$ rpki-client -vvf rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft File: ihprqbt2zysN7jXqTP0vX_jAieM.mft (raw, json) Hash identifier: nKzSWLsnQDO/FitZ1rdupfFA9lj+rk0jlTCd6YjOrj4= Subject key identifier: 11:4C:C2:B5:65:E6:EF:BA:91:D7:59:ED:1A:A2:0E:3D:BB:AD:0D:88 Authority key identifier: 8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3 Certificate issuer: /CN=A91C36EE/serialNumber=8A1A6BA9BB76CF2B0DEE35EA4CFD2F5FF8C089E3 Certificate serial: 0B81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft Manifest number: 0B7C Signing time: Fri 22 Nov 2024 18:46:37 +0000 Manifest this update: Fri 22 Nov 2024 18:46:37 +0000 Manifest next update: Fri 29 Nov 2024 18:46:37 +0000 Files and hashes: 1: ihprqbt2zysN7jXqTP0vX_jAieM.crl (hash: kcRtdHvGkg0Hi1x8pxBl+0okkNQL7rfWabKwBQzDl8o=) 2: 6FCF7FF2180411EA9AA70A57C4F9AE02.roa (hash: mKEtXAReo073pS6G/Scd6VusUJKflX5sGzsP9WFHvuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.crl rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2945 (0xb81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C36EE/serialNumber=8A1A6BA9BB76CF2B0DEE35EA4CFD2F5FF8C089E3 Validity Not Before: Nov 22 18:46:37 2024 GMT Not After : Nov 29 18:46:37 2024 GMT Subject: CN=6740d18d-75e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6e:80:3f:3d:f6:10:a9:17:90:3d:3d:26:32: f0:40:9f:57:98:8d:e9:34:e5:cb:db:a5:cc:4e:61: 89:19:bb:1d:47:e1:31:18:27:e2:d0:75:29:0e:7e: b2:c7:77:1a:97:47:86:85:08:cc:6d:04:89:99:e0: 32:f7:5a:ac:ea:a8:42:c4:90:4a:da:3e:64:08:2a: 45:d7:41:53:fa:f0:cd:4c:fd:83:89:9e:66:23:aa: 00:fd:c5:63:54:ce:4c:d2:7c:dd:4e:eb:cc:5c:b8: 35:6a:52:02:3a:d7:4e:d4:80:82:65:b8:bf:80:9e: e2:9a:c4:7e:59:5b:e6:73:62:63:7c:3d:28:0c:d1: fb:73:0a:97:2e:79:9a:bb:43:2e:e3:7b:59:8f:81: a3:d3:4c:79:6d:ba:96:61:a1:a0:34:38:10:87:52: 0e:1c:7c:bf:24:b0:e0:47:18:99:f0:4a:e8:bc:36: c7:d0:af:97:51:0f:b9:02:3f:ad:c8:59:b9:f3:42: 3e:95:2a:ed:80:68:94:a0:7e:1c:92:98:79:20:f1: f4:47:61:ac:92:bc:4b:6c:a6:dc:f8:8a:c5:a4:2c: 01:e9:35:06:80:be:e1:ca:68:22:fa:0b:60:3a:ee: e8:23:b0:96:ef:49:54:22:52:15:30:13:f7:6f:c3: c7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:4C:C2:B5:65:E6:EF:BA:91:D7:59:ED:1A:A2:0E:3D:BB:AD:0D:88 X509v3 Authority Key Identifier: keyid:8A:1A:6B:A9:BB:76:CF:2B:0D:EE:35:EA:4C:FD:2F:5F:F8:C0:89:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihprqbt2zysN7jXqTP0vX_jAieM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C36EE/A8C1C87A180311EABEC82B56C4F9AE02/ihprqbt2zysN7jXqTP0vX_jAieM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:81:18:92:ca:5e:b6:dd:48:34:f6:b8:17:e2:92:d9:fc:5b: 40:64:9e:38:e0:91:83:88:e5:bb:b7:fd:9e:9d:40:b3:d3:f6: 21:74:01:7f:40:a0:b2:a2:10:79:aa:e1:51:c6:ea:7b:f6:7b: 22:ca:a4:0b:c1:d3:6b:d8:54:51:8b:1c:b0:1b:c0:bd:e2:7a: 61:b8:71:8b:49:61:69:2e:5f:9f:91:63:65:2d:48:4a:56:a3: f8:06:58:dd:a1:79:7a:85:a5:22:30:f8:82:80:ef:ce:22:5b: 61:0c:68:23:fa:16:1a:57:af:6a:48:75:26:03:50:6f:b8:6b: c9:1f:04:c9:83:01:74:a4:2b:70:26:3f:f5:07:27:74:d5:fa: d1:4e:7d:73:6a:47:63:d7:3b:ac:ae:a5:98:52:44:e9:2a:f7: ce:30:77:30:5d:56:35:11:24:68:02:8a:86:f7:0d:9e:dd:86: fb:de:4d:9b:47:12:5d:57:38:f2:aa:dd:af:7e:cb:4e:7a:c2: 9e:43:3f:11:b8:e8:10:db:61:88:1d:49:57:b6:40:89:f3:73: 4e:90:86:1d:61:8a:84:2e:3c:4a:83:24:1a:c0:3b:27:2d:77: 0f:2f:57:a5:c3:1d:e8:c6:f9:ca:0b:2f:d5:62:82:2e:b2:e6: 59:6c:a9:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM2RUUxMTAvBgNVBAUTKDhBMUE2QkE5QkI3NkNGMkIwREVFMzVFQTRDRkQyRjVG RjhDMDg5RTMwHhcNMjQxMTIyMTg0NjM3WhcNMjQxMTI5MTg0NjM3WjAYMRYwFAYD VQQDEw02NzQwZDE4ZC03NWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA426APz32EKkXkD09JjLwQJ9XmI3pNOXL26XMTmGJGbsdR+ExGCfi0HUpDn6y x3cal0eGhQjMbQSJmeAy91qs6qhCxJBK2j5kCCpF10FT+vDNTP2DiZ5mI6oA/cVj VM5M0nzdTuvMXLg1alICOtdO1ICCZbi/gJ7imsR+WVvmc2JjfD0oDNH7cwqXLnma u0Mu43tZj4Gj00x5bbqWYaGgNDgQh1IOHHy/JLDgRxiZ8ErovDbH0K+XUQ+5Aj+t yFm580I+lSrtgGiUoH4ckph5IPH0R2GskrxLbKbc+IrFpCwB6TUGgL7hymgi+gtg Ou7oI7CW70lUIlIVMBP3b8PHmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFMwrVl 5u+6kddZ7RqiDj27rQ2IMB8GA1UdIwQYMBaAFIoaa6m7ds8rDe416kz9L1/4wInj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzZFRS9BOEMxQzg3QTE4 MDMxMUVBQkVDODJCNTZDNEY5QUUwMi9paHBycWJ0Mnp5c043alhxVFAwdlhfakFp ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2locHJxYnQyenlzTjdqWHFUUDB2WF9qQWllTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzZFRS9BOEMxQzg3QTE4MDMxMUVBQkVDODJCNTZDNEY5QUUwMi9paHBycWJ0Mnp5 c043alhxVFAwdlhfakFpZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtgRiSyl623Ug09rgX4pLZ/FtAZJ444JGDiOW7t/2enUCz0/YhdAF/ QKCyohB5quFRxup79nsiyqQLwdNr2FRRixywG8C94nphuHGLSWFpLl+fkWNlLUhK VqP4BljdoXl6haUiMPiCgO/OIlthDGgj+hYaV69qSHUmA1BvuGvJHwTJgwF0pCtw Jj/1Byd01frRTn1zakdj1zusrqWYUkTpKvfOMHcwXVY1ESRoAoqG9w2e3Yb73k2b RxJdVzjyqt2vfstOesKeQz8RuOgQ22GIHUlXtkCJ83NOkIYdYYqELjxKgyQawDsn LXcPL1elwx3oxvnKCy/VYoIusuZZbKmA -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org