$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft File: csG8nD23m0PzVvI_lWiEjJz7jdU.mft (raw, json) Hash identifier: DQBDTbr6MTO/gtxB1fnazkt3q15ExscE2O9KrNXGm1M= Subject key identifier: ED:70:D1:6A:38:74:BB:0C:30:BB:A0:5C:C7:C9:41:60:79:2D:A4:DB Authority key identifier: 72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 Certificate issuer: /CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft Manifest number: 063B Signing time: Fri 22 Nov 2024 22:03:18 +0000 Manifest this update: Fri 22 Nov 2024 22:03:18 +0000 Manifest next update: Fri 29 Nov 2024 22:03:18 +0000 Files and hashes: 1: csG8nD23m0PzVvI_lWiEjJz7jdU.crl (hash: rNZJaAm4NrIwKAf2t6OBPgVPN47FQajhgqiCRBqXNUU=) 2: EB292D8A6BF811EB8E899650C4F9AE02.roa (hash: haQ1wVHCjiOBIUnT4Cwar2Iew7eXxoRUFslAJoKYOBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CE/serialNumber=72C1BC9C3DB79B43F356F23F9568848C9CFB8DD5 Validity Not Before: Nov 22 22:03:18 2024 GMT Not After : Nov 29 22:03:18 2024 GMT Subject: CN=6740ffa6-b128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3f:a8:33:b0:a8:fd:33:de:e3:e0:94:47:f6: 9f:9f:05:ad:cf:3c:97:5b:a0:1f:ec:45:d5:a3:55: 9d:7d:ac:a8:c8:df:e5:f0:dc:21:ce:d2:30:44:80: 5d:15:38:09:55:e6:1a:a7:a8:b0:58:ff:15:4f:a1: 8d:33:a2:b9:62:e9:05:35:c7:a1:67:55:44:db:e6: 07:30:13:47:33:cc:ee:1d:d8:68:53:b4:ac:5c:9d: a9:30:be:6c:37:0f:a6:28:c8:19:f3:91:dc:b3:86: a2:3a:62:80:be:df:b9:50:0b:6f:ee:6d:83:da:e7: 8f:77:2c:55:d4:f3:b2:94:79:46:36:8f:6d:f2:50: 1e:81:97:a2:81:29:1a:b5:e7:39:82:04:da:0e:e9: d0:9f:29:1b:66:6d:8c:a1:40:9b:18:16:74:15:a8: 71:d2:d9:d4:b1:c5:b7:d1:b4:30:fd:08:b8:ef:f6: 3d:37:93:e4:b0:7f:ae:b4:b0:23:8b:07:6c:3a:04: ed:5c:40:95:61:26:cc:e1:8c:16:78:88:9f:e7:72: 0a:29:1c:ce:29:99:c3:70:c5:4e:5d:00:fb:c0:a4: 50:9b:a5:7a:84:43:8d:a9:f6:94:cf:94:d4:13:b1: 9f:02:86:ea:14:7a:2e:f2:45:cd:1a:2d:78:ec:59: cf:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:70:D1:6A:38:74:BB:0C:30:BB:A0:5C:C7:C9:41:60:79:2D:A4:DB X509v3 Authority Key Identifier: keyid:72:C1:BC:9C:3D:B7:9B:43:F3:56:F2:3F:95:68:84:8C:9C:FB:8D:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/csG8nD23m0PzVvI_lWiEjJz7jdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CE/B73069C66BE911EBB7D5560DC4F9AE02/csG8nD23m0PzVvI_lWiEjJz7jdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:fa:b7:0d:92:88:8d:2c:b2:df:a8:ec:d2:dc:24:f0:8c:87: 00:5c:ab:1c:da:d5:83:a2:b5:7a:42:6e:73:34:d8:7b:44:1d: 74:da:e0:8f:ad:2d:8b:2e:5f:47:be:81:4b:c9:0e:78:a5:bd: 39:65:43:70:06:35:29:af:57:ef:57:4a:a0:32:bb:81:9d:17: 1c:a3:12:16:49:45:02:65:18:5e:62:38:58:9c:7b:7a:19:e4: da:ad:32:ed:bf:fc:1d:da:3f:ad:18:7b:c8:de:3b:6e:ab:64: 82:e7:9a:0b:6d:72:e6:15:2e:e7:df:98:e4:b3:8e:fb:dc:8f: e9:22:b3:6b:99:76:69:4d:80:f7:19:d7:fd:dd:a5:ec:5d:c1: ee:7d:a2:d7:e3:03:0b:9c:b9:96:60:59:06:83:e4:1b:39:e9: cc:ce:e3:4e:eb:41:c0:74:f8:b7:83:02:8a:f8:c1:7a:99:ac: 99:89:f2:34:0d:ca:bf:46:11:5c:20:ba:fa:b5:03:8c:e3:ce: 11:00:2c:2c:58:f1:16:c8:d1:37:50:c1:ef:63:33:6d:f3:81: 06:1d:a3:56:54:24:ec:37:40:5a:b4:f3:81:29:ed:3e:19:e1: 59:fa:d3:9c:d2:4f:94:7d:60:27:5a:c8:1e:7d:ab:f0:ed:17: f8:01:e6:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwQ0UxMTAvBgNVBAUTKDcyQzFCQzlDM0RCNzlCNDNGMzU2RjIzRjk1Njg4NDhD OUNGQjhERDUwHhcNMjQxMTIyMjIwMzE4WhcNMjQxMTI5MjIwMzE4WjAYMRYwFAYD VQQDEw02NzQwZmZhNi1iMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3T+oM7Co/TPe4+CUR/afnwWtzzyXW6Af7EXVo1WdfayoyN/l8NwhztIwRIBd FTgJVeYap6iwWP8VT6GNM6K5YukFNcehZ1VE2+YHMBNHM8zuHdhoU7SsXJ2pML5s Nw+mKMgZ85Hcs4aiOmKAvt+5UAtv7m2D2uePdyxV1POylHlGNo9t8lAegZeigSka tec5ggTaDunQnykbZm2MoUCbGBZ0Fahx0tnUscW30bQw/Qi47/Y9N5PksH+utLAj iwdsOgTtXECVYSbM4YwWeIif53IKKRzOKZnDcMVOXQD7wKRQm6V6hEONqfaUz5TU E7GfAobqFHou8kXNGi147FnPSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1w0Wo4 dLsMMLugXMfJQWB5LaTbMB8GA1UdIwQYMBaAFHLBvJw9t5tD81byP5VohIyc+43V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjBDRS9CNzMwNjlDNjZC RTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20wUHpWdklfbFdpRWpKejdq ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzRzhuRDIzbTBQelZ2SV9sV2lFakp6N2pkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDRS9CNzMwNjlDNjZCRTkxMUVCQjdENTU2MERDNEY5QUUwMi9jc0c4bkQyM20w UHpWdklfbFdpRWpKejdqZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg+rcNkoiNLLLfqOzS3CTwjIcAXKsc2tWDorV6Qm5zNNh7RB102uCP rS2LLl9HvoFLyQ54pb05ZUNwBjUpr1fvV0qgMruBnRccoxIWSUUCZRheYjhYnHt6 GeTarTLtv/wd2j+tGHvI3jtuq2SC55oLbXLmFS7n35jks4773I/pIrNrmXZpTYD3 Gdf93aXsXcHufaLX4wMLnLmWYFkGg+QbOenMzuNO60HAdPi3gwKK+MF6mayZifI0 Dcq/RhFcILr6tQOM484RACwsWPEWyNE3UMHvYzNt84EGHaNWVCTsN0BatPOBKe0+ GeFZ+tOc0k+UfWAnWsgefavw7Rf4AeZp -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org