$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft File: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft (raw, json) Hash identifier: HursTRdFukRNwwozRCDfsUK1uYK1xUEKC3dgytK5hsU= Subject key identifier: 4D:06:68:D5:5F:50:6E:95:C8:41:8C:0C:F6:E5:64:17:D9:A6:B6:D8 Authority key identifier: AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 Certificate issuer: /CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Certificate serial: 017D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft Manifest number: 0179 Signing time: Sat 23 Nov 2024 02:07:39 +0000 Manifest this update: Sat 23 Nov 2024 02:07:38 +0000 Manifest next update: Sat 30 Nov 2024 02:07:38 +0000 Files and hashes: 1: r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl (hash: aSAM+JRD0HCM90+ou9swerzMdqvAOScRww/MHsHVNgw=) 2: F11BA4EA75B811EDA34F9687C4F9AE02.roa (hash: FDlBQttiAjfW5cf3WMiGkJNbaMYuBenMKHgdFn6C9uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8CB0/serialNumber=AFA6D7BDC37B64C8F146EEA61736D3D45178FB37 Validity Not Before: Nov 23 02:07:38 2024 GMT Not After : Nov 30 02:07:38 2024 GMT Subject: CN=674138eb-a1bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a8:46:99:3a:15:13:e3:22:07:4e:5d:61:47: dd:e9:34:0f:09:78:ac:0b:1b:e0:b8:e1:5b:06:b4: 66:7a:c9:d9:6e:80:c1:ad:2a:19:3c:b4:e7:eb:ab: 16:f8:56:0c:01:33:3f:1a:cb:95:dd:6b:57:7f:2a: 06:07:e7:26:40:61:4e:4a:96:bd:3d:56:c5:d8:47: ca:1f:4a:66:80:00:8e:bb:94:77:06:b0:9d:26:ec: 66:11:d5:3e:04:73:1f:61:a2:01:60:7d:9e:ca:eb: 12:e2:15:9d:45:78:58:30:5e:ab:84:0f:ab:11:d6: 22:a6:80:ab:59:6a:1c:57:57:02:7c:c8:b3:b1:ee: 61:42:5b:67:b7:02:fa:ef:39:ed:df:fe:92:cd:7b: ef:6e:16:4a:4a:03:de:57:c1:69:fb:de:62:79:e1: 68:15:96:50:49:d7:ff:be:d0:73:53:8b:1b:99:ea: 90:ef:35:0b:65:f2:5d:ff:87:f6:18:c7:a5:9d:1e: 49:68:6a:59:28:c8:14:3e:57:44:5f:c8:84:6d:fc: d5:48:c8:ae:cc:5c:0a:f0:92:02:07:d3:92:f8:89: af:d9:f4:28:77:d2:24:9d:78:79:e9:fa:fb:87:49: 1d:56:7b:00:73:6b:48:0d:4e:10:8a:ce:8e:8d:78: 92:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:06:68:D5:5F:50:6E:95:C8:41:8C:0C:F6:E5:64:17:D9:A6:B6:D8 X509v3 Authority Key Identifier: keyid:AF:A6:D7:BD:C3:7B:64:C8:F1:46:EE:A6:17:36:D3:D4:51:78:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8CB0/3770124E6BC511ED866A7D5EC4F9AE02/r6bXvcN7ZMjxRu6mFzbT1FF4-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:7d:2f:ee:bc:89:58:20:35:8f:fb:35:5b:c5:f1:d3:af:a8: 79:24:c8:19:2a:f3:77:83:f1:15:cc:11:e2:66:d0:d5:c5:f7: a8:42:82:44:de:91:2c:40:cd:50:fa:1c:5a:49:48:17:ac:57: 00:fd:27:1c:fb:ce:d0:47:ee:ed:47:7c:0b:d3:13:64:c2:53: e5:d2:12:b1:cd:c7:a2:10:3b:93:23:75:75:e8:35:ac:bf:23: 50:9e:a6:74:73:6f:30:22:1b:ff:fa:42:23:b9:66:49:dd:b2: 9c:cb:2e:6c:0c:ac:20:a6:3e:5e:de:fe:f0:87:e3:84:e7:b4: 4c:2f:e9:4d:2a:3e:c6:cd:91:8b:60:d5:a9:cc:12:20:0e:00: 64:39:b9:b6:9f:f2:a1:f2:63:54:1b:15:8f:fd:cd:ff:8e:e4: b3:cf:2b:f3:8f:8d:09:fb:70:ae:11:4f:6e:46:81:5c:9d:c3: e5:eb:98:82:5e:7f:48:34:b1:45:0c:75:50:3e:01:ec:6e:8a: ca:d4:88:62:b7:27:cd:bd:e3:b4:70:7e:02:b6:f1:27:23:a3: 62:d9:59:b7:ed:02:5b:78:c3:47:b4:23:33:c1:f3:13:38:3d: 3b:0f:89:a7:60:32:58:69:f9:31:7c:5b:cc:42:3a:e6:30:3f: bd:cf:7c:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDQjAxMTAvBgNVBAUTKEFGQTZEN0JEQzM3QjY0QzhGMTQ2RUVBNjE3MzZEM0Q0 NTE3OEZCMzcwHhcNMjQxMTIzMDIwNzM4WhcNMjQxMTMwMDIwNzM4WjAYMRYwFAYD VQQDEw02NzQxMzhlYi1hMWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KhGmToVE+MiB05dYUfd6TQPCXisCxvguOFbBrRmesnZboDBrSoZPLTn66sW +FYMATM/GsuV3WtXfyoGB+cmQGFOSpa9PVbF2EfKH0pmgACOu5R3BrCdJuxmEdU+ BHMfYaIBYH2eyusS4hWdRXhYMF6rhA+rEdYipoCrWWocV1cCfMizse5hQltntwL6 7znt3/6SzXvvbhZKSgPeV8Fp+95ieeFoFZZQSdf/vtBzU4sbmeqQ7zULZfJd/4f2 GMelnR5JaGpZKMgUPldEX8iEbfzVSMiuzFwK8JICB9OS+Imv2fQod9IknXh56fr7 h0kdVnsAc2tIDU4Qis6OjXiSnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0GaNVf UG6VyEGMDPblZBfZprbYMB8GA1UdIwQYMBaAFK+m173De2TI8Ubuphc209RRePs3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOENCMC8zNzcwMTI0RTZC QzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pNanhSdTZtRnpiVDFGRjQt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I2Ylh2Y043Wk1qeFJ1Nm1GemJUMUZGNC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OENCMC8zNzcwMTI0RTZCQzUxMUVEODY2QTdENUVDNEY5QUUwMi9yNmJYdmNON1pN anhSdTZtRnpiVDFGRjQtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClfS/uvIlYIDWP+zVbxfHTr6h5JMgZKvN3g/EVzBHiZtDVxfeoQoJE 3pEsQM1Q+hxaSUgXrFcA/Scc+87QR+7tR3wL0xNkwlPl0hKxzceiEDuTI3V16DWs vyNQnqZ0c28wIhv/+kIjuWZJ3bKcyy5sDKwgpj5e3v7wh+OE57RML+lNKj7GzZGL YNWpzBIgDgBkObm2n/Kh8mNUGxWP/c3/juSzzyvzj40J+3CuEU9uRoFcncPl65iC Xn9INLFFDHVQPgHsborK1IhityfNveO0cH4CtvEnI6Ni2Vm37QJbeMNHtCMzwfMT OD07D4mnYDJYafkxfFvMQjrmMD+9z3zF -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org