$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: nniKVuBdxXsD5mMBTwr5LqSPfi6dLFaiHKOx4F4q0fg= Subject key identifier: 23:39:A1:9E:E3:1B:4B:7C:EF:87:5B:27:BE:A3:ED:41:7C:13:3B:03 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 77 Signing time: Sat 23 Nov 2024 04:44:54 +0000 Manifest this update: Sat 23 Nov 2024 04:44:54 +0000 Manifest next update: Sat 30 Nov 2024 04:44:54 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: UhA3afZaE0Bwjk8MgR3rK0wGwkf9z708AHcRhDOOjWk=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: St0Nfe2F2dQzltMPivJaPsXHEdMGkKnojTPQWotC9ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Nov 23 04:44:54 2024 GMT Not After : Nov 30 04:44:54 2024 GMT Subject: CN=67415dc6-cfc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fb:e5:8e:91:59:af:cf:ed:5a:fd:cd:e6:3c: f7:5d:f6:d8:f5:f4:7e:70:6b:92:f9:ac:50:63:e4: d6:9f:76:cf:04:c9:af:da:79:53:e4:15:5c:a3:32: 44:c2:75:91:ea:7b:7e:f8:a1:8b:fe:79:8c:2f:f9: 38:e5:b4:01:11:29:b8:b4:94:62:52:fd:45:b0:83: 38:ce:f3:d6:b1:31:1b:a4:19:cd:8a:68:22:3a:fd: 54:39:d5:9e:b4:c0:fd:ab:46:64:13:c0:b1:97:9b: e8:1a:b7:c5:05:9b:5b:eb:74:fe:24:87:a6:b2:e7: a9:bd:54:d1:3c:fd:1a:d1:21:da:7a:85:f4:8d:92: a7:b9:58:e5:c2:43:9d:90:7a:aa:f5:8f:8b:61:c0: ad:2d:97:4c:4a:d1:11:44:c6:85:d7:af:43:b6:18: 7a:d3:7b:33:41:54:6f:ce:c0:30:3c:0f:c5:71:7d: 39:b4:c9:46:81:88:a3:77:e8:c5:26:89:7e:b3:b8: 5c:f9:1d:cd:fa:35:b3:68:b6:1f:05:66:6c:59:ee: 1f:0b:72:b8:d3:09:43:b0:ad:92:74:3e:8a:a0:26: dd:72:9c:1c:65:ea:c8:c7:04:6a:8d:fd:ca:8e:d9: f9:b0:b7:45:da:e5:2b:f3:5e:b7:72:a0:2d:c1:fa: 70:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:39:A1:9E:E3:1B:4B:7C:EF:87:5B:27:BE:A3:ED:41:7C:13:3B:03 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:af:3b:d0:ad:c8:01:24:38:0c:54:f6:04:9b:e8:a7:a9:81: 31:ac:32:7e:b9:f4:5f:d9:55:b3:13:59:80:66:96:21:c4:90: 46:39:a5:ef:cd:82:fe:e6:81:fa:44:f1:2a:4b:bb:9a:74:39: 41:63:09:7b:cc:0e:5a:86:54:8d:21:bd:b7:79:ba:5e:e2:ec: 59:9a:10:58:74:93:9d:20:59:df:31:92:59:a4:e1:35:0f:4e: 90:0e:db:f1:3c:c7:b6:a6:9e:5e:63:ba:55:e0:70:ec:aa:e3: 58:9b:a7:2e:91:0e:4c:b9:ba:be:47:5a:27:b2:6a:d5:21:14: 2b:58:70:3e:3b:4c:5a:76:28:70:f9:89:e8:3d:08:84:12:55: 0f:fd:15:ab:0e:f6:87:20:11:4d:84:30:bb:ef:0d:17:7c:fb: 21:03:cc:82:bd:53:fd:f9:4f:cc:3c:e0:e9:d5:8e:41:97:38: fe:19:de:4c:3d:aa:54:4a:f7:c1:a8:3c:a3:cb:ea:95:c1:c0: f0:3e:56:c3:ee:1e:e2:f6:ba:c7:8b:8d:67:4b:7e:be:6a:ad: 34:28:60:7d:a7:bc:12:88:45:ef:0e:c9:3b:e5:60:20:61:f0: b7:9f:61:10:66:07:ac:11:3a:c7:e3:6a:17:0a:0d:fc:e0:57: 34:c1:77:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTg1RTExMC8GA1UEBRMoNzJEMUY2NzlDOTZEMjA1QzJENDcxQzk0QTgwREVGNjBE OTExMjYxQzAeFw0yNDExMjMwNDQ0NTRaFw0yNDExMzAwNDQ0NTRaMBgxFjAUBgNV BAMTDTY3NDE1ZGM2LWNmYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8++WOkVmvz+1a/c3mPPdd9tj19H5wa5L5rFBj5Nafds8Eya/aeVPkFVyjMkTC dZHqe374oYv+eYwv+TjltAERKbi0lGJS/UWwgzjO89axMRukGc2KaCI6/VQ51Z60 wP2rRmQTwLGXm+gat8UFm1vrdP4kh6ay56m9VNE8/RrRIdp6hfSNkqe5WOXCQ52Q eqr1j4thwK0tl0xK0RFExoXXr0O2GHrTezNBVG/OwDA8D8VxfTm0yUaBiKN36MUm iX6zuFz5Hc36NbNoth8FZmxZ7h8LcrjTCUOwrZJ0PoqgJt1ynBxl6sjHBGqN/cqO 2fmwt0Xa5SvzXrdyoC3B+nApAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIzmhnuMb S3zvh1snvqPtQXwTOwMwHwYDVR0jBBgwFoAUctH2ecltIFwtRxyUqA3vYNkRJhww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFODVFLzVCQzEyNjdBRUZG MzExRUU5NzdDQUMzMUM0RjlBRTAyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpo dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY3RIMmVjbHRJRnd0Unh5VXFBM3ZZTmtSSmh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF ODVFLzVCQzEyNjdBRUZGMzExRUU5NzdDQUMzMUM0RjlBRTAyL2N0SDJlY2x0SUZ3 dFJ4eVVxQTN2WU5rUkpody5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHWvO9CtyAEkOAxU9gSb6KepgTGsMn659F/ZVbMTWYBmliHEkEY5pe/N gv7mgfpE8SpLu5p0OUFjCXvMDlqGVI0hvbd5ul7i7FmaEFh0k50gWd8xklmk4TUP TpAO2/E8x7amnl5julXgcOyq41ibpy6RDky5ur5HWieyatUhFCtYcD47TFp2KHD5 ieg9CIQSVQ/9FasO9ocgEU2EMLvvDRd8+yEDzIK9U/35T8w84OnVjkGXOP4Z3kw9 qlRK98GoPKPL6pXBwPA+VsPuHuL2useLjWdLfr5qrTQoYH2nvBKIRe8OyTvlYCBh 8LefYRBmB6wROsfjahcKDfzgVzTBd2M= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:14 2024 by rpki-client on console-ams.rpki-client.org