$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: /C05PZg4jxtiqc81VuFhbu9sM0M3EGVLnmTxUYuu7b0= Subject key identifier: 6D:3E:32:E4:50:A3:F8:20:61:1C:C2:EF:B4:66:8D:19:D6:08:D0:5A Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 0214 Signing time: Sat 23 Nov 2024 01:32:30 +0000 Manifest this update: Sat 23 Nov 2024 01:32:29 +0000 Manifest next update: Sat 30 Nov 2024 01:32:29 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: dx3Fq/sjInRzkUtLUlki7GoJpOC4lR74OYKKjZLiKfM=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: JKeISo/Mq9MpA3CnUuVBraJP4vSdwyiOEeRfzcBtl0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Nov 23 01:32:29 2024 GMT Not After : Nov 30 01:32:29 2024 GMT Subject: CN=674130ad-4e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a5:70:22:e6:c6:e6:57:64:d8:24:86:1a:6b: 0f:9f:bc:b0:af:24:07:bc:23:32:1d:e5:cf:f7:a2: 57:51:ae:f3:bb:20:d3:78:4b:51:af:4e:50:7f:e2: 20:41:0b:da:3f:7d:63:c5:12:ed:55:48:89:0c:b1: 2c:54:48:9f:3a:19:e8:05:5f:ee:cc:92:b2:89:d6: fe:de:1e:f7:3c:8d:22:fb:03:29:51:5f:2d:79:32: c7:08:c1:d7:b4:19:2c:72:14:69:fa:96:34:97:b8: 7c:c7:c6:a8:2d:36:fb:f5:40:fe:02:a0:d2:8e:a4: d3:9e:5e:e3:4a:0e:41:b1:3d:95:d5:41:4f:7d:0f: d8:d8:9d:4b:fa:ed:ce:53:ff:12:67:ba:05:6b:3c: cd:ce:9d:49:9d:fd:18:68:b6:7f:af:d8:d9:4e:a2: 64:ca:bf:f9:61:53:0b:fc:65:7b:df:f1:b0:56:fa: 70:f2:1b:6d:3b:61:1f:21:18:0b:c0:e1:c8:c0:3a: 1f:8b:f7:21:ec:05:f3:b9:e9:7e:fc:ea:75:04:1d: a5:df:00:2b:09:80:56:f4:5c:59:5f:f1:e9:9d:e2: b6:89:eb:8c:8e:d9:07:dd:7c:1d:95:eb:d8:5a:0d: 4d:9a:29:80:46:dd:90:4f:be:d2:f0:50:8d:86:30: ef:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3E:32:E4:50:A3:F8:20:61:1C:C2:EF:B4:66:8D:19:D6:08:D0:5A X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:38:59:f8:c6:d4:c2:bc:33:9f:79:66:a1:65:59:58:1e:a8: 2e:f4:a3:12:7e:e9:dc:3f:2d:7c:3b:fb:ce:bf:6a:21:32:87: 9f:fc:f7:e7:e4:73:13:2c:fe:50:cf:09:0c:6e:07:6a:de:45: 10:0e:cc:aa:ec:1f:02:52:17:10:ae:08:55:cd:57:f0:fb:12: ac:3d:98:1d:ad:b8:0d:c1:47:a6:e8:d4:95:51:66:8a:8a:6f: 63:1c:77:1a:2d:e5:9c:47:be:f6:0a:4b:80:bc:82:a0:28:42: 0e:e0:fc:53:7c:f9:9c:5f:d5:20:f2:99:f6:99:8a:10:b9:ef: 51:12:03:b4:b0:2b:a9:ac:27:76:f4:0c:15:ea:77:29:5b:48: b1:64:34:c0:cd:46:96:72:2c:96:35:4a:6b:d9:e7:4d:a2:28: 9c:bf:32:47:76:d0:06:08:4f:aa:ef:67:9f:8d:e6:85:08:27: 87:19:b3:69:88:d9:b0:fe:11:45:74:49:29:57:28:df:4c:ca: 5d:2a:4e:f2:d8:b2:e7:ed:e8:58:2d:4d:9f:6b:38:b3:29:26: 59:be:4a:6d:e2:25:fc:76:f1:fb:65:2e:c6:4c:b8:d7:1d:19: fb:9a:67:33:3a:ea:c4:34:9b:c7:9c:b3:b7:18:b7:13:c0:af: 68:65:ff:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjQxMTIzMDEzMjI5WhcNMjQxMTMwMDEzMjI5WjAYMRYwFAYD VQQDEw02NzQxMzBhZC00ZTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKVwIubG5ldk2CSGGmsPn7ywryQHvCMyHeXP96JXUa7zuyDTeEtRr05Qf+Ig QQvaP31jxRLtVUiJDLEsVEifOhnoBV/uzJKyidb+3h73PI0i+wMpUV8teTLHCMHX tBkschRp+pY0l7h8x8aoLTb79UD+AqDSjqTTnl7jSg5BsT2V1UFPfQ/Y2J1L+u3O U/8SZ7oFazzNzp1Jnf0YaLZ/r9jZTqJkyr/5YVML/GV73/GwVvpw8httO2EfIRgL wOHIwDofi/ch7AXzuel+/Op1BB2l3wArCYBW9FxZX/HpneK2ieuMjtkH3XwdlevY Wg1NmimARt2QT77S8FCNhjDvOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0+MuRQ o/ggYRzC77RmjRnWCNBaMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUOFn4xtTCvDOfeWahZVlYHqgu9KMSfuncPy18O/vOv2ohMoef/Pfn 5HMTLP5QzwkMbgdq3kUQDsyq7B8CUhcQrghVzVfw+xKsPZgdrbgNwUem6NSVUWaK im9jHHcaLeWcR772CkuAvIKgKEIO4PxTfPmcX9Ug8pn2mYoQue9REgO0sCuprCd2 9AwV6ncpW0ixZDTAzUaWciyWNUpr2edNoiicvzJHdtAGCE+q72efjeaFCCeHGbNp iNmw/hFFdEkpVyjfTMpdKk7y2LLn7ehYLU2fazizKSZZvkpt4iX8dvH7ZS7GTLjX HRn7mmczOurENJvHnLO3GLcTwK9oZf+m -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org