$ rpki-client -vvf rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft File: M0SkOWDcSkdzux3w_wON9BYPNXo.mft (raw, json) Hash identifier: dpCkpuJE4DOZRTexSsZH+ed+czX0q3KAzKjaCOe1wqk= Subject key identifier: F7:EF:4D:D8:76:F0:3D:E8:8B:78:01:2E:37:80:6B:F3:D4:1D:E1:06 Authority key identifier: 33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A Certificate issuer: /CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Certificate serial: 02CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft Manifest number: 02B7 Signing time: Sat 23 Nov 2024 01:05:42 +0000 Manifest this update: Sat 23 Nov 2024 01:05:42 +0000 Manifest next update: Sat 30 Nov 2024 01:05:42 +0000 Files and hashes: 1: M0SkOWDcSkdzux3w_wON9BYPNXo.crl (hash: dRpbD3BMHbCr1Cjk6wNC2MkpyHOiF36/fI+/1fm3siY=) 2: 4D03B06C83FA11EF9E6EC075C4F9AE02.roa (hash: NTo3OUYaYtafbk5WWe5U4JEYTgsdV1jOIIMQFUSflQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 718 (0x2ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Validity Not Before: Nov 23 01:05:42 2024 GMT Not After : Nov 30 01:05:42 2024 GMT Subject: CN=67412a66-2913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:84:36:e4:c6:07:c5:14:3e:4e:87:c8:31:cc: b7:ac:4d:3a:12:83:42:da:cf:bf:a4:e9:01:6c:65: 28:d5:90:86:8a:e2:ba:c1:99:e7:6c:9f:3b:1d:5f: 8b:60:5b:83:41:90:79:eb:a9:eb:a5:ed:23:41:46: 36:3e:5a:53:3f:eb:7e:94:cf:c9:99:4b:7c:8d:0b: cc:21:0f:a7:5d:c8:ab:1a:2b:a6:d3:4d:e2:a4:d0: 44:20:1a:cc:ab:0b:b6:43:53:bb:bf:3c:ff:63:5b: 9a:b9:6d:84:38:fa:0c:ea:b0:bc:f7:e5:11:2b:f0: 7c:43:9d:14:20:41:92:f6:ea:fd:43:02:1d:c3:6a: 17:a0:ff:cc:01:48:27:02:9d:fb:e8:05:1e:e5:f3: 87:a7:e8:7d:3d:93:2f:6f:84:42:03:1b:00:01:6d: fb:92:b5:18:92:20:9f:7a:cb:82:20:aa:4f:dd:59: 33:c6:8f:8e:09:31:9e:f7:ce:a3:48:90:48:4c:ba: 47:37:b3:f0:f3:6a:19:ea:12:de:69:6c:bc:30:91: 2d:6f:ee:70:e1:32:96:f5:c4:4d:7e:fc:50:96:88: 78:8d:82:02:9f:52:f6:33:e8:96:b6:1b:23:ae:34: f3:86:56:de:2b:18:d7:ff:69:79:55:43:50:fa:cd: c8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:EF:4D:D8:76:F0:3D:E8:8B:78:01:2E:37:80:6B:F3:D4:1D:E1:06 X509v3 Authority Key Identifier: keyid:33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:9e:22:22:58:47:12:98:01:14:9c:11:b4:89:98:dd:c4:4e: 62:f6:2f:76:86:90:7b:ad:ba:76:0c:bf:d1:90:4a:4c:4f:6f: 1f:79:8a:cf:d6:0b:bf:06:15:51:c7:6f:16:50:a1:56:81:34: da:90:3e:3b:7a:bd:5e:40:af:50:56:dd:dd:c3:9b:06:4f:c1: 4b:7a:56:7d:1c:c4:a5:29:f6:84:a2:e4:b9:8b:d1:97:23:f8: 84:80:06:79:05:1c:bd:f2:1f:56:36:ee:7e:7c:ae:78:03:76: 6f:e4:6c:1d:8d:f6:34:cd:63:eb:ea:57:4b:9c:54:f3:ff:68: f2:d4:d1:32:62:21:56:03:c2:30:7e:b3:8e:15:e9:97:e4:92: 5d:36:ad:58:cd:c9:ff:b9:7b:22:cd:83:f9:47:92:a8:57:f8: 46:1e:a3:61:56:7e:c8:0f:02:d5:4f:87:17:3f:8f:72:ee:2d: 71:ee:34:af:65:1b:23:f7:fc:56:17:58:1c:a0:19:a7:65:bd: 36:71:de:69:7e:3d:9e:2a:13:ca:78:3f:51:83:04:41:83:a1: 09:81:e8:40:c3:d2:95:25:00:eb:3b:da:1a:5d:6a:85:8f:45: fd:f8:6e:81:17:64:ae:ef:2c:34:55:1c:35:57:a0:e4:2a:0e: 5d:e5:c1:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc2RTIxMTAvBgNVBAUTKDMzNDRBNDM5NjBEQzRBNDc3M0JCMURGMEZGMDM4REY0 MTYwRjM1N0EwHhcNMjQxMTIzMDEwNTQyWhcNMjQxMTMwMDEwNTQyWjAYMRYwFAYD VQQDEw02NzQxMmE2Ni0yOTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4Q25MYHxRQ+TofIMcy3rE06EoNC2s+/pOkBbGUo1ZCGiuK6wZnnbJ87HV+L YFuDQZB566nrpe0jQUY2PlpTP+t+lM/JmUt8jQvMIQ+nXcirGium003ipNBEIBrM qwu2Q1O7vzz/Y1uauW2EOPoM6rC89+URK/B8Q50UIEGS9ur9QwIdw2oXoP/MAUgn Ap376AUe5fOHp+h9PZMvb4RCAxsAAW37krUYkiCfesuCIKpP3Vkzxo+OCTGe986j SJBITLpHN7Pw82oZ6hLeaWy8MJEtb+5w4TKW9cRNfvxQloh4jYICn1L2M+iWthsj rjTzhlbeKxjX/2l5VUNQ+s3IaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfvTdh2 8D3oi3gBLjeAa/PUHeEGMB8GA1UdIwQYMBaAFDNEpDlg3EpHc7sd8P8DjfQWDzV6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzZFMi8yMjU5QTE4NkQ4 NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1NrZHp1eDN3X3dPTjlCWVBO WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00wU2tPV0RjU2tkenV4M3dfd09OOUJZUE5Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzZFMi8yMjU5QTE4NkQ4NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1Nr ZHp1eDN3X3dPTjlCWVBOWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0niIiWEcSmAEUnBG0iZjdxE5i9i92hpB7rbp2DL/RkEpMT28feYrP 1gu/BhVRx28WUKFWgTTakD47er1eQK9QVt3dw5sGT8FLelZ9HMSlKfaEouS5i9GX I/iEgAZ5BRy98h9WNu5+fK54A3Zv5GwdjfY0zWPr6ldLnFTz/2jy1NEyYiFWA8Iw frOOFemX5JJdNq1Yzcn/uXsizYP5R5KoV/hGHqNhVn7IDwLVT4cXP49y7i1x7jSv ZRsj9/xWF1gcoBmnZb02cd5pfj2eKhPKeD9RgwRBg6EJgehAw9KVJQDrO9oaXWqF j0X9+G6BF2Su7yw0VRw1V6DkKg5d5cGs -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org