$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft File: VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft (raw, json) Hash identifier: 4c5sXZdtt1TKrWJwMOzXmQ2HOXuF9Ve7G1b+yGYOZkI= Subject key identifier: 23:9B:CA:3F:C5:BF:ED:F6:6B:0B:B8:0B:5C:22:C1:42:9F:3D:B6:4B Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft Manifest number: C9 Signing time: Sat 23 Nov 2024 03:52:56 +0000 Manifest this update: Sat 23 Nov 2024 03:52:56 +0000 Manifest next update: Sat 30 Nov 2024 03:52:56 +0000 Files and hashes: 1: VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl (hash: 99i6NlKhJA5lkGjuclLYtVarzTcmSXmTn761NmU2scQ=) 2: 230576C0784C11EE9C354422C4F9AE02.roa (hash: 8xFUYP8CysuOSr+JhXC7vja6PLPsWt9zigT7v//9EFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Nov 23 03:52:56 2024 GMT Not After : Nov 30 03:52:56 2024 GMT Subject: CN=67415198-bcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:86:38:ec:3f:ff:45:ec:13:74:4f:f6:4b:59: f9:72:f9:4a:29:3a:a5:5b:8d:dc:59:51:30:34:77: 3c:77:bd:f0:f2:88:49:71:28:f4:3a:3b:18:67:db: 16:a6:42:24:95:02:98:ce:27:9e:8d:73:fb:bf:69: 4e:58:1e:4b:d4:3e:53:c1:01:1c:2a:f7:3f:4f:ed: b9:d6:22:f6:c2:5a:18:cb:7f:26:8f:cc:73:51:4b: 98:5d:c6:22:e4:53:e7:73:dd:4c:1b:7e:84:38:7d: 95:df:85:32:c1:bf:ca:86:e2:ae:b5:dd:36:12:0d: 5a:ca:7c:6a:f9:a4:e2:35:4a:f4:04:c2:91:9a:a2: 00:75:ed:d0:91:47:71:79:c7:96:74:76:2b:89:6f: 72:3e:39:fa:b7:9c:af:e7:b6:7c:40:54:94:d1:e3: 38:d6:34:6a:21:d4:28:8e:e8:32:30:b9:fe:5d:aa: 24:ab:c6:36:4c:3a:3d:6c:7a:30:92:ea:fe:68:11: 5b:d9:3b:33:2f:13:93:e3:e0:d9:0e:0f:e0:4e:86: 1f:7c:79:f6:73:0c:36:e1:d0:b3:de:c9:cf:cb:a6: 8c:df:55:3b:b0:bb:fb:e9:9b:1f:1d:07:e0:5d:1a: f2:46:72:b2:71:1d:6a:1f:8c:a7:c6:97:d7:27:eb: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9B:CA:3F:C5:BF:ED:F6:6B:0B:B8:0B:5C:22:C1:42:9F:3D:B6:4B X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:9b:5d:61:79:4c:05:6c:25:83:8f:8e:59:db:e2:1b:15:fc: b6:f2:e2:6d:99:af:ee:6e:58:5c:ea:1f:7e:fb:e1:82:44:53: 70:08:d3:dc:af:97:e6:5a:4e:24:4f:7d:52:3c:e9:b6:e4:b3: 59:e4:4b:37:73:16:dc:c3:56:19:e0:5f:a1:5e:c5:16:ef:4f: 4b:6f:1f:76:d3:fc:57:8d:4d:ea:ee:16:a6:28:ee:36:09:79: bb:9e:f4:ce:ff:3f:a8:a1:7e:5b:66:5c:63:94:33:65:44:13: 3a:30:71:b0:89:f2:c9:b7:7b:67:49:21:59:03:6f:d8:ad:eb: 89:3c:09:ec:1f:66:ee:7e:91:32:2b:d6:af:58:c1:74:8d:0c: f8:02:d6:cb:da:7d:c5:cd:61:2e:f5:be:7e:b5:aa:f7:9c:d0: fb:9f:11:67:8e:e7:e0:72:94:c0:e4:11:f5:f2:68:2e:17:2a: 9e:27:bb:95:c7:ea:19:0e:ec:27:80:54:1a:99:3e:49:3f:f2: 84:5b:44:7c:3a:df:45:ec:96:d6:2d:35:1f:21:87:a0:91:ff: 04:5a:1f:d8:c9:cc:e2:ed:92:33:a3:27:fd:ae:0f:5c:9f:7d: 6c:16:00:7c:bf:70:4a:ae:fe:fe:b9:8c:72:c0:aa:22:e1:7b: cb:30:fd:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlBQTMxMTAvBgNVBAUTKDU0QTVEOEZCRjg0RTNFREYzMUZBMjRFNDVDNkM2NzJB OTNCNjVBRDAwHhcNMjQxMTIzMDM1MjU2WhcNMjQxMTMwMDM1MjU2WjAYMRYwFAYD VQQDEw02NzQxNTE5OC1iY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoY47D//RewTdE/2S1n5cvlKKTqlW43cWVEwNHc8d73w8ohJcSj0OjsYZ9sW pkIklQKYzieejXP7v2lOWB5L1D5TwQEcKvc/T+251iL2wloYy38mj8xzUUuYXcYi 5FPnc91MG36EOH2V34Uywb/KhuKutd02Eg1aynxq+aTiNUr0BMKRmqIAde3QkUdx eceWdHYriW9yPjn6t5yv57Z8QFSU0eM41jRqIdQojugyMLn+Xaokq8Y2TDo9bHow kur+aBFb2TszLxOT4+DZDg/gToYffHn2cww24dCz3snPy6aM31U7sLv76ZsfHQfg XRryRnKycR1qH4ynxpfXJ+vHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCObyj/F v+32awu4C1wiwUKfPbZLMB8GA1UdIwQYMBaAFFSl2Pv4Tj7fMfok5FxsZyqTtlrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUFBMy8wQTJDQjc4Njc4 NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0OHgtaVRrWEd4bktwTzJX dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi9WS1hZLV9oT1B0 OHgtaVRrWEd4bktwTzJXdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbm11heUwFbCWDj45Z2+IbFfy28uJtma/ublhc6h9+++GCRFNwCNPc r5fmWk4kT31SPOm25LNZ5Es3cxbcw1YZ4F+hXsUW709Lbx920/xXjU3q7hamKO42 CXm7nvTO/z+ooX5bZlxjlDNlRBM6MHGwifLJt3tnSSFZA2/YreuJPAnsH2bufpEy K9avWMF0jQz4AtbL2n3FzWEu9b5+tar3nND7nxFnjufgcpTA5BH18mguFyqeJ7uV x+oZDuwngFQamT5JP/KEW0R8Ot9F7JbWLTUfIYegkf8EWh/Yyczi7ZIzoyf9rg9c n31sFgB8v3BKrv7+uYxywKoi4XvLMP1f -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:12 2024 by rpki-client on console-ams.rpki-client.org