$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft File: ChpgX3N8mCCzMTPlo1ecFw0idOw.mft (raw, json) Hash identifier: yFDC5ab83VcBGQQWzj3xnlxOr3OB20rTz2T09Hip5A4= Subject key identifier: 77:9B:67:3F:9E:67:F2:7B:EB:01:D5:F0:84:F8:5E:4F:B9:69:FF:4C Authority key identifier: 0A:1A:60:5F:73:7C:98:20:B3:31:33:E5:A3:57:9C:17:0D:22:74:EC Certificate issuer: /CN=A91BD614/serialNumber=0A1A605F737C9820B33133E5A3579C170D2274EC Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft Manifest number: 0143 Signing time: Sat 23 Nov 2024 02:38:28 +0000 Manifest this update: Sat 23 Nov 2024 02:38:28 +0000 Manifest next update: Sat 30 Nov 2024 02:38:28 +0000 Files and hashes: 1: ChpgX3N8mCCzMTPlo1ecFw0idOw.crl (hash: AREFSf8Sj6V9B78ujUSTuMHESk6ejL5/Ac3fha5bwj4=) 2: 1E925A56BEE111ED83037109C4F9AE02.roa (hash: TBhcbssExgqFxRfQy6kh4THFtAGhrBLT/uB9I75u5Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.crl rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD614/serialNumber=0A1A605F737C9820B33133E5A3579C170D2274EC Validity Not Before: Nov 23 02:38:28 2024 GMT Not After : Nov 30 02:38:28 2024 GMT Subject: CN=67414024-84cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5e:8e:a0:b5:f2:fb:da:17:2d:7d:47:ef:66: ff:2e:8d:4f:a2:45:3e:97:d0:2d:c8:bf:5c:79:45: 4e:7d:fc:a7:55:6c:ef:5e:7e:76:d3:9c:88:c5:52: 40:0d:a2:25:65:92:d8:18:c1:21:85:57:08:29:a8: 49:30:33:84:3d:5a:56:5b:63:de:90:87:c3:cc:73: 2b:6e:a1:70:49:31:13:c1:fc:36:7b:eb:7a:3f:2e: 48:be:0e:34:73:83:7d:37:31:3a:e2:66:ec:83:2d: dc:c4:c4:20:9b:a4:75:1f:90:47:1c:d6:34:dc:dc: 8c:0a:70:c6:0a:3d:22:11:4b:59:d0:d9:04:bd:1a: 5a:e6:8d:5a:b8:a6:80:19:28:1f:1e:48:d2:ca:d5: 26:81:70:f0:76:f0:da:ee:7b:18:79:92:cf:0b:02: f1:ad:2e:ae:54:6b:c9:6d:0d:07:85:12:31:7a:ca: a4:5c:ca:fb:7a:89:ea:55:34:82:27:36:9e:20:5e: 65:5f:23:f0:41:73:b1:69:21:88:ac:8a:e9:ce:67: b8:33:b2:58:b8:d6:85:d3:f1:1f:0f:1e:83:98:a0: f2:15:2e:4d:01:57:9c:62:66:ec:ca:c1:f4:52:05: 23:28:05:d5:68:78:67:81:47:52:c0:61:d8:da:62: 82:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9B:67:3F:9E:67:F2:7B:EB:01:D5:F0:84:F8:5E:4F:B9:69:FF:4C X509v3 Authority Key Identifier: keyid:0A:1A:60:5F:73:7C:98:20:B3:31:33:E5:A3:57:9C:17:0D:22:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:55:f7:92:e8:ee:38:8a:15:fb:23:d2:60:9c:35:45:9f:90: b5:f4:84:c0:e5:bb:44:cb:ae:d5:47:e6:3a:74:42:ef:40:b7: c5:89:02:a8:20:1a:ff:46:cc:f2:31:59:33:4e:de:2a:2a:2d: 5b:5d:ac:90:f4:ad:b2:f3:c3:b1:0f:3a:f2:94:b6:ee:87:84: aa:4a:ee:7a:8b:63:62:cb:ce:35:49:a3:a0:3b:30:d2:5c:9b: 5a:9d:ee:33:52:04:e3:04:b3:45:a8:62:1b:74:80:c3:0b:49: 29:86:f8:64:ca:50:94:31:a3:75:c4:ac:7e:df:a2:e7:cb:1b: 12:b1:69:31:b0:e5:11:52:fa:5e:07:76:1e:67:26:99:58:7d: 09:47:63:9d:1a:c0:98:06:d6:b9:22:e7:2a:1e:c1:c5:46:24: 19:a9:c5:72:9f:f5:7b:0a:82:01:a8:42:10:a5:2a:80:cd:d7: 6c:6c:91:58:13:c1:da:a6:77:c6:8a:f2:85:37:f4:2e:ab:f7: a1:fb:1d:87:bf:d8:7d:b9:43:4e:06:c0:34:79:25:07:cc:d3: 92:3e:ae:04:7b:59:14:4b:f0:64:0b:d2:6a:ee:57:ec:53:d5: ec:be:63:f7:e7:e3:d8:b2:14:1e:15:0e:b5:4f:53:2b:e5:c2: b1:5c:db:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ2MTQxMTAvBgNVBAUTKDBBMUE2MDVGNzM3Qzk4MjBCMzMxMzNFNUEzNTc5QzE3 MEQyMjc0RUMwHhcNMjQxMTIzMDIzODI4WhcNMjQxMTMwMDIzODI4WjAYMRYwFAYD VQQDEw02NzQxNDAyNC04NGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq16OoLXy+9oXLX1H72b/Lo1PokU+l9AtyL9ceUVOffynVWzvXn5205yIxVJA DaIlZZLYGMEhhVcIKahJMDOEPVpWW2PekIfDzHMrbqFwSTETwfw2e+t6Py5Ivg40 c4N9NzE64mbsgy3cxMQgm6R1H5BHHNY03NyMCnDGCj0iEUtZ0NkEvRpa5o1auKaA GSgfHkjSytUmgXDwdvDa7nsYeZLPCwLxrS6uVGvJbQ0HhRIxesqkXMr7eonqVTSC JzaeIF5lXyPwQXOxaSGIrIrpzme4M7JYuNaF0/EfDx6DmKDyFS5NAVecYmbsysH0 UgUjKAXVaHhngUdSwGHY2mKC9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHebZz+e Z/J76wHV8IT4Xk+5af9MMB8GA1UdIwQYMBaAFAoaYF9zfJggszEz5aNXnBcNInTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDYxNC8xREYwNzVFMkJF REMxMUVEOEUwQUREODBDNEY5QUUwMi9DaHBnWDNOOG1DQ3pNVFBsbzFlY0Z3MGlk T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NocGdYM044bUNDek1UUGxvMWVjRncwaWRPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDYxNC8xREYwNzVFMkJFREMxMUVEOEUwQUREODBDNEY5QUUwMi9DaHBnWDNOOG1D Q3pNVFBsbzFlY0Z3MGlkT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJVfeS6O44ihX7I9JgnDVFn5C19ITA5btEy67VR+Y6dELvQLfFiQKo IBr/RszyMVkzTt4qKi1bXayQ9K2y88OxDzrylLbuh4SqSu56i2Niy841SaOgOzDS XJtane4zUgTjBLNFqGIbdIDDC0kphvhkylCUMaN1xKx+36LnyxsSsWkxsOURUvpe B3YeZyaZWH0JR2OdGsCYBta5IucqHsHFRiQZqcVyn/V7CoIBqEIQpSqAzddsbJFY E8HapnfGivKFN/Quq/eh+x2Hv9h9uUNOBsA0eSUHzNOSPq4Ee1kUS/BkC9Jq7lfs U9XsvmP35+PYshQeFQ61T1Mr5cKxXNuK -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org