$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: RXhQQ/zrCg9GQDyOD0zg32JO20tRfWan5hAGPIzuB+E= Subject key identifier: 55:7A:E6:D9:C7:60:6A:BC:15:91:11:AE:E0:9D:71:0F:D6:C6:14:34 Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:37:26 +0000 Manifest this update: Thu 21 Nov 2024 05:37:26 +0000 Manifest next update: Thu 28 Nov 2024 05:37:26 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: RiaQ5oRv5t52uD9GFklp5XpvKUAvnR8DVFL1zNbimJI=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: 7P9QGIuS2YxmoaQtTvokUjWFQu4qLuQF/pm4P1jB/wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Nov 21 05:37:26 2024 GMT Not After : Nov 28 05:37:26 2024 GMT Subject: CN=673ec716-4289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:16:1d:83:87:dd:a0:b2:7a:49:8d:6d:62:45: ae:68:88:01:64:45:b5:cc:12:ec:b4:39:7b:cb:94: 26:a5:07:9f:25:47:70:a3:b2:12:96:49:4d:b3:b6: ff:88:b0:9a:ce:54:d9:51:b4:ba:dd:a0:4a:33:c4: ee:bf:99:88:3b:5d:b1:4b:49:a6:ed:37:77:ea:d8: a6:e3:44:d9:78:ca:50:54:1a:7f:11:2e:9d:60:f9: 2e:e4:ed:2c:35:4d:bc:ee:cb:b5:22:df:ea:e3:0f: 81:f7:97:02:30:fe:e7:11:33:d1:c0:82:7b:b4:2d: 37:b9:bf:73:00:bd:ed:a4:a9:22:4c:25:7f:68:ab: 81:bf:64:1c:b2:e8:43:eb:ca:fa:26:99:9f:92:d6: 98:7f:41:8e:3c:cb:9a:90:a9:f2:79:9d:21:2b:d7: 63:67:b9:d2:0c:53:54:c3:a8:e9:16:20:5c:02:76: 98:ba:a4:55:00:90:91:76:5a:9c:3c:4e:e7:69:23: 20:7b:b7:91:97:97:6c:fd:ee:1d:d4:a4:3e:7e:85: c4:d3:22:72:01:8e:86:36:ee:c2:8a:53:d2:ea:5e: e2:15:26:fd:56:44:d0:b7:56:5d:27:cb:4d:a5:de: 1b:7f:b3:3a:78:7c:c7:72:6e:d2:ce:cc:39:26:a7: 52:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7A:E6:D9:C7:60:6A:BC:15:91:11:AE:E0:9D:71:0F:D6:C6:14:34 X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:75:2e:03:1a:25:b3:aa:71:c1:02:b1:15:e6:a2:24:86:ff: 6b:75:f5:c3:fa:9d:ba:f2:b7:6b:45:90:d8:4d:c0:3f:59:e7: 68:c0:f2:7c:ce:fd:5e:22:61:69:f6:08:d6:1e:93:99:76:be: 54:c6:e1:f1:cb:cc:a2:06:e0:1c:40:ca:85:6d:23:eb:39:23: 0a:12:e7:4f:4d:78:25:3a:a1:5d:bc:87:f3:12:8f:59:0a:d7: 62:ea:28:42:82:e1:c1:27:98:cd:b1:91:54:86:78:e0:b3:a0: 5e:eb:5e:37:9d:7a:4f:a8:38:47:f6:bc:ba:37:04:5e:c3:e4: fa:48:f9:6d:37:8d:ec:0d:cf:75:5e:10:a3:a1:d4:e8:b0:e4: f6:81:a8:7a:44:00:d3:21:22:5c:f6:51:bd:98:04:ce:2e:a0: a9:f3:09:06:85:71:37:49:a9:58:4f:03:98:24:3f:09:e1:54: 6f:f7:cc:4d:59:81:a3:64:6e:d9:d5:12:05:e5:48:4d:b8:65: 9d:92:6b:ff:54:29:28:60:28:f7:3f:77:ce:22:b8:e1:90:f5: 00:7b:0e:86:57:f2:79:ec:1d:cc:26:60:9f:98:d3:81:0f:02: 7a:2e:1e:a4:32:fc:85:9e:07:51:35:3a:c9:89:6c:f9:7e:58: 08:1b:30:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDU5NjExMC8GA1UEBRMoNzIyNjA4MEU3QzY1MjUyMzQzOTYyODY2QjMxMzlGMDIz ODcyQzQwMjAeFw0yNDExMjEwNTM3MjZaFw0yNDExMjgwNTM3MjZaMBgxFjAUBgNV BAMTDTY3M2VjNzE2LTQyODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtFh2Dh92gsnpJjW1iRa5oiAFkRbXMEuy0OXvLlCalB58lR3CjshKWSU2ztv+I sJrOVNlRtLrdoEozxO6/mYg7XbFLSabtN3fq2KbjRNl4ylBUGn8RLp1g+S7k7Sw1 Tbzuy7Ui3+rjD4H3lwIw/ucRM9HAgnu0LTe5v3MAve2kqSJMJX9oq4G/ZByy6EPr yvommZ+S1ph/QY48y5qQqfJ5nSEr12NnudIMU1TDqOkWIFwCdpi6pFUAkJF2Wpw8 TudpIyB7t5GXl2z97h3UpD5+hcTTInIBjoY27sKKU9LqXuIVJv1WRNC3Vl0ny02l 3ht/szp4fMdybtLOzDkmp1JJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVXrm2cdg arwVkRGu4J1xD9bGFDQwHwYDVR0jBBgwFoAUciYIDnxlJSNDlihmsxOfAjhyxAIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVENTk2LzBERTIzRTE2NUFF MzExRUY5MzJDMjMyRkM0RjlBRTAyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhB SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2lZSURueGxKU05EbGlobXN4T2ZBamh5eEFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE NTk2LzBERTIzRTE2NUFFMzExRUY5MzJDMjMyRkM0RjlBRTAyL2NpWUlEbnhsSlNO RGxpaG1zeE9mQWpoeXhBSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFx1LgMaJbOqccECsRXmoiSG/2t19cP6nbryt2tFkNhNwD9Z52jA8nzO /V4iYWn2CNYek5l2vlTG4fHLzKIG4BxAyoVtI+s5IwoS509NeCU6oV28h/MSj1kK 12LqKEKC4cEnmM2xkVSGeOCzoF7rXjedek+oOEf2vLo3BF7D5PpI+W03jewNz3Ve EKOh1Oiw5PaBqHpEANMhIlz2Ub2YBM4uoKnzCQaFcTdJqVhPA5gkPwnhVG/3zE1Z gaNkbtnVEgXlSE24ZZ2Sa/9UKShgKPc/d84iuOGQ9QB7DoZX8nnsHcwmYJ+Y04EP AnouHqQy/IWeB1E1OsmJbPl+WAgbMGQ= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org