$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft File: r-73ovgxqXVbE7N-tum5HYHoqeg.mft (raw, json) Hash identifier: 2AmOeCCPNmfIXRV/EmwOJCxFB7inYKpK0TdBTVbLH+A= Subject key identifier: 0D:38:1A:EE:F7:1D:5E:08:54:94:4F:05:E2:B7:58:51:DE:00:3E:F1 Authority key identifier: AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 Certificate issuer: /CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Certificate serial: 0574 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft Manifest number: 0570 Signing time: Fri 22 Nov 2024 22:53:03 +0000 Manifest this update: Fri 22 Nov 2024 22:53:03 +0000 Manifest next update: Fri 29 Nov 2024 22:53:03 +0000 Files and hashes: 1: r-73ovgxqXVbE7N-tum5HYHoqeg.crl (hash: 9XYiWhf4eotIrQLkrfqp6Cm3XaS9hXATjuxSTTJeuVQ=) 2: C17E1DDCBC7111EBB1423E5FC4F9AE02.roa (hash: ei3bKZ/cpLIRgTqV0pdjcmnxhOkz7g6PWIVeDuQtGq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1396 (0x574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Validity Not Before: Nov 22 22:53:03 2024 GMT Not After : Nov 29 22:53:03 2024 GMT Subject: CN=67410b4f-7b5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:63:65:4e:ef:83:53:c6:e9:8c:ff:22:91:49: 40:60:7b:53:b0:bd:5a:50:ff:db:2a:ea:6a:69:20: a3:8f:d5:ce:01:e2:58:a2:b2:d8:e0:f6:67:21:94: 7e:0d:86:38:b8:bb:9b:6b:0f:29:b8:6a:6b:b6:83: 8e:86:73:ed:e1:72:6f:13:b9:bd:a2:32:ab:3f:9a: d8:d9:f7:0e:bd:ec:cb:61:a9:f3:24:94:e8:02:a4: 1f:e8:a6:c8:24:81:c8:45:09:f3:fd:a5:80:a5:ea: 81:cb:f9:29:15:f2:be:ad:11:5c:0e:56:6a:d6:9b: c7:ba:7d:59:46:54:08:c0:2e:49:10:7b:62:86:28: 33:8a:99:4e:85:36:a1:9a:68:99:c9:25:6d:10:97: 09:56:2b:0a:da:ff:18:8b:e4:0f:95:fb:41:1a:b3: 50:39:db:07:1e:85:ee:1e:4b:ab:86:69:97:60:3f: bb:22:47:af:e5:14:ad:b6:c3:98:4c:37:e4:20:42: 89:fc:66:8a:3a:6a:80:94:91:ec:be:77:07:4e:0a: 53:08:ba:51:88:f1:ed:21:7f:de:0a:57:99:4a:32: 1c:b0:2b:f3:86:88:9e:6b:94:4e:6a:38:70:83:03: 73:12:97:a6:af:80:0c:75:44:3d:45:2e:12:3c:4c: 77:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:38:1A:EE:F7:1D:5E:08:54:94:4F:05:E2:B7:58:51:DE:00:3E:F1 X509v3 Authority Key Identifier: keyid:AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:75:a5:99:a5:30:b5:ee:ed:c5:cd:58:0b:54:dc:2c:59:b1: 83:56:26:56:5c:00:46:a0:42:85:10:b9:2b:54:f3:58:e9:b6: 68:fd:47:90:e1:ed:13:b9:67:e1:d3:66:be:48:6f:ea:0a:57: e9:a1:07:3d:b9:b2:f0:91:09:4f:88:69:e3:f7:86:ee:ea:8b: eb:56:dc:bc:6e:7f:9a:15:02:d6:fb:73:e6:87:44:63:3c:de: aa:59:12:e1:11:4e:73:d7:e2:f3:89:7c:5e:17:9b:9f:9c:64: bd:51:44:93:fc:66:36:b8:f0:c9:f4:5c:ac:3f:cc:94:5d:b6: 20:c9:ff:2d:7d:8a:08:79:18:9b:20:45:d8:a9:56:1e:96:5f: 9b:4a:20:d5:d3:2b:5b:b7:1d:c4:ec:8e:0b:99:c6:fa:59:8b: 5a:f2:04:20:79:ea:87:c6:66:7d:b0:8f:a3:d7:6a:64:0d:13: 4f:fe:fd:2c:a0:0a:3b:2b:14:ad:92:66:0a:d3:59:58:5e:3b: d8:16:4e:ab:e8:11:f2:df:e9:59:7f:8f:21:4a:66:ad:53:a6: 34:4d:6b:da:6b:ec:db:d0:40:68:b9:27:06:9d:7c:be:8b:c5: e0:59:e3:3d:03:a2:eb:61:70:a6:4b:33:32:5e:1c:b0:15:11: 38:2e:63:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGRUVGN0EyRjgzMUE5NzU1QjEzQjM3RUI2RTlCOTFE ODFFOEE5RTgwHhcNMjQxMTIyMjI1MzAzWhcNMjQxMTI5MjI1MzAzWjAYMRYwFAYD VQQDEw02NzQxMGI0Zi03YjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGNlTu+DU8bpjP8ikUlAYHtTsL1aUP/bKupqaSCjj9XOAeJYorLY4PZnIZR+ DYY4uLubaw8puGprtoOOhnPt4XJvE7m9ojKrP5rY2fcOvezLYanzJJToAqQf6KbI JIHIRQnz/aWApeqBy/kpFfK+rRFcDlZq1pvHun1ZRlQIwC5JEHtihigziplOhTah mmiZySVtEJcJVisK2v8Yi+QPlftBGrNQOdsHHoXuHkurhmmXYD+7Ikev5RSttsOY TDfkIEKJ/GaKOmqAlJHsvncHTgpTCLpRiPHtIX/eCleZSjIcsCvzhoiea5ROajhw gwNzEpemr4AMdUQ9RS4SPEx3tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA04Gu73 HV4IVJRPBeK3WFHeAD7xMB8GA1UdIwQYMBaAFK/u96L4Mal1WxOzfrbpuR2B6Kno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC9GRDg2MEY2OEJD NkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFYVmJFN04tdHVtNUhZSG9x ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItNzNvdmd4cVhWYkU3Ti10dW01SFlIb3FlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkYyRC9GRDg2MEY2OEJDNkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFY VmJFN04tdHVtNUhZSG9xZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTdaWZpTC17u3FzVgLVNwsWbGDViZWXABGoEKFELkrVPNY6bZo/UeQ 4e0TuWfh02a+SG/qClfpoQc9ubLwkQlPiGnj94bu6ovrVty8bn+aFQLW+3Pmh0Rj PN6qWRLhEU5z1+LziXxeF5ufnGS9UUST/GY2uPDJ9FysP8yUXbYgyf8tfYoIeRib IEXYqVYell+bSiDV0ytbtx3E7I4Lmcb6WYta8gQgeeqHxmZ9sI+j12pkDRNP/v0s oAo7KxStkmYK01lYXjvYFk6r6BHy3+lZf48hSmatU6Y0TWvaa+zb0EBouScGnXy+ i8XgWeM9A6LrYXCmSzMyXhywFRE4LmPR -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org