$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft File: MB6kG5ONf0s895PQEveN06U5cCQ.mft (raw, json) Hash identifier: gImVaibRq5XoePGy1fGtGm0+tZv9mIAYx/4d7lSx6R0= Subject key identifier: EF:19:02:BB:22:E8:6A:06:D0:FE:49:93:EB:BB:7B:88:8B:E7:EB:FC Authority key identifier: 30:1E:A4:1B:93:8D:7F:4B:3C:F7:93:D0:12:F7:8D:D3:A5:39:70:24 Certificate issuer: /CN=A91B1F4F/serialNumber=301EA41B938D7F4B3CF793D012F78DD3A5397024 Certificate serial: 13E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MB6kG5ONf0s895PQEveN06U5cCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft Manifest number: 13DB Signing time: Fri 22 Nov 2024 16:57:43 +0000 Manifest this update: Fri 22 Nov 2024 16:57:42 +0000 Manifest next update: Fri 29 Nov 2024 16:57:42 +0000 Files and hashes: 1: MB6kG5ONf0s895PQEveN06U5cCQ.crl (hash: jJw+DnViOw3Is4um7Cu56c/030Q9GsyEQcr5uYUSKIQ=) 2: 61574192E37A11EB8AF29A5BC4F9AE02.roa (hash: W5cx07cNyMaDMA4R0/MWrV4hAi09Yk83hfS7ozdwiBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.crl rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MB6kG5ONf0s895PQEveN06U5cCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5093 (0x13e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1F4F/serialNumber=301EA41B938D7F4B3CF793D012F78DD3A5397024 Validity Not Before: Nov 22 16:57:42 2024 GMT Not After : Nov 29 16:57:42 2024 GMT Subject: CN=6740b807-ef5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f4:78:be:38:74:5d:11:08:6c:1f:dc:93:f3: 3a:ee:44:4f:45:1a:c8:8b:84:ae:39:c1:3c:ef:5e: b4:c2:bf:1a:bb:e2:e4:1f:93:a9:aa:25:27:12:6b: 39:04:80:a8:f4:52:6e:d3:87:c1:12:32:49:6f:04: 13:fc:55:cd:a9:f5:2f:6e:72:c1:93:60:a6:ab:88: a2:32:16:f2:50:59:61:11:d0:8e:25:62:24:ce:47: 35:96:87:22:dd:73:c4:c1:b6:d3:ec:a6:86:9f:c5: 60:2a:24:4b:52:cb:ef:98:ae:14:2d:b2:ce:73:91: 8d:b9:31:b7:e7:cd:3e:47:68:f1:9d:b6:8e:67:0e: 53:18:7f:ae:c7:77:e6:32:a0:c7:41:6c:c0:2e:d0: 8a:f1:84:0f:1d:18:1b:a6:32:a7:05:9d:e1:1a:bc: 08:4f:da:ef:97:9a:3e:64:f8:30:54:de:17:ab:a8: 8c:81:89:34:ca:fd:ca:c6:45:40:06:a3:3c:5f:36: 90:e8:c2:d0:53:87:a1:51:f0:a6:05:4b:13:ca:21: 21:d4:92:d7:b4:e4:c8:3f:4c:32:48:1e:a4:07:4e: 43:76:f4:72:a2:2b:2e:5e:cb:57:a3:50:f1:3d:7e: 95:85:e1:48:05:e8:6e:6b:5f:40:af:fd:ef:e5:2c: b2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:19:02:BB:22:E8:6A:06:D0:FE:49:93:EB:BB:7B:88:8B:E7:EB:FC X509v3 Authority Key Identifier: keyid:30:1E:A4:1B:93:8D:7F:4B:3C:F7:93:D0:12:F7:8D:D3:A5:39:70:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MB6kG5ONf0s895PQEveN06U5cCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1F4F/0FDB974C74D711E8BC82D42CC4F9AE02/MB6kG5ONf0s895PQEveN06U5cCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:61:ca:6e:69:c0:de:68:fd:0a:cd:28:e5:e4:93:fe:be:0f: de:a7:fb:3e:f7:f4:54:98:55:c7:e6:21:42:88:3d:b1:06:8a: 15:2a:9b:bc:a6:e4:d6:57:4f:6b:3c:8c:69:63:50:8e:49:dd: e2:9d:d5:62:00:17:c6:91:da:59:f9:35:e0:fd:c2:1d:2c:b7: c8:f3:94:cb:42:f8:c8:27:09:cc:05:42:1c:4e:a7:fc:38:62: e9:aa:7d:41:e8:d2:7c:1e:bd:0f:8c:65:2e:fe:01:9f:f3:fb: 59:d6:33:ce:d5:8d:77:97:17:48:45:64:62:f8:b5:d9:ff:28: 6a:f3:82:e4:af:af:8e:38:5f:24:1c:74:f0:74:b7:a3:6c:5d: ba:d0:ad:2a:75:02:53:65:06:dd:49:3f:17:62:2f:c1:c5:29: 93:34:38:da:76:c3:0f:c7:e1:5e:c2:e9:20:18:a7:c1:bb:0b: fa:62:6c:d7:b0:7e:a9:70:ac:19:2d:e7:c2:39:33:f6:c3:7f: de:40:6c:37:64:bf:bb:1f:e3:3d:5d:41:98:87:dc:b4:3c:e7: 12:ac:77:69:97:05:c6:38:fc:d9:45:b1:7a:b6:11:0c:3c:33: 01:e7:66:0c:c9:17:a9:9f:40:0d:04:27:4a:85:8b:b5:01:54: 9b:a8:14:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGNEYxMTAvBgNVBAUTKDMwMUVBNDFCOTM4RDdGNEIzQ0Y3OTNEMDEyRjc4REQz QTUzOTcwMjQwHhcNMjQxMTIyMTY1NzQyWhcNMjQxMTI5MTY1NzQyWjAYMRYwFAYD VQQDEw02NzQwYjgwNy1lZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnPR4vjh0XREIbB/ck/M67kRPRRrIi4SuOcE87160wr8au+LkH5OpqiUnEms5 BICo9FJu04fBEjJJbwQT/FXNqfUvbnLBk2Cmq4iiMhbyUFlhEdCOJWIkzkc1loci 3XPEwbbT7KaGn8VgKiRLUsvvmK4ULbLOc5GNuTG3580+R2jxnbaOZw5TGH+ux3fm MqDHQWzALtCK8YQPHRgbpjKnBZ3hGrwIT9rvl5o+ZPgwVN4Xq6iMgYk0yv3KxkVA BqM8XzaQ6MLQU4ehUfCmBUsTyiEh1JLXtOTIP0wySB6kB05DdvRyoisuXstXo1Dx PX6VheFIBehua19Ar/3v5SyyVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8ZArsi 6GoG0P5Jk+u7e4iL5+v8MB8GA1UdIwQYMBaAFDAepBuTjX9LPPeT0BL3jdOlOXAk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUY0Ri8wRkRCOTc0Qzc0 RDcxMUU4QkM4MkQ0MkNDNEY5QUUwMi9NQjZrRzVPTmYwczg5NVBRRXZlTjA2VTVj Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01CNmtHNU9OZjBzODk1UFFFdmVOMDZVNWNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUY0Ri8wRkRCOTc0Qzc0RDcxMUU4QkM4MkQ0MkNDNEY5QUUwMi9NQjZrRzVPTmYw czg5NVBRRXZlTjA2VTVjQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1YcpuacDeaP0KzSjl5JP+vg/ep/s+9/RUmFXH5iFCiD2xBooVKpu8 puTWV09rPIxpY1COSd3indViABfGkdpZ+TXg/cIdLLfI85TLQvjIJwnMBUIcTqf8 OGLpqn1B6NJ8Hr0PjGUu/gGf8/tZ1jPO1Y13lxdIRWRi+LXZ/yhq84Lkr6+OOF8k HHTwdLejbF260K0qdQJTZQbdST8XYi/BxSmTNDjadsMPx+FewukgGKfBuwv6YmzX sH6pcKwZLefCOTP2w3/eQGw3ZL+7H+M9XUGYh9y0POcSrHdplwXGOPzZRbF6thEM PDMB52YMyRepn0ANBCdKhYu1AVSbqBSa -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org