$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft File: VngmFidUtGDLWGbawxSIDHA1Rh0.mft (raw, json) Hash identifier: vyu/FWdQG8qIj2xT+jb+TlgB84+dOJfIV3E0679JoGw= Subject key identifier: 81:88:42:04:0F:5E:96:53:AF:02:0A:65:91:E6:8D:4E:A9:09:23:EA Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft Manifest number: 6A Signing time: Sat 23 Nov 2024 04:54:42 +0000 Manifest this update: Sat 23 Nov 2024 04:54:42 +0000 Manifest next update: Sat 30 Nov 2024 04:54:42 +0000 Files and hashes: 1: VngmFidUtGDLWGbawxSIDHA1Rh0.crl (hash: JA+fuf6Z+Fu5Y3lrkA+EutiW2z+VypzVn+hMqI/5GQA=) 2: DFDEC4D007A411EFAB20A473C4F9AE02.roa (hash: PGS5VhTr1DCXehAFd1ANgs/kmJnDFu9yzCbFFpOqU30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: Nov 23 04:54:42 2024 GMT Not After : Nov 30 04:54:42 2024 GMT Subject: CN=67416012-09c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2c:f4:af:72:7f:dd:94:e5:98:25:e9:b8:01: 8a:90:97:4b:b7:d0:48:60:e2:c3:fb:77:cd:52:e5: 63:81:b9:c8:7e:88:b7:93:d0:0b:e7:8f:fd:90:44: c5:fa:db:06:87:8d:f3:45:cf:1a:af:7a:de:de:4f: a3:b0:64:03:16:ea:d7:e7:c2:37:d2:1a:8e:b6:dd: 1e:35:b9:70:a9:e0:57:f9:7c:e7:99:05:76:07:48: 81:d8:57:9e:3d:64:d6:29:d8:18:f8:80:79:86:ee: e1:1f:9f:e4:6a:b2:47:30:86:c7:33:2a:93:7e:86: 3d:54:e3:b7:16:5e:8c:9e:5d:b7:27:2c:4d:49:48: 3c:01:ab:82:aa:50:b0:1a:50:a8:63:57:5a:70:ba: 9c:00:fa:0b:dc:0a:fc:73:a4:c6:e2:15:fa:02:42: 0c:91:ab:35:55:0e:82:14:a0:76:fa:76:74:1c:ef: 52:fb:ec:75:9d:be:6d:b8:f1:59:22:d8:40:e5:54: 32:66:46:e3:16:60:81:3b:10:2c:5b:a0:e2:dc:f0: 06:fd:54:9c:54:fe:a4:e0:11:ac:d4:e6:7a:e4:85: b3:7c:08:e0:ac:00:9d:c7:3b:a3:fe:12:cc:df:f8: 4b:8c:e5:d7:1b:e0:47:8c:d3:39:c2:a1:64:d8:06: 4d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:88:42:04:0F:5E:96:53:AF:02:0A:65:91:E6:8D:4E:A9:09:23:EA X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e5:60:f2:ec:61:1b:ee:87:71:10:89:bb:f5:ed:ae:22:f2: 73:7c:33:10:d8:86:7e:df:84:1e:11:6c:ee:00:e4:1b:a7:bf: 09:93:af:6f:c7:7e:b2:66:de:38:79:34:9c:2f:0f:58:51:c2: 6f:f9:37:12:59:47:e3:a9:87:61:34:d7:a9:31:cc:a8:b3:cc: 70:91:14:83:7d:4b:27:3c:29:b1:90:dc:11:d4:de:a1:eb:75: 52:4e:9d:ea:1f:8d:4d:2c:6c:86:9a:d1:0d:ea:d1:12:2b:73: 41:43:e0:7d:8e:92:85:8a:58:ce:57:bc:b9:d0:98:25:13:d1: 82:b1:d6:ac:84:35:9b:9e:3d:c6:f6:b0:60:26:ae:c5:63:b4: 18:40:f2:b6:20:d3:f1:6a:7c:7e:77:7b:97:57:6b:80:44:76: a1:b7:fa:a4:0f:3f:0f:74:79:f3:f9:47:38:4b:24:8d:24:23: 0f:06:fb:1c:8f:41:9f:8a:70:25:fe:da:41:77:54:2a:03:17: 95:d3:ce:79:43:9a:fe:1e:3e:3d:b5:70:f9:09:1f:f5:4a:40: 52:37:34:3c:a1:ee:be:1c:c3:09:07:7c:72:f7:db:0c:31:4f: 40:a2:70:54:e1:79:a5:f9:5b:2c:08:cd:e5:29:08:d9:1d:dd: 40:d5:d3:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDlCODExMC8GA1UEBRMoNTY3ODI2MTYyNzU0QjQ2MENCNTg2NkRBQzMxNDg4MEM3 MDM1NDYxRDAeFw0yNDExMjMwNDU0NDJaFw0yNDExMzAwNDU0NDJaMBgxFjAUBgNV BAMTDTY3NDE2MDEyLTA5YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2LPSvcn/dlOWYJem4AYqQl0u30Ehg4sP7d81S5WOBuch+iLeT0Avnj/2QRMX6 2waHjfNFzxqvet7eT6OwZAMW6tfnwjfSGo623R41uXCp4Ff5fOeZBXYHSIHYV549 ZNYp2Bj4gHmG7uEfn+RqskcwhsczKpN+hj1U47cWXoyeXbcnLE1JSDwBq4KqULAa UKhjV1pwupwA+gvcCvxzpMbiFfoCQgyRqzVVDoIUoHb6dnQc71L77HWdvm248Vki 2EDlVDJmRuMWYIE7ECxboOLc8Ab9VJxU/qTgEazU5nrkhbN8COCsAJ3HO6P+Eszf +EuM5dcb4EeM0znCoWTYBk1nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgYhCBA9e llOvAgplkeaNTqkJI+owHwYDVR0jBBgwFoAUVngmFidUtGDLWGbawxSIDHA1Rh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOUI4L0M4QjFENDRFMDdB MTExRUY4NEYzRDI2QUM0RjlBRTAyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVm5nbUZpZFV0R0RMV0diYXd4U0lESEExUmgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OUI4L0M4QjFENDRFMDdBMTExRUY4NEYzRDI2QUM0RjlBRTAyL1ZuZ21GaWRVdEdE TFdHYmF3eFNJREhBMVJoMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABblYPLsYRvuh3EQibv17a4i8nN8MxDYhn7fhB4RbO4A5BunvwmTr2/H frJm3jh5NJwvD1hRwm/5NxJZR+Oph2E016kxzKizzHCRFIN9Syc8KbGQ3BHU3qHr dVJOneofjU0sbIaa0Q3q0RIrc0FD4H2OkoWKWM5XvLnQmCUT0YKx1qyENZuePcb2 sGAmrsVjtBhA8rYg0/FqfH53e5dXa4BEdqG3+qQPPw90efP5RzhLJI0kIw8G+xyP QZ+KcCX+2kF3VCoDF5XTznlDmv4ePj21cPkJH/VKQFI3NDyh7r4cwwkHfHL32wwx T0CicFTheaX5WywIzeUpCNkd3UDV098= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org