$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft File: DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft (raw, json) Hash identifier: 1+JvmfYiHOY7eQYY4kjbBNDIP6b8IPAvFCLQzIGauZs= Subject key identifier: CE:0F:BB:1D:82:99:02:70:19:DE:8D:65:99:35:62:16:CF:96:95:E4 Authority key identifier: 0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9 Certificate issuer: /CN=A91A6EA0/serialNumber=0CCAB9447A17AC3C8A787BE947EC5D6F4A895CE9 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft Manifest number: 0163 Signing time: Sat 23 Nov 2024 02:20:48 +0000 Manifest this update: Sat 23 Nov 2024 02:20:47 +0000 Manifest next update: Sat 30 Nov 2024 02:20:47 +0000 Files and hashes: 1: DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl (hash: UozVyYRrpQMkKui4DlL0JT8ewWSSiKTfNDvNDaWaju8=) 2: 35CFAB068C4111ED8E01DF60C4F9AE02.roa (hash: Z3KG+uf5YGwtjnziQoWt5pl6K6Wm2by1t5W9t4LirP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6EA0/serialNumber=0CCAB9447A17AC3C8A787BE947EC5D6F4A895CE9 Validity Not Before: Nov 23 02:20:47 2024 GMT Not After : Nov 30 02:20:47 2024 GMT Subject: CN=67413c00-ce4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c9:26:22:b5:15:6a:91:c0:8b:47:e2:51:90: e9:d6:37:49:9a:75:a2:42:ad:53:a2:c1:c3:94:75: b4:7d:00:43:d3:d4:8f:f1:a4:9f:14:95:24:ec:69: 35:29:4a:a5:7f:3d:08:31:d9:c3:2d:b3:8c:4f:04: 45:fc:de:0d:70:4e:5e:d7:d1:b1:a1:c0:57:bf:0e: 3e:90:33:d9:81:83:a3:c9:5e:db:6e:1c:64:00:e0: 6e:ab:94:15:28:6d:b2:53:80:d1:43:dc:76:00:1a: 42:1c:9b:1b:0d:6a:d0:d6:a4:f9:fa:34:fb:b8:6a: b0:fa:40:02:aa:2a:1c:5f:41:58:e8:3d:27:90:83: 76:f1:27:83:e2:56:2e:fd:df:33:ad:81:ba:18:55: 2b:be:43:15:f6:16:16:e4:55:75:52:d6:1d:fa:d0: cb:7d:a0:75:bb:2a:bb:16:84:bf:01:6d:11:80:dd: d3:39:21:78:8b:90:08:e5:bf:09:22:a7:08:a5:d6: 98:db:99:b3:16:73:bc:58:22:2d:58:0c:df:26:8c: 82:0e:04:b7:c0:1f:45:ca:4a:ba:fa:82:4f:e5:f9: a1:f7:9e:88:68:ec:93:ba:50:98:b5:8b:d8:f3:bd: e6:d5:0d:99:1b:70:cb:56:f7:d0:eb:4a:bb:85:75: f4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0F:BB:1D:82:99:02:70:19:DE:8D:65:99:35:62:16:CF:96:95:E4 X509v3 Authority Key Identifier: keyid:0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:9d:3a:cc:2c:6a:8b:be:59:89:b5:a5:b1:f1:db:ed:4b:17: 5c:36:d3:29:a8:e1:2f:23:6e:f6:61:5f:7d:61:f8:e2:90:4e: 40:d0:f6:be:3f:27:85:42:00:1d:36:eb:35:e7:22:b2:93:83: 1a:96:3d:82:da:90:8a:c2:ea:a5:38:08:c4:e1:14:4b:2b:97: f2:50:f3:e1:12:4a:3e:29:91:c3:64:1f:70:02:06:ac:9a:a4: 66:2e:4a:9b:35:3c:48:6f:8f:32:25:6b:12:62:d9:c3:e8:55: a7:fc:a4:0a:78:19:6d:a1:64:3e:5c:5e:93:40:1c:19:33:15: dc:7f:29:9e:1e:7d:88:13:19:54:ee:df:3c:62:2c:db:ea:fc: 87:d0:5a:95:d9:7c:e9:06:f4:4b:62:74:29:33:72:9a:a7:bf: 5f:db:2d:f5:c0:eb:b0:c8:cc:9a:40:53:a5:a6:de:b2:70:d3: 52:8f:7e:fd:06:11:ea:9a:99:21:34:fb:37:eb:03:29:44:f1: 68:71:7a:bb:de:5b:75:20:6a:62:35:1a:89:28:2c:6d:28:ff: 26:db:1b:d6:e9:4f:dc:b0:6d:e8:ee:7f:87:06:d9:6f:4b:bf: 8a:9f:f7:a8:d2:4f:7f:1e:0a:eb:d0:fd:b0:1e:4b:73:ad:c8: be:50:60:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZFQTAxMTAvBgNVBAUTKDBDQ0FCOTQ0N0ExN0FDM0M4QTc4N0JFOTQ3RUM1RDZG NEE4OTVDRTkwHhcNMjQxMTIzMDIyMDQ3WhcNMjQxMTMwMDIyMDQ3WjAYMRYwFAYD VQQDEw02NzQxM2MwMC1jZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ckmIrUVapHAi0fiUZDp1jdJmnWiQq1TosHDlHW0fQBD09SP8aSfFJUk7Gk1 KUqlfz0IMdnDLbOMTwRF/N4NcE5e19GxocBXvw4+kDPZgYOjyV7bbhxkAOBuq5QV KG2yU4DRQ9x2ABpCHJsbDWrQ1qT5+jT7uGqw+kACqiocX0FY6D0nkIN28SeD4lYu /d8zrYG6GFUrvkMV9hYW5FV1UtYd+tDLfaB1uyq7FoS/AW0RgN3TOSF4i5AI5b8J IqcIpdaY25mzFnO8WCItWAzfJoyCDgS3wB9Fykq6+oJP5fmh956IaOyTulCYtYvY 873m1Q2ZG3DLVvfQ60q7hXX0fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4Pux2C mQJwGd6NZZk1YhbPlpXkMB8GA1UdIwQYMBaAFAzKuUR6F6w8inh76UfsXW9KiVzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkVBMC9GOTE0MDBDMjhD MkMxMUVEOTYzOEU2NzJDNEY5QUUwMi9ETXE1UkhvWHJEeUtlSHZwUi14ZGIwcUpY T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RNcTVSSG9YckR5S2VIdnBSLXhkYjBxSlhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkVBMC9GOTE0MDBDMjhDMkMxMUVEOTYzOEU2NzJDNEY5QUUwMi9ETXE1UkhvWHJE eUtlSHZwUi14ZGIwcUpYT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJnTrMLGqLvlmJtaWx8dvtSxdcNtMpqOEvI272YV99YfjikE5A0Pa+ PyeFQgAdNus15yKyk4Malj2C2pCKwuqlOAjE4RRLK5fyUPPhEko+KZHDZB9wAgas mqRmLkqbNTxIb48yJWsSYtnD6FWn/KQKeBltoWQ+XF6TQBwZMxXcfymeHn2IExlU 7t88Yizb6vyH0FqV2XzpBvRLYnQpM3Kap79f2y31wOuwyMyaQFOlpt6ycNNSj379 BhHqmpkhNPs36wMpRPFocXq73lt1IGpiNRqJKCxtKP8m2xvW6U/csG3o7n+HBtlv S7+Kn/eo0k9/Hgrr0P2wHktzrci+UGA5 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org