$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft File: vNzosG8FliNAMAycR0e1olGiGcQ.mft (raw, json) Hash identifier: QmXrbQgS9m1vMCiRYKc4sr7dBS7mGMQmUIY9ssgHXtg= Subject key identifier: 0C:8B:DC:D4:FF:4C:BD:AE:14:8C:7C:6A:03:13:7F:A3:39:0D:14:C7 Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 3444 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft Manifest number: 3435 Signing time: Sun 24 Nov 2024 14:53:32 +0000 Manifest this update: Sun 24 Nov 2024 14:53:31 +0000 Manifest next update: Sun 01 Dec 2024 14:53:31 +0000 Files and hashes: 1: vNzosG8FliNAMAycR0e1olGiGcQ.crl (hash: SF70XA+CIInTvLRD2tYXlm2QYPdFHYF+6i3+IPYKOt8=) 2: 3FEFA562483D11EC82E81112C4F9AE02.roa (hash: QNA9/itvhv9mObBs9bYBHmVetm3GHmSDFhk30Zk39c4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13380 (0x3444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: Nov 24 14:53:31 2024 GMT Not After : Dec 1 14:53:31 2024 GMT Subject: CN=67433deb-a418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:9d:0a:5b:cf:1f:60:d5:9a:9a:06:c9:b9: d3:8d:37:fd:71:2e:9d:f7:93:95:80:d6:7d:81:61: c7:92:7b:c0:87:1f:a9:4e:20:ba:07:43:41:b6:cd: ee:f4:82:18:67:36:ab:52:78:1c:1b:a0:2f:7c:04: 57:8b:48:15:00:b1:73:4b:3a:e2:77:74:23:61:92: 9f:8c:6e:79:8f:21:c6:20:2a:bb:3e:d8:3f:84:78: ed:8c:9e:10:01:86:00:a2:24:94:8f:45:93:73:c4: cc:43:eb:26:20:28:bc:b9:fd:e9:c1:35:d7:0f:3b: ec:b2:8f:b4:03:2b:98:29:48:67:95:ff:81:35:8a: 2e:b2:79:53:05:70:b9:78:4f:45:5a:c1:22:1b:c6: 63:13:4e:ec:6a:cb:05:c6:11:f8:e6:20:c9:9c:6c: e9:d1:4e:14:ea:4d:77:33:cc:f3:16:2e:aa:33:bc: c6:e9:49:bd:27:b0:72:05:78:4d:a0:5c:a1:eb:ca: 0f:97:61:76:5c:8f:42:13:90:c1:d7:fc:07:9f:01: 1d:69:03:b4:39:52:44:d6:09:6d:a2:13:ac:81:79: 6d:85:8a:f8:55:8b:e4:d9:8b:f1:3a:99:cb:a4:90: cb:9f:bd:d9:a4:cf:28:89:9d:b4:0b:a2:84:8b:0d: d4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:8B:DC:D4:FF:4C:BD:AE:14:8C:7C:6A:03:13:7F:A3:39:0D:14:C7 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:c8:84:9b:5e:41:60:7c:e9:76:78:cf:4f:4a:d2:c4:69:17: ff:7b:4a:e4:fc:c8:00:0d:28:0c:1d:58:40:71:3a:4f:25:f7: 00:e9:56:6a:0d:e0:3b:75:c4:7b:79:03:8b:85:de:1c:d4:bc: e8:fd:fe:f8:0b:8a:7c:e7:d5:c0:73:4d:6d:23:36:06:3e:18: 7e:45:4e:6b:3c:b5:9d:16:6e:5c:e4:60:b5:99:6c:24:1d:7e: 77:51:93:72:0a:3c:2a:85:9b:19:cb:c3:dd:55:10:81:87:58: 05:e5:04:98:7e:44:43:75:29:9f:4e:26:17:f6:0c:ba:02:54: 3c:97:12:b2:12:31:42:6f:a9:13:92:3e:47:c4:11:81:c2:c0: 5a:70:c3:9b:b8:f1:84:df:8d:0a:6f:bf:d8:1b:44:72:ee:61: 00:83:1b:8d:9c:ca:e5:93:28:49:61:d6:5c:4e:af:d6:52:dc: cc:00:34:f7:8b:aa:fd:9e:0b:8d:d8:98:77:02:c7:b3:3e:32: 03:58:bb:fd:df:aa:bb:d0:42:04:68:9e:af:08:dc:6d:eb:3a: b7:9e:18:1a:56:f5:b5:5f:5b:78:3b:51:8f:53:dc:96:3e:f5: bc:13:86:e5:8d:b7:66:ab:08:20:28:aa:d1:dd:93:f7:b4:01: 26:a7:42:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjQxMTI0MTQ1MzMxWhcNMjQxMjAxMTQ1MzMxWjAYMRYwFAYD VQQDEw02NzQzM2RlYi1hNDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv2dClvPH2DVmpoGybnTjTf9cS6d95OVgNZ9gWHHknvAhx+pTiC6B0NBts3u 9IIYZzarUngcG6AvfARXi0gVALFzSzrid3QjYZKfjG55jyHGICq7Ptg/hHjtjJ4Q AYYAoiSUj0WTc8TMQ+smICi8uf3pwTXXDzvsso+0AyuYKUhnlf+BNYousnlTBXC5 eE9FWsEiG8ZjE07sassFxhH45iDJnGzp0U4U6k13M8zzFi6qM7zG6Um9J7ByBXhN oFyh68oPl2F2XI9CE5DB1/wHnwEdaQO0OVJE1gltohOsgXlthYr4VYvk2YvxOpnL pJDLn73ZpM8oiZ20C6KEiw3UTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyL3NT/ TL2uFIx8agMTf6M5DRTHMB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjVFOC9BMUYyM0E2NDFEOTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4Rmxp TkFNQXljUjBlMW9sR2lHY1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHyISbXkFgfOl2eM9PStLEaRf/e0rk/MgADSgMHVhAcTpPJfcA6VZq DeA7dcR7eQOLhd4c1Lzo/f74C4p859XAc01tIzYGPhh+RU5rPLWdFm5c5GC1mWwk HX53UZNyCjwqhZsZy8PdVRCBh1gF5QSYfkRDdSmfTiYX9gy6AlQ8lxKyEjFCb6kT kj5HxBGBwsBacMObuPGE340Kb7/YG0Ry7mEAgxuNnMrlkyhJYdZcTq/WUtzMADT3 i6r9nguN2Jh3AsezPjIDWLv936q70EIEaJ6vCNxt6zq3nhgaVvW1X1t4O1GPU9yW PvW8E4bljbdmqwggKKrR3ZP3tAEmp0Jv -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org