$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: lp+nh39CIesf7SCDpEDdR3+b5/0piAFwoTachspR7P0= Subject key identifier: 83:1B:06:A8:92:7B:49:B9:DD:D1:AB:DC:74:CD:64:FD:03:52:81:DC Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 05FF Signing time: Wed 20 Nov 2024 16:54:12 +0000 Manifest this update: Wed 20 Nov 2024 16:54:11 +0000 Manifest next update: Wed 27 Nov 2024 16:54:11 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: U7ku1UmskOXiE6dbrA1HW0IqUNcN5ZhcfDKQ/PTo1ek=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: O5NrYidky1uWhh0BCjw4p5lqRUhg5y9NJ2WJphzcgW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Nov 20 16:54:11 2024 GMT Not After : Nov 27 16:54:11 2024 GMT Subject: CN=673e1433-16a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d7:82:31:ed:d8:10:a1:3c:ab:72:fa:92:f1: 94:03:38:e3:47:0f:2e:64:46:83:5b:27:79:33:49: 69:a7:76:96:ee:d7:58:32:7f:91:7a:f5:da:94:24: 72:ea:b9:69:ad:fa:c0:a2:00:49:00:82:9d:72:99: 35:4a:90:7c:62:6d:69:29:1f:69:55:6a:40:84:66: d5:21:6c:63:26:7d:e5:6a:6f:d5:60:cc:6c:b7:5c: fa:2a:f2:66:20:6b:56:ed:cc:09:11:c9:77:2b:19: f9:9d:fd:1d:dc:ce:e7:99:15:ed:7f:97:21:e2:e2: f8:32:4c:92:51:82:5b:e2:2d:2a:6d:e5:92:d6:3b: 60:2c:7d:88:9e:87:a0:73:34:43:a0:48:59:2d:d9: 02:2a:97:04:71:25:ea:68:22:46:4c:c1:fd:96:8d: c7:c0:92:1f:b4:4e:12:a4:6f:09:c9:a8:70:3e:4f: 4f:0b:95:10:cc:1b:d6:bc:1c:5c:76:30:1e:27:90: 62:ed:91:90:a2:4b:a3:fd:3e:e7:f9:79:f2:ca:99: 2d:03:40:43:cc:92:79:9d:f6:90:d0:56:02:06:4d: a0:3b:1b:b4:00:c5:e4:b9:5c:d6:f7:75:37:98:3c: 26:af:a8:8b:72:d0:07:5b:8e:d5:de:f4:8e:63:9c: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1B:06:A8:92:7B:49:B9:DD:D1:AB:DC:74:CD:64:FD:03:52:81:DC X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:67:5f:ea:c3:ed:e1:ff:a7:5d:c1:d3:83:55:df:12:bb:88: 54:35:73:3a:d1:18:33:e1:42:99:57:8c:82:e4:56:57:74:00: 70:b6:39:7c:c5:65:d3:6d:2e:c4:3c:7f:7c:a3:d3:3f:ad:c8: 77:44:9c:50:0f:ae:38:e1:b1:df:0a:72:6d:16:f2:b9:75:03: b4:76:05:b7:50:0b:2f:7f:65:22:58:95:3f:d9:5c:60:62:ba: 1c:52:28:14:51:81:4f:ce:3b:79:6e:b4:2b:f5:28:a7:38:d3: dc:40:a8:2c:02:07:70:95:38:82:e5:c9:87:2c:4a:62:71:03: 8c:4e:4e:cd:f8:a8:54:41:12:ec:c0:c8:74:d9:db:08:25:8b: 20:20:9b:4e:d7:7b:e2:74:42:1f:9e:b8:a1:ea:4e:82:12:85: a6:92:46:6d:c8:f2:f3:c6:4b:76:cb:3a:ac:e4:90:91:4f:2d: 14:31:7b:e1:4b:75:f7:35:ad:42:df:90:81:c7:b1:58:e4:a0: 8f:10:b7:65:63:25:6c:8a:a9:86:73:2f:74:4b:15:4c:ef:44: 6f:f0:c3:75:20:74:90:1a:81:01:13:2a:e2:43:5c:73:49:62: b6:2f:67:14:6c:5d:b0:99:40:82:ff:11:f8:26:e7:4a:c3:19: 41:34:7a:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjQxMTIwMTY1NDExWhcNMjQxMTI3MTY1NDExWjAYMRYwFAYD VQQDEw02NzNlMTQzMy0xNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NeCMe3YEKE8q3L6kvGUAzjjRw8uZEaDWyd5M0lpp3aW7tdYMn+RevXalCRy 6rlprfrAogBJAIKdcpk1SpB8Ym1pKR9pVWpAhGbVIWxjJn3lam/VYMxst1z6KvJm IGtW7cwJEcl3Kxn5nf0d3M7nmRXtf5ch4uL4MkySUYJb4i0qbeWS1jtgLH2Inoeg czRDoEhZLdkCKpcEcSXqaCJGTMH9lo3HwJIftE4SpG8JyahwPk9PC5UQzBvWvBxc djAeJ5Bi7ZGQokuj/T7n+XnyypktA0BDzJJ5nfaQ0FYCBk2gOxu0AMXkuVzW93U3 mDwmr6iLctAHW47V3vSOY5xenwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMbBqiS e0m53dGr3HTNZP0DUoHcMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCZ1/qw+3h/6ddwdODVd8Su4hUNXM60Rgz4UKZV4yC5FZXdABwtjl8 xWXTbS7EPH98o9M/rch3RJxQD6444bHfCnJtFvK5dQO0dgW3UAsvf2UiWJU/2Vxg YrocUigUUYFPzjt5brQr9SinONPcQKgsAgdwlTiC5cmHLEpicQOMTk7N+KhUQRLs wMh02dsIJYsgIJtO13vidEIfnrih6k6CEoWmkkZtyPLzxkt2yzqs5JCRTy0UMXvh S3X3Na1C35CBx7FY5KCPELdlYyVsiqmGcy90SxVM70Rv8MN1IHSQGoEBEyriQ1xz SWK2L2cUbF2wmUCC/xH4JudKwxlBNHqR -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:22 2024 by rpki-client on console-ams.rpki-client.org