$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft File: r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft (raw, json) Hash identifier: rUf/xZNFXM3ZE8LCYeOzWXxnMCPBEuo/rtBEgpUoV64= Subject key identifier: DE:A8:CD:84:1E:B4:FD:5E:CA:DC:DE:C7:84:96:50:46:57:8D:D0:BA Authority key identifier: AF:5D:61:CE:12:B7:C3:E5:8D:C8:6C:97:87:2C:BB:2C:DA:AD:27:F1 Certificate issuer: /CN=A9178E22/serialNumber=AF5D61CE12B7C3E58DC86C97872CBB2CDAAD27F1 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft Manifest number: 24 Signing time: Sat 23 Nov 2024 05:44:26 +0000 Manifest this update: Sat 23 Nov 2024 05:44:26 +0000 Manifest next update: Sat 30 Nov 2024 05:44:25 +0000 Files and hashes: 1: r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl (hash: sJn0i2ICgrYWnLmLA5rxZIBixbLlwBZVLEcWAghjlTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E22/serialNumber=AF5D61CE12B7C3E58DC86C97872CBB2CDAAD27F1 Validity Not Before: Nov 23 05:44:26 2024 GMT Not After : Nov 30 05:44:25 2024 GMT Subject: CN=67416bba-8abf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:58:db:ca:53:e1:8d:a7:9e:e4:4c:9c:fa:69: ac:90:8e:fb:c4:f9:42:c8:d0:e4:ef:3d:47:a5:ea: 87:6a:05:e6:e0:6d:0a:f2:57:05:3e:4e:16:50:c8: 2d:99:b1:b6:6a:a3:d6:23:6f:c4:ef:3d:db:6f:23: 45:37:cf:e0:d3:e9:3f:77:49:5f:62:b1:fe:67:e7: a8:23:0b:7c:00:b7:84:e8:f8:82:2b:b1:c5:97:9b: 55:37:91:3d:36:77:6b:6c:64:37:b2:d7:77:d2:09: 1e:3a:ba:e0:34:aa:23:fd:03:4d:8d:e2:b8:90:20: af:a8:d0:ba:15:9a:4d:09:51:8f:c7:85:d4:47:63: ae:2b:4a:11:4f:2f:52:ce:56:23:f9:0e:b7:fe:bb: 16:60:29:f8:0d:88:4f:f4:91:d3:aa:f5:e4:cb:02: 0f:59:54:3d:3b:f4:1d:6d:80:52:54:87:44:81:27: 34:f9:75:b0:e0:71:0a:5c:98:0e:fb:3b:28:85:75: 64:16:31:b1:2d:84:b4:e9:71:76:47:35:99:5e:fc: 14:7b:ae:0b:77:91:1e:79:69:1a:82:b3:7d:1c:d7: 1b:c5:ef:ba:eb:97:64:b1:a0:9c:95:42:79:e1:a9: 8d:5c:7f:63:72:21:b6:e1:19:45:ae:79:1c:b3:24: f6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A8:CD:84:1E:B4:FD:5E:CA:DC:DE:C7:84:96:50:46:57:8D:D0:BA X509v3 Authority Key Identifier: keyid:AF:5D:61:CE:12:B7:C3:E5:8D:C8:6C:97:87:2C:BB:2C:DA:AD:27:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r11hzhK3w-WNyGyXhyy7LNqtJ_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E22/B502638674DA11EF8039B026C4F9AE02/r11hzhK3w-WNyGyXhyy7LNqtJ_E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b7:e2:96:43:11:b4:48:d6:e8:bd:b9:0c:b8:20:1b:2e:60: 35:16:ac:a2:91:b6:d1:6a:e0:9d:70:b0:e6:91:69:18:14:fc: 4a:45:41:76:dd:a4:f2:77:72:16:f0:54:5d:72:45:e5:7b:aa: 65:05:38:bf:1b:a1:47:7a:66:eb:c5:fc:8b:a3:ba:47:da:a6: 09:e3:fe:15:2e:e6:7a:61:ec:9a:b1:73:47:63:12:d8:c4:a2: e7:e2:bd:9e:e2:6a:3b:38:45:8a:c5:93:56:9d:67:8a:c7:17: 62:b6:5e:72:62:5c:84:46:79:19:cb:e9:35:cd:16:34:1e:b3: 01:77:08:d0:1b:66:e4:52:d1:fe:e3:d5:d9:19:72:80:44:14: 52:04:24:63:a3:5f:01:82:5a:5a:fb:f0:2b:00:97:76:d2:f6: c1:f6:d5:82:59:bc:4a:fe:70:a1:e7:1a:03:48:11:0b:b4:68: 01:f6:e7:bf:40:2d:c1:50:33:55:5b:00:df:14:d1:07:8e:54: f5:fc:d4:4b:c9:80:15:d7:32:65:be:5d:0f:63:4e:9f:65:97: 6b:ae:df:93:26:a3:d5:b6:dd:91:62:dd:93:55:a3:51:55:cd: f5:b4:c2:e1:52:9d:71:cc:e7:4a:f9:9d:dd:2c:e0:c6:a5:13: 31:6e:1b:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEUyMjExMC8GA1UEBRMoQUY1RDYxQ0UxMkI3QzNFNThEQzg2Qzk3ODcyQ0JCMkNE QUFEMjdGMTAeFw0yNDExMjMwNTQ0MjZaFw0yNDExMzAwNTQ0MjVaMBgxFjAUBgNV BAMTDTY3NDE2YmJhLThhYmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9WNvKU+GNp57kTJz6aayQjvvE+ULI0OTvPUel6odqBebgbQryVwU+ThZQyC2Z sbZqo9Yjb8TvPdtvI0U3z+DT6T93SV9isf5n56gjC3wAt4To+IIrscWXm1U3kT02 d2tsZDey13fSCR46uuA0qiP9A02N4riQIK+o0LoVmk0JUY/HhdRHY64rShFPL1LO ViP5Drf+uxZgKfgNiE/0kdOq9eTLAg9ZVD079B1tgFJUh0SBJzT5dbDgcQpcmA77 OyiFdWQWMbEthLTpcXZHNZle/BR7rgt3kR55aRqCs30c1xvF77rrl2SxoJyVQnnh qY1cf2NyIbbhGUWueRyzJPY/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3qjNhB60 /V7K3N7HhJZQRleN0LowHwYDVR0jBBgwFoAUr11hzhK3w+WNyGyXhyy7LNqtJ/Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4RTIyL0I1MDI2Mzg2NzRE QTExRUY4MDM5QjAyNkM0RjlBRTAyL3IxMWh6aEszdy1XTnlHeVhoeXk3TE5xdEpf RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjExaHpoSzN3LVdOeUd5WGh5eTdMTnF0Sl9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4 RTIyL0I1MDI2Mzg2NzREQTExRUY4MDM5QjAyNkM0RjlBRTAyL3IxMWh6aEszdy1X TnlHeVhoeXk3TE5xdEpfRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEm34pZDEbRI1ui9uQy4IBsuYDUWrKKRttFq4J1wsOaRaRgU/EpFQXbd pPJ3chbwVF1yReV7qmUFOL8boUd6ZuvF/Iujukfapgnj/hUu5nph7Jqxc0djEtjE oufivZ7iajs4RYrFk1adZ4rHF2K2XnJiXIRGeRnL6TXNFjQeswF3CNAbZuRS0f7j 1dkZcoBEFFIEJGOjXwGCWlr78CsAl3bS9sH21YJZvEr+cKHnGgNIEQu0aAH2579A LcFQM1VbAN8U0QeOVPX81EvJgBXXMmW+XQ9jTp9ll2uu35Mmo9W23ZFi3ZNVo1FV zfW0wuFSnXHM50r5nd0s4MalEzFuGzE= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org