$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft File: hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft (raw, json) Hash identifier: YbMTZrHQ0kqbUsankEcoMH2drkEBnz5KDPzrk9enPPU= Subject key identifier: 0F:0E:04:75:50:E4:74:09:0E:2F:43:F9:ED:5A:37:AD:D0:D1:EF:95 Authority key identifier: 86:22:33:3D:BC:07:73:38:0B:A3:76:47:DC:C3:F3:E6:55:F3:4B:C6 Certificate issuer: /CN=A91B3759/serialNumber=8622333DBC0773380BA37647DCC3F3E655F34BC6 Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft Manifest number: 0740 Signing time: Fri 22 Nov 2024 21:09:35 +0000 Manifest this update: Fri 22 Nov 2024 21:09:34 +0000 Manifest next update: Fri 29 Nov 2024 21:09:34 +0000 Files and hashes: 1: hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl (hash: EyX6kYuYbQ3QuYdmzFY16FoyWQ1DJk/Libc/pdW29oc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3759/serialNumber=8622333DBC0773380BA37647DCC3F3E655F34BC6 Validity Not Before: Nov 22 21:09:34 2024 GMT Not After : Nov 29 21:09:34 2024 GMT Subject: CN=6740f30f-2145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5b:29:4b:02:27:0c:18:d4:1f:50:ae:a5:49: 7f:ff:cd:67:10:17:5e:67:20:aa:75:34:d8:f5:79: de:db:38:0c:7a:52:0b:5d:e2:06:1c:23:ac:50:8f: bc:4f:2f:0d:b6:55:ce:90:fd:00:a3:e9:e0:00:d8: b9:42:89:8b:29:d7:7c:75:cf:f5:73:b0:c6:9b:25: a8:b5:3b:67:fb:81:55:51:2a:7a:bd:81:f6:4e:95: a1:39:97:1d:6c:49:b1:e2:71:47:99:9a:c8:da:82: ce:b3:f7:4c:1d:9b:db:7e:e2:90:83:5a:e0:0a:40: ee:55:0a:56:af:57:f1:b9:0d:19:df:4b:a9:4f:6f: 19:1f:8a:4b:62:9e:b0:bd:aa:17:c7:0f:16:99:dd: 56:64:77:14:ef:c3:3b:6d:f8:0d:27:a4:e7:85:45: f1:d9:ce:14:f8:aa:72:07:e5:10:fb:f7:09:e6:ab: 4d:c5:16:67:d5:61:8b:ad:58:b2:a3:fc:a6:3f:8c: 3d:bf:a6:d3:95:ce:e0:58:c4:18:c9:bc:e3:27:e3: d7:6f:6c:41:d3:9a:68:4c:4c:19:85:31:b9:de:dd: ba:a6:bf:da:27:70:87:ee:7a:4a:02:29:d1:54:a6: 67:c8:d0:98:bd:74:9e:d2:e5:f8:06:9b:76:16:eb: f3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0E:04:75:50:E4:74:09:0E:2F:43:F9:ED:5A:37:AD:D0:D1:EF:95 X509v3 Authority Key Identifier: keyid:86:22:33:3D:BC:07:73:38:0B:A3:76:47:DC:C3:F3:E6:55:F3:4B:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3759/090F5AAA051911EB9D50DD6EC4F9AE02/hiIzPbwHczgLo3ZH3MPz5lXzS8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:e7:9c:2c:a7:1b:4e:ec:c6:9c:e6:c4:5e:d8:94:a4:c4:2c: 19:8b:73:20:ad:70:36:2d:78:8d:86:39:1a:b2:cf:ab:91:75: e3:9a:99:c8:94:49:24:d4:e3:ab:0d:cf:34:18:30:b6:73:df: ad:94:9f:c2:15:95:b6:d6:c7:70:8c:6e:9f:22:a4:82:fb:e3: 59:f6:e0:56:c6:f7:8d:a7:e7:54:ba:7e:1d:0a:9e:cb:ed:6b: ba:05:3f:58:37:78:46:a3:db:de:12:b2:56:61:fe:f4:91:b1: 89:c1:ae:9f:1e:2b:fa:a9:ff:34:99:69:82:41:ec:44:ac:15: 0b:98:2b:a6:8a:69:04:5d:34:13:2d:67:ca:9f:8d:e1:42:e3: 46:25:13:77:aa:ea:03:94:5c:e2:ac:b3:0f:eb:3b:7d:01:ea: b5:28:8d:24:76:f8:14:e0:2c:ca:e7:08:ac:ee:ce:65:82:e9: 49:fe:73:ba:d3:53:40:43:65:5c:a4:b4:08:92:4f:4f:24:6d: 63:d0:32:ab:14:e4:60:d1:05:e0:76:6b:1b:1b:be:4b:b9:76: cc:a1:f2:5a:01:6b:b2:25:b0:c0:69:13:7a:ff:ef:35:60:7c: a5:2d:3b:eb:85:43:f4:11:5b:9c:b7:3b:50:db:51:bf:06:98: e1:e7:f9:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3NTkxMTAvBgNVBAUTKDg2MjIzMzNEQkMwNzczMzgwQkEzNzY0N0RDQzNGM0U2 NTVGMzRCQzYwHhcNMjQxMTIyMjEwOTM0WhcNMjQxMTI5MjEwOTM0WjAYMRYwFAYD VQQDEw02NzQwZjMwZi0yMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1spSwInDBjUH1CupUl//81nEBdeZyCqdTTY9Xne2zgMelILXeIGHCOsUI+8 Ty8NtlXOkP0Ao+ngANi5QomLKdd8dc/1c7DGmyWotTtn+4FVUSp6vYH2TpWhOZcd bEmx4nFHmZrI2oLOs/dMHZvbfuKQg1rgCkDuVQpWr1fxuQ0Z30upT28ZH4pLYp6w vaoXxw8Wmd1WZHcU78M7bfgNJ6TnhUXx2c4U+KpyB+UQ+/cJ5qtNxRZn1WGLrViy o/ymP4w9v6bTlc7gWMQYybzjJ+PXb2xB05poTEwZhTG53t26pr/aJ3CH7npKAinR VKZnyNCYvXSe0uX4Bpt2FuvzKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8OBHVQ 5HQJDi9D+e1aN63Q0e+VMB8GA1UdIwQYMBaAFIYiMz28B3M4C6N2R9zD8+ZV80vG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzc1OS8wOTBGNUFBQTA1 MTkxMUVCOUQ1MERENkVDNEY5QUUwMi9oaUl6UGJ3SGN6Z0xvM1pIM01QejVsWHpT OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpSXpQYndIY3pnTG8zWkgzTVB6NWxYelM4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Mzc1OS8wOTBGNUFBQTA1MTkxMUVCOUQ1MERENkVDNEY5QUUwMi9oaUl6UGJ3SGN6 Z0xvM1pIM01QejVsWHpTOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV55wspxtO7Mac5sRe2JSkxCwZi3MgrXA2LXiNhjkass+rkXXjmpnI lEkk1OOrDc80GDC2c9+tlJ/CFZW21sdwjG6fIqSC++NZ9uBWxveNp+dUun4dCp7L 7Wu6BT9YN3hGo9veErJWYf70kbGJwa6fHiv6qf80mWmCQexErBULmCumimkEXTQT LWfKn43hQuNGJRN3quoDlFzirLMP6zt9Aeq1KI0kdvgU4CzK5wis7s5lgulJ/nO6 01NAQ2VcpLQIkk9PJG1j0DKrFORg0QXgdmsbG75LuXbMofJaAWuyJbDAaRN6/+81 YHylLTvrhUP0EVuctztQ21G/Bpjh5/lC -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org