$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: aY3POAVI3x+d93+qjheZMsYwxEhwPufcWd6mzzPKCiw= Subject key identifier: 80:9E:E8:D1:CE:AC:88:52:6D:FC:3A:2F:EA:00:C7:E7:99:CC:EF:C3 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: 015E Signing time: Sat 23 Nov 2024 02:22:07 +0000 Manifest this update: Sat 23 Nov 2024 02:22:06 +0000 Manifest next update: Sat 30 Nov 2024 02:22:06 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: Bw+wwx1scRYKvNuQHi92ssLA8/+2xhHf5Gxri+9Jx78=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: OVe6KSw+7kYYiHPF4YI7Y6sSZ8QGj8mE1P0YOqWt/tI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: Nov 23 02:22:06 2024 GMT Not After : Nov 30 02:22:06 2024 GMT Subject: CN=67413c4f-0d58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b4:c7:aa:86:fd:f6:57:fb:6b:0e:9d:ca:09: 27:20:4c:3f:7a:12:65:de:4d:bf:3c:6c:a5:b8:11: 28:dc:18:77:e6:a5:1f:fa:9d:7f:6e:66:3f:bc:07: 71:b1:89:85:b9:44:48:1a:06:db:71:68:78:ae:8e: 08:54:b5:c8:46:2a:23:20:63:1b:81:d7:fa:1c:3f: e2:e3:2b:42:ea:bb:ee:db:ab:d8:22:ae:a4:c0:f6: bb:88:ee:7c:f2:e1:42:d4:30:a5:3f:d7:42:13:4b: e7:d1:b2:a0:a8:3e:61:84:a0:a9:47:b0:57:d6:24: 6a:43:4f:6b:ff:40:eb:ac:3d:fb:ca:b0:b8:be:11: 2b:37:02:d9:bc:7c:6c:d7:c0:22:24:8f:b0:ee:e3: 4a:bc:1e:fb:f8:4c:5d:0a:f5:92:23:8c:c8:a8:23: 0b:5f:1a:1e:2b:a6:68:a9:8f:f8:f2:ab:c7:1e:3f: 87:63:51:f2:b1:bc:9d:4c:63:ed:ad:29:d8:7d:a3: 60:23:77:13:52:02:73:31:52:58:c3:36:59:f1:fd: 64:71:29:bf:92:c7:77:6b:02:33:2a:51:55:fa:0e: 4f:cb:ce:28:eb:e8:93:ff:86:93:78:85:49:6d:09: 39:6a:a9:43:e9:76:8e:79:a1:f7:5b:e6:a1:4d:84: a8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:9E:E8:D1:CE:AC:88:52:6D:FC:3A:2F:EA:00:C7:E7:99:CC:EF:C3 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:1b:26:51:7d:f3:d4:72:76:5f:cc:38:86:cb:87:cc:19:99: 9a:65:f8:5b:9b:16:17:e4:89:dc:e0:e9:a1:ca:95:13:90:b1: 2d:9b:bb:1e:6d:5f:83:1a:35:5e:16:ad:0b:8b:23:e7:e9:57: aa:a7:b2:05:a7:c5:c5:74:43:f8:af:f3:87:6b:84:f0:ed:cb: 44:52:fe:bc:fd:58:d7:91:96:4b:0a:ee:b7:f1:da:8b:ea:9d: 2c:be:04:7a:23:f4:b6:5c:eb:de:86:f9:35:bd:c4:31:b4:4e: 19:1e:31:7d:5a:8b:43:1d:4b:f4:cc:7e:14:0f:8e:d7:21:b8: 78:57:ec:6e:3f:89:63:31:d1:17:32:b3:7e:02:02:71:b5:bd: 24:ed:03:17:6f:a2:a4:8a:61:a5:ce:1a:97:e4:43:94:74:36: 15:45:3d:4b:ca:22:b7:e6:d8:ba:8c:b9:2f:7a:a2:76:20:9b: 1f:43:cd:cd:62:fa:f1:c9:e5:15:97:bb:d1:27:3f:73:5c:de: d2:71:9e:c6:7b:37:cd:58:52:91:2f:91:3e:bb:24:05:63:f3: 4a:0e:7e:90:9b:f6:8f:b2:7c:4f:65:98:e2:6c:4d:bb:a0:7e: f7:bf:55:45:b5:21:76:ed:66:5d:9b:52:1b:cb:73:0c:e7:e6: 89:09:30:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjQxMTIzMDIyMjA2WhcNMjQxMTMwMDIyMjA2WjAYMRYwFAYD VQQDEw02NzQxM2M0Zi0wZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoLTHqob99lf7aw6dygknIEw/ehJl3k2/PGyluBEo3Bh35qUf+p1/bmY/vAdx sYmFuURIGgbbcWh4ro4IVLXIRiojIGMbgdf6HD/i4ytC6rvu26vYIq6kwPa7iO58 8uFC1DClP9dCE0vn0bKgqD5hhKCpR7BX1iRqQ09r/0DrrD37yrC4vhErNwLZvHxs 18AiJI+w7uNKvB77+ExdCvWSI4zIqCMLXxoeK6ZoqY/48qvHHj+HY1HysbydTGPt rSnYfaNgI3cTUgJzMVJYwzZZ8f1kcSm/ksd3awIzKlFV+g5Py84o6+iT/4aTeIVJ bQk5aqlD6XaOeaH3W+ahTYSoGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFICe6NHO rIhSbfw6L+oAx+eZzO/DMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVGyZRffPUcnZfzDiGy4fMGZmaZfhbmxYX5Inc4OmhypUTkLEtm7se bV+DGjVeFq0LiyPn6Veqp7IFp8XFdEP4r/OHa4Tw7ctEUv68/VjXkZZLCu638dqL 6p0svgR6I/S2XOvehvk1vcQxtE4ZHjF9WotDHUv0zH4UD47XIbh4V+xuP4ljMdEX MrN+AgJxtb0k7QMXb6KkimGlzhqX5EOUdDYVRT1LyiK35ti6jLkveqJ2IJsfQ83N YvrxyeUVl7vRJz9zXN7ScZ7GezfNWFKRL5E+uyQFY/NKDn6Qm/aPsnxPZZjibE27 oH73v1VFtSF27WZdm1Iby3MM5+aJCTBo -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org