$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft File: 2spjaZboGaoflR3Gb_Ka0JecBcg.mft (raw, json) Hash identifier: DaC/knDUrhn0viYQvYkDIhoS4x1+a6lcd9uyxMQB0kU= Subject key identifier: C5:E6:C2:47:9D:2C:E6:05:69:0F:50:71:AD:87:B2:E2:09:03:2B:BF Authority key identifier: DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 Certificate issuer: /CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Certificate serial: 0BCB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft Manifest number: 0BB7 Signing time: Fri 22 Nov 2024 18:41:14 +0000 Manifest this update: Fri 22 Nov 2024 18:41:13 +0000 Manifest next update: Fri 29 Nov 2024 18:41:13 +0000 Files and hashes: 1: 2spjaZboGaoflR3Gb_Ka0JecBcg.crl (hash: UNHsllZulqlDzXl8tcFb2X8KaUAOmAIjApp4Roz6KEs=) 2: 15FB452EE46E11EABA2FD316C4F9AE02.roa (hash: AXlGmtPAr/+ZjGZEvsdIuhh3ValXH523UgvEJrH07C4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Validity Not Before: Nov 22 18:41:13 2024 GMT Not After : Nov 29 18:41:13 2024 GMT Subject: CN=6740d04a-98e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:e6:67:33:31:8e:31:bf:36:23:3c:8b:24: 18:59:87:d6:ef:04:88:9f:98:15:3f:f4:5f:a4:43: 67:31:69:48:e9:96:cf:0a:77:d8:14:91:10:da:5b: e1:a1:86:b9:d9:95:5c:c6:c6:30:c7:f6:8e:5c:3b: 26:9d:50:3b:d6:e3:70:2c:70:ee:e1:43:37:f1:93: 18:5c:f5:79:49:01:1a:57:5b:6f:c3:64:ee:68:27: d3:75:bd:48:8d:ab:ff:3c:3d:ee:1a:9e:06:08:25: 65:83:86:98:02:cc:af:7f:98:00:66:4d:5b:7a:bd: 19:41:18:5b:d8:c8:b3:0b:c1:43:1f:2d:7d:ac:e9: e7:5b:e6:d3:8d:cb:51:78:bf:81:52:c9:0f:f7:c5: d8:60:a6:7c:ba:c6:c7:19:25:da:92:47:f2:e8:cd: 19:99:e2:f5:7c:80:c5:32:11:9c:d2:59:a0:b5:96: b4:ec:6d:97:3b:91:91:1d:71:55:2c:d9:7d:74:54: c6:be:20:2c:f2:0d:9b:57:77:9b:77:34:7e:97:7d: f4:b9:36:88:89:79:b7:bb:b1:0e:74:f9:8e:dc:18: c5:2a:e0:2e:72:f1:fb:9b:b6:d6:48:33:80:a7:e3: e5:05:b9:c5:cc:6c:13:13:4a:1c:69:d9:62:11:4e: 11:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E6:C2:47:9D:2C:E6:05:69:0F:50:71:AD:87:B2:E2:09:03:2B:BF X509v3 Authority Key Identifier: keyid:DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:a5:35:ae:9c:0f:11:65:fe:dd:3c:70:26:4c:0d:b8:9c:4e: ae:e1:a0:88:d4:bf:f0:62:af:77:69:a5:59:e8:31:38:1c:96: b1:8b:9b:3a:4b:7b:ec:7a:c0:bd:d6:f9:ff:d3:1c:16:3c:ab: 9b:45:95:bc:69:e4:4f:23:8a:24:4c:f5:72:2b:71:5f:56:33: 14:59:fb:41:4f:ce:f8:da:5d:e9:52:db:0a:53:9a:12:c2:81: eb:bf:71:bf:4f:1e:99:57:7a:1b:f9:fe:fc:74:b3:56:81:14: 3c:aa:2c:7e:9a:46:ad:01:6a:0e:85:63:d7:44:f5:5f:58:c8: 7d:fc:1e:d0:80:79:a4:cf:69:7b:b8:df:dd:3d:17:06:c6:fd: 50:73:5f:45:ce:58:43:6b:62:9f:4f:59:26:e0:d5:37:46:9a: 21:a1:f1:14:4e:0d:ae:f2:ea:9b:be:c6:92:e7:4f:a2:f4:30: 68:61:1a:9d:dd:b7:fd:85:ce:8e:ab:3e:c3:10:4b:02:d8:36: ec:0f:94:bb:60:61:5e:77:32:36:3c:07:f0:95:d4:75:c5:50: a8:48:9d:ca:d5:ed:81:b8:12:f1:f5:54:53:d2:74:5e:72:72: c0:61:8d:b9:70:a7:aa:71:bb:78:46:97:f4:14:b3:c4:9a:a5: 8d:09:f9:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFMEUxMTAvBgNVBAUTKERBQ0E2MzY5OTZFODE5QUExRjk1MURDNjZGRjI5QUQw OTc5QzA1QzgwHhcNMjQxMTIyMTg0MTEzWhcNMjQxMTI5MTg0MTEzWjAYMRYwFAYD VQQDEw02NzQwZDA0YS05OGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDPmZzMxjjG/NiM8iyQYWYfW7wSIn5gVP/RfpENnMWlI6ZbPCnfYFJEQ2lvh oYa52ZVcxsYwx/aOXDsmnVA71uNwLHDu4UM38ZMYXPV5SQEaV1tvw2TuaCfTdb1I jav/PD3uGp4GCCVlg4aYAsyvf5gAZk1ber0ZQRhb2MizC8FDHy19rOnnW+bTjctR eL+BUskP98XYYKZ8usbHGSXakkfy6M0ZmeL1fIDFMhGc0lmgtZa07G2XO5GRHXFV LNl9dFTGviAs8g2bV3ebdzR+l330uTaIiXm3u7EOdPmO3BjFKuAucvH7m7bWSDOA p+PlBbnFzGwTE0ocadliEU4RwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXmwked LOYFaQ9Qca2HsuIJAyu/MB8GA1UdIwQYMBaAFNrKY2mW6BmqH5Udxm/ymtCXnAXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUUwRS80NzJDMzkyMjEw RUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dhb2ZsUjNHYl9LYTBKZWNC Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzcGphWmJvR2FvZmxSM0diX0thMEplY0JjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUUwRS80NzJDMzkyMjEwRUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dh b2ZsUjNHYl9LYTBKZWNCY2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6pTWunA8RZf7dPHAmTA24nE6u4aCI1L/wYq93aaVZ6DE4HJaxi5s6 S3vsesC91vn/0xwWPKubRZW8aeRPI4okTPVyK3FfVjMUWftBT8742l3pUtsKU5oS woHrv3G/Tx6ZV3ob+f78dLNWgRQ8qix+mkatAWoOhWPXRPVfWMh9/B7QgHmkz2l7 uN/dPRcGxv1Qc19FzlhDa2KfT1km4NU3RpohofEUTg2u8uqbvsaS50+i9DBoYRqd 3bf9hc6Oqz7DEEsC2DbsD5S7YGFedzI2PAfwldR1xVCoSJ3K1e2BuBLx9VRT0nRe cnLAYY25cKeqcbt4Rpf0FLPEmqWNCfkg -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org