$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: lIV03bnPoqtaIxvnpWwwJyOL9Ip+qer3pu6pFKCAmYA= Subject key identifier: 5B:00:87:ED:0E:CF:60:CE:53:62:0C:D1:D6:03:FC:7B:96:75:EF:66 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 04B2 Signing time: Sun 24 Nov 2024 23:17:33 +0000 Manifest this update: Sun 24 Nov 2024 23:17:33 +0000 Manifest next update: Sun 01 Dec 2024 23:17:33 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: PklYcDd2sUfBqlPSJVAm16NNnjQEI6idI6rIOaw8MUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Nov 24 23:17:33 2024 GMT Not After : Dec 1 23:17:33 2024 GMT Subject: CN=6743b40d-1566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:68:24:9b:93:5a:70:e6:f2:81:40:bc:da: 8e:26:e7:75:ff:1e:c2:1d:4f:41:49:b2:ac:61:77: d8:95:00:03:45:5a:50:88:14:7e:54:42:6b:75:02: db:85:b8:e3:33:71:c1:95:db:76:86:9b:e9:af:4e: a0:61:49:65:4c:7f:dd:9e:84:cd:95:a2:c5:50:6d: a0:98:f9:7d:a4:3f:e8:d1:41:b4:f1:2d:43:df:fb: 7f:17:cb:4a:da:67:6e:1c:97:25:92:b2:1d:3c:be: 89:9e:55:de:a0:00:cb:19:a8:8a:98:25:a6:10:d9: b2:65:3a:87:a5:01:e4:e0:fe:f3:13:c8:9f:62:f1: 5f:d9:79:2c:14:92:4f:64:c2:73:ed:cf:8c:89:a1: ba:9f:bd:47:75:f0:a8:5a:c1:6f:ec:65:ad:3c:c9: fc:9f:b2:99:b9:25:60:ae:47:50:a1:63:f6:11:b2: 39:cd:94:ed:07:7a:d3:62:57:f9:30:8e:3e:32:4b: 98:9a:ca:29:5a:6e:d6:5e:09:1b:c6:8d:aa:7c:b5: df:4c:8e:cd:ac:6b:40:a7:f9:ed:e6:3b:df:da:57: 0f:f4:ae:09:da:8a:0e:e6:b1:6d:76:96:b6:fd:f6: e1:7c:43:2b:6b:db:30:df:8d:1b:8a:8d:1b:a7:81: b9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:00:87:ED:0E:CF:60:CE:53:62:0C:D1:D6:03:FC:7B:96:75:EF:66 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:2b:03:46:df:6a:d3:2c:61:a7:bf:65:57:2d:db:d8:8e:a8: 0d:b2:04:2b:b5:17:7b:94:a8:4d:b6:62:bf:a7:2c:2f:66:9d: 33:d5:8f:87:d3:3b:f9:df:54:8a:a5:5f:0c:5f:87:95:a4:2c: 83:40:67:2a:4e:38:8a:a1:ba:d6:c5:84:19:60:40:fd:da:bc: 75:9a:58:62:6c:c4:57:0d:5c:8b:ee:8f:b2:84:8a:01:c6:7b: 8c:cf:84:87:ba:85:ef:18:84:4d:54:09:10:89:1a:ff:54:a5: 5f:62:dd:c6:77:29:1a:9b:5b:e5:15:20:af:1b:07:6e:f2:9f: 9e:0c:ca:ad:79:86:24:06:e7:44:42:35:e9:2b:7f:24:d8:dd: 09:cb:b6:0a:ab:d4:2a:66:9f:bc:6c:77:5c:4d:fe:28:39:9a: 37:5e:0a:5d:84:70:41:ac:32:e4:79:b6:a4:ae:9a:40:d2:4d: 5f:32:a1:9e:da:d7:18:75:78:5b:6c:01:16:e3:68:d0:85:ef: 5c:44:0c:8d:96:94:d4:ea:eb:b7:a2:8c:7f:7f:df:81:9e:63: d8:2d:d4:9b:b7:45:d8:75:54:aa:cd:f9:61:5f:91:1a:6b:58: 88:fa:7b:00:cb:20:d2:e3:56:e5:55:44:6a:21:c1:f0:13:64: 24:67:7d:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjQxMTI0MjMxNzMzWhcNMjQxMjAxMjMxNzMzWjAYMRYwFAYD VQQDEw02NzQzYjQwZC0xNTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArP9oJJuTWnDm8oFAvNqOJud1/x7CHU9BSbKsYXfYlQADRVpQiBR+VEJrdQLb hbjjM3HBldt2hpvpr06gYUllTH/dnoTNlaLFUG2gmPl9pD/o0UG08S1D3/t/F8tK 2mduHJclkrIdPL6JnlXeoADLGaiKmCWmENmyZTqHpQHk4P7zE8ifYvFf2XksFJJP ZMJz7c+MiaG6n71HdfCoWsFv7GWtPMn8n7KZuSVgrkdQoWP2EbI5zZTtB3rTYlf5 MI4+MkuYmsopWm7WXgkbxo2qfLXfTI7NrGtAp/nt5jvf2lcP9K4J2ooO5rFtdpa2 /fbhfEMra9sw340bio0bp4G5DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsAh+0O z2DOU2IM0dYD/HuWde9mMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAKwNG32rTLGGnv2VXLdvYjqgNsgQrtRd7lKhNtmK/pywvZp0z1Y+H 0zv531SKpV8MX4eVpCyDQGcqTjiKobrWxYQZYED92rx1mlhibMRXDVyL7o+yhIoB xnuMz4SHuoXvGIRNVAkQiRr/VKVfYt3Gdykam1vlFSCvGwdu8p+eDMqteYYkBudE QjXpK38k2N0Jy7YKq9QqZp+8bHdcTf4oOZo3XgpdhHBBrDLkebakrppA0k1fMqGe 2tcYdXhbbAEW42jQhe9cRAyNlpTU6uu3oox/f9+BnmPYLdSbt0XYdVSqzflhX5Ea a1iI+nsAyyDS41blVURqIcHwE2QkZ338 -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:34 2024 by rpki-client on console-ams.rpki-client.org