$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft File: ChYfF3ryrIp11Br-R61A0quRh8o.mft (raw, json) Hash identifier: wFAjWYnPLwz/l6xp39yUwZMwzygkGbzx+OJNoVczj8E= Subject key identifier: 5A:7F:29:B0:F9:19:51:54:FD:CF:B2:DA:65:BC:74:E7:BC:E6:92:86 Authority key identifier: 0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA Certificate issuer: /CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft Manifest number: 0179 Signing time: Thu 21 Nov 2024 02:15:54 +0000 Manifest this update: Thu 21 Nov 2024 02:15:54 +0000 Manifest next update: Thu 28 Nov 2024 02:15:54 +0000 Files and hashes: 1: ChYfF3ryrIp11Br-R61A0quRh8o.crl (hash: OVCjQRC3Dr1QeSYpGnzkRiZj5ai1+MH0PqYJKkBEww4=) 2: 7817D2327A5C11EDA0156D76C4F9AE02.roa (hash: NRQXP8/Yyxz2onFKhHMZs9OvKvOabIesSucdhpClwHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA/serialNumber=0A161F177AF2AC8A75D41AFE47AD40D2AB9187CA Validity Not Before: Nov 21 02:15:54 2024 GMT Not After : Nov 28 02:15:54 2024 GMT Subject: CN=673e97da-3c52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:70:05:43:69:11:cd:63:fa:f0:8d:95:97:80: 12:42:ae:af:12:ea:ed:ae:ca:fa:49:dd:30:59:db: 52:2c:ff:41:00:26:b4:f1:7f:68:70:f4:3f:ea:48: 42:5c:21:75:4b:70:33:27:30:03:c1:a8:d7:f0:1a: 4f:c0:70:de:78:3f:78:20:bd:65:f7:e6:0d:bc:82: f5:b8:0a:b7:e2:7f:25:65:1d:d5:d9:9f:26:60:f5: 01:5b:bc:ed:df:56:11:c8:ec:e0:92:5c:83:30:78: 8b:d2:fe:c3:3f:39:59:6c:65:61:84:e3:73:a3:ae: c9:d1:16:a4:6c:0b:15:7a:8d:4c:97:67:12:1d:c5: ce:93:ba:68:ae:32:ba:c0:a7:08:b9:89:6a:8e:49: 95:09:da:34:6b:3e:94:4b:b7:f5:c9:1f:f3:68:d1: b4:41:2f:c3:30:7b:18:9a:97:64:e2:82:db:23:a8: 83:7f:96:09:ad:69:e7:6d:37:72:f2:cd:c1:10:b0: e1:9d:b1:29:61:ff:ea:1d:a2:06:ca:70:9f:23:c8: 0b:94:9f:a1:77:84:a6:79:f6:17:b5:d6:15:1a:c6: ae:c6:ba:51:d6:3e:82:4d:5a:b9:b4:7b:73:3a:46: 4b:05:3f:2d:ae:a7:77:dd:37:5b:b8:77:1b:87:97: 71:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7F:29:B0:F9:19:51:54:FD:CF:B2:DA:65:BC:74:E7:BC:E6:92:86 X509v3 Authority Key Identifier: keyid:0A:16:1F:17:7A:F2:AC:8A:75:D4:1A:FE:47:AD:40:D2:AB:91:87:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChYfF3ryrIp11Br-R61A0quRh8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/365BCCEC7A3C11ED861B2933C4F9AE02/ChYfF3ryrIp11Br-R61A0quRh8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:14:32:96:86:ee:42:90:f6:26:b5:ff:a1:6f:09:4d:76:bf: 1e:b4:3e:6d:7b:72:ad:67:0c:15:e0:fc:4e:17:2f:1b:a9:33: 4a:25:36:fd:64:ee:e2:60:b3:56:bb:3b:a5:bb:98:6f:f6:38: 2a:28:05:90:bc:b2:57:07:c1:c1:f0:3d:8f:98:eb:c9:44:79: 58:69:b8:c7:a2:72:ba:bb:dd:11:ed:36:c4:75:d8:a0:10:e6: 7f:26:b5:d3:9e:41:7c:0c:7d:44:d3:be:f1:06:c6:72:71:a3: f9:87:a4:4c:1d:0c:20:5e:11:50:fe:2d:dd:d0:d6:e2:a8:7c: 5c:41:21:7d:4a:03:bc:fb:06:46:89:c8:2e:25:6a:47:a8:4b: 0e:ce:de:d8:d2:e4:fe:a7:e0:61:07:50:be:e5:89:2c:72:db: ff:7b:5d:de:54:09:10:62:f4:ba:97:9d:b5:e8:98:30:b7:df: be:bc:3e:4b:b5:aa:f3:7c:7d:b0:a9:c8:e9:8c:de:9d:df:43: 70:34:d7:33:3a:22:90:6a:29:6b:f3:a8:cd:d0:3d:8e:27:6b: 40:80:7d:6e:ed:60:0d:ad:07:b4:da:44:8c:0d:84:dc:b0:88: 30:61:70:76:0b:76:2c:f6:94:3b:0c:7b:25:b3:60:5f:c0:d4: 84:8f:95:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDBBMTYxRjE3N0FGMkFDOEE3NUQ0MUFGRTQ3QUQ0MEQy QUI5MTg3Q0EwHhcNMjQxMTIxMDIxNTU0WhcNMjQxMTI4MDIxNTU0WjAYMRYwFAYD VQQDEw02NzNlOTdkYS0zYzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXAFQ2kRzWP68I2Vl4ASQq6vEurtrsr6Sd0wWdtSLP9BACa08X9ocPQ/6khC XCF1S3AzJzADwajX8BpPwHDeeD94IL1l9+YNvIL1uAq34n8lZR3V2Z8mYPUBW7zt 31YRyOzgklyDMHiL0v7DPzlZbGVhhONzo67J0RakbAsVeo1Ml2cSHcXOk7porjK6 wKcIuYlqjkmVCdo0az6US7f1yR/zaNG0QS/DMHsYmpdk4oLbI6iDf5YJrWnnbTdy 8s3BELDhnbEpYf/qHaIGynCfI8gLlJ+hd4SmefYXtdYVGsauxrpR1j6CTVq5tHtz OkZLBT8trqd33TdbuHcbh5dxuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFp/KbD5 GVFU/c+y2mW8dOe85pKGMB8GA1UdIwQYMBaAFAoWHxd68qyKddQa/ketQNKrkYfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8zNjVCQ0NFQzdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJcDExQnItUjYxQTBxdVJo OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoWWZGM3J5cklwMTFCci1SNjFBMHF1Umg4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBBQS8zNjVCQ0NFQzdBM0MxMUVEODYxQjI5MzNDNEY5QUUwMi9DaFlmRjNyeXJJ cDExQnItUjYxQTBxdVJoOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPFDKWhu5CkPYmtf+hbwlNdr8etD5te3KtZwwV4PxOFy8bqTNKJTb9 ZO7iYLNWuzulu5hv9jgqKAWQvLJXB8HB8D2PmOvJRHlYabjHonK6u90R7TbEddig EOZ/JrXTnkF8DH1E077xBsZycaP5h6RMHQwgXhFQ/i3d0NbiqHxcQSF9SgO8+wZG icguJWpHqEsOzt7Y0uT+p+BhB1C+5Yksctv/e13eVAkQYvS6l5216Jgwt9++vD5L tarzfH2wqcjpjN6d30NwNNczOiKQailr86jN0D2OJ2tAgH1u7WANrQe02kSMDYTc sIgwYXB2C3Ys9pQ7DHsls2BfwNSEj5Wd -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org