$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: KfLDzrqe9NDagxUsE+2xCbsyfMRW2rCgZVkYXL5pfeE= Subject key identifier: 3F:70:48:1A:E4:83:38:BD:BA:B4:7A:38:CE:DD:CF:6E:F8:54:8E:74 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: C0 Signing time: Sat 23 Nov 2024 03:59:42 +0000 Manifest this update: Sat 23 Nov 2024 03:59:41 +0000 Manifest next update: Sat 30 Nov 2024 03:59:41 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: UM1rT+zfFbi5LSccKvgwL7kioZckQ4aK6kVs7FXjZd8=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: gKGDkJp0ipqsmOS5j8atrFjmeBVDa4b5odYLuR+UGuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Nov 23 03:59:41 2024 GMT Not After : Nov 30 03:59:41 2024 GMT Subject: CN=6741532e-1023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1b:91:3b:bd:33:7f:3a:c1:2f:f5:cf:78:23: 86:56:12:fc:d3:37:12:39:30:1f:9d:fe:99:50:7b: 14:8e:76:6a:37:55:56:00:6e:3a:30:45:f3:53:45: b4:72:59:5d:ab:46:cc:80:92:77:11:c0:21:c6:d7: 51:b7:f5:f9:1f:9d:4a:a0:f5:ef:9c:42:ff:91:59: f0:ea:0a:bb:d1:fd:8f:af:1a:22:bb:68:82:80:c9: 06:81:83:31:7c:43:21:46:df:33:c3:68:89:a3:34: 04:e7:7b:e8:57:5f:03:63:41:cd:25:a9:19:73:f0: b4:09:f9:7a:e3:e1:35:e7:fa:1f:86:48:5a:24:aa: 00:df:62:b2:b7:96:66:79:06:61:5c:05:fd:8b:85: dd:69:9d:d0:70:cc:83:23:6e:68:a0:a4:14:99:d0: b9:4a:f8:44:c5:97:72:ea:61:d6:8a:5a:be:3c:db: c3:e4:fe:53:10:6a:80:79:fc:63:67:f0:70:b1:b8: 51:a8:14:52:2d:42:2e:6f:3b:c8:68:04:24:2b:bc: 2b:b7:b4:a1:de:d7:af:ce:19:62:47:9a:08:13:e8: 73:75:d7:35:02:01:04:68:3c:83:80:fb:bc:0c:b6: 3c:ef:99:5c:2f:e8:b4:a0:95:c4:dc:bf:22:e6:0a: d8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:70:48:1A:E4:83:38:BD:BA:B4:7A:38:CE:DD:CF:6E:F8:54:8E:74 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:cf:fc:ba:90:1c:b6:b3:6f:55:2c:13:a2:6f:93:a4:c2:e7: 66:f3:49:89:d3:c1:a4:7a:fe:f4:a8:c9:e8:48:de:1a:f1:31: a0:6e:17:96:1f:d7:1e:96:b6:d6:f0:32:21:63:30:59:4a:3c: e8:f4:f0:ba:c7:7f:7b:b3:15:cb:e6:a3:dc:83:93:ad:95:69: 01:3b:84:17:25:94:fd:e1:52:64:e2:2c:33:ad:56:da:1c:f6: 15:ac:56:70:73:ec:c3:75:08:95:07:e6:39:7d:db:1d:2c:c3: 98:b2:36:c0:58:56:81:d8:bc:66:aa:7c:b4:c1:0f:57:91:07: 78:21:79:08:80:a3:69:48:7b:33:4d:74:c5:69:3e:8e:bc:be: 74:a7:82:b6:6d:43:e8:2a:89:bd:80:55:96:02:88:3d:9f:dc: f7:c9:48:0d:ca:54:a0:0c:47:a1:74:43:ab:4a:78:08:0f:b6: de:42:85:b9:61:a4:2a:dc:33:13:89:bc:38:86:63:50:57:a7: f8:36:99:fc:83:52:c7:b9:93:1d:33:33:ba:05:f7:b1:51:d3: 0f:a6:d8:7a:9a:f7:c5:3d:9e:8f:cc:73:e5:ca:68:3a:28:eb: 27:34:a9:29:7d:dc:45:2d:ef:7f:27:4f:87:b1:7f:68:45:bf: b3:a6:2d:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjQxMTIzMDM1OTQxWhcNMjQxMTMwMDM1OTQxWjAYMRYwFAYD VQQDEw02NzQxNTMyZS0xMDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RuRO70zfzrBL/XPeCOGVhL80zcSOTAfnf6ZUHsUjnZqN1VWAG46MEXzU0W0 clldq0bMgJJ3EcAhxtdRt/X5H51KoPXvnEL/kVnw6gq70f2Prxoiu2iCgMkGgYMx fEMhRt8zw2iJozQE53voV18DY0HNJakZc/C0Cfl64+E15/ofhkhaJKoA32Kyt5Zm eQZhXAX9i4XdaZ3QcMyDI25ooKQUmdC5SvhExZdy6mHWilq+PNvD5P5TEGqAefxj Z/BwsbhRqBRSLUIubzvIaAQkK7wrt7Sh3tevzhliR5oIE+hzddc1AgEEaDyDgPu8 DLY875lcL+i0oJXE3L8i5grYVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9wSBrk gzi9urR6OM7dz274VI50MB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/z/y6kBy2s29VLBOib5Okwudm80mJ08Gkev70qMnoSN4a8TGgbheW H9celrbW8DIhYzBZSjzo9PC6x397sxXL5qPcg5OtlWkBO4QXJZT94VJk4iwzrVba HPYVrFZwc+zDdQiVB+Y5fdsdLMOYsjbAWFaB2Lxmqny0wQ9XkQd4IXkIgKNpSHsz TXTFaT6OvL50p4K2bUPoKom9gFWWAog9n9z3yUgNylSgDEehdEOrSngID7beQoW5 YaQq3DMTibw4hmNQV6f4Npn8g1LHuZMdMzO6BfexUdMPpth6mvfFPZ6PzHPlymg6 KOsnNKkpfdxFLe9/J0+HsX9oRb+zpi0+ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:20 2024 by rpki-client on console-ams.rpki-client.org