$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft File: g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft (raw, json) Hash identifier: ukxLgy5wYc3O1p5ecusvRaVAVp7PatlcvFkj1FSSN8E= Subject key identifier: 68:03:24:E8:8E:C1:B9:46:83:1F:29:5C:70:C8:3B:B3:3D:EA:2E:16 Authority key identifier: 83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 Certificate issuer: /CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft Manifest number: 0156 Signing time: Sat 23 Nov 2024 02:27:14 +0000 Manifest this update: Sat 23 Nov 2024 02:27:14 +0000 Manifest next update: Sat 30 Nov 2024 02:27:14 +0000 Files and hashes: 1: g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl (hash: A38S3OwTOoFbJoaAF+RCXlxp4l4u9nPcKXk22EKMHV4=) 2: 93E8AC909CA111ED97E7FC20C4F9AE02.roa (hash: zju4K/C7v4F1RhA6Xn7FNtNsJOBeW7+E9YT9HJNBEfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB4BA/serialNumber=83B6E7EA23BDC3A38D60B4FFA2EFF5A18F1DCD68 Validity Not Before: Nov 23 02:27:14 2024 GMT Not After : Nov 30 02:27:14 2024 GMT Subject: CN=67413d82-d1cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:94:89:fd:68:23:f0:3a:87:04:64:17:a8:3d: bc:92:9f:8d:7c:93:b3:ec:0c:a5:24:02:b1:5c:16: 7f:2b:5a:d1:24:88:01:87:5c:62:88:ad:cc:91:43: 45:c0:08:1f:6c:f0:c9:8d:89:d4:75:d0:3c:69:a9: 45:d0:c4:f1:4e:b3:3e:28:ba:65:3e:a7:5e:77:39: 76:80:60:d0:d9:4e:d7:9a:93:72:da:d9:9a:73:e7: f6:56:f3:9c:2b:2a:e6:1a:00:4c:31:9a:00:67:78: ec:7f:3e:49:47:ac:b6:b4:dd:93:af:c6:c8:95:e4: 00:49:99:3e:88:1a:c9:1e:54:a6:29:3c:7f:e4:1e: ae:0e:9b:28:37:c8:d1:5d:d8:ef:d5:b7:bf:2f:af: 8f:f2:d0:6a:b7:9a:18:d2:fe:96:1c:49:5b:23:3f: 34:a3:72:6c:37:4f:e5:e1:26:94:4a:77:25:98:43: 37:22:c7:ed:28:6e:4b:07:4d:dd:87:34:92:c7:2c: d1:a7:14:7c:fc:f8:6d:45:f3:ce:0e:30:66:28:57: 4a:4b:b9:07:8d:6b:93:fc:2b:70:d3:a4:1e:5f:0c: 50:8f:52:29:dc:fb:dc:c9:e9:29:e1:d3:15:c7:cd: 70:78:42:d1:6e:20:91:4b:7d:70:ef:ba:42:c6:ff: 34:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:03:24:E8:8E:C1:B9:46:83:1F:29:5C:70:C8:3B:B3:3D:EA:2E:16 X509v3 Authority Key Identifier: keyid:83:B6:E7:EA:23:BD:C3:A3:8D:60:B4:FF:A2:EF:F5:A1:8F:1D:CD:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g7bn6iO9w6ONYLT_ou_1oY8dzWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB4BA/C73E18449C9E11ED91B7161DC4F9AE02/g7bn6iO9w6ONYLT_ou_1oY8dzWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:07:e4:1a:b5:63:c2:53:99:f8:45:60:0b:76:5b:7d:5c:f5: 51:d8:56:22:37:58:9b:a6:1c:c0:b3:4a:74:c6:5d:f2:7b:f1: c9:9f:4f:1a:7d:47:93:ec:4c:b4:cf:c8:0f:f8:27:66:0b:f4: f2:55:68:ec:7e:6d:4f:cf:e7:ce:77:25:e1:c4:64:c4:c6:c4: 59:1f:61:ee:5c:9c:d3:6b:8b:d5:28:fb:27:bd:a7:96:f0:3a: 55:2e:55:8a:fc:d4:a2:dd:d2:f3:17:ce:b2:46:a8:4c:07:42: 34:c9:95:c6:12:42:49:a7:a7:f1:2c:42:50:a6:60:8d:e2:d5: 08:be:8c:bd:41:b9:e9:77:60:d7:4c:ab:8e:cc:e1:62:b1:fa: 27:a0:3a:70:18:30:e2:cc:25:41:0e:2a:62:66:93:8a:fa:74: 20:16:bd:14:ae:da:5b:60:4e:62:47:28:5b:d5:ba:be:41:04: 93:6a:86:7f:8a:ce:b6:a5:78:88:7e:c1:70:ab:d0:65:d7:90: 0d:fc:a5:31:de:44:40:40:e9:2c:7f:f0:bd:60:21:b5:13:d5: 74:53:37:b2:3a:28:38:e6:44:f3:19:41:df:56:80:fc:cc:c7: cc:f4:98:2d:be:a8:62:37:68:24:f2:10:af:8c:a5:c7:94:19: 78:a6:9d:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0QkExMTAvBgNVBAUTKDgzQjZFN0VBMjNCREMzQTM4RDYwQjRGRkEyRUZGNUEx OEYxRENENjgwHhcNMjQxMTIzMDIyNzE0WhcNMjQxMTMwMDIyNzE0WjAYMRYwFAYD VQQDEw02NzQxM2Q4Mi1kMWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZSJ/Wgj8DqHBGQXqD28kp+NfJOz7AylJAKxXBZ/K1rRJIgBh1xiiK3MkUNF wAgfbPDJjYnUddA8aalF0MTxTrM+KLplPqdedzl2gGDQ2U7XmpNy2tmac+f2VvOc KyrmGgBMMZoAZ3jsfz5JR6y2tN2Tr8bIleQASZk+iBrJHlSmKTx/5B6uDpsoN8jR Xdjv1be/L6+P8tBqt5oY0v6WHElbIz80o3JsN0/l4SaUSnclmEM3IsftKG5LB03d hzSSxyzRpxR8/PhtRfPODjBmKFdKS7kHjWuT/Ctw06QeXwxQj1Ip3Pvcyekp4dMV x81weELRbiCRS31w77pCxv80IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgDJOiO wblGgx8pXHDIO7M96i4WMB8GA1UdIwQYMBaAFIO25+ojvcOjjWC0/6Lv9aGPHc1o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjRCQS9DNzNFMTg0NDlD OUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2T05ZTFRfb3VfMW9ZOGR6 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3Ym42aU85dzZPTllMVF9vdV8xb1k4ZHpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjRCQS9DNzNFMTg0NDlDOUUxMUVEOTFCNzE2MURDNEY5QUUwMi9nN2JuNmlPOXc2 T05ZTFRfb3VfMW9ZOGR6V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5B+QatWPCU5n4RWALdlt9XPVR2FYiN1ibphzAs0p0xl3ye/HJn08a fUeT7Ey0z8gP+CdmC/TyVWjsfm1Pz+fOdyXhxGTExsRZH2HuXJzTa4vVKPsnvaeW 8DpVLlWK/NSi3dLzF86yRqhMB0I0yZXGEkJJp6fxLEJQpmCN4tUIvoy9Qbnpd2DX TKuOzOFisfonoDpwGDDizCVBDipiZpOK+nQgFr0UrtpbYE5iRyhb1bq+QQSTaoZ/ is62pXiIfsFwq9Bl15AN/KUx3kRAQOksf/C9YCG1E9V0UzeyOig45kTzGUHfVoD8 zMfM9JgtvqhiN2gk8hCvjKXHlBl4pp0h -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org