$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft File: AZcEvn5KzguhIRSzKOsCBxHvTq8.mft (raw, json) Hash identifier: 2lbYZT6itg3dquDdbHy5KjzG3rOkSeZJyg+LWMsopio= Subject key identifier: 72:A9:63:62:79:46:17:1F:E3:8F:0E:2A:A6:9E:EB:11:E9:F7:E9:65 Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft Manifest number: 018D Signing time: Sat 23 Nov 2024 01:57:36 +0000 Manifest this update: Sat 23 Nov 2024 01:57:36 +0000 Manifest next update: Sat 30 Nov 2024 01:57:36 +0000 Files and hashes: 1: AZcEvn5KzguhIRSzKOsCBxHvTq8.crl (hash: d4CVLbCGOkwVc6HagV3Y4iiJVFwGylL2DV0HY/mhd10=) 2: 85AEBA76504C11ED829F7D24C4F9AE02.roa (hash: MijbaBFOBmjVn0NZXYmQ25vm+DrZhkqNokVzBodlkOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: Nov 23 01:57:36 2024 GMT Not After : Nov 30 01:57:36 2024 GMT Subject: CN=67413690-4a61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4d:4c:a9:14:5f:c8:4e:e1:3b:c2:91:7a:cb: ef:58:8e:09:bd:66:62:ba:91:d6:ac:c2:d7:70:ac: 9f:d8:bb:ba:79:1a:a0:33:49:8e:fa:b2:66:a3:1c: 99:d9:55:b3:e2:73:d8:bc:3b:f4:3f:5d:fd:03:2c: 84:26:a5:1a:ef:4f:81:e7:eb:37:1b:1b:6e:65:a5: 11:bf:0f:1f:4c:1a:8c:0f:7b:4d:58:c4:9b:61:32: 17:0b:ed:7c:aa:bf:33:58:6f:ef:be:f5:ff:d7:d5: b8:e7:20:b3:4a:8d:0a:ed:a9:f4:81:36:07:81:a0: 8f:85:84:b3:e2:f3:73:62:cd:be:8e:fc:fa:20:94: 31:f5:62:ab:2a:26:cc:21:af:4c:ff:18:20:ac:8b: 65:32:9c:e1:1b:a1:87:bd:e7:bf:2d:ef:51:75:7a: e1:c0:31:81:88:ca:46:0c:e5:15:6b:30:8d:e3:4d: d0:08:61:32:6b:48:24:49:01:0f:f6:e1:cf:1b:d2: c1:e3:14:4b:05:bf:d6:e1:98:9b:fd:97:e9:8a:38: 36:18:a5:b0:e3:3e:be:6d:e2:e3:ff:d6:d1:28:68: a4:f7:a7:8f:fe:23:d5:c3:06:e6:ea:ad:25:00:d1: b2:9d:38:c8:49:c2:52:a8:79:08:8a:db:8b:dc:4f: 81:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A9:63:62:79:46:17:1F:E3:8F:0E:2A:A6:9E:EB:11:E9:F7:E9:65 X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:ea:dd:5f:eb:66:ca:82:d5:ab:db:9f:2c:ba:80:05:58:6e: 77:64:f1:ec:e9:51:eb:46:54:8d:2d:4e:fd:e1:55:04:eb:57: 26:9d:af:3f:ea:4c:3c:33:1a:3d:a2:83:49:e3:ad:18:22:34: 30:3b:20:50:ba:a5:b3:44:57:f8:98:b9:f2:2a:f2:e3:24:d0: 08:c0:22:35:43:42:7b:35:fd:c5:ff:3e:a9:13:2d:98:5a:d1: 21:46:44:78:2f:c5:50:cb:5f:89:b3:c1:c7:80:90:0a:4d:63: 75:44:86:59:d3:b6:68:13:90:4d:dd:c7:7c:17:fb:79:45:06: b4:ee:b4:1c:96:b0:31:47:7d:16:fc:4c:7d:82:11:13:97:f0: e0:01:8a:5a:21:14:da:bb:41:1c:35:bb:cd:c4:8e:79:e2:20: a2:fb:fa:32:4c:d5:23:2f:0d:c2:bf:18:db:0e:0c:a7:8c:fe: d1:12:66:b7:b1:bc:cb:af:ff:08:45:5c:81:b4:87:5e:b4:b2: ec:47:89:3d:d2:6a:c3:80:da:c2:04:e1:fc:de:6b:75:b0:50: bc:18:b8:c3:48:ed:80:9c:26:a5:d3:65:a0:4f:a4:99:1c:88: 65:7d:12:03:37:6e:ff:04:10:77:da:0d:09:03:aa:64:90:d0: d5:8e:74:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjQxMTIzMDE1NzM2WhcNMjQxMTMwMDE1NzM2WjAYMRYwFAYD VQQDEw02NzQxMzY5MC00YTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsk1MqRRfyE7hO8KResvvWI4JvWZiupHWrMLXcKyf2Lu6eRqgM0mO+rJmoxyZ 2VWz4nPYvDv0P139AyyEJqUa70+B5+s3GxtuZaURvw8fTBqMD3tNWMSbYTIXC+18 qr8zWG/vvvX/19W45yCzSo0K7an0gTYHgaCPhYSz4vNzYs2+jvz6IJQx9WKrKibM Ia9M/xggrItlMpzhG6GHvee/Le9RdXrhwDGBiMpGDOUVazCN403QCGEya0gkSQEP 9uHPG9LB4xRLBb/W4Zib/Zfpijg2GKWw4z6+beLj/9bRKGik96eP/iPVwwbm6q0l ANGynTjIScJSqHkIituL3E+BIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKpY2J5 Rhcf448OKqae6xHp9+llMB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjhFMi85NzAxM0E0RTUwNDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pn dWhJUlN6S09zQ0J4SHZUcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt6t1f62bKgtWr258suoAFWG53ZPHs6VHrRlSNLU794VUE61cmna8/ 6kw8Mxo9ooNJ460YIjQwOyBQuqWzRFf4mLnyKvLjJNAIwCI1Q0J7Nf3F/z6pEy2Y WtEhRkR4L8VQy1+Js8HHgJAKTWN1RIZZ07ZoE5BN3cd8F/t5RQa07rQclrAxR30W /Ex9ghETl/DgAYpaIRTau0EcNbvNxI554iCi+/oyTNUjLw3CvxjbDgynjP7REma3 sbzLr/8IRVyBtIdetLLsR4k90mrDgNrCBOH83mt1sFC8GLjDSO2AnCal02WgT6SZ HIhlfRIDN27/BBB32g0JA6pkkNDVjnRE -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org