$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: cwICK/JwIELf6C0VsJPnuVOp5MQa9C3S0WIJOyvUq2Q= Subject key identifier: 10:42:1D:9F:B2:B3:9B:B7:6A:2C:04:19:B4:1D:B1:EB:D5:20:C3:14 Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 0330 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 032C Signing time: Sat 23 Nov 2024 00:42:18 +0000 Manifest this update: Sat 23 Nov 2024 00:42:18 +0000 Manifest next update: Sat 30 Nov 2024 00:42:18 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: 8zqmgDcK30qoEayNesX/I8pYpEhCu7Xr0cQVKDteQvo=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: CUkiAWG5K4Q1HdHEYFRgbc4bpAS6g17dNYGvM1oOAQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 816 (0x330) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: Nov 23 00:42:18 2024 GMT Not After : Nov 30 00:42:18 2024 GMT Subject: CN=674124ea-3404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:64:3a:48:52:c8:fe:93:1f:c8:36:52:6b:2d: 40:d2:48:9a:e0:aa:2f:62:eb:f0:76:b0:6d:32:a6: 0f:33:b1:15:8c:ef:ff:7d:5d:38:e2:5c:1d:27:3b: d6:2d:6a:fe:7a:02:42:c6:aa:04:08:c9:f9:0c:10: ba:a6:90:47:ed:66:0b:ba:1d:c5:e9:d7:50:b6:05: 97:a3:35:50:af:4f:a1:53:fb:2a:34:11:fb:37:b0: a0:4e:02:e0:d8:54:26:f7:72:cc:10:f3:84:64:2e: a5:59:15:6f:fe:89:91:10:8b:07:2b:d8:29:49:3c: 21:50:b2:f4:61:45:06:56:07:e6:27:d1:3b:4f:af: 51:6a:b3:b4:96:05:12:44:42:fc:9d:cd:5f:f3:ae: 88:39:bb:84:2e:4b:9d:a0:97:56:e1:d9:63:71:0f: 16:aa:eb:52:68:f3:fc:86:6a:78:a9:23:13:e2:57: 76:ec:f7:1c:fe:fb:f9:e1:5e:b1:f4:29:90:e6:eb: aa:62:01:91:f4:fd:86:59:e3:86:0d:a2:d0:ca:ed: 75:83:20:81:cc:65:c2:2f:30:02:6d:78:9a:ae:8d: 28:73:3e:96:d2:4b:ec:12:7d:db:20:e7:96:70:f9: 72:e3:ca:5b:42:75:d0:f6:ef:6e:94:c0:f1:67:26: 6d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:42:1D:9F:B2:B3:9B:B7:6A:2C:04:19:B4:1D:B1:EB:D5:20:C3:14 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:38:ad:30:1b:5b:4e:8a:ae:f7:83:03:9f:56:05:e0:10:80: 67:d8:36:ac:88:cc:00:0b:e4:12:eb:bb:3f:ef:14:d2:18:c8: 39:e5:3b:49:bd:34:e1:74:ee:a3:31:76:60:bd:b5:06:30:e7: 3a:b0:f4:ba:51:62:22:3f:75:8e:48:b1:59:27:17:52:6c:f8: 18:2b:56:a7:e0:52:32:93:ff:c0:be:39:0f:c1:a6:48:0c:a7: e6:fa:8c:8f:0d:69:2c:80:84:44:a0:0e:b4:c8:33:f8:c2:28: cd:aa:dd:68:40:ef:0c:8c:7f:a3:cf:ba:d6:a4:45:e0:9c:78: f4:76:38:90:66:50:87:26:85:94:5f:5d:91:5b:bc:8b:31:6d: 98:94:18:99:48:03:f7:1f:22:65:28:48:74:b6:af:24:ba:6a: 3d:12:cf:32:b8:4a:6e:f4:d1:82:38:89:a9:45:ec:17:e3:14: b8:15:89:cf:64:7a:65:8a:af:07:54:fc:65:3e:3b:1f:74:af: 61:fd:f5:d1:2a:5f:da:09:f6:53:49:2c:cb:7c:b4:20:41:d8: b3:d1:2e:34:1c:a2:0d:2e:50:b0:a3:5a:26:56:20:2a:ec:b2: fe:48:4c:19:bd:27:34:5c:4b:71:c3:00:71:80:1e:59:0d:f2: 91:ea:9f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjQxMTIzMDA0MjE4WhcNMjQxMTMwMDA0MjE4WjAYMRYwFAYD VQQDEw02NzQxMjRlYS0zNDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2Q6SFLI/pMfyDZSay1A0kia4KovYuvwdrBtMqYPM7EVjO//fV044lwdJzvW LWr+egJCxqoECMn5DBC6ppBH7WYLuh3F6ddQtgWXozVQr0+hU/sqNBH7N7CgTgLg 2FQm93LMEPOEZC6lWRVv/omREIsHK9gpSTwhULL0YUUGVgfmJ9E7T69RarO0lgUS REL8nc1f866IObuELkudoJdW4dljcQ8WqutSaPP8hmp4qSMT4ld27Pcc/vv54V6x 9CmQ5uuqYgGR9P2GWeOGDaLQyu11gyCBzGXCLzACbXiaro0ocz6W0kvsEn3bIOeW cPly48pbQnXQ9u9ulMDxZyZtJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBCHZ+y s5u3aiwEGbQdsevVIMMUMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyOK0wG1tOiq73gwOfVgXgEIBn2DasiMwAC+QS67s/7xTSGMg55TtJ vTThdO6jMXZgvbUGMOc6sPS6UWIiP3WOSLFZJxdSbPgYK1an4FIyk//AvjkPwaZI DKfm+oyPDWksgIREoA60yDP4wijNqt1oQO8MjH+jz7rWpEXgnHj0djiQZlCHJoWU X12RW7yLMW2YlBiZSAP3HyJlKEh0tq8kumo9Es8yuEpu9NGCOImpRewX4xS4FYnP ZHpliq8HVPxlPjsfdK9h/fXRKl/aCfZTSSzLfLQgQdiz0S40HKINLlCwo1omViAq 7LL+SEwZvSc0XEtxwwBxgB5ZDfKR6p9l -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org