$ rpki-client -vvf rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft File: AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft (raw, json) Hash identifier: K/orQMKCQ6I4C7u3ri8XCf5HcnzBYWfoxYlHOlqFDYc= Subject key identifier: 55:67:53:56:43:68:83:2B:7D:B5:A7:82:C0:02:53:EF:4B:D4:0A:F7 Authority key identifier: 02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 Certificate issuer: /CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft Manifest number: 0150 Signing time: Sat 23 Nov 2024 02:29:47 +0000 Manifest this update: Sat 23 Nov 2024 02:29:47 +0000 Manifest next update: Sat 30 Nov 2024 02:29:47 +0000 Files and hashes: 1: AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl (hash: xiIb4e/0iO8uCHSRNce6QhUBEEBFDs3DQazbmWmlfwU=) 2: 12AE9E92AA9711EDAAEB8345C4F9AE02.roa (hash: ZbTPGmKh281ymLxinCV1W0SdNG3gcop2OrOUFYRhJy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Validity Not Before: Nov 23 02:29:47 2024 GMT Not After : Nov 30 02:29:47 2024 GMT Subject: CN=67413e1b-8091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6c:08:8d:90:3a:a9:f7:ca:17:90:70:72:b8: 9a:f1:d3:e2:c5:2d:e3:36:c0:e4:79:4e:0d:3a:d3: 56:a9:01:c1:ff:60:f6:94:11:99:cb:3a:b2:76:eb: f7:11:7a:38:84:1c:dd:4d:79:55:dc:06:47:d9:56: d6:8d:57:30:d7:c9:29:87:c4:1c:3c:e6:6a:d4:5b: 6b:59:bd:58:67:4e:62:1b:7f:15:c9:81:db:29:81: ad:64:75:a1:75:14:ab:d7:bc:9a:b3:65:a0:34:24: 0a:3a:19:4c:87:f8:a5:5a:4c:c0:63:c8:94:60:81: 6d:01:17:33:f3:70:1d:d7:bf:3f:bf:a5:03:1f:d5: d4:8d:0a:90:d5:df:e1:62:e8:1e:40:89:79:af:98: 9e:f8:54:60:e0:2e:01:62:25:08:b5:85:c1:1a:c8: 98:d2:a9:4c:a3:99:74:30:38:ea:a0:f9:fa:7b:32: 73:49:f6:30:79:3c:5d:d3:e3:6e:a2:70:2d:d5:7f: b0:68:02:f6:05:5a:24:a9:f7:01:91:f5:f6:c5:7a: d3:e9:a4:c4:17:69:8e:e1:c6:8f:4e:b4:41:4e:27: 38:60:ec:37:e2:d6:ae:01:ae:c6:f4:58:3c:2e:c9: a2:5a:2d:97:64:76:57:87:0a:88:00:4b:f8:a2:80: fe:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:67:53:56:43:68:83:2B:7D:B5:A7:82:C0:02:53:EF:4B:D4:0A:F7 X509v3 Authority Key Identifier: keyid:02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a9:c6:d4:07:ef:9b:11:d9:16:5d:d8:11:de:ac:b3:ca:9c: 45:b0:b1:01:2c:45:fb:74:9a:f7:fe:c6:d1:43:c9:8a:08:d8: 6e:3a:37:c7:9b:34:a0:10:28:ca:19:9e:ea:b2:c5:70:90:fd: a9:01:63:32:8a:71:9f:d6:a3:d6:ed:ef:32:c4:cb:83:2a:6c: da:ac:4d:d5:02:3d:05:22:d5:40:f8:57:01:a7:b8:5e:04:d2: b2:a7:9c:9f:36:ff:f1:c3:ed:f0:69:38:ec:64:21:f5:2f:67: a6:c6:75:fe:62:61:3c:f0:9f:96:b3:b2:d1:f5:0d:ef:6e:84: e6:75:16:55:bf:97:a4:6e:d0:b2:69:da:13:b4:a2:8b:b0:5a: 5e:ec:65:67:99:2a:f0:15:69:1a:ab:e3:2b:9c:25:e4:20:48: 3f:34:b3:d2:19:5f:46:aa:7d:77:dc:0e:37:87:7e:63:49:3e: 27:59:81:ff:46:2e:84:4c:9d:8c:a4:b8:31:f5:59:72:32:c4: 0b:ab:e8:75:f1:1b:c3:5d:20:5a:4e:8b:83:a3:50:eb:fd:1f: c5:97:ae:8e:98:85:84:70:3b:6d:24:14:02:88:06:be:7a:63: 52:12:2c:ab:0b:af:6b:34:f4:56:ab:c4:35:84:dc:fa:6a:f4: ec:e0:f7:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4OEExMTAvBgNVBAUTKDAyODExQzMxRDUwQzkxRkZGRDVFREE2OEI5RUY4MUMz RjlFOUZCMTIwHhcNMjQxMTIzMDIyOTQ3WhcNMjQxMTMwMDIyOTQ3WjAYMRYwFAYD VQQDEw02NzQxM2UxYi04MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGwIjZA6qffKF5Bwcria8dPixS3jNsDkeU4NOtNWqQHB/2D2lBGZyzqyduv3 EXo4hBzdTXlV3AZH2VbWjVcw18kph8QcPOZq1FtrWb1YZ05iG38VyYHbKYGtZHWh dRSr17yas2WgNCQKOhlMh/ilWkzAY8iUYIFtARcz83Ad178/v6UDH9XUjQqQ1d/h YugeQIl5r5ie+FRg4C4BYiUItYXBGsiY0qlMo5l0MDjqoPn6ezJzSfYweTxd0+Nu onAt1X+waAL2BVokqfcBkfX2xXrT6aTEF2mO4caPTrRBTic4YOw34tauAa7G9Fg8 LsmiWi2XZHZXhwqIAEv4ooD+JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVnU1ZD aIMrfbWngsACU+9L1Ar3MB8GA1UdIwQYMBaAFAKBHDHVDJH//V7aaLnvgcP56fsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4QS9DOTYzNTdDQUFB OTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtmXzlYdHBvdWUtQndfbnAt eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FvRWNNZFVNa2ZfOVh0cG91ZS1Cd19ucC14SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTg4QS9DOTYzNTdDQUFBOTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtm XzlYdHBvdWUtQndfbnAteEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4qcbUB++bEdkWXdgR3qyzypxFsLEBLEX7dJr3/sbRQ8mKCNhuOjfH mzSgECjKGZ7qssVwkP2pAWMyinGf1qPW7e8yxMuDKmzarE3VAj0FItVA+FcBp7he BNKyp5yfNv/xw+3waTjsZCH1L2emxnX+YmE88J+Ws7LR9Q3vboTmdRZVv5ekbtCy adoTtKKLsFpe7GVnmSrwFWkaq+MrnCXkIEg/NLPSGV9Gqn133A43h35jST4nWYH/ Ri6ETJ2MpLgx9VlyMsQLq+h18RvDXSBaTouDo1Dr/R/Fl66OmIWEcDttJBQCiAa+ emNSEiyrC69rNPRWq8Q1hNz6avTs4Pfs -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org