$ rpki-client -vvf rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft File: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft (raw, json) Hash identifier: L7QlPpRYxyTayjHOU4JGV61ptkX2kWHQRqfy/TpMqfs= Subject key identifier: BD:9E:5E:E0:B2:A4:B0:5E:F9:FB:35:8B:41:3E:D3:AC:56:7F:A1:CF Authority key identifier: FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68 Certificate issuer: /CN=A91230B8/serialNumber=FBBAB690ADFE10EF434B718954F17387D6384668 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft Manifest number: 0161 Signing time: Sat 23 Nov 2024 02:24:56 +0000 Manifest this update: Sat 23 Nov 2024 02:24:56 +0000 Manifest next update: Sat 30 Nov 2024 02:24:56 +0000 Files and hashes: 1: -7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl (hash: yMXZbFeRCQZhsXwfOKbN0NXNOLaQQFy59mADkkpWzLU=) 2: B966D678C0C611EE8F5F0458C4F9AE02.roa (hash: TqG7R4Q3a4wcn9CqVt9B0ue++RWLw1qZwpwj8h3vDBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91230B8/serialNumber=FBBAB690ADFE10EF434B718954F17387D6384668 Validity Not Before: Nov 23 02:24:56 2024 GMT Not After : Nov 30 02:24:56 2024 GMT Subject: CN=67413cf8-2be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6b:c1:78:b5:2e:9b:c2:35:5a:ef:53:e6:63: 89:10:f8:43:e9:16:94:8f:8f:3c:4e:8f:04:2d:d3: fa:1b:c2:c8:07:f3:53:91:de:29:21:ae:04:6a:bd: 88:3c:9a:c6:23:04:20:2a:a1:7a:35:61:98:13:8b: 9e:fa:db:51:46:f0:09:d6:22:a8:fc:62:fb:c4:bc: 25:af:1a:e9:78:e3:f5:4b:a7:39:4a:63:a4:5d:40: d8:f2:2d:98:5f:d3:66:61:64:57:60:fd:6d:83:46: 35:48:46:3c:7b:6d:04:14:43:66:bb:1b:7d:ba:01: cf:32:2f:fe:f2:ba:63:58:2d:cc:3c:9d:e7:b1:4c: 3e:5d:8b:86:ef:87:0e:8c:e7:ad:63:38:10:79:cb: 8d:3e:bf:6f:ab:7e:e7:c3:26:e1:5b:64:bf:5c:93: c0:e6:58:df:6a:2b:89:b7:0f:35:a5:cc:42:fe:56: 19:60:47:ed:8c:ae:c5:09:a1:db:b4:00:9a:f0:f0: cf:ed:40:1d:6f:69:fe:be:c3:11:00:b1:fa:98:8b: 24:78:65:e3:48:95:2e:ce:f3:78:cf:7a:4d:58:82: 0d:9d:b9:cc:52:f4:aa:8f:66:ec:1a:4a:be:7f:f2: d6:c8:c6:39:17:5e:a2:95:c5:7c:c1:b6:c3:5f:ed: 00:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:9E:5E:E0:B2:A4:B0:5E:F9:FB:35:8B:41:3E:D3:AC:56:7F:A1:CF X509v3 Authority Key Identifier: keyid:FB:BA:B6:90:AD:FE:10:EF:43:4B:71:89:54:F1:73:87:D6:38:46:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91230B8/F1F890F0965911ED8CC78A60C4F9AE02/-7q2kK3-EO9DS3GJVPFzh9Y4Rmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:96:82:23:b8:3c:37:ce:28:3c:48:4e:b3:95:9e:f4:e9:89: 40:02:05:19:31:ef:61:79:07:56:4e:86:71:1b:4f:f2:3c:c3: d2:06:f1:22:2c:b5:e4:02:89:cb:fb:e0:13:d2:85:e2:74:86: 8a:9c:7b:60:a6:3c:86:a2:df:72:a0:04:08:3a:3b:70:ec:5d: b5:01:f2:ba:21:ef:be:74:68:b2:51:76:cb:36:5b:1e:5e:f8: 36:2b:6f:7a:7a:99:25:fe:ef:d9:45:d4:4c:9d:32:62:d5:f5: 2c:4b:6e:08:b7:63:e4:e1:aa:a6:b7:90:33:95:eb:e1:cb:0a: 81:19:c9:f2:85:bc:52:4f:9a:8c:e3:84:33:5d:de:75:5b:18: 32:9e:7d:d0:c3:6e:ec:f1:6c:05:2c:4f:65:9d:52:b1:4b:c3: ee:29:c2:33:aa:9d:0a:3d:5d:d2:06:87:b0:db:d7:c1:02:63: f2:f3:95:5f:68:e3:4a:e3:03:9d:6f:75:aa:bb:6f:2c:3c:a2: 1c:53:55:64:9c:c4:e1:28:53:1c:cf:6f:01:f7:4f:32:2f:ad: ec:f8:f3:5a:e2:7f:cd:78:ca:34:30:1a:ba:8c:bd:fc:f3:66: cc:20:c1:b7:07:10:93:2d:6d:1b:4c:ce:f4:26:25:6e:46:32: c1:52:7f:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwQjgxMTAvBgNVBAUTKEZCQkFCNjkwQURGRTEwRUY0MzRCNzE4OTU0RjE3Mzg3 RDYzODQ2NjgwHhcNMjQxMTIzMDIyNDU2WhcNMjQxMTMwMDIyNDU2WjAYMRYwFAYD VQQDEw02NzQxM2NmOC0yYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGvBeLUum8I1Wu9T5mOJEPhD6RaUj488To8ELdP6G8LIB/NTkd4pIa4Ear2I PJrGIwQgKqF6NWGYE4ue+ttRRvAJ1iKo/GL7xLwlrxrpeOP1S6c5SmOkXUDY8i2Y X9NmYWRXYP1tg0Y1SEY8e20EFENmuxt9ugHPMi/+8rpjWC3MPJ3nsUw+XYuG74cO jOetYzgQecuNPr9vq37nwybhW2S/XJPA5ljfaiuJtw81pcxC/lYZYEftjK7FCaHb tACa8PDP7UAdb2n+vsMRALH6mIskeGXjSJUuzvN4z3pNWIINnbnMUvSqj2bsGkq+ f/LWyMY5F16ilcV8wbbDX+0AHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2eXuCy pLBe+fs1i0E+06xWf6HPMB8GA1UdIwQYMBaAFPu6tpCt/hDvQ0txiVTxc4fWOEZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzBCOC9GMUY4OTBGMDk2 NTkxMUVEOENDNzhBNjBDNEY5QUUwMi8tN3Eya0szLUVPOURTM0dKVlBGemg5WTRS bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy03cTJrSzMtRU85RFMzR0pWUEZ6aDlZNFJtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzBCOC9GMUY4OTBGMDk2NTkxMUVEOENDNzhBNjBDNEY5QUUwMi8tN3Eya0szLUVP OURTM0dKVlBGemg5WTRSbWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+loIjuDw3zig8SE6zlZ706YlAAgUZMe9heQdWToZxG0/yPMPSBvEi LLXkAonL++AT0oXidIaKnHtgpjyGot9yoAQIOjtw7F21AfK6Ie++dGiyUXbLNlse Xvg2K296epkl/u/ZRdRMnTJi1fUsS24It2Pk4aqmt5AzlevhywqBGcnyhbxST5qM 44QzXd51Wxgynn3Qw27s8WwFLE9lnVKxS8PuKcIzqp0KPV3SBoew29fBAmPy85Vf aONK4wOdb3Wqu28sPKIcU1VknMThKFMcz28B908yL63s+PNa4n/NeMo0MBq6jL38 82bMIMG3BxCTLW0bTM70JiVuRjLBUn/d -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org