$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: shKlMERg/voWL/JCPKDU4GtSyduiFUps/8s0s50y4UI= Subject key identifier: E2:C2:59:03:14:1F:03:17:81:82:58:AA:CC:5A:05:8A:7F:87:B2:F0 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 06B9 Signing time: Fri 22 Nov 2024 21:42:31 +0000 Manifest this update: Fri 22 Nov 2024 21:42:31 +0000 Manifest next update: Fri 29 Nov 2024 21:42:31 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: 8lccyvAyic21CLBjrgYeS7pHMgqaO9GzvlYd5/qujQk=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 9Ioqjb6UfH3GfYuP6JJKmPFvoBaEH5i4iGzHzciFUTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Nov 22 21:42:31 2024 GMT Not After : Nov 29 21:42:31 2024 GMT Subject: CN=6740fac7-c8e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:61:cb:f9:30:1a:09:21:75:97:60:8f:1a:f7: b4:f2:eb:d8:a9:6e:6d:9a:af:d6:d4:5f:eb:a5:1f: 1e:7f:f8:82:f7:78:f1:57:7e:d0:46:f6:f7:ae:aa: 30:e6:03:1c:63:d0:2b:7e:52:44:68:48:97:64:67: 58:33:0c:f8:33:a6:77:ed:b5:fc:90:20:e9:ad:24: 1a:cd:a2:c3:37:c7:a3:a1:53:c7:22:f8:d8:43:f9: 30:c4:4f:ad:2c:dc:16:83:4a:6c:04:92:dd:e3:7a: 55:d3:29:5a:38:21:ce:1d:12:77:33:ff:e4:2d:4d: 08:d1:db:f2:15:42:9f:11:c5:d7:a6:ec:a2:b4:35: 95:79:fd:3a:76:f8:c1:66:68:3f:b4:84:c5:79:05: 52:cd:96:7d:a7:7c:21:a9:e6:13:ac:7a:cf:a7:43: 1b:8b:4c:79:14:7b:d6:d9:1d:c2:48:7b:b6:07:45: a4:ee:13:ae:f4:5b:79:68:e0:f8:90:a4:91:e1:20: d5:f3:11:78:50:ec:78:62:16:7f:52:a0:0e:68:6a: 30:04:77:1a:80:3f:98:f3:da:4f:8e:95:a8:19:3e: a1:b1:95:7e:75:b2:39:bb:5a:ff:c5:5d:e1:90:95: 1e:a8:fb:6b:74:b3:d0:21:9f:61:44:ca:86:ea:b6: 84:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C2:59:03:14:1F:03:17:81:82:58:AA:CC:5A:05:8A:7F:87:B2:F0 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:26:12:ff:22:6f:54:61:12:d1:bb:3c:e5:a8:75:28:55:0a: 1f:75:fd:7c:39:b5:9e:fe:e6:02:65:a0:c3:d5:7d:58:59:3a: ac:7d:4d:3f:cf:d7:1f:b7:1e:3f:dc:be:d9:18:b8:98:64:01: b1:32:6d:8d:0a:94:65:34:fe:3b:92:2c:a8:78:d3:4b:1b:96: ed:30:98:a4:46:ad:99:0b:d0:97:04:96:db:b6:d6:65:64:d6: 7c:4a:99:f8:21:82:11:66:bb:e8:a5:07:fd:0c:77:cc:4c:2f: d8:6f:ba:70:96:b9:b0:59:75:b7:62:d1:85:6c:44:95:40:9d: ab:ee:d1:5e:2c:d2:24:42:9f:50:79:2a:9c:1a:8e:30:da:8f: 21:cf:79:c4:07:e0:67:54:29:35:7b:97:99:c5:0a:b1:55:a8: 01:75:d7:f5:e1:d7:95:33:1f:ce:b4:2c:ba:d1:1e:6f:e5:19: a4:55:dd:05:d6:87:d9:ce:16:12:09:70:fd:d1:77:44:ba:c7: 25:95:ed:a7:e8:3b:10:14:df:c8:67:5e:b8:5f:cf:3d:69:80: 9e:af:97:e2:63:72:f7:2a:ce:af:59:d0:ed:da:7e:6a:d8:55: 3d:1e:38:e7:cf:2f:d6:c7:fd:8f:93:f0:cd:23:44:c3:0d:45: d9:56:bf:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjQxMTIyMjE0MjMxWhcNMjQxMTI5MjE0MjMxWjAYMRYwFAYD VQQDEw02NzQwZmFjNy1jOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WHL+TAaCSF1l2CPGve08uvYqW5tmq/W1F/rpR8ef/iC93jxV37QRvb3rqow 5gMcY9ArflJEaEiXZGdYMwz4M6Z37bX8kCDprSQazaLDN8ejoVPHIvjYQ/kwxE+t LNwWg0psBJLd43pV0ylaOCHOHRJ3M//kLU0I0dvyFUKfEcXXpuyitDWVef06dvjB Zmg/tITFeQVSzZZ9p3whqeYTrHrPp0Mbi0x5FHvW2R3CSHu2B0Wk7hOu9Ft5aOD4 kKSR4SDV8xF4UOx4YhZ/UqAOaGowBHcagD+Y89pPjpWoGT6hsZV+dbI5u1r/xV3h kJUeqPtrdLPQIZ9hRMqG6raEEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLCWQMU HwMXgYJYqsxaBYp/h7LwMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIJhL/Im9UYRLRuzzlqHUoVQofdf18ObWe/uYCZaDD1X1YWTqsfU0/ z9cftx4/3L7ZGLiYZAGxMm2NCpRlNP47kiyoeNNLG5btMJikRq2ZC9CXBJbbttZl ZNZ8Spn4IYIRZrvopQf9DHfMTC/Yb7pwlrmwWXW3YtGFbESVQJ2r7tFeLNIkQp9Q eSqcGo4w2o8hz3nEB+BnVCk1e5eZxQqxVagBddf14deVMx/OtCy60R5v5RmkVd0F 1ofZzhYSCXD90XdEusclle2n6DsQFN/IZ164X889aYCer5fiY3L3Ks6vWdDt2n5q 2FU9Hjjnzy/Wx/2Pk/DNI0TDDUXZVr95 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org