$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: 6pz7JB915PMlxKIXMq/GJqsdFSDCKFfzfZmDnxloJhM= Subject key identifier: EA:79:50:6C:B6:67:7E:87:A1:55:4C:50:55:4B:02:B6:8D:B7:86:78 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 0121 Signing time: Sat 23 Nov 2024 02:56:07 +0000 Manifest this update: Sat 23 Nov 2024 02:56:06 +0000 Manifest next update: Sat 30 Nov 2024 02:56:06 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: kXAZ2Q+STDvTnyeb0CS6lqzKnpg4vznJm6kMnkh8BjE=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: kkDE8d3mWSYNpu+aK9mDwlnVUB+hzBT68zCQ1fhGRvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Nov 23 02:56:06 2024 GMT Not After : Nov 30 02:56:06 2024 GMT Subject: CN=67414446-0a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bd:9b:95:70:2e:e4:94:e5:70:3b:c2:39:17: 9b:10:e3:75:e4:1d:a2:46:d8:e5:cd:9e:e4:fb:a5: 53:d5:d2:4b:b8:97:83:f6:1e:79:55:34:4f:b7:58: 8b:6b:8e:7e:72:b1:95:38:51:20:6d:b1:23:54:cf: 8b:4d:04:b1:67:49:74:b7:ea:ea:30:0e:f0:fd:16: da:8a:96:37:e7:c5:37:c5:b8:0f:57:7d:36:be:9c: 54:5c:40:41:58:66:f5:a3:fa:c8:ae:1a:96:d8:cc: 12:cf:48:17:c9:77:96:15:99:cd:e4:6f:37:a6:a4: 60:8b:95:1d:a9:98:af:a1:f4:3d:f1:43:04:a9:4d: 90:cf:cc:f2:e6:25:75:de:a7:a3:f1:1b:e7:5c:dd: 06:e5:55:b3:e0:63:a7:19:d1:d9:4d:5b:04:e0:7a: b5:2c:c4:0e:ea:ba:fc:19:7a:92:b9:70:20:05:ad: 85:29:bd:6f:8e:45:a2:a7:62:a0:b4:0b:af:8c:0e: 5d:c2:ab:bb:df:22:53:88:25:bf:22:13:ac:60:fe: 41:d1:04:9d:d8:8e:b1:86:60:02:a0:04:cf:7b:1b: a2:bd:22:6a:18:10:e8:14:6c:ab:f1:53:11:76:5b: c3:70:38:5c:9e:8d:7a:ca:97:54:a1:4e:fa:e8:86: ef:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:79:50:6C:B6:67:7E:87:A1:55:4C:50:55:4B:02:B6:8D:B7:86:78 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:3e:3e:3d:26:96:d3:58:01:9f:3a:c1:8c:56:6a:c1:d7:42: c1:ad:b1:3f:58:ef:ff:86:f3:9f:e4:91:45:ad:56:e9:b9:20: b6:6a:8d:9e:d8:59:15:72:68:75:c0:9d:e2:e7:13:7a:c3:22: c6:68:ae:bd:56:c6:4a:1f:44:70:a4:02:37:b7:b1:0b:71:03: 22:a9:ec:7f:73:ad:21:a8:cf:29:44:ec:04:7c:6e:f3:0e:e8: bf:6b:a3:0d:8f:d7:7b:61:b9:19:8f:eb:d8:fd:9c:df:c1:ca: f1:a2:c0:44:05:89:ef:13:ba:84:64:ec:4a:c7:5e:5d:7b:9e: 12:bd:5d:e5:4d:2b:33:b5:ff:59:68:82:fc:5f:29:b7:08:16: cb:a9:49:6c:20:64:53:ce:4d:b0:3d:9a:1f:8e:d1:b1:a6:8d: 37:ee:d5:6c:b2:40:8c:42:ea:ad:cc:6b:57:90:d7:b6:2e:f9: b3:dc:71:db:bd:3a:af:56:c7:80:9b:96:e5:25:56:84:62:40: 6b:a3:94:4a:54:95:74:f2:1a:27:4f:e0:74:42:b4:95:9c:32: 64:4f:cd:f4:34:b3:d8:a3:61:92:29:5f:8f:e8:24:7a:b3:8f: ec:2b:c0:5e:63:10:f3:64:a4:85:7f:8a:6f:10:19:60:b2:0b: 4b:a0:f8:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjQxMTIzMDI1NjA2WhcNMjQxMTMwMDI1NjA2WjAYMRYwFAYD VQQDEw02NzQxNDQ0Ni0wYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2L2blXAu5JTlcDvCORebEON15B2iRtjlzZ7k+6VT1dJLuJeD9h55VTRPt1iL a45+crGVOFEgbbEjVM+LTQSxZ0l0t+rqMA7w/RbaipY358U3xbgPV302vpxUXEBB WGb1o/rIrhqW2MwSz0gXyXeWFZnN5G83pqRgi5UdqZivofQ98UMEqU2Qz8zy5iV1 3qej8RvnXN0G5VWz4GOnGdHZTVsE4Hq1LMQO6rr8GXqSuXAgBa2FKb1vjkWip2Kg tAuvjA5dwqu73yJTiCW/IhOsYP5B0QSd2I6xhmACoATPexuivSJqGBDoFGyr8VMR dlvDcDhcno16ypdUoU766IbvWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOp5UGy2 Z36HoVVMUFVLAraNt4Z4MB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDPj49JpbTWAGfOsGMVmrB10LBrbE/WO//hvOf5JFFrVbpuSC2ao2e 2FkVcmh1wJ3i5xN6wyLGaK69VsZKH0RwpAI3t7ELcQMiqex/c60hqM8pROwEfG7z Dui/a6MNj9d7YbkZj+vY/ZzfwcrxosBEBYnvE7qEZOxKx15de54SvV3lTSsztf9Z aIL8Xym3CBbLqUlsIGRTzk2wPZofjtGxpo037tVsskCMQuqtzGtXkNe2Lvmz3HHb vTqvVseAm5blJVaEYkBro5RKVJV08honT+B0QrSVnDJkT830NLPYo2GSKV+P6CR6 s4/sK8BeYxDzZKSFf4pvEBlgsgtLoPir -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org