$ rpki-client -vvf rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft File: EW8KKmpLkkLXeiULcXAIFdKY3bk.mft (raw, json) Hash identifier: PvALYEosdohUN1cTZvbUx1zBKIK8dejb0hErQI7aDlw= Subject key identifier: 66:03:D8:43:CA:CB:95:3B:3D:5B:5F:EF:F6:97:83:25:E5:26:97:AE Authority key identifier: 11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 Certificate issuer: /CN=A9175964/serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:37:54 +0000 Manifest this update: Thu 21 Nov 2024 05:37:53 +0000 Manifest next update: Thu 28 Nov 2024 05:37:53 +0000 Files and hashes: 1: EW8KKmpLkkLXeiULcXAIFdKY3bk.crl (hash: CH3v004dYSL6hIrtnhYiMumnz+ExR+jWWNKyyoSVmZI=) 2: 426E71C25B1511EF95122A62C4F9AE02.roa (hash: iVgLpNzw9WvLZDCrNCeZKcdKAVuHQLIqgkettJkRmpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175964/serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Validity Not Before: Nov 21 05:37:53 2024 GMT Not After : Nov 28 05:37:53 2024 GMT Subject: CN=673ec731-6d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:80:ad:23:df:39:65:fc:be:ca:19:96:9a: a2:87:f6:1e:84:48:55:af:87:a0:95:25:c5:83:b2: 3d:1f:24:89:6d:79:4f:89:fb:bf:e8:b4:e3:06:f3: b4:4a:bf:6e:e1:a8:d3:49:c2:72:c4:24:5a:31:cc: e9:89:d8:78:3b:a6:6a:46:5b:8f:0d:e3:5c:f8:a8: d4:de:35:56:83:56:da:43:5f:a9:72:f2:a3:d3:f3: 79:ff:8c:a4:7f:b4:7b:f3:c7:7d:0b:fd:5f:8f:ca: 23:8c:00:3a:c7:f7:d2:97:72:fd:65:61:e5:da:57: a9:26:3b:89:1b:4c:ae:26:db:1d:60:76:e6:75:a6: a2:43:36:6d:1d:49:f8:ff:13:4f:3d:82:f8:5c:cc: 25:d1:a1:6d:67:ba:4f:82:fe:72:c8:37:8a:07:61: a3:bf:77:9e:a5:22:d1:68:45:00:0e:3d:85:7c:00: 6e:3e:df:c6:ce:eb:95:78:fd:d3:52:f5:03:db:1e: 0f:88:02:d5:40:8c:d7:8a:28:b3:70:28:c7:f4:dc: df:a9:a2:be:be:4e:70:d0:11:95:b8:d9:b0:d4:ae: 36:4f:56:ec:87:ea:2f:d0:92:e4:03:46:f6:9f:0c: 18:8d:ca:4c:4d:90:2f:cd:df:1e:ad:d0:ed:23:7a: 9b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:03:D8:43:CA:CB:95:3B:3D:5B:5F:EF:F6:97:83:25:E5:26:97:AE X509v3 Authority Key Identifier: keyid:11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:87:4d:68:b1:9e:77:79:0a:54:97:6b:c7:f8:4b:cf:f9:a6: 49:1b:07:58:cd:33:83:5f:be:25:00:77:f4:cd:71:18:4c:6d: 29:38:de:e7:9d:1e:ff:86:77:d1:e0:39:1a:6f:11:77:6e:fe: 8a:ff:9a:9c:12:ff:d1:ba:e4:11:2c:7b:07:29:aa:e3:74:9c: c0:16:a5:ec:14:23:81:ea:72:80:7f:f2:31:82:44:ea:2a:02: b6:7b:49:83:99:61:08:cd:0e:ee:de:2e:fe:65:8c:35:75:5f: 80:ad:c4:c5:f4:8c:2a:17:0d:e8:d6:8d:1b:71:08:15:00:79: 46:4c:d7:00:a7:e3:4c:03:08:64:2c:aa:1b:94:be:e2:7e:a6: 01:9f:1b:47:31:84:6a:16:bf:51:b8:89:81:41:d6:07:a5:31: 65:be:cd:f2:8c:77:1d:8d:34:ba:11:54:38:66:ae:0b:04:86: ac:88:7b:84:85:36:fe:41:a2:58:ef:f3:c0:b1:64:5d:d5:20: 1f:49:67:a1:9b:d2:b7:cc:d7:f6:93:27:85:c1:8f:85:ce:5f: d9:32:58:f9:3e:90:24:f1:93:71:c1:6a:d5:0d:8d:ec:2f:e3: 8f:03:4d:6b:4f:e7:5d:83:08:53:89:e9:e2:29:de:59:4e:f1: 39:3d:e0:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTk2NDExMC8GA1UEBRMoMTE2RjBBMkE2QTRCOTI0MkQ3N0EyNTBCNzE3MDA4MTVE Mjk4RERCOTAeFw0yNDExMjEwNTM3NTNaFw0yNDExMjgwNTM3NTNaMBgxFjAUBgNV BAMTDTY3M2VjNzMxLTZkM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4X4CtI985Zfy+yhmWmqKH9h6ESFWvh6CVJcWDsj0fJIlteU+J+7/otOMG87RK v27hqNNJwnLEJFoxzOmJ2Hg7pmpGW48N41z4qNTeNVaDVtpDX6ly8qPT83n/jKR/ tHvzx30L/V+PyiOMADrH99KXcv1lYeXaV6kmO4kbTK4m2x1gduZ1pqJDNm0dSfj/ E089gvhczCXRoW1nuk+C/nLIN4oHYaO/d56lItFoRQAOPYV8AG4+38bO65V4/dNS 9QPbHg+IAtVAjNeKKLNwKMf03N+por6+TnDQEZW42bDUrjZPVuyH6i/QkuQDRvaf DBiNykxNkC/N3x6t0O0jept1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZgPYQ8rL lTs9W1/v9peDJeUml64wHwYDVR0jBBgwFoAUEW8KKmpLkkLXeiULcXAIFdKY3bkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OTY0L0Y1MzFFREU0NUIx NDExRUZBQzk3NDQ2MUM0RjlBRTAyL0VXOEtLbXBMa2tMWGVpVUxjWEFJRmRLWTNi ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRVc4S0ttcExra0xYZWlVTGNYQUlGZEtZM2JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 OTY0L0Y1MzFFREU0NUIxNDExRUZBQzk3NDQ2MUM0RjlBRTAyL0VXOEtLbXBMa2tM WGVpVUxjWEFJRmRLWTNiay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAeHTWixnnd5ClSXa8f4S8/5pkkbB1jNM4NfviUAd/TNcRhMbSk43ued Hv+Gd9HgORpvEXdu/or/mpwS/9G65BEsewcpquN0nMAWpewUI4HqcoB/8jGCROoq ArZ7SYOZYQjNDu7eLv5ljDV1X4CtxMX0jCoXDejWjRtxCBUAeUZM1wCn40wDCGQs qhuUvuJ+pgGfG0cxhGoWv1G4iYFB1gelMWW+zfKMdx2NNLoRVDhmrgsEhqyIe4SF Nv5Boljv88CxZF3VIB9JZ6Gb0rfM1/aTJ4XBj4XOX9kyWPk+kCTxk3HBatUNjewv 448DTWtP512DCFOJ6eIp3llO8Tk94Bk= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org