E0QzE0NjI4NTU0 OTExRUY4MkI1RDM2RkM0RjlBRTAyL0NLdFVlYXJ3eUVpbEZDMXY1TnlaRml0Rnd6 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0t0VWVhcnd5RWlsRkMxdjVOeVpGaXRGd3pjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE QzdDL0E0QzE0NjI4NTU0OTExRUY4MkI1RDM2RkM0RjlBRTAyL0NLdFVlYXJ3eUVp bEZDMXY1TnlaRml0Rnd6Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJdOpROE8dio5PyYEd8o9Hm/POeUBcR/WWYPmBiGXe/yi9+o3L5lfiLP W4M93BCQ0tdn5phW8m323Rj6v/pwegD5X9/Qm29A1tQM44pIQ9or24tGnN/xDypo npasJkOjsSbBTUYOgfCWGXFehUbQLLi1I9N4vrpcd3lEEzdvU77+zH36CFuKg1wd qbZTOipQq5oCrFEDKsO/G9Rhhtar722hjXT5RAuiPG2aaT0j54TNhKUohxCfwfkp RpVOi+aipM8Key+v9ABfPxiLA8KAMXqjWnD8TNSFeEuyXJFbgAw/wkxBm3YNwGBQ nUNSCqYg9lM+JE5+lfHDZoZp7aF5Nqo= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:55 2024 by rpki-client on console-fra.rpki-client.org