$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft File: C33smHxhdR0-2h2_PnwipzoV3u0.mft (raw, json) Hash identifier: HIinJU7pd3anNsQ/w/9tU4AoNBtXfwxJhPppfC4HmMM= Subject key identifier: 7F:E4:B5:18:E7:1B:71:A6:79:20:B2:38:98:8B:7D:C2:A6:ED:ED:0C Authority key identifier: 0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED Certificate issuer: /CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft Manifest number: 0475 Signing time: Fri 22 Nov 2024 23:38:25 +0000 Manifest this update: Fri 22 Nov 2024 23:38:24 +0000 Manifest next update: Fri 29 Nov 2024 23:38:24 +0000 Files and hashes: 1: C33smHxhdR0-2h2_PnwipzoV3u0.crl (hash: 5asMKkhHMpqvrBDh5sOqTBQaddmIC6uSIawhAOquGvw=) 2: 60A8F48A25D211ECB2CCF633C4F9AE02.roa (hash: +PbEWtYSfIT5V18KuiJqAnYLDPzBVBUjvZLUMUeffC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E57/serialNumber=0B7DEC987C61751D3EDA1DBF3E7C22A73A15DEED Validity Not Before: Nov 22 23:38:24 2024 GMT Not After : Nov 29 23:38:24 2024 GMT Subject: CN=674115f0-0a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4b:b6:91:ab:eb:2c:6f:01:d4:c3:fa:dd:50: 13:3e:24:86:07:c5:dc:71:0b:2e:5f:3f:36:22:11: 9f:9a:e7:d6:e7:69:12:3e:06:fe:7a:31:b3:63:72: 71:1e:01:82:f2:4c:53:1c:b9:f9:8b:a1:a0:23:95: 84:e2:73:c9:12:0c:78:0c:9b:46:6c:f6:7e:21:82: 8f:6e:8f:7a:c8:f5:41:c2:4e:b6:15:99:0a:de:eb: 0a:e3:55:ae:de:0e:33:4e:59:a1:1f:76:cf:6b:e7: fe:39:b9:a8:ab:54:3e:93:5e:9a:5b:5e:d9:02:b4: 86:89:57:a5:b0:9e:57:0e:52:98:e3:99:31:a0:21: 56:2d:fd:6d:eb:d8:db:f1:a5:62:3d:12:14:88:62: 24:aa:3f:b8:66:3c:aa:b6:12:dd:8a:09:57:d7:bd: 2c:0a:3a:97:8d:a8:40:e3:36:f8:bd:02:d7:86:35: c8:5c:7c:e7:22:b5:55:06:6d:d7:13:ef:99:bf:63: 0a:60:28:4d:1e:b3:4c:bb:ab:13:d7:49:51:df:61: 5f:16:aa:c4:b9:1c:da:ba:71:61:80:30:03:a9:83: d1:76:0b:77:c1:a2:8c:8c:e8:43:51:14:d7:59:03: 7d:74:e9:95:18:59:21:ee:bf:ec:68:c9:55:32:ed: 41:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E4:B5:18:E7:1B:71:A6:79:20:B2:38:98:8B:7D:C2:A6:ED:ED:0C X509v3 Authority Key Identifier: keyid:0B:7D:EC:98:7C:61:75:1D:3E:DA:1D:BF:3E:7C:22:A7:3A:15:DE:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C33smHxhdR0-2h2_PnwipzoV3u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E57/FCC18A14204E11ECB13EE17AC4F9AE02/C33smHxhdR0-2h2_PnwipzoV3u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:27:ea:eb:f4:87:be:af:69:63:71:63:4e:8e:6d:bf:ed:dd: 33:e1:04:b4:3f:fe:e0:19:a8:be:5b:83:c2:82:3f:fa:13:27: ed:ad:d4:d8:4b:99:5a:c9:d9:68:72:72:b0:80:9d:58:c2:5e: b4:65:e3:db:43:53:87:e4:19:22:cb:c5:c0:15:1b:ac:ec:d1: eb:2c:0e:e6:40:91:aa:de:4b:03:f0:38:c7:c6:46:24:6a:64: e2:d6:e6:58:65:fc:70:15:0b:61:ca:60:b2:1d:ba:71:b5:1b: cb:70:5b:dc:36:aa:5f:d7:bd:14:f9:26:3c:ca:3c:5e:da:cc: d8:12:78:7a:d1:d0:fb:68:53:03:d5:9d:71:13:ac:2c:b9:2e: 62:b3:24:b6:eb:1b:0a:11:36:76:77:16:95:23:56:1f:dd:6e: 7e:67:61:9c:30:ba:1f:85:09:da:ed:dd:9f:10:fc:7d:28:d1: aa:d7:44:a3:3b:e6:b4:68:a3:85:2f:e6:7a:5b:5f:32:98:4f: ab:84:ca:de:fa:04:1c:c6:d8:83:7b:63:c1:76:ea:e0:4e:e4: 97:c9:0f:bc:aa:c4:ff:e8:ad:ff:72:e3:36:70:6b:cb:09:24: a3:e5:9e:47:53:c2:46:fb:8e:7a:02:91:d0:82:ce:29:cc:4c: 6a:0b:e4:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNTcxMTAvBgNVBAUTKDBCN0RFQzk4N0M2MTc1MUQzRURBMURCRjNFN0MyMkE3 M0ExNURFRUQwHhcNMjQxMTIyMjMzODI0WhcNMjQxMTI5MjMzODI0WjAYMRYwFAYD VQQDEw02NzQxMTVmMC0wYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUu2kavrLG8B1MP63VATPiSGB8XccQsuXz82IhGfmufW52kSPgb+ejGzY3Jx HgGC8kxTHLn5i6GgI5WE4nPJEgx4DJtGbPZ+IYKPbo96yPVBwk62FZkK3usK41Wu 3g4zTlmhH3bPa+f+Obmoq1Q+k16aW17ZArSGiVelsJ5XDlKY45kxoCFWLf1t69jb 8aViPRIUiGIkqj+4ZjyqthLdiglX170sCjqXjahA4zb4vQLXhjXIXHznIrVVBm3X E++Zv2MKYChNHrNMu6sT10lR32FfFqrEuRzaunFhgDADqYPRdgt3waKMjOhDURTX WQN9dOmVGFkh7r/saMlVMu1BuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/ktRjn G3GmeSCyOJiLfcKm7e0MMB8GA1UdIwQYMBaAFAt97Jh8YXUdPtodvz58Iqc6Fd7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1Ny9GQ0MxOEExNDIw NEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRSMC0yaDJfUG53aXB6b1Yz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MzM3NtSHhoZFIwLTJoMl9QbndpcHpvVjN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1Ny9GQ0MxOEExNDIwNEUxMUVDQjEzRUUxN0FDNEY5QUUwMi9DMzNzbUh4aGRS MC0yaDJfUG53aXB6b1YzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzJ+rr9Ie+r2ljcWNOjm2/7d0z4QS0P/7gGai+W4PCgj/6EyftrdTY S5laydlocnKwgJ1Ywl60ZePbQ1OH5Bkiy8XAFRus7NHrLA7mQJGq3ksD8DjHxkYk amTi1uZYZfxwFQthymCyHbpxtRvLcFvcNqpf170U+SY8yjxe2szYEnh60dD7aFMD 1Z1xE6wsuS5isyS26xsKETZ2dxaVI1Yf3W5+Z2GcMLofhQna7d2fEPx9KNGq10Sj O+a0aKOFL+Z6W18ymE+rhMre+gQcxtiDe2PBdurgTuSXyQ+8qsT/6K3/cuM2cGvL CSSj5Z5HU8JG+456ApHQgs4pzExqC+Sc -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org