$ rpki-client -vvf rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft File: cRYXAC2fDJ62W07dYfehyR_NuD4.mft (raw, json) Hash identifier: n24yhxvt+MwBrhkH0OiQwZCBwBe/SS8lBjbxTpgmNXw= Subject key identifier: 34:A0:EA:D8:FB:89:40:E2:C3:E4:A8:1C:E9:94:4E:5F:7F:07:B1:8B Authority key identifier: 71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E Certificate issuer: /CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft Manifest number: 12 Signing time: Thu 19 Sep 2024 06:20:28 +0000 Manifest this update: Thu 19 Sep 2024 06:20:27 +0000 Manifest next update: Thu 26 Sep 2024 06:20:27 +0000 Files and hashes: 1: cRYXAC2fDJ62W07dYfehyR_NuD4.crl (hash: YYeGORal1BeC3IpmozCgEWUkl94jfmpRgcFzi9UV+uo=) 2: 73EF25545DDE11EFBCDB7463C4F9AE02.roa (hash: JrlJ2EvGFrH8+I8VUWwxgID9iYwpW3LVV5yISMkbZ08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Validity Not Before: Sep 19 06:20:27 2024 GMT Not After : Sep 26 06:20:27 2024 GMT Subject: CN=66ebc2ab-2b36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:55:a2:9c:17:b5:81:39:75:07:d3:59:40:79: 97:31:4a:e4:38:2d:ea:64:ff:02:e4:4e:9a:7f:22: d4:5d:71:55:79:26:8b:fa:fd:b9:a6:2a:46:75:f3: d7:da:0f:d0:27:54:24:10:ea:da:e9:7c:2a:37:7f: ea:71:4d:4b:ba:9a:31:23:8b:82:e7:6b:15:41:98: 84:47:06:c4:1d:c8:e7:12:7a:24:70:9a:84:2d:be: dc:c4:f2:07:0f:f7:84:ef:a0:e9:1f:8b:fc:34:10: 3d:67:2a:2f:87:c0:e0:fa:81:f1:39:f5:d8:a6:35: 2f:54:a0:ac:06:f6:bc:3c:4e:9e:04:19:1a:dd:0d: b7:ab:2d:6d:e9:43:9b:fd:32:99:ac:bd:19:de:52: 18:02:92:49:33:7c:12:55:b8:8d:37:4d:c9:2e:ba: 20:f8:20:52:bf:40:c5:5f:10:c1:55:51:d3:a5:39: 04:6e:3c:9b:31:2c:21:6e:31:f2:3f:93:c3:b9:9a: 7a:b3:02:1b:88:26:a2:4d:5d:43:63:99:70:03:bf: 11:25:36:93:1a:27:2b:b7:44:78:a5:b3:fb:c4:01: 07:f8:79:53:b9:b5:f9:d5:aa:96:4c:09:f5:7e:dc: 74:c0:fa:f9:c0:6f:f2:99:75:a2:70:da:3a:00:5f: 09:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A0:EA:D8:FB:89:40:E2:C3:E4:A8:1C:E9:94:4E:5F:7F:07:B1:8B X509v3 Authority Key Identifier: keyid:71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:5d:5f:37:5c:0e:53:9b:a3:37:9c:3a:ad:2b:72:64:86:c5: 9e:73:90:10:08:03:98:54:ba:50:96:2e:75:b2:07:b5:35:b8: 3c:f0:b7:4a:ab:44:0a:f2:22:10:5a:97:b4:c0:27:d7:6b:f6: 35:1e:4c:c3:77:25:93:da:85:8c:a0:6e:91:92:d2:0c:76:d3: cb:29:cb:c6:30:cd:4f:eb:34:1e:f3:40:98:6f:83:63:5a:f4: 34:7d:c0:c3:8f:30:4f:9f:82:2c:80:9d:dc:32:b1:af:cc:1b: f1:a5:ce:5b:22:f5:55:5f:f9:c8:82:10:6e:31:5d:ce:79:7c: 70:0b:a9:fd:5f:23:fb:10:90:8a:7d:b8:38:13:45:7d:9c:32: ef:58:a2:9d:8f:78:d7:0a:2e:9b:5d:a6:22:e3:e6:5a:44:01: c6:cf:dd:cc:4f:b9:38:0b:54:1c:eb:97:9a:ed:ba:13:2c:5f: 26:fa:f6:79:23:c0:9c:af:84:ad:07:7e:ad:b1:f0:a8:f7:42: aa:7c:06:3f:44:39:95:e9:e8:4d:5a:71:f6:9b:00:74:91:98: 13:42:fc:89:73:81:11:b3:d9:ca:e3:00:21:60:2e:ca:8c:1b: 58:1f:d5:58:61:2f:03:63:79:c1:1c:27:94:85:d9:02:3e:01: 91:3b:b0:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QzZFNzExMC8GA1UEBRMoNzExNjE3MDAyRDlGMEM5RUI2NUI0RURENjFGN0ExQzkx RkNEQjgzRTAeFw0yNDA5MTkwNjIwMjdaFw0yNDA5MjYwNjIwMjdaMBgxFjAUBgNV BAMTDTY2ZWJjMmFiLTJiMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwVaKcF7WBOXUH01lAeZcxSuQ4Lepk/wLkTpp/ItRdcVV5Jov6/bmmKkZ189fa D9AnVCQQ6trpfCo3f+pxTUu6mjEji4LnaxVBmIRHBsQdyOcSeiRwmoQtvtzE8gcP 94TvoOkfi/w0ED1nKi+HwOD6gfE59dimNS9UoKwG9rw8Tp4EGRrdDberLW3pQ5v9 MpmsvRneUhgCkkkzfBJVuI03TckuuiD4IFK/QMVfEMFVUdOlOQRuPJsxLCFuMfI/ k8O5mnqzAhuIJqJNXUNjmXADvxElNpMaJyu3RHils/vEAQf4eVO5tfnVqpZMCfV+ 3HTA+vnAb/KZdaJw2joAXwllAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNKDq2PuJ QOLD5Kgc6ZROX38HsYswHwYDVR0jBBgwFoAUcRYXAC2fDJ62W07dYfehyR/NuD4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDNkU3L0U0QTBDQ0FFNURE RDExRUY4MzBERjU2MUM0RjlBRTAyL2NSWVhBQzJmREo2MlcwN2RZZmVoeVJfTnVE NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1JZWEFDMmZESjYyVzA3ZFlmZWh5Ul9OdUQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD NkU3L0U0QTBDQ0FFNURERDExRUY4MzBERjU2MUM0RjlBRTAyL2NSWVhBQzJmREo2 MlcwN2RZZmVoeVJfTnVENC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAINdXzdcDlObozecOq0rcmSGxZ5zkBAIA5hUulCWLnWyB7U1uDzwt0qr RAryIhBal7TAJ9dr9jUeTMN3JZPahYygbpGS0gx208spy8YwzU/rNB7zQJhvg2Na 9DR9wMOPME+fgiyAndwysa/MG/Glzlsi9VVf+ciCEG4xXc55fHALqf1fI/sQkIp9 uDgTRX2cMu9Yop2PeNcKLptdpiLj5lpEAcbP3cxPuTgLVBzrl5rtuhMsXyb69nkj wJyvhK0Hfq2x8Kj3Qqp8Bj9EOZXp6E1acfabAHSRmBNC/IlzgRGz2crjACFgLsqM G1gf1VhhLwNjecEcJ5SF2QI+AZE7sCk= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:50 2024 by rpki-client on console-ams.rpki-client.org