$ rpki-client -vvf rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft File: _f0WbMUdnjq3SWQHS25klGdOL24.mft (raw, json) Hash identifier: g+KYkrHRnFcuR5/nYLLb2kzBCdoASnX8FQKSRp9qGUw= Subject key identifier: 46:0E:08:96:E3:87:D7:08:50:1B:4D:37:40:EC:5B:82:FF:BB:D2:A3 Authority key identifier: FD:FD:16:6C:C5:1D:9E:3A:B7:49:64:07:4B:6E:64:94:67:4E:2F:6E Certificate issuer: /CN=A91884F8/serialNumber=FDFD166CC51D9E3AB74964074B6E6494674E2F6E Certificate serial: 1E4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_f0WbMUdnjq3SWQHS25klGdOL24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft Manifest number: 1E40 Signing time: Sun 24 Nov 2024 15:58:06 +0000 Manifest this update: Sun 24 Nov 2024 15:58:06 +0000 Manifest next update: Sun 01 Dec 2024 15:58:06 +0000 Files and hashes: 1: _f0WbMUdnjq3SWQHS25klGdOL24.crl (hash: n9ttZtToYhqfvPxxEFqt7ENC0beNYlTZT0LjuSZ9wMs=) 2: 888B4AC26B3611E6A149F871C4F9AE02.roa (hash: JNpFgM+KWXtVAKMLIECfprcazoPzZ95joJw//lWOa/c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.crl rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_f0WbMUdnjq3SWQHS25klGdOL24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:58:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7754 (0x1e4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91884F8/serialNumber=FDFD166CC51D9E3AB74964074B6E6494674E2F6E Validity Not Before: Nov 24 15:58:06 2024 GMT Not After : Dec 1 15:58:06 2024 GMT Subject: CN=67434d0e-40de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:56:5d:d6:77:27:cf:46:da:34:76:76:56:3d: 86:4d:7e:c5:a7:1e:da:1f:ce:88:68:d9:cf:3d:9c: 17:74:75:b1:9b:1a:1b:e7:5d:23:0e:6e:74:a5:94: 97:33:46:e3:2a:8a:44:a8:89:b8:b2:75:da:1e:a3: 89:3c:b5:32:85:47:b3:ca:6a:83:0f:1d:9e:ad:ad: fb:3e:75:2d:e3:3e:0c:41:15:61:2c:f5:14:34:7f: 08:3d:9b:58:31:5a:e7:76:13:fc:86:54:36:a3:c9: 0d:97:25:4d:6f:93:8f:a5:e4:e3:3b:6d:72:d3:53: bd:f5:a2:31:24:63:98:6a:a7:36:6a:f1:b9:e9:de: 63:75:6d:f9:fc:e0:9f:4d:05:99:41:7c:61:52:56: 9a:9d:c2:49:2e:b4:29:79:34:ac:88:2d:43:28:3c: ca:c4:f1:08:d5:d9:0a:05:1f:f2:55:61:ef:6b:85: 14:10:1e:be:10:8d:e8:5b:cb:6e:57:99:6d:ce:0f: 2f:66:ff:74:ca:d2:c9:d8:b0:be:89:a4:68:21:a0: 89:77:48:8a:51:2a:9a:bb:ef:19:04:c0:b8:a2:72: 79:e3:71:01:1f:ab:e8:68:60:1d:0d:0e:14:e8:63: 49:ef:ed:38:40:c3:11:81:15:b8:3f:45:ad:fd:e3: 52:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:0E:08:96:E3:87:D7:08:50:1B:4D:37:40:EC:5B:82:FF:BB:D2:A3 X509v3 Authority Key Identifier: keyid:FD:FD:16:6C:C5:1D:9E:3A:B7:49:64:07:4B:6E:64:94:67:4E:2F:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_f0WbMUdnjq3SWQHS25klGdOL24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91884F8/228AD3EA6B3211E694166265C4F9AE02/_f0WbMUdnjq3SWQHS25klGdOL24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:6b:4f:58:62:ea:cb:5c:86:13:fb:1e:8c:69:78:23:99:d1: a3:cd:9e:44:b5:c4:eb:5e:2c:f8:63:67:ba:61:60:eb:a6:af: d4:c6:f0:ba:e6:5f:3e:9c:6b:b0:ef:fe:a2:d3:83:3c:32:ab: 0b:57:b6:ca:f5:af:39:8b:87:8f:78:8c:aa:d3:52:57:6c:72: da:28:54:bd:e7:bb:4c:33:75:73:d1:49:5f:ad:09:57:4e:55: fd:8f:ff:0a:7f:4b:23:aa:d4:f7:ea:b7:0d:ea:7e:96:15:f3: 68:5b:02:88:59:00:70:78:3a:81:fc:f8:23:bd:6d:db:49:1b: 44:60:57:b1:72:07:53:06:fb:c9:f9:e2:87:db:21:c2:5c:73: 12:2f:fe:9a:d8:85:e4:bd:c0:ad:e4:c9:ab:b3:8b:99:38:48: 78:23:25:0a:b6:72:69:1c:f5:bd:bc:91:aa:98:c3:bc:6f:ed: c5:5f:cb:e1:a9:bc:ad:31:61:d7:3f:60:b6:91:b4:86:22:57: 2f:52:38:cf:df:f9:41:4a:89:44:82:79:6a:54:0c:46:38:87: 0f:f4:0a:5a:3b:93:a6:66:b9:93:d7:94:17:f1:ca:e0:a1:34: 60:ec:37:7b:87:e1:fa:f4:05:be:b4:23:d9:28:03:f0:a4:ae: c6:b1:30:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg0RjgxMTAvBgNVBAUTKEZERkQxNjZDQzUxRDlFM0FCNzQ5NjQwNzRCNkU2NDk0 Njc0RTJGNkUwHhcNMjQxMTI0MTU1ODA2WhcNMjQxMjAxMTU1ODA2WjAYMRYwFAYD VQQDEw02NzQzNGQwZS00MGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFZd1ncnz0baNHZ2Vj2GTX7Fpx7aH86IaNnPPZwXdHWxmxob510jDm50pZSX M0bjKopEqIm4snXaHqOJPLUyhUezymqDDx2era37PnUt4z4MQRVhLPUUNH8IPZtY MVrndhP8hlQ2o8kNlyVNb5OPpeTjO21y01O99aIxJGOYaqc2avG56d5jdW35/OCf TQWZQXxhUlaancJJLrQpeTSsiC1DKDzKxPEI1dkKBR/yVWHva4UUEB6+EI3oW8tu V5ltzg8vZv90ytLJ2LC+iaRoIaCJd0iKUSqau+8ZBMC4onJ543EBH6voaGAdDQ4U 6GNJ7+04QMMRgRW4P0Wt/eNSQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYOCJbj h9cIUBtNN0DsW4L/u9KjMB8GA1UdIwQYMBaAFP39FmzFHZ46t0lkB0tuZJRnTi9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODRGOC8yMjhBRDNFQTZC MzIxMUU2OTQxNjYyNjVDNEY5QUUwMi9fZjBXYk1VZG5qcTNTV1FIUzI1a2xHZE9M MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19mMFdiTVVkbmpxM1NXUUhTMjVrbEdkT0wyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODRGOC8yMjhBRDNFQTZCMzIxMUU2OTQxNjYyNjVDNEY5QUUwMi9fZjBXYk1VZG5q cTNTV1FIUzI1a2xHZE9MMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIa09YYurLXIYT+x6MaXgjmdGjzZ5EtcTrXiz4Y2e6YWDrpq/UxvC6 5l8+nGuw7/6i04M8MqsLV7bK9a85i4ePeIyq01JXbHLaKFS957tMM3Vz0UlfrQlX TlX9j/8Kf0sjqtT36rcN6n6WFfNoWwKIWQBweDqB/PgjvW3bSRtEYFexcgdTBvvJ +eKH2yHCXHMSL/6a2IXkvcCt5Mmrs4uZOEh4IyUKtnJpHPW9vJGqmMO8b+3FX8vh qbytMWHXP2C2kbSGIlcvUjjP3/lBSolEgnlqVAxGOIcP9ApaO5OmZrmT15QX8crg oTRg7Dd7h+H69AW+tCPZKAPwpK7GsTCl -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:20 2024 by rpki-client on console-ams.rpki-client.org