$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: LCteZeklZ/KT6k/D7n85DSeBIt9BDPFdhpk+Tk457fM= Subject key identifier: 0E:63:8F:79:72:F9:26:E7:D3:25:74:87:C9:AB:5E:0A:02:1C:B5:84 Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0A56 Signing time: Fri 22 Nov 2024 19:30:26 +0000 Manifest this update: Fri 22 Nov 2024 19:30:25 +0000 Manifest next update: Fri 29 Nov 2024 19:30:25 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: jJaHHypPXv7AB7ttKT4SmulsOERD9x4+bYWQZyJRT9Y=) 2: E16EB924B1A011ECBB574850C4F9AE02.roa (hash: /SpHw3LM2dxp+spwUPCplCVFduq4SfbpnO6I3ALmLPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Nov 22 19:30:25 2024 GMT Not After : Nov 29 19:30:25 2024 GMT Subject: CN=6740dbd1-0908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f6:97:98:53:b0:ad:e6:8d:f7:bd:ad:31:c2: 83:b6:63:b1:64:56:32:02:cf:d7:c3:01:f0:bf:8b: d6:36:78:59:0e:a6:b6:84:73:80:eb:57:48:c0:68: 68:bc:4e:ac:d0:2a:f2:bf:8f:c0:5f:59:ab:a1:92: c8:bc:b4:9e:bc:6d:b6:75:ab:d4:be:df:2c:bc:e4: 27:54:36:98:35:d3:b6:a4:90:57:d4:ec:56:46:bf: 83:5b:fa:80:1c:2f:11:7b:9b:c3:35:9d:23:df:c5: b5:e0:02:7c:84:da:f6:3e:35:67:6b:0e:f5:6f:b5: 1e:05:32:f0:ba:9b:6d:2c:53:12:da:f7:42:a2:fc: ed:0c:16:a1:70:7f:24:5b:e6:b0:09:05:24:15:d2: f9:49:41:2d:26:b5:1c:15:bd:4b:07:a5:d6:d9:fa: b3:b3:c0:a5:21:8c:42:0a:e4:93:84:30:29:97:1a: b7:29:36:38:ff:18:a6:36:62:a5:c1:fb:7f:a2:c9: ed:16:40:11:d4:a3:b3:5c:f9:c5:01:09:ce:d8:43: bd:b6:ea:42:d7:71:fd:18:ec:34:58:d2:08:92:8a: 79:4c:42:e2:61:ab:6f:f3:d8:76:a3:f9:9b:88:28: 4a:b7:7f:c4:e0:03:24:49:54:cc:7f:93:83:16:3a: 74:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:63:8F:79:72:F9:26:E7:D3:25:74:87:C9:AB:5E:0A:02:1C:B5:84 X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:3b:b7:4b:5a:e9:fc:3f:64:03:2d:d7:b5:2c:e4:a1:33:3d: e4:5e:b5:3f:b0:36:73:03:bb:5f:8e:73:83:69:65:3f:5d:cd: 74:24:1f:e6:a5:3a:85:fb:b2:06:42:71:6d:78:97:3a:80:a3: 34:63:31:90:d9:80:4e:45:62:bc:be:e0:e1:89:72:cd:c9:45: bb:9b:93:09:15:5c:c1:d8:df:41:55:14:87:53:08:90:56:60: 7c:3f:1d:d8:1b:aa:0e:59:83:7c:7c:0a:e9:b9:da:d0:32:8a: c3:e6:9d:e0:a5:6d:07:d8:b3:55:4e:e9:d5:3a:e2:95:bf:dc: 90:6d:aa:2b:9e:b7:90:64:8e:65:de:22:4c:4d:df:b4:48:15: 94:79:11:0b:35:84:3b:be:e0:c5:32:aa:90:28:fa:40:53:07: 7d:a9:b4:2a:7e:64:0d:2a:b7:22:a2:4f:0a:63:7e:0b:43:a5: 38:52:82:7a:8e:61:52:e3:12:bd:76:85:e9:d6:f5:ac:13:ff: 71:04:dd:9e:35:7a:9f:70:64:0e:85:29:1f:35:a9:93:c3:2a: 19:96:39:88:e3:fc:c1:a7:c2:f2:b1:86:c1:aa:62:d3:87:ed: a2:fe:63:0c:86:a1:fc:61:89:f0:44:a9:a1:d3:0f:2d:cd:06: 1f:dc:2a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjQxMTIyMTkzMDI1WhcNMjQxMTI5MTkzMDI1WjAYMRYwFAYD VQQDEw02NzQwZGJkMS0wOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvaXmFOwreaN972tMcKDtmOxZFYyAs/XwwHwv4vWNnhZDqa2hHOA61dIwGho vE6s0Cryv4/AX1mroZLIvLSevG22davUvt8svOQnVDaYNdO2pJBX1OxWRr+DW/qA HC8Re5vDNZ0j38W14AJ8hNr2PjVnaw71b7UeBTLwupttLFMS2vdCovztDBahcH8k W+awCQUkFdL5SUEtJrUcFb1LB6XW2fqzs8ClIYxCCuSThDAplxq3KTY4/ximNmKl wft/osntFkAR1KOzXPnFAQnO2EO9tupC13H9GOw0WNIIkop5TELiYatv89h2o/mb iChKt3/E4AMkSVTMf5ODFjp0RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5jj3ly +Sbn0yV0h8mrXgoCHLWEMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLO7dLWun8P2QDLde1LOShMz3kXrU/sDZzA7tfjnODaWU/Xc10JB/m pTqF+7IGQnFteJc6gKM0YzGQ2YBORWK8vuDhiXLNyUW7m5MJFVzB2N9BVRSHUwiQ VmB8Px3YG6oOWYN8fArpudrQMorD5p3gpW0H2LNVTunVOuKVv9yQbaornreQZI5l 3iJMTd+0SBWUeRELNYQ7vuDFMqqQKPpAUwd9qbQqfmQNKrciok8KY34LQ6U4UoJ6 jmFS4xK9doXp1vWsE/9xBN2eNXqfcGQOhSkfNamTwyoZljmI4/zBp8LysYbBqmLT h+2i/mMMhqH8YYnwRKmh0w8tzQYf3Cod -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org