$ rpki-client -vvf rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft File: cRYXAC2fDJ62W07dYfehyR_NuD4.mft (raw, json) Hash identifier: 1yUeQPe2WtNnlw8RgQOoDz1mL9+aqjy2vxWyTTkk6w0= Subject key identifier: 43:A9:B6:C0:7C:77:56:57:9F:C6:C6:C8:07:29:09:0D:D5:10:EF:34 Authority key identifier: 71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E Certificate issuer: /CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft Manifest number: 32 Signing time: Thu 21 Nov 2024 05:40:26 +0000 Manifest this update: Thu 21 Nov 2024 05:40:25 +0000 Manifest next update: Thu 28 Nov 2024 05:40:25 +0000 Files and hashes: 1: cRYXAC2fDJ62W07dYfehyR_NuD4.crl (hash: tm1HIMWHkIreKkX3ZN8sIh3oA5ukCXNFRmWID2tBBNY=) 2: 73EF25545DDE11EFBCDB7463C4F9AE02.roa (hash: JrlJ2EvGFrH8+I8VUWwxgID9iYwpW3LVV5yISMkbZ08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Validity Not Before: Nov 21 05:40:25 2024 GMT Not After : Nov 28 05:40:25 2024 GMT Subject: CN=673ec7ca-942d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a0:9c:cf:ca:95:fb:5a:f9:ef:63:72:11:b9: 6e:3d:88:3e:99:02:df:d0:0d:36:34:3f:b4:a9:a0: b7:83:f9:63:23:92:92:08:8d:7c:b8:ac:73:76:29: 08:24:e6:a6:11:21:89:f5:28:bb:1b:e2:9e:5a:aa: 3b:9e:49:a1:65:1d:f3:ab:d1:8f:68:0f:ae:28:05: 36:8c:6f:be:54:6f:b6:0e:1e:c9:fa:2f:20:6f:6b: e1:2d:35:72:74:bc:8a:84:13:7f:32:f3:c1:cc:b3: d1:90:12:57:24:4f:13:f3:18:8e:ff:15:c3:3c:af: d3:d3:c5:26:df:80:04:8d:5a:12:78:56:ba:c1:c8: 85:f6:b2:9c:39:9e:96:96:61:fe:fc:36:6e:f7:86: 4e:a1:1a:54:f3:a4:84:a6:c6:49:2e:e8:13:01:87: a6:59:11:24:ef:66:0f:5e:5a:70:81:2d:0f:e8:83: eb:6b:4d:46:56:fb:34:6a:47:b0:ba:af:78:56:f1: 36:96:7e:6b:88:d8:2a:ba:5b:77:43:9c:9f:78:21: 27:23:bc:34:54:de:ce:c8:9c:09:ba:48:97:b5:ee: 72:7f:bb:aa:8d:ce:d5:9c:90:5a:6c:59:50:f0:c6: 35:6a:41:f6:be:ea:ee:4c:a5:af:c5:45:02:11:34: 1c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A9:B6:C0:7C:77:56:57:9F:C6:C6:C8:07:29:09:0D:D5:10:EF:34 X509v3 Authority Key Identifier: keyid:71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:10:37:f3:5f:c7:b3:07:7e:56:d8:e8:18:71:28:4e:00:97: 86:82:d8:50:f0:c6:c1:42:99:dc:3c:dc:26:91:67:2f:df:bb: b7:bd:59:6f:bf:65:b3:b5:36:fc:90:52:27:b3:fb:50:d6:af: f2:3d:eb:84:97:57:23:eb:d1:7c:7a:9d:b9:9a:86:df:59:57: 0e:2b:30:c5:24:8b:49:b9:e0:91:ed:15:86:65:d1:a0:5d:3e: 04:c6:37:3b:55:68:05:44:8e:36:0a:95:62:21:18:c3:2a:72: 56:c9:c3:08:5d:28:1b:e3:14:39:07:7e:bc:95:74:8e:14:5c: ee:2c:e2:c4:70:5c:e3:4e:66:34:8b:90:09:10:cc:c0:41:11: 8d:36:f5:fa:3e:dd:c3:fe:eb:46:8c:7b:dd:ad:10:e3:c5:79: c2:8f:06:80:04:81:71:da:bf:a5:cc:d7:1f:41:29:90:a1:41: 65:aa:bd:f2:f6:66:23:1d:18:28:83:41:05:fd:27:5a:ca:6c: df:59:29:c2:f9:d7:30:08:5b:86:9b:25:26:df:1e:33:c9:8d: b4:b7:1e:81:f4:83:29:90:b9:81:05:00:c9:ea:b1:bd:14:83: f8:51:45:03:88:16:8b:1e:b4:6d:7b:ca:3f:21:0d:25:d7:b9: 4d:47:5d:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QzZFNzExMC8GA1UEBRMoNzExNjE3MDAyRDlGMEM5RUI2NUI0RURENjFGN0ExQzkx RkNEQjgzRTAeFw0yNDExMjEwNTQwMjVaFw0yNDExMjgwNTQwMjVaMBgxFjAUBgNV BAMTDTY3M2VjN2NhLTk0MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJoJzPypX7WvnvY3IRuW49iD6ZAt/QDTY0P7SpoLeD+WMjkpIIjXy4rHN2KQgk 5qYRIYn1KLsb4p5aqjueSaFlHfOr0Y9oD64oBTaMb75Ub7YOHsn6LyBva+EtNXJ0 vIqEE38y88HMs9GQElckTxPzGI7/FcM8r9PTxSbfgASNWhJ4VrrByIX2spw5npaW Yf78Nm73hk6hGlTzpISmxkku6BMBh6ZZESTvZg9eWnCBLQ/og+trTUZW+zRqR7C6 r3hW8TaWfmuI2Cq6W3dDnJ94IScjvDRU3s7InAm6SJe17nJ/u6qNztWckFpsWVDw xjVqQfa+6u5Mpa/FRQIRNBw9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ6m2wHx3 VlefxsbIBykJDdUQ7zQwHwYDVR0jBBgwFoAUcRYXAC2fDJ62W07dYfehyR/NuD4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDNkU3L0U0QTBDQ0FFNURE RDExRUY4MzBERjU2MUM0RjlBRTAyL2NSWVhBQzJmREo2MlcwN2RZZmVoeVJfTnVE NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1JZWEFDMmZESjYyVzA3ZFlmZWh5Ul9OdUQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD NkU3L0U0QTBDQ0FFNURERDExRUY4MzBERjU2MUM0RjlBRTAyL2NSWVhBQzJmREo2 MlcwN2RZZmVoeVJfTnVENC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAQQN/Nfx7MHflbY6BhxKE4Al4aC2FDwxsFCmdw83CaRZy/fu7e9WW+/ ZbO1NvyQUiez+1DWr/I964SXVyPr0Xx6nbmaht9ZVw4rMMUki0m54JHtFYZl0aBd PgTGNztVaAVEjjYKlWIhGMMqclbJwwhdKBvjFDkHfryVdI4UXO4s4sRwXONOZjSL kAkQzMBBEY029fo+3cP+60aMe92tEOPFecKPBoAEgXHav6XM1x9BKZChQWWqvfL2 ZiMdGCiDQQX9J1rKbN9ZKcL51zAIW4abJSbfHjPJjbS3HoH0gymQuYEFAMnqsb0U g/hRRQOIFosetG17yj8hDSXXuU1HXYY= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:35 2024 by rpki-client on console-ams.rpki-client.org