$ rpki-client -vvf rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft File: clTejLmzOZRVQ9h-jrBW8VPVH1A.mft (raw, json) Hash identifier: GIRJuhs9WQjBNbQJedThyd0c2wd8ZtrEjRgVxFHeFdQ= Subject key identifier: C1:DB:15:A2:00:E9:16:A7:D1:47:E5:16:8F:46:49:A4:B0:21:F5:94 Authority key identifier: 72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 Certificate issuer: /CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Certificate serial: 018F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft Manifest number: 018B Signing time: Sat 23 Nov 2024 01:55:34 +0000 Manifest this update: Sat 23 Nov 2024 01:55:34 +0000 Manifest next update: Sat 30 Nov 2024 01:55:34 +0000 Files and hashes: 1: clTejLmzOZRVQ9h-jrBW8VPVH1A.crl (hash: bBpzIMkEwCgLo92g67OCHJpDfU0nls/fkqdBBxJPL0E=) 2: A968BCA24C8511ED94579477C4F9AE02.roa (hash: QhihCyN5bbG8v0q4aS9nZCy8ZGeOjrQ8K/ICbkjXPrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198166/serialNumber=7254DE8CB9B339945543D87E8EB056F153D51F50 Validity Not Before: Nov 23 01:55:34 2024 GMT Not After : Nov 30 01:55:34 2024 GMT Subject: CN=67413616-5140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:90:fc:21:ac:10:b4:19:d8:be:af:d2:b7: f1:a3:dc:1d:f5:00:35:ff:60:80:c9:3c:65:fe:73: bb:45:c2:fa:0c:85:7b:fe:68:51:59:9c:99:3a:e8: 40:ea:31:ac:3d:00:b9:16:ef:a2:7a:58:67:32:9c: f1:3f:5b:61:03:b4:9e:0f:dc:0a:24:cb:05:99:72: c0:e5:c9:06:4a:ec:05:5a:bf:ba:85:0f:76:94:40: f5:fd:2b:32:9a:7f:f5:79:51:ac:bc:75:d4:42:4c: 54:43:b9:ad:fd:59:e9:56:2d:73:cf:4e:18:61:98: fd:89:54:18:a7:51:e1:cf:df:7e:60:f5:77:26:42: 18:41:c6:5b:84:8b:f0:ea:b2:46:67:84:92:74:16: 47:26:0c:15:e4:70:48:23:0a:40:d9:bd:98:a1:0e: 4f:cb:0c:9a:e5:47:67:82:bd:02:74:90:66:dd:d4: 34:26:25:82:f5:dc:02:46:97:40:c4:bd:ff:e0:f3: ed:a1:f8:8b:14:2f:32:d7:43:ee:9b:0d:58:b7:72: 8c:00:27:68:2d:bf:84:38:54:a7:31:64:60:dc:a0: 4e:92:64:44:5f:8e:2c:0b:24:75:17:31:fc:b0:fe: 25:24:8f:50:5c:95:ee:1f:67:5b:82:ae:bd:64:ed: d2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DB:15:A2:00:E9:16:A7:D1:47:E5:16:8F:46:49:A4:B0:21:F5:94 X509v3 Authority Key Identifier: keyid:72:54:DE:8C:B9:B3:39:94:55:43:D8:7E:8E:B0:56:F1:53:D5:1F:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/clTejLmzOZRVQ9h-jrBW8VPVH1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198166/3E6122944C8211ED9B03D449C4F9AE02/clTejLmzOZRVQ9h-jrBW8VPVH1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dd:2b:6c:43:7b:9f:2b:28:96:b5:00:89:a3:8f:f5:8c:68:e8: 54:a3:45:3b:96:ce:ac:4d:d1:f9:fa:2c:2f:55:72:4a:aa:78: 9b:ec:88:4f:25:eb:39:40:c1:0a:34:27:99:d7:6a:0e:7b:cb: 14:32:5e:4a:ef:6d:6e:b8:8b:70:bf:a9:3f:30:44:2b:98:ab: 6d:e8:fe:1d:0c:f9:e9:61:3a:67:29:97:cd:f9:29:c3:ba:46: 33:be:c0:49:bd:aa:2b:1f:11:b1:32:db:e0:52:83:64:7b:8f: 1a:9b:31:ab:56:1d:32:a5:ef:8c:4b:5e:79:5e:99:3d:3d:34: 03:57:21:2d:be:31:2f:f1:b3:46:87:11:5b:60:e8:00:89:73: ee:bc:17:e2:cc:f3:5d:47:38:d1:34:48:bf:40:a4:23:ae:f1: e0:d7:e2:31:2c:eb:a7:6b:89:af:35:0f:ca:0e:3e:fe:c4:12: 89:0b:e3:b5:d7:ac:c0:3f:ce:f9:a6:ba:48:61:67:f1:f3:81: 00:0b:5c:c6:cd:fc:d2:9c:61:3d:80:9d:de:b9:dd:b6:a0:fa: 57:99:9c:6d:44:30:43:21:e8:5a:b0:4f:d5:7d:19:2e:dd:75: 4d:95:01:a2:1f:e3:e6:04:0b:87:08:d1:4a:d0:e3:da:1c:d6: a2:4c:d3:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgxNjYxMTAvBgNVBAUTKDcyNTRERThDQjlCMzM5OTQ1NTQzRDg3RThFQjA1NkYx NTNENTFGNTAwHhcNMjQxMTIzMDE1NTM0WhcNMjQxMTMwMDE1NTM0WjAYMRYwFAYD VQQDEw02NzQxMzYxNi01MTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3WQ/CGsELQZ2L6v0rfxo9wd9QA1/2CAyTxl/nO7RcL6DIV7/mhRWZyZOuhA 6jGsPQC5Fu+ielhnMpzxP1thA7SeD9wKJMsFmXLA5ckGSuwFWr+6hQ92lED1/Ssy mn/1eVGsvHXUQkxUQ7mt/VnpVi1zz04YYZj9iVQYp1Hhz99+YPV3JkIYQcZbhIvw 6rJGZ4SSdBZHJgwV5HBIIwpA2b2YoQ5Pywya5Udngr0CdJBm3dQ0JiWC9dwCRpdA xL3/4PPtofiLFC8y10Pumw1Yt3KMACdoLb+EOFSnMWRg3KBOkmREX44sCyR1FzH8 sP4lJI9QXJXuH2dbgq69ZO3SUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHbFaIA 6Ran0UflFo9GSaSwIfWUMB8GA1UdIwQYMBaAFHJU3oy5szmUVUPYfo6wVvFT1R9Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODE2Ni8zRTYxMjI5NDRD ODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9aUlZROWgtanJCVzhWUFZI MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsVGVqTG16T1pSVlE5aC1qckJXOFZQVkgxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODE2Ni8zRTYxMjI5NDRDODIxMUVEOUIwM0Q0NDlDNEY5QUUwMi9jbFRlakxtek9a UlZROWgtanJCVzhWUFZIMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDdK2xDe58rKJa1AImjj/WMaOhUo0U7ls6sTdH5+iwvVXJKqnib7IhP Jes5QMEKNCeZ12oOe8sUMl5K721uuItwv6k/MEQrmKtt6P4dDPnpYTpnKZfN+SnD ukYzvsBJvaorHxGxMtvgUoNke48amzGrVh0ype+MS155Xpk9PTQDVyEtvjEv8bNG hxFbYOgAiXPuvBfizPNdRzjRNEi/QKQjrvHg1+IxLOuna4mvNQ/KDj7+xBKJC+O1 16zAP875prpIYWfx84EAC1zGzfzSnGE9gJ3eud22oPpXmZxtRDBDIehasE/VfRku 3XVNlQGiH+PmBAuHCNFK0OPaHNaiTNME -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org