$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: dx909mln29PDSxKr/2h2Fdcgd11D1EQiLi1vnHGRNik= Subject key identifier: 19:8A:8B:68:A8:55:DF:E4:8A:89:3B:78:95:E3:36:9B:69:93:0E:8F Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: 4A Signing time: Thu 21 Nov 2024 05:22:29 +0000 Manifest this update: Thu 21 Nov 2024 05:22:28 +0000 Manifest next update: Thu 28 Nov 2024 05:22:28 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: XOSK7GOEVw2VRIWii8yFpty0R3uWrm73OuE2iisG8TM=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: mPNOr/g01ocSR7SG8vAUHcTHz7gj62GKEpE8JvyEYfM=) 3: C7821E3038E311EF94CEFA33C4F9AE02.roa (hash: CYRhwTR2JfGYLXjzwYpN6txEE5fhtvaH0LDwpY9BCRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Nov 21 05:22:28 2024 GMT Not After : Nov 28 05:22:28 2024 GMT Subject: CN=673ec395-bab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ab:20:93:93:99:57:39:74:a1:b1:e6:ed:90: d9:0c:67:74:b8:1f:55:22:00:cd:7b:2b:8a:b0:e9: 16:7f:e7:af:31:c3:37:d6:67:0b:65:a7:7a:7a:a6: ad:0b:72:bc:5f:f2:ba:61:39:26:12:e5:ae:4e:e0: c2:6e:7f:f3:c5:cc:4a:55:6b:dd:b3:ef:78:fc:38: 06:cf:86:d1:93:f2:d2:43:4f:62:47:cc:5c:69:ee: 4d:5b:a7:96:4e:fd:89:97:ed:1d:97:72:dd:f7:dd: ed:5f:03:a1:84:06:4b:aa:9a:ff:2a:b3:36:23:cb: 37:96:10:81:98:b9:01:ea:14:06:31:e0:8b:25:f8: 45:ef:7f:eb:7a:c7:44:55:7d:15:aa:95:b0:e9:62: b7:00:27:63:ad:ba:b2:4e:e4:63:81:93:f7:21:87: c1:da:74:9b:be:96:a5:64:b6:3a:90:39:5e:5e:20: 43:5a:00:5e:95:bf:13:e9:4b:2d:7a:1b:11:55:4c: 51:79:9f:6c:e4:7b:8e:4c:76:6c:07:1f:c3:d6:31: ef:5e:88:82:3e:43:cd:23:d5:fb:dd:95:25:de:14: 9d:8f:41:40:e3:a9:d5:90:55:96:3e:bb:77:96:03: 4e:0d:06:ba:b2:09:34:31:58:d2:f6:c7:f1:52:8b: 60:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8A:8B:68:A8:55:DF:E4:8A:89:3B:78:95:E3:36:9B:69:93:0E:8F X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a9:29:04:95:8a:83:b7:a4:2a:17:37:50:20:11:17:28:18: a8:20:17:35:4c:5f:43:a2:b7:51:2e:fa:9a:1e:5f:3b:52:1f: 7b:d9:d3:0c:57:89:2a:1f:f1:d1:1c:cc:e1:15:83:60:b0:b9: 85:1b:22:89:4f:81:f8:af:6b:fb:db:0c:65:5c:04:c4:08:86: 7e:6e:e0:3a:d5:55:9e:34:76:81:50:6f:fd:9f:f4:56:fd:1e: 10:fc:a4:95:f5:03:8b:76:0d:1e:cc:8c:c8:90:6c:56:06:7c: a7:91:33:0a:56:ac:a4:fa:6d:15:7e:52:70:94:91:e6:c5:94: b7:66:45:e7:d1:96:18:f6:30:13:3c:b1:8b:2c:65:71:76:2c: fc:77:36:16:91:10:51:cc:10:4d:80:90:18:2e:9f:34:b8:93: fd:33:1e:0d:f6:62:34:33:b1:67:f6:22:12:16:34:48:41:41: 20:12:04:5c:61:cb:ee:8a:c1:da:0e:fa:9a:fc:7e:23:50:26: f2:e7:6c:11:fb:72:df:cc:0a:dd:af:7e:7b:fa:fe:33:32:cd: 00:ac:d5:b8:18:82:ca:4d:8e:59:17:fc:9b:d9:bb:68:4a:59: 7a:4f:99:6c:90:57:8a:14:28:cb:55:30:b9:d5:87:66:ad:89: a5:f5:ab:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 ODQyNDExMC8GA1UEBRMoNzRBMTE2NjlDNDNFNTNCMEYyMUQ0QjQxM0Y5MkQ5RUE5 MTMxNTUwMzAeFw0yNDExMjEwNTIyMjhaFw0yNDExMjgwNTIyMjhaMBgxFjAUBgNV BAMTDTY3M2VjMzk1LWJhYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtqyCTk5lXOXShsebtkNkMZ3S4H1UiAM17K4qw6RZ/568xwzfWZwtlp3p6pq0L crxf8rphOSYS5a5O4MJuf/PFzEpVa92z73j8OAbPhtGT8tJDT2JHzFxp7k1bp5ZO /YmX7R2Xct333e1fA6GEBkuqmv8qszYjyzeWEIGYuQHqFAYx4Isl+EXvf+t6x0RV fRWqlbDpYrcAJ2OturJO5GOBk/chh8HadJu+lqVktjqQOV5eIENaAF6VvxPpSy16 GxFVTFF5n2zke45MdmwHH8PWMe9eiII+Q80j1fvdlSXeFJ2PQUDjqdWQVZY+u3eW A04NBrqyCTQxWNL2x/FSi2ApAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGYqLaKhV 3+SKiTt4leM2m2mTDo8wHwYDVR0jBBgwFoAUdKEWacQ+U7DyHUtBP5LZ6pExVQMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4NDI0Lzc5M0VBNkRBMzhF MzExRUY5MTRCMkYzM0M0RjlBRTAyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZR TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEtFV2FjUS1VN0R5SFV0QlA1TFo2cEV4VlFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 NDI0Lzc5M0VBNkRBMzhFMzExRUY5MTRCMkYzM0M0RjlBRTAyL2RLRVdhY1EtVTdE eUhVdEJQNUxaNnBFeFZRTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACCpKQSVioO3pCoXN1AgERcoGKggFzVMX0Oit1Eu+poeXztSH3vZ0wxX iSof8dEczOEVg2CwuYUbIolPgfiva/vbDGVcBMQIhn5u4DrVVZ40doFQb/2f9Fb9 HhD8pJX1A4t2DR7MjMiQbFYGfKeRMwpWrKT6bRV+UnCUkebFlLdmRefRlhj2MBM8 sYssZXF2LPx3NhaREFHMEE2AkBgunzS4k/0zHg32YjQzsWf2IhIWNEhBQSASBFxh y+6KwdoO+pr8fiNQJvLnbBH7ct/MCt2vfnv6/jMyzQCs1bgYgspNjlkX/JvZu2hK WXpPmWyQV4oUKMtVMLnVh2atiaX1qzg= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org