$ rpki-client -vvf rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft File: 9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft (raw, json) Hash identifier: /wpwMCm3D5GcOHYb55yfIiJcHIfp2RkMj2yaNUjnwsE= Subject key identifier: C1:95:CD:91:B7:88:5F:14:21:EB:BA:E9:EC:C3:CA:59:AA:92:46:89 Authority key identifier: F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 Certificate issuer: /CN=A91487A2/serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft Manifest number: 0101 Signing time: Sat 23 Nov 2024 03:16:57 +0000 Manifest this update: Sat 23 Nov 2024 03:16:57 +0000 Manifest next update: Sat 30 Nov 2024 03:16:57 +0000 Files and hashes: 1: 9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl (hash: LahOOms7iC7hc5Ksmmno9Dc5rUxlcj+zpt317WWUsg0=) 2: E6F6831A26AF11EEA8E86146C4F9AE02.roa (hash: dKoEMXA8fRTWxjeYqmYYgyMSw9H1lwIw8Fa9EYm/xNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91487A2/serialNumber=F68DCED2E602F446567410994A8E8C021009ED89 Validity Not Before: Nov 23 03:16:57 2024 GMT Not After : Nov 30 03:16:57 2024 GMT Subject: CN=67414929-7e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e4:19:b4:ff:3b:17:98:80:08:83:cb:d5:96: 3a:a9:ca:90:03:43:fc:53:fa:be:74:5b:a8:0c:75: 91:a8:1a:29:e5:84:8c:23:ba:0f:14:09:ee:ec:2c: a1:63:ed:0a:b8:75:95:7f:c7:f8:92:07:a0:f7:92: 67:2d:55:5c:f3:9d:2e:90:33:e7:13:f0:ea:8c:61: 10:dd:84:a8:38:65:20:be:08:9b:b7:34:c3:bb:24: 44:fe:03:29:fd:9a:c0:c5:78:48:9b:9d:08:5d:ad: 9f:4e:a9:79:f8:47:c3:a2:c8:8d:c4:c2:56:30:31: 6d:b5:83:60:15:61:a0:85:a6:ce:2f:b2:ce:e4:bb: a7:b3:d5:0b:6f:93:86:0c:6f:a4:8c:69:0b:87:3f: 54:f7:62:3e:a9:9b:0b:e0:d1:87:4b:22:06:95:c5: 56:07:aa:13:d3:c7:1a:2a:95:45:e2:d0:b7:02:02: da:04:0e:bf:f5:3b:a6:b0:3c:ef:ca:3d:1d:c1:a3: 73:9a:31:dd:44:8b:fa:42:46:56:d6:ea:84:d6:6e: 4d:1c:6d:1d:dc:82:ac:3c:65:b0:2a:12:9e:4f:77: 73:b7:c3:c3:5e:9d:27:f7:ad:b4:29:72:41:be:7a: 39:7a:2d:e8:7b:f6:e1:42:b1:d6:d0:b2:fd:43:07: 5e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:95:CD:91:B7:88:5F:14:21:EB:BA:E9:EC:C3:CA:59:AA:92:46:89 X509v3 Authority Key Identifier: keyid:F6:8D:CE:D2:E6:02:F4:46:56:74:10:99:4A:8E:8C:02:10:09:ED:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91487A2/406B610026AF11EE8AED4F45C4F9AE02/9o3O0uYC9EZWdBCZSo6MAhAJ7Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:75:ee:1d:34:7d:52:19:73:8d:e7:14:23:8a:aa:55:33:17: 02:e6:d4:fd:20:8e:15:13:a0:32:83:ea:a5:2c:7e:3e:f0:42: 62:af:6c:65:4c:81:14:79:e0:b9:55:0b:15:21:4a:2d:26:27: 90:9d:30:29:91:bb:06:44:02:1e:1c:7f:32:25:e0:e4:0b:60: 36:f1:12:0e:60:3b:dc:e6:91:c6:fb:28:25:61:5c:06:39:15: 08:40:bd:ad:b2:20:8a:64:da:9b:e3:e3:83:05:25:79:32:b5: e0:1f:13:14:53:6d:3b:36:be:c1:6b:68:78:31:eb:b3:26:1c: ca:78:9e:f1:06:f6:91:87:de:2f:3d:cb:91:fb:93:8d:12:d8: 5e:f1:c1:d9:a6:bd:d8:71:eb:80:b6:bd:f9:fa:bc:f6:03:dd: df:be:ce:b9:88:54:d1:a8:a8:09:b7:0c:61:59:1c:55:ee:cc: 9a:77:89:c8:ff:cb:73:07:10:b9:35:47:0a:35:96:96:f0:10: a1:a6:eb:65:46:72:82:c4:27:c7:ba:a1:50:2c:95:1d:de:bb: a8:03:0a:b9:65:53:90:c1:67:87:17:8a:91:a9:61:18:89:b2: 9c:9e:d9:8d:85:93:ed:7e:d6:29:2f:b6:ef:26:2c:1e:7c:36: aa:b7:c6:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3QTIxMTAvBgNVBAUTKEY2OERDRUQyRTYwMkY0NDY1Njc0MTA5OTRBOEU4QzAy MTAwOUVEODkwHhcNMjQxMTIzMDMxNjU3WhcNMjQxMTMwMDMxNjU3WjAYMRYwFAYD VQQDEw02NzQxNDkyOS03ZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeQZtP87F5iACIPL1ZY6qcqQA0P8U/q+dFuoDHWRqBop5YSMI7oPFAnu7Cyh Y+0KuHWVf8f4kgeg95JnLVVc850ukDPnE/DqjGEQ3YSoOGUgvgibtzTDuyRE/gMp /ZrAxXhIm50IXa2fTql5+EfDosiNxMJWMDFttYNgFWGghabOL7LO5Luns9ULb5OG DG+kjGkLhz9U92I+qZsL4NGHSyIGlcVWB6oT08caKpVF4tC3AgLaBA6/9TumsDzv yj0dwaNzmjHdRIv6QkZW1uqE1m5NHG0d3IKsPGWwKhKeT3dzt8PDXp0n9620KXJB vno5ei3oe/bhQrHW0LL9Qwde4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGVzZG3 iF8UIeu66ezDylmqkkaJMB8GA1UdIwQYMBaAFPaNztLmAvRGVnQQmUqOjAIQCe2J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODdBMi80MDZCNjEwMDI2 QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlFWldkQkNaU282TUFoQUo3 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlvM08wdVlDOUVaV2RCQ1pTbzZNQWhBSjdZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODdBMi80MDZCNjEwMDI2QUYxMUVFOEFFRDRGNDVDNEY5QUUwMi85bzNPMHVZQzlF WldkQkNaU282TUFoQUo3WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0de4dNH1SGXON5xQjiqpVMxcC5tT9II4VE6Ayg+qlLH4+8EJir2xl TIEUeeC5VQsVIUotJieQnTApkbsGRAIeHH8yJeDkC2A28RIOYDvc5pHG+yglYVwG ORUIQL2tsiCKZNqb4+ODBSV5MrXgHxMUU207Nr7Ba2h4MeuzJhzKeJ7xBvaRh94v PcuR+5ONEthe8cHZpr3YceuAtr35+rz2A93fvs65iFTRqKgJtwxhWRxV7syad4nI /8tzBxC5NUcKNZaW8BChputlRnKCxCfHuqFQLJUd3ruoAwq5ZVOQwWeHF4qRqWEY ibKcntmNhZPtftYpL7bvJiwefDaqt8bi -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:06 2024 by rpki-client on console-ams.rpki-client.org