$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft File: 2gNU-zgfRSHBCxY-y9IqCD-3omw.mft (raw, json) Hash identifier: v9Ap+fskH11Sy1kA1sPYQPc8qdFT+8q8K2IOYpxXp/M= Subject key identifier: 10:E0:52:C4:A6:14:C3:76:C1:FF:D6:FB:E0:A5:6C:B0:19:64:EF:07 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 1586 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft Manifest number: 1576 Signing time: Fri 22 Nov 2024 16:49:05 +0000 Manifest this update: Fri 22 Nov 2024 16:49:04 +0000 Manifest next update: Fri 29 Nov 2024 16:49:04 +0000 Files and hashes: 1: 2gNU-zgfRSHBCxY-y9IqCD-3omw.crl (hash: j7GHy/uG1Clma7mfrR+lZujnbS7uxbKq43nONwJyL4c=) 2: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (hash: oNHAY+RH8azs+WtnEjYSGA9lvHIaeiPbqTK24H6N+nw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5510 (0x1586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: Nov 22 16:49:04 2024 GMT Not After : Nov 29 16:49:04 2024 GMT Subject: CN=6740b601-6f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2b:5b:0d:d4:47:be:f0:8b:43:10:09:f5:68: 60:e8:20:1a:ac:11:8d:48:7e:60:94:f1:87:03:7e: 40:2d:f6:f3:3f:fc:ae:35:e0:b9:87:c9:72:fb:78: b3:3e:ff:ba:b6:87:40:a7:20:5e:f2:48:ee:21:3b: e0:64:b7:06:52:a6:07:49:47:14:c7:5a:4d:da:09: 6b:d5:71:22:be:14:65:72:4e:61:54:63:cf:0f:b1: c7:dc:6f:1a:27:fc:d8:d0:5a:c9:7b:d9:68:e2:a5: 87:11:af:6a:2b:1a:ed:94:bb:45:cd:e7:7a:64:aa: 25:5f:90:00:d3:e4:57:a7:a8:64:26:57:df:c7:f8: 51:50:a4:bc:56:44:b9:06:17:43:9c:e2:99:f6:56: 3c:19:c5:f6:37:5e:1e:cd:62:e1:ea:6b:97:07:2b: 58:fb:bd:1f:fe:67:9a:7d:e7:28:f5:3d:63:a3:00: 0a:dd:20:78:71:0d:78:fb:15:15:13:45:4d:f4:06: 62:10:a4:15:21:b4:a8:16:84:9d:f6:be:b9:0b:f2: 81:a7:31:7f:68:99:0f:5f:2d:c3:cb:56:8d:8c:d6: 66:74:08:dd:0e:b0:9f:90:3e:d8:54:a7:e3:e7:34: d0:46:2e:e7:f6:5d:cd:18:b2:1f:12:68:9d:ac:fb: 9a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E0:52:C4:A6:14:C3:76:C1:FF:D6:FB:E0:A5:6C:B0:19:64:EF:07 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:91:88:a0:39:f2:c1:90:89:ed:25:4c:99:e7:ce:96:5e:4b: c7:e8:55:e4:1f:03:99:c5:40:44:df:51:5a:8c:e1:8b:84:74: 96:6d:7a:0f:bd:e2:f0:61:ad:e3:9d:06:e2:2a:16:f8:4d:c3: 20:e4:bd:fe:b6:5a:3b:c0:a5:d1:5f:b0:b8:e0:d1:f5:bd:d4: 0a:5f:27:43:21:fc:21:93:32:d5:f9:3c:ec:ac:3a:80:b0:44: d5:43:73:fb:bc:d8:92:f3:da:0a:de:85:12:df:96:47:1e:fd: 22:cf:a7:f2:1d:ca:5a:42:f5:61:05:4e:a4:06:cb:8b:cc:32: 7d:70:16:0a:93:d2:5f:78:2f:51:b4:92:c3:bf:92:78:99:77: 24:0b:67:c6:71:83:a4:9d:69:2f:03:bd:94:a5:91:cd:6e:8f: 1a:bd:f6:aa:b0:00:c7:d0:16:38:16:b5:03:9b:a2:3b:79:67: 6f:10:67:5f:3c:ce:95:8e:49:6b:e2:fb:fb:ae:d3:9d:0b:9c: b1:ec:06:ea:89:7f:47:d1:fc:58:02:5c:d4:3c:d2:a4:5e:e7: 12:b7:74:5a:97:e0:b5:f8:18:d7:dc:d2:bf:a0:d0:31:9f:5c: 69:f9:2b:2f:13:62:24:03:4b:06:85:77:00:8f:b8:1d:25:f6: 13:0e:bc:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjQxMTIyMTY0OTA0WhcNMjQxMTI5MTY0OTA0WjAYMRYwFAYD VQQDEw02NzQwYjYwMS02ZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnytbDdRHvvCLQxAJ9Whg6CAarBGNSH5glPGHA35ALfbzP/yuNeC5h8ly+3iz Pv+6todApyBe8kjuITvgZLcGUqYHSUcUx1pN2glr1XEivhRlck5hVGPPD7HH3G8a J/zY0FrJe9lo4qWHEa9qKxrtlLtFzed6ZKolX5AA0+RXp6hkJlffx/hRUKS8VkS5 BhdDnOKZ9lY8GcX2N14ezWLh6muXBytY+70f/meafeco9T1jowAK3SB4cQ14+xUV E0VN9AZiEKQVIbSoFoSd9r65C/KBpzF/aJkPXy3Dy1aNjNZmdAjdDrCfkD7YVKfj 5zTQRi7n9l3NGLIfEmidrPuabQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBDgUsSm FMN2wf/W++ClbLAZZO8HMB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkNEQS9GNEUyQkFCODI1QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJT SEJDeFkteTlJcUNELTNvbXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgkYigOfLBkIntJUyZ586WXkvH6FXkHwOZxUBE31FajOGLhHSWbXoP veLwYa3jnQbiKhb4TcMg5L3+tlo7wKXRX7C44NH1vdQKXydDIfwhkzLV+TzsrDqA sETVQ3P7vNiS89oK3oUS35ZHHv0iz6fyHcpaQvVhBU6kBsuLzDJ9cBYKk9JfeC9R tJLDv5J4mXckC2fGcYOknWkvA72UpZHNbo8avfaqsADH0BY4FrUDm6I7eWdvEGdf PM6Vjklr4vv7rtOdC5yx7AbqiX9H0fxYAlzUPNKkXucSt3Ral+C1+BjX3NK/oNAx n1xp+SsvE2IkA0sGhXcAj7gdJfYTDrxr -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org