$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft File: vrCjIjTRl23j3iJaVReALbYTqLY.mft (raw, json) Hash identifier: zImKv65IScoX2NF7b2wqEQQgss+4y1S/+9Ib8EJTqJw= Subject key identifier: 88:F4:52:C3:06:C6:D8:51:84:48:2F:ED:B5:39:4C:B9:2B:B7:12:C9 Authority key identifier: BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 Certificate issuer: /CN=A91AF17B/serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Certificate serial: 0557 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft Manifest number: 0552 Signing time: Fri 22 Nov 2024 22:58:28 +0000 Manifest this update: Fri 22 Nov 2024 22:58:27 +0000 Manifest next update: Fri 29 Nov 2024 22:58:27 +0000 Files and hashes: 1: vrCjIjTRl23j3iJaVReALbYTqLY.crl (hash: MZ3954fUPhrSPtSUjJxYjcX9CfnIj+/yAD4r3KMqalo=) 2: 9C955450C77E11EB9DF68B6AC4F9AE02.roa (hash: CdejYox3BV6EKy7rSMjwH4v5mRzFb0N6duLMtMnZvdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF17B/serialNumber=BEB0A32234D1976DE3DE225A5517802DB613A8B6 Validity Not Before: Nov 22 22:58:27 2024 GMT Not After : Nov 29 22:58:27 2024 GMT Subject: CN=67410c94-a9f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6c:58:66:12:a3:74:8e:a4:f2:bc:9b:90:c2: ec:ea:10:84:f3:05:bc:05:ac:ec:0f:98:0c:4f:2f: 17:32:4e:09:70:34:82:33:9a:10:2c:fa:21:60:91: 30:87:41:cb:98:e3:38:1d:b4:63:30:c6:c6:88:1a: e0:5f:72:36:bf:71:a6:93:68:b7:fc:76:ac:e4:1c: 20:98:f7:66:cf:21:98:b6:ef:fd:18:1b:ca:ce:f7: 5c:4e:8a:80:05:7b:a4:1b:2a:e6:61:c3:9b:f9:54: 7b:47:e8:83:1c:cf:0f:9d:c3:fb:01:12:34:b5:f9: f4:c6:e9:8c:23:d0:9f:34:63:36:96:c1:79:1d:93: 80:2f:ff:11:75:a6:1a:47:c8:b5:d6:73:8d:c0:28: c4:bf:23:d8:44:61:77:f1:f2:4c:8a:80:4d:26:67: 70:82:89:53:8a:0c:50:f2:c6:e9:2d:1a:c6:23:1f: 61:b8:9b:d5:b5:d3:b3:53:70:ca:36:4d:18:ae:d8: 39:dd:ec:86:5d:f5:48:56:5c:1b:01:38:7d:8d:89: 78:ad:5d:b5:87:bd:0b:94:76:6b:64:39:c7:89:d4: 1a:bf:c7:86:15:24:79:09:ec:fc:b6:b9:93:37:1e: de:7f:6b:a4:19:26:41:dc:df:12:d0:0e:8e:fc:28: 41:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F4:52:C3:06:C6:D8:51:84:48:2F:ED:B5:39:4C:B9:2B:B7:12:C9 X509v3 Authority Key Identifier: keyid:BE:B0:A3:22:34:D1:97:6D:E3:DE:22:5A:55:17:80:2D:B6:13:A8:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrCjIjTRl23j3iJaVReALbYTqLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF17B/EB0277FCC77A11EBBB80B878C4F9AE02/vrCjIjTRl23j3iJaVReALbYTqLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:1b:7d:49:b3:85:a2:65:62:4d:0f:e0:48:48:a1:b4:3d:21: a1:93:6c:00:1a:c8:f8:b2:3d:70:c4:05:ae:77:3d:ac:e8:59: db:9d:5a:7a:66:72:43:2d:61:eb:f4:a0:ea:bb:d6:e7:9a:e3: 53:c7:e7:56:42:e9:bd:58:5e:ca:83:f9:23:14:0c:51:f6:2a: 57:51:f3:60:9a:aa:5f:ec:fd:5e:2f:aa:6c:db:5d:40:4f:61: f6:b4:e3:ba:b1:f0:79:17:86:1b:a2:cb:31:a6:b6:c9:da:4b: db:36:15:de:fa:2d:6e:2b:d0:70:d2:34:42:a8:f5:45:3e:9d: c9:d3:2c:21:2c:64:9b:c2:10:21:25:fc:54:29:79:9d:f1:3d: cf:20:5f:55:2d:ba:b1:38:80:da:6b:1a:3f:7c:a8:cd:75:3a: 04:99:72:5e:94:7d:c8:be:cc:e5:c7:b6:53:f3:30:d8:a4:2c: 14:a3:ea:f2:ed:e0:f3:9b:f4:0f:89:82:c9:37:56:db:b2:e7: 1a:a9:0d:76:18:0e:2c:d9:39:f2:84:b9:5c:fb:d3:e6:41:53: 75:0d:76:67:1d:5a:7d:63:f6:94:41:71:cd:c3:7b:ba:f1:0c: be:0a:41:32:84:27:fd:33:87:46:14:15:6f:7e:0f:c5:d7:6a: 4b:ff:1d:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxN0IxMTAvBgNVBAUTKEJFQjBBMzIyMzREMTk3NkRFM0RFMjI1QTU1MTc4MDJE QjYxM0E4QjYwHhcNMjQxMTIyMjI1ODI3WhcNMjQxMTI5MjI1ODI3WjAYMRYwFAYD VQQDEw02NzQxMGM5NC1hOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2xYZhKjdI6k8rybkMLs6hCE8wW8BazsD5gMTy8XMk4JcDSCM5oQLPohYJEw h0HLmOM4HbRjMMbGiBrgX3I2v3Gmk2i3/Has5BwgmPdmzyGYtu/9GBvKzvdcToqA BXukGyrmYcOb+VR7R+iDHM8PncP7ARI0tfn0xumMI9CfNGM2lsF5HZOAL/8RdaYa R8i11nONwCjEvyPYRGF38fJMioBNJmdwgolTigxQ8sbpLRrGIx9huJvVtdOzU3DK Nk0Yrtg53eyGXfVIVlwbATh9jYl4rV21h70LlHZrZDnHidQav8eGFSR5Cez8trmT Nx7ef2ukGSZB3N8S0A6O/ChBzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj0UsMG xthRhEgv7bU5TLkrtxLJMB8GA1UdIwQYMBaAFL6woyI00Zdt494iWlUXgC22E6i2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE3Qi9FQjAyNzdGQ0M3 N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwyM2ozaUphVlJlQUxiWVRx TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZyQ2pJalRSbDIzajNpSmFWUmVBTGJZVHFMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE3Qi9FQjAyNzdGQ0M3N0ExMUVCQkI4MEI4NzhDNEY5QUUwMi92ckNqSWpUUmwy M2ozaUphVlJlQUxiWVRxTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9G31Js4WiZWJND+BISKG0PSGhk2wAGsj4sj1wxAWudz2s6FnbnVp6 ZnJDLWHr9KDqu9bnmuNTx+dWQum9WF7Kg/kjFAxR9ipXUfNgmqpf7P1eL6ps211A T2H2tOO6sfB5F4YbossxprbJ2kvbNhXe+i1uK9Bw0jRCqPVFPp3J0ywhLGSbwhAh JfxUKXmd8T3PIF9VLbqxOIDaaxo/fKjNdToEmXJelH3Ivszlx7ZT8zDYpCwUo+ry 7eDzm/QPiYLJN1bbsucaqQ12GA4s2TnyhLlc+9PmQVN1DXZnHVp9Y/aUQXHNw3u6 8Qy+CkEyhCf9M4dGFBVvfg/F12pL/x3o -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:48 2024 by rpki-client on console-ams.rpki-client.org