$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: 4epZlKJDPfOW0jVWFKyMe5vva7x9mNQOEsCJkmzQMac= Subject key identifier: 94:ED:CC:17:CA:AC:33:14:EA:51:9F:DA:0A:22:1A:43:4F:4A:29:32 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0B27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0B1B Signing time: Fri 22 Nov 2024 19:01:04 +0000 Manifest this update: Fri 22 Nov 2024 19:01:03 +0000 Manifest next update: Fri 29 Nov 2024 19:01:03 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: Jakj+YatpjtobnzXh54HAKhhOTPrB9qPR1YNKIMZEhw=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: NaKs9z3QJXb5Kn8e48Iigov3Z7TuQs5pMXoTUPl9zy0=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: PndwU/bKorz9FPxSOlH7Na5k3+/rUrTNarEjKEZdBqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Nov 22 19:01:03 2024 GMT Not After : Nov 29 19:01:03 2024 GMT Subject: CN=6740d4f0-af3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:1a:8d:80:6e:bc:3b:31:c4:19:91:0c:75: 32:5f:f8:ee:8d:a7:f9:df:2d:ee:e6:10:83:86:91: 74:89:c0:47:f1:61:b8:a7:77:b6:4e:b9:32:09:76: cd:07:e5:09:a3:25:8a:cb:c5:52:04:13:b4:45:59: 8e:f9:5d:cb:9d:8b:32:f7:59:82:9e:55:d3:04:34: fe:6d:07:d4:32:13:32:93:e5:8c:0e:e6:1f:7a:3c: 1c:1f:c3:53:57:a2:cf:3b:94:b0:4b:63:d7:82:12: 23:1c:f6:d0:17:6b:43:34:62:62:5c:7c:c0:a3:b2: 18:1b:ba:8a:38:df:28:5d:69:d5:95:5c:c1:82:9e: 17:7a:39:97:a5:93:c4:68:b8:52:5f:8a:6c:b3:ba: f3:98:cb:c5:60:2c:96:61:08:19:30:b1:54:99:07: 11:95:53:60:f2:89:7b:67:c5:27:b2:03:62:fd:f8: 11:13:ba:41:87:97:65:78:71:7b:74:30:5d:79:3c: 8b:de:d8:53:13:b8:00:92:ce:2f:d7:95:9d:25:c3: 7e:4e:8c:9b:9d:75:df:c3:8b:dd:3a:90:56:ab:3a: ad:28:9c:c1:66:85:31:eb:f6:f9:c9:70:49:13:4e: f3:00:2d:1c:c6:04:a9:80:80:38:ca:92:74:cb:d0: 57:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:ED:CC:17:CA:AC:33:14:EA:51:9F:DA:0A:22:1A:43:4F:4A:29:32 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:8a:4f:8a:79:78:ba:08:dd:cc:d6:e7:79:19:76:b3:6f:16: 28:f6:b7:41:49:03:5d:b1:3f:0f:7a:8f:29:d1:c0:59:9c:9f: 83:25:3c:d9:ff:d8:fb:19:eb:aa:45:06:2a:aa:e2:82:3f:4d: 44:cd:49:f4:8d:48:09:a3:ea:85:12:ee:59:97:61:5e:aa:63: df:9e:08:dd:a5:ee:0d:38:90:85:7a:a0:14:42:65:3c:73:f0: cb:40:33:b6:81:f6:62:e2:53:e5:64:b0:a8:20:89:15:aa:52: c8:70:0b:b2:f3:96:ff:07:5f:54:3c:1a:61:82:af:49:ba:34: 09:58:8a:23:0d:da:03:7f:6f:23:cc:ae:06:b5:8d:5a:9a:01: da:3c:43:e5:9a:3e:07:d5:e3:2d:f8:59:99:c3:0a:af:f1:82: b0:1b:24:bb:58:06:5d:c4:84:99:52:da:19:66:28:e4:22:24: e5:d2:1f:cf:29:17:0b:e3:8a:ca:0e:d1:3f:54:da:3e:91:eb: fa:70:80:76:3f:ef:cd:30:6a:94:35:b4:30:80:e7:cf:40:5e: 74:f8:c4:83:4a:93:92:94:dc:d9:51:98:4a:da:29:e7:43:52: 4b:20:3e:8c:fe:3b:4d:fa:28:65:35:bc:9f:fe:7d:a8:77:da: a3:8f:e0:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjQxMTIyMTkwMTAzWhcNMjQxMTI5MTkwMTAzWjAYMRYwFAYD VQQDEw02NzQwZDRmMC1hZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OYajYBuvDsxxBmRDHUyX/jujaf53y3u5hCDhpF0icBH8WG4p3e2TrkyCXbN B+UJoyWKy8VSBBO0RVmO+V3LnYsy91mCnlXTBDT+bQfUMhMyk+WMDuYfejwcH8NT V6LPO5SwS2PXghIjHPbQF2tDNGJiXHzAo7IYG7qKON8oXWnVlVzBgp4XejmXpZPE aLhSX4pss7rzmMvFYCyWYQgZMLFUmQcRlVNg8ol7Z8UnsgNi/fgRE7pBh5dleHF7 dDBdeTyL3thTE7gAks4v15WdJcN+ToybnXXfw4vdOpBWqzqtKJzBZoUx6/b5yXBJ E07zAC0cxgSpgIA4ypJ0y9BXSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTtzBfK rDMU6lGf2goiGkNPSikyMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLik+KeXi6CN3M1ud5GXazbxYo9rdBSQNdsT8Peo8p0cBZnJ+DJTzZ /9j7GeuqRQYqquKCP01EzUn0jUgJo+qFEu5Zl2FeqmPfngjdpe4NOJCFeqAUQmU8 c/DLQDO2gfZi4lPlZLCoIIkVqlLIcAuy85b/B19UPBphgq9JujQJWIojDdoDf28j zK4GtY1amgHaPEPlmj4H1eMt+FmZwwqv8YKwGyS7WAZdxISZUtoZZijkIiTl0h/P KRcL44rKDtE/VNo+kev6cIB2P+/NMGqUNbQwgOfPQF50+MSDSpOSlNzZUZhK2inn Q1JLID6M/jtN+ihlNbyf/n2od9qjj+AI -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org