$ rpki-client -vvf rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft File: CHQTSbZiijmB94o3MLiYg-PXa8o.mft (raw, json) Hash identifier: gdC7bbxClfWs0oltpY97i8tGTTl5n70x7B0NuK2YWWE= Subject key identifier: 92:FB:B0:85:CB:EF:7C:1A:79:41:BD:4C:35:57:75:06:FE:46:32:ED Authority key identifier: 08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA Certificate issuer: /CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft Manifest number: 060D Signing time: Wed 20 Nov 2024 22:13:16 +0000 Manifest this update: Wed 20 Nov 2024 22:13:15 +0000 Manifest next update: Wed 27 Nov 2024 22:13:15 +0000 Files and hashes: 1: CHQTSbZiijmB94o3MLiYg-PXa8o.crl (hash: XPZp/87THh036rMbTXlRSVgxDC6rMlOLcPVCTIt0kYg=) 2: B69DB4D27D6911EBA420FC6AC4F9AE02.roa (hash: kqvjt4xRQkic0pSOKa9QVL0YjZAGhKt2kqY9ktYProo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91712A8/serialNumber=08741349B6628A3981F78A3730B89883E3D76BCA Validity Not Before: Nov 20 22:13:15 2024 GMT Not After : Nov 27 22:13:15 2024 GMT Subject: CN=673e5efc-7b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:aa:ce:5f:fe:9c:02:ea:8d:4e:81:22:36:b2: d3:17:68:ce:a7:9b:d2:f3:a2:ce:9a:a3:ec:63:54: d9:27:40:04:fa:d9:95:19:63:46:51:d3:d1:69:b6: 69:9e:e0:cf:61:98:24:fb:bd:d8:02:0a:92:4f:ed: 05:cc:c8:f0:63:b6:a0:ff:ba:69:de:35:a3:19:0a: f0:ec:f6:9f:36:7a:c4:4d:f3:41:b4:1a:07:ff:20: dd:6e:d5:76:e4:59:27:3a:94:f5:ff:fe:f0:57:ad: 6d:22:b3:2b:12:cf:f4:4c:fb:3f:f8:30:f2:c7:8b: 95:41:7e:46:88:3b:12:47:dc:11:db:ef:25:f6:c7: 96:40:03:dd:64:b5:f3:50:1b:5b:46:7a:95:3e:b2: 04:ee:67:2e:fe:c0:ef:bb:6e:0b:da:83:d0:6f:24: 36:19:b5:6d:98:19:02:12:c1:8f:a8:cb:4b:74:9a: 48:7e:5c:16:43:87:10:b1:d3:32:9a:22:76:21:94: 63:5b:72:83:33:03:a2:14:c9:bc:c7:c6:5d:ba:c8: bc:96:af:3c:f8:ec:13:53:d6:7c:8c:41:b4:e8:72: 22:1a:eb:fa:14:28:63:46:81:89:b9:98:a9:00:08: 0f:bb:e3:29:a4:1c:72:ee:9e:5f:81:88:47:7a:7d: 0a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:FB:B0:85:CB:EF:7C:1A:79:41:BD:4C:35:57:75:06:FE:46:32:ED X509v3 Authority Key Identifier: keyid:08:74:13:49:B6:62:8A:39:81:F7:8A:37:30:B8:98:83:E3:D7:6B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHQTSbZiijmB94o3MLiYg-PXa8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91712A8/46500F8C7D6811EBA432176AC4F9AE02/CHQTSbZiijmB94o3MLiYg-PXa8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:89:2f:8a:95:9e:4e:1b:88:72:b0:e7:d8:88:d3:57:7a:d3: 15:50:34:96:89:59:93:86:fd:84:5e:f0:b3:4c:09:f2:94:52: c2:7e:90:f8:61:e0:3f:6d:32:4b:b6:9e:6a:1f:9b:51:cb:f6: 2d:65:7d:94:70:64:f7:b2:1d:7f:f4:f7:49:13:f6:ce:79:f6: 3f:90:26:35:b3:16:d1:a8:16:dc:63:7b:55:09:93:c2:e3:98: 69:04:27:17:79:5c:20:17:b6:cf:5d:a9:ea:8f:6d:e5:a0:32: 64:70:7d:04:9c:a0:d9:ab:e2:d0:55:0e:73:e2:3c:8c:84:d6: c0:32:4e:2e:53:3c:2b:f2:84:af:08:b4:01:e1:83:e6:a6:40: 0e:4f:df:68:46:d6:3e:f5:d0:4a:48:83:dc:55:5f:d3:52:29: 51:f1:01:f6:b8:02:75:4a:dd:c4:64:e9:41:ce:57:94:8e:d1: bf:3a:c2:d5:7d:82:09:a0:05:92:c8:13:97:57:88:9e:3a:71: 53:be:4e:09:49:70:81:41:e0:f3:da:8d:4c:e4:93:09:ea:63: af:7d:0b:83:92:a1:bf:77:51:3d:9b:39:81:18:89:36:a2:33: 61:fb:aa:cb:0c:2b:ad:17:7a:fc:e7:28:23:4c:5e:50:2a:19: 18:af:69:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyQTgxMTAvBgNVBAUTKDA4NzQxMzQ5QjY2MjhBMzk4MUY3OEEzNzMwQjg5ODgz RTNENzZCQ0EwHhcNMjQxMTIwMjIxMzE1WhcNMjQxMTI3MjIxMzE1WjAYMRYwFAYD VQQDEw02NzNlNWVmYy03YjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4arOX/6cAuqNToEiNrLTF2jOp5vS86LOmqPsY1TZJ0AE+tmVGWNGUdPRabZp nuDPYZgk+73YAgqST+0FzMjwY7ag/7pp3jWjGQrw7PafNnrETfNBtBoH/yDdbtV2 5FknOpT1//7wV61tIrMrEs/0TPs/+DDyx4uVQX5GiDsSR9wR2+8l9seWQAPdZLXz UBtbRnqVPrIE7mcu/sDvu24L2oPQbyQ2GbVtmBkCEsGPqMtLdJpIflwWQ4cQsdMy miJ2IZRjW3KDMwOiFMm8x8Zdusi8lq88+OwTU9Z8jEG06HIiGuv6FChjRoGJuZip AAgPu+MppBxy7p5fgYhHen0KVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJL7sIXL 73waeUG9TDVXdQb+RjLtMB8GA1UdIwQYMBaAFAh0E0m2Yoo5gfeKNzC4mIPj12vK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTJBOC80NjUwMEY4QzdE NjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlqbUI5NG8zTUxpWWctUFhh OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIUVRTYlppaWptQjk0bzNNTGlZZy1QWGE4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTJBOC80NjUwMEY4QzdENjgxMUVCQTQzMjE3NkFDNEY5QUUwMi9DSFFUU2JaaWlq bUI5NG8zTUxpWWctUFhhOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbiS+KlZ5OG4hysOfYiNNXetMVUDSWiVmThv2EXvCzTAnylFLCfpD4 YeA/bTJLtp5qH5tRy/YtZX2UcGT3sh1/9PdJE/bOefY/kCY1sxbRqBbcY3tVCZPC 45hpBCcXeVwgF7bPXanqj23loDJkcH0EnKDZq+LQVQ5z4jyMhNbAMk4uUzwr8oSv CLQB4YPmpkAOT99oRtY+9dBKSIPcVV/TUilR8QH2uAJ1St3EZOlBzleUjtG/OsLV fYIJoAWSyBOXV4ieOnFTvk4JSXCBQeDz2o1M5JMJ6mOvfQuDkqG/d1E9mzmBGIk2 ojNh+6rLDCutF3r85ygjTF5QKhkYr2mv -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:43 2024 by rpki-client on console-ams.rpki-client.org