$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: J2nk56u1sM6kWhs33z88klSRvn27c2oW2Zn4wKIiF3A= Subject key identifier: AF:C4:C9:47:D5:92:DC:29:5B:BD:53:3C:50:4D:8D:EB:85:4A:0C:66 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 0728 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 0720 Signing time: Fri 22 Nov 2024 21:19:30 +0000 Manifest this update: Fri 22 Nov 2024 21:19:29 +0000 Manifest next update: Fri 29 Nov 2024 21:19:29 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: sqtdqPoH3hpTh4lcg6KuKyHLhMVSTZNa8VrH1R1wxJY=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: UHLbtcY+MssUReji2ZDnPxouuMqAchFNbY9lf4jGoV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1832 (0x728) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Nov 22 21:19:29 2024 GMT Not After : Nov 29 21:19:29 2024 GMT Subject: CN=6740f562-16cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e6:b9:58:44:cb:53:b3:b9:76:d6:6f:9d:eb: c2:85:a1:10:11:06:fb:5e:c1:dc:ac:42:22:8f:5f: 90:32:72:ec:c1:61:c5:f7:22:e7:0e:4f:55:52:0e: 20:a8:81:31:da:7b:2b:6c:d0:92:a3:05:b1:ad:9f: ec:1d:c5:47:cd:5f:e3:2c:14:03:1c:18:e8:fb:94: fc:b5:8e:d6:a5:9c:9c:17:96:1d:00:63:f3:dc:d0: 26:ee:79:b4:c4:79:91:ee:8d:9f:55:ce:3d:1f:24: 55:66:78:4f:59:ec:2e:bb:6c:25:24:1f:82:1e:d6: 02:80:2e:83:19:3e:79:36:74:fe:db:9b:e2:19:84: 4e:b1:d4:6b:4a:7d:ee:cc:c6:cf:cc:c0:a2:3b:79: fc:bf:1b:76:ae:1c:fc:9a:98:fb:ae:3d:4e:4d:f9: bd:fa:8d:b9:83:4a:8a:2c:ef:d6:22:a3:35:05:ad: b1:a0:5a:a2:1b:c8:ad:86:a0:20:70:0b:d5:85:f3: df:d1:d1:ac:d5:57:c6:3b:88:95:b4:c3:15:47:b2: 23:ae:e8:b7:ce:b7:d1:6e:e6:50:ee:ca:ee:4b:65: e7:f1:d2:1c:ad:cf:3b:cb:84:bc:ee:5b:a5:d3:8b: 3d:6e:02:80:6a:d9:fb:49:5d:4e:fd:4f:f9:d4:35: d4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C4:C9:47:D5:92:DC:29:5B:BD:53:3C:50:4D:8D:EB:85:4A:0C:66 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:88:ea:a9:5a:a0:1d:13:f4:00:b8:e3:85:e7:74:b5:bd:ed: 80:d6:24:b2:d4:bf:a1:93:30:5a:56:12:f8:9c:33:49:91:1f: e0:62:f2:56:53:8a:15:b0:db:4f:44:b1:c8:8b:5c:53:fb:12: 61:14:b7:74:59:9f:ca:22:4f:d9:3e:a2:46:a4:94:7b:2b:f4: a5:e3:a9:82:d3:a5:90:ff:34:b1:57:90:da:c3:9f:fd:f1:ca: fe:d6:28:54:fe:e2:d5:fc:f8:5b:e1:3e:13:04:4e:49:bd:9b: 32:90:9b:ae:3e:ce:32:7c:af:55:a5:91:c0:6f:23:6f:8f:c1: 56:0a:24:f9:f1:ee:5d:3e:41:59:b0:e2:27:8f:32:3a:f8:03: 5f:1d:f6:6a:8a:e4:3f:a0:67:cd:0c:47:8c:8f:89:4a:a8:a1: cc:3d:3c:91:89:1f:2f:26:c6:fc:49:4d:06:cd:93:55:92:fc: 8b:35:9e:bf:d4:7c:cc:e7:9a:1d:d0:86:e9:c8:a8:a2:24:ac: 9f:66:c6:0a:84:7b:b0:4d:52:56:8b:b8:50:b1:36:a3:d4:03: 66:a8:6c:df:51:0f:bf:27:fa:64:e3:d5:61:c0:33:6b:35:12: 80:e2:54:07:4a:5e:b5:e6:df:92:79:02:bf:aa:6e:5f:79:b9: 90:21:44:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjQxMTIyMjExOTI5WhcNMjQxMTI5MjExOTI5WjAYMRYwFAYD VQQDEw02NzQwZjU2Mi0xNmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ea5WETLU7O5dtZvnevChaEQEQb7XsHcrEIij1+QMnLswWHF9yLnDk9VUg4g qIEx2nsrbNCSowWxrZ/sHcVHzV/jLBQDHBjo+5T8tY7WpZycF5YdAGPz3NAm7nm0 xHmR7o2fVc49HyRVZnhPWewuu2wlJB+CHtYCgC6DGT55NnT+25viGYROsdRrSn3u zMbPzMCiO3n8vxt2rhz8mpj7rj1OTfm9+o25g0qKLO/WIqM1Ba2xoFqiG8ithqAg cAvVhfPf0dGs1VfGO4iVtMMVR7Ijrui3zrfRbuZQ7sruS2Xn8dIcrc87y4S87lul 04s9bgKAatn7SV1O/U/51DXUdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/EyUfV ktwpW71TPFBNjeuFSgxmMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKiOqpWqAdE/QAuOOF53S1ve2A1iSy1L+hkzBaVhL4nDNJkR/gYvJW U4oVsNtPRLHIi1xT+xJhFLd0WZ/KIk/ZPqJGpJR7K/Sl46mC06WQ/zSxV5Daw5/9 8cr+1ihU/uLV/Phb4T4TBE5JvZsykJuuPs4yfK9VpZHAbyNvj8FWCiT58e5dPkFZ sOInjzI6+ANfHfZqiuQ/oGfNDEeMj4lKqKHMPTyRiR8vJsb8SU0GzZNVkvyLNZ6/ 1HzM55od0IbpyKiiJKyfZsYKhHuwTVJWi7hQsTaj1ANmqGzfUQ+/J/pk49VhwDNr NRKA4lQHSl615t+SeQK/qm5febmQIUSE -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org