$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: vaEJ3fpliJ5jIwewb0UpJaAU8U+s/vHTgULtuQNcEXo= Subject key identifier: A7:E2:02:32:46:CE:C4:06:FC:7E:15:8E:55:67:49:43:D1:AA:70:F7 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 0769 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 0763 Signing time: Fri 22 Nov 2024 21:00:30 +0000 Manifest this update: Fri 22 Nov 2024 21:00:29 +0000 Manifest next update: Fri 29 Nov 2024 21:00:29 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: pfoszaNNRkcINAQwtFERI7J3Rihz+f/NSWKgNmkPyD0=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1897 (0x769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: Nov 22 21:00:29 2024 GMT Not After : Nov 29 21:00:29 2024 GMT Subject: CN=6740f0ed-5372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:df:5e:9d:61:14:cd:64:7c:3c:0d:97:d3:e2: 69:12:57:29:85:ce:a8:e2:40:9e:b2:fe:65:11:b3: e3:93:ca:24:22:dd:87:75:77:f6:05:9a:4d:c1:a1: bb:41:d9:79:20:68:fd:bd:1b:f3:4e:eb:51:b3:b9: 0d:e8:60:9d:24:b2:a5:35:bf:d4:1d:d4:83:e5:6c: 1f:1a:2c:41:ba:41:00:92:e4:f7:8c:95:2c:87:8d: a9:42:11:37:92:65:04:47:62:e6:f4:59:6b:bc:6d: 29:65:71:19:ac:33:60:d2:81:c6:53:05:26:b5:34: 84:5d:70:2d:fe:79:5a:be:a9:af:c0:da:1d:ca:f3: ba:39:ea:7b:5a:c4:8e:c4:1e:90:11:a4:a3:0b:c9: d0:f8:d4:f2:f4:2f:e8:ca:c6:9e:ff:52:a0:01:bc: 73:7c:74:bc:9c:d8:a3:a6:ec:56:cb:57:b7:0e:12: 52:81:a3:59:8a:09:38:3a:ea:67:2e:6c:d2:aa:5e: c9:0a:b7:38:2a:88:c5:fb:27:c2:a0:95:b6:97:fe: c8:03:4e:37:58:48:9c:d1:7f:fe:a8:73:64:f6:d3: 7a:36:72:31:7a:92:9d:dc:09:01:51:a9:8a:c7:1a: cd:23:ed:3c:ad:7c:be:71:c8:4b:2b:ea:bf:df:0f: aa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E2:02:32:46:CE:C4:06:FC:7E:15:8E:55:67:49:43:D1:AA:70:F7 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:a8:6a:1f:2d:23:23:2a:ee:34:03:3c:14:8a:5d:66:5d:1b: 0a:f0:68:0e:d0:40:e9:40:bc:97:1e:c9:63:5a:ca:ba:ba:c5: 17:ec:93:ab:27:ef:7a:24:43:2f:c8:da:2b:5f:fa:c8:ef:d3: 18:8e:d6:48:4b:e7:52:11:8d:80:89:e7:e8:c2:80:41:3d:f1: 51:2b:e4:e1:87:df:bc:20:fb:21:d1:8a:33:1f:20:a7:76:96: 9a:97:ef:f5:1d:2a:09:57:eb:21:25:38:07:7d:9c:ef:92:87: d7:3c:7f:f5:4b:fd:2d:28:25:6b:7d:02:95:3a:86:c3:8c:d6: 0f:14:4e:32:74:a1:64:99:1b:09:18:63:34:71:c0:f0:18:84: dd:06:56:0e:46:86:b1:79:fa:25:64:64:82:8f:d4:29:7c:cc: ea:52:73:81:70:87:cc:43:45:f1:45:4f:98:31:96:97:c0:ce: 44:77:2d:0f:10:87:96:4b:e8:df:e0:10:82:92:6e:d9:1e:76: 06:b8:c0:88:a4:7c:a3:d5:1c:94:b9:6d:02:90:9b:fc:3f:cc: aa:a9:8a:0c:a5:68:68:de:64:37:65:3f:a8:57:44:bf:25:04: f1:bf:04:a6:bf:fe:d5:91:a1:8e:09:33:d3:35:22:17:38:d2: b0:c8:db:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjQxMTIyMjEwMDI5WhcNMjQxMTI5MjEwMDI5WjAYMRYwFAYD VQQDEw02NzQwZjBlZC01MzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnd9enWEUzWR8PA2X0+JpElcphc6o4kCesv5lEbPjk8okIt2HdXf2BZpNwaG7 Qdl5IGj9vRvzTutRs7kN6GCdJLKlNb/UHdSD5WwfGixBukEAkuT3jJUsh42pQhE3 kmUER2Lm9FlrvG0pZXEZrDNg0oHGUwUmtTSEXXAt/nlavqmvwNodyvO6Oep7WsSO xB6QEaSjC8nQ+NTy9C/oysae/1KgAbxzfHS8nNijpuxWy1e3DhJSgaNZigk4Oupn LmzSql7JCrc4KojF+yfCoJW2l/7IA043WEic0X/+qHNk9tN6NnIxepKd3AkBUamK xxrNI+08rXy+cchLK+q/3w+qhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfiAjJG zsQG/H4VjlVnSUPRqnD3MB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOqGofLSMjKu40AzwUil1mXRsK8GgO0EDpQLyXHsljWsq6usUX7JOr J+96JEMvyNorX/rI79MYjtZIS+dSEY2AiefowoBBPfFRK+Thh9+8IPsh0YozHyCn dpaal+/1HSoJV+shJTgHfZzvkofXPH/1S/0tKCVrfQKVOobDjNYPFE4ydKFkmRsJ GGM0ccDwGITdBlYORoaxefolZGSCj9QpfMzqUnOBcIfMQ0XxRU+YMZaXwM5Edy0P EIeWS+jf4BCCkm7ZHnYGuMCIpHyj1RyUuW0CkJv8P8yqqYoMpWho3mQ3ZT+oV0S/ JQTxvwSmv/7VkaGOCTPTNSIXONKwyNtc -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org