$ rpki-client -vvf rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft File: jhRqR_5i0JoyZs4IOlecrROlgGY.mft (raw, json) Hash identifier: hbAtjJiAsSDjCVhuuJqFs5snJ9+m7nQBWhwhXmFpV0A= Subject key identifier: 6B:A2:BA:27:AA:93:61:E9:F6:76:5B:0A:46:2F:D7:83:CA:E6:49:5B Authority key identifier: 8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 Certificate issuer: /CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft Manifest number: 0119 Signing time: Sat 23 Nov 2024 02:59:53 +0000 Manifest this update: Sat 23 Nov 2024 02:59:52 +0000 Manifest next update: Sat 30 Nov 2024 02:59:52 +0000 Files and hashes: 1: jhRqR_5i0JoyZs4IOlecrROlgGY.crl (hash: kUUAkDj52unp+RaYxV6hMlWO2FsB1us0jjdQky9OCe4=) 2: DFFEC4ECFA2B11ED89B90A2FC4F9AE02.roa (hash: u3KQ4+2IgJpu2VdTdgcmH5lKk3YgiV3NcKX66uGGiko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91570C9/serialNumber=8E146A47FE62D09A3266CE083A579CAD13A58066 Validity Not Before: Nov 23 02:59:52 2024 GMT Not After : Nov 30 02:59:52 2024 GMT Subject: CN=67414528-1aac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:28:b5:84:d8:f0:b4:1b:2f:11:9b:ff:25:ce: 69:75:97:fb:d7:56:1b:37:ad:e3:aa:57:b7:fe:91: fc:ad:a4:cf:ba:38:60:ce:2a:e3:b4:70:13:bc:64: 41:c4:88:f3:9f:3e:2b:21:63:46:4a:02:cd:44:6f: 5c:88:93:b6:ed:c5:ef:92:d8:5a:fd:eb:a6:55:61: 36:33:af:bf:5a:3c:40:85:3e:39:2d:1f:de:a1:3c: 0b:70:92:cd:4a:bc:1e:ed:8c:a1:92:46:20:52:22: 56:41:f5:0e:d4:3a:87:fb:98:08:74:af:da:9f:a3: f2:af:0e:ec:09:70:0a:b9:01:cd:7a:14:d6:d8:4a: 04:28:27:5b:fd:ff:fd:84:e2:c6:b0:d0:8c:fa:db: fc:68:f3:01:7b:9f:9f:b4:e4:fb:15:5b:a6:a7:d5: 45:d0:d2:66:e9:4b:f2:36:e3:f6:8d:53:d1:2b:37: d1:c9:dd:30:af:ab:07:c9:56:38:00:59:78:83:84: 7e:c9:5c:83:e3:86:1e:0c:5a:f9:d3:77:c0:2e:6d: 20:65:ed:e0:a4:20:b5:38:46:b7:33:92:59:ae:dd: 7f:8a:a3:ae:97:5a:ed:2e:cf:4e:5c:60:1f:4e:6e: 7a:fd:f5:93:1b:95:a2:4f:7a:dc:d4:57:87:88:c2: 28:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A2:BA:27:AA:93:61:E9:F6:76:5B:0A:46:2F:D7:83:CA:E6:49:5B X509v3 Authority Key Identifier: keyid:8E:14:6A:47:FE:62:D0:9A:32:66:CE:08:3A:57:9C:AD:13:A5:80:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhRqR_5i0JoyZs4IOlecrROlgGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91570C9/0227B9AEFA2511EDA7027010C4F9AE02/jhRqR_5i0JoyZs4IOlecrROlgGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:0c:ee:9e:86:11:4f:7c:cd:09:62:a0:61:72:af:6d:a4:4b: a6:2c:03:36:20:b3:84:36:4e:32:59:b1:0b:fc:ca:3b:59:5e: 37:8c:fb:86:b3:4e:b6:31:81:08:80:5a:40:27:48:41:2d:b8: d1:b8:f0:c1:3a:7e:9e:ed:65:fe:1c:ed:9b:87:71:2e:c5:5f: 0c:f3:0f:2d:ed:12:59:b0:6d:0b:d2:c5:bf:f3:60:d7:aa:01: ba:9c:c0:08:a3:e0:aa:69:00:cc:3e:56:f1:a3:78:4e:77:a4: 12:5e:27:28:be:1d:f2:ab:80:d1:44:04:01:d3:0b:19:ef:82: ec:54:9c:a8:70:7e:cd:b0:61:38:16:84:91:ea:cd:e0:6e:fb: 93:dc:d3:e2:8b:ae:31:7a:e6:06:2e:47:fe:1c:29:e2:99:1c: fe:59:5c:d3:b2:82:04:62:d7:95:6d:1f:01:73:f8:c6:f6:23: ef:51:96:53:52:ae:8f:4c:92:16:ef:c8:7d:10:2d:c9:ee:3c: e4:dd:78:77:50:60:0d:57:10:02:fd:95:53:c7:51:13:c3:19: dc:f7:07:e6:39:1e:a1:a3:84:07:93:95:52:90:28:10:d8:ce: 2d:9c:22:1b:63:03:e5:0a:79:98:7c:8c:61:d5:b9:1f:ad:3b: 53:41:61:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwQzkxMTAvBgNVBAUTKDhFMTQ2QTQ3RkU2MkQwOUEzMjY2Q0UwODNBNTc5Q0FE MTNBNTgwNjYwHhcNMjQxMTIzMDI1OTUyWhcNMjQxMTMwMDI1OTUyWjAYMRYwFAYD VQQDEw02NzQxNDUyOC0xYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ii1hNjwtBsvEZv/Jc5pdZf711YbN63jqle3/pH8raTPujhgzirjtHATvGRB xIjznz4rIWNGSgLNRG9ciJO27cXvktha/eumVWE2M6+/WjxAhT45LR/eoTwLcJLN Srwe7YyhkkYgUiJWQfUO1DqH+5gIdK/an6Pyrw7sCXAKuQHNehTW2EoEKCdb/f/9 hOLGsNCM+tv8aPMBe5+ftOT7FVump9VF0NJm6UvyNuP2jVPRKzfRyd0wr6sHyVY4 AFl4g4R+yVyD44YeDFr503fALm0gZe3gpCC1OEa3M5JZrt1/iqOul1rtLs9OXGAf Tm56/fWTG5WiT3rc1FeHiMIowQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuiuieq k2Hp9nZbCkYv14PK5klbMB8GA1UdIwQYMBaAFI4Uakf+YtCaMmbOCDpXnK0TpYBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzBDOS8wMjI3QjlBRUZB MjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBKb3laczRJT2xlY3JST2xn R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poUnFSXzVpMEpveVpzNElPbGVjclJPbGdHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzBDOS8wMjI3QjlBRUZBMjUxMUVEQTcwMjcwMTBDNEY5QUUwMi9qaFJxUl81aTBK b3laczRJT2xlY3JST2xnR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsDO6ehhFPfM0JYqBhcq9tpEumLAM2ILOENk4yWbEL/Mo7WV43jPuG s062MYEIgFpAJ0hBLbjRuPDBOn6e7WX+HO2bh3EuxV8M8w8t7RJZsG0L0sW/82DX qgG6nMAIo+CqaQDMPlbxo3hOd6QSXicovh3yq4DRRAQB0wsZ74LsVJyocH7NsGE4 FoSR6s3gbvuT3NPii64xeuYGLkf+HCnimRz+WVzTsoIEYteVbR8Bc/jG9iPvUZZT Uq6PTJIW78h9EC3J7jzk3Xh3UGANVxAC/ZVTx1ETwxnc9wfmOR6ho4QHk5VSkCgQ 2M4tnCIbYwPlCnmYfIxh1bkfrTtTQWGz -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org