$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft File: AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft (raw, json) Hash identifier: sTxEcHge+/WKX2Imp2kRL+guADwQUiQnBmb00sgXqiI= Subject key identifier: 5E:55:CA:41:03:95:42:A7:04:BB:6F:FC:33:CA:CD:FF:6E:8F:A0:1C Authority key identifier: 00:02:41:49:0E:3F:20:98:F7:9D:5C:93:03:7E:BF:F2:B9:56:CF:D7 Certificate issuer: /CN=A91CA1A6/serialNumber=000241490E3F2098F79D5C93037EBFF2B956CFD7 Certificate serial: 06D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft Manifest number: 06C2 Signing time: Fri 22 Nov 2024 21:44:02 +0000 Manifest this update: Fri 22 Nov 2024 21:44:01 +0000 Manifest next update: Fri 29 Nov 2024 21:44:01 +0000 Files and hashes: 1: AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl (hash: FUVQguxQBUeJ8VBguCZTqr+Lc+8Ajn1o28EQCOpktEc=) 2: EEE4C606B5D411ECA20B840AC4F9AE02.roa (hash: 0XMlIXCMAiJZlp7fDiVuLUwSsm0ebLntYydTAPsauDo=) 3: 910A49AAB5CC11ECAE337E78C4F9AE02.roa (hash: 3it6MgHyhXt2fOxKVzUm+aEDZP71P1ra3Nfl+4bBlR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA1A6/serialNumber=000241490E3F2098F79D5C93037EBFF2B956CFD7 Validity Not Before: Nov 22 21:44:01 2024 GMT Not After : Nov 29 21:44:01 2024 GMT Subject: CN=6740fb22-fbaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:83:b9:5e:e7:8c:9b:ec:e9:04:eb:8c:15:cd: e9:79:57:b2:6e:7f:a9:a9:02:f1:64:9a:bd:a7:e3: 9d:80:92:cc:01:a8:f0:df:75:c0:86:61:4d:5e:0e: 2d:5b:b0:39:43:03:11:bc:df:eb:06:a4:fd:52:38: 9c:14:95:9a:08:01:63:7d:e7:46:67:1c:04:05:05: ad:09:8c:67:83:e9:90:c8:9a:52:47:7a:df:74:63: 85:6e:91:aa:ea:a0:32:78:c0:8c:4e:29:a3:94:61: e8:d9:d1:77:9c:dd:72:40:32:54:83:3f:3a:c2:77: 51:8e:0f:a9:f3:ba:37:f0:3d:e8:26:0c:b5:1d:4a: d6:36:83:51:18:b6:a1:9d:0d:86:e7:a8:5f:4e:5d: ea:40:19:79:09:a7:c0:81:47:88:66:5e:e3:f9:41: 1e:2a:55:31:50:b2:19:5c:f8:dc:26:9c:44:32:13: ed:fc:02:ed:e2:85:ab:d9:b2:af:f2:a4:67:d4:3d: ba:b8:9c:9c:ac:91:e7:a4:87:da:b9:90:97:6f:da: e0:5c:52:28:df:c1:a8:93:08:16:b5:23:77:3d:89: 38:98:19:b7:60:c3:1b:51:76:11:34:f6:b8:8e:65: 1c:01:bd:b0:90:e3:94:7a:db:fa:82:a2:a2:75:72: 27:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:55:CA:41:03:95:42:A7:04:BB:6F:FC:33:CA:CD:FF:6E:8F:A0:1C X509v3 Authority Key Identifier: keyid:00:02:41:49:0E:3F:20:98:F7:9D:5C:93:03:7E:BF:F2:B9:56:CF:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAJBSQ4_IJj3nVyTA36_8rlWz9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA1A6/38D93E1E3D3011EBB3B2D66EC4F9AE02/AAJBSQ4_IJj3nVyTA36_8rlWz9c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:68:46:55:0f:5d:77:4e:99:98:eb:3c:3c:8d:6e:98:cc:8c: 1e:43:e3:7c:75:c7:af:ab:f4:b7:8b:b7:a3:6c:9b:b9:f7:82: c6:9b:d3:62:d8:7b:04:05:d2:90:39:cc:c1:25:ad:30:4b:65: e7:60:f5:4f:19:81:20:8a:2e:c0:28:0a:e6:9a:ff:64:78:b6: d3:c3:b1:6a:06:f5:13:8c:77:90:77:74:82:e8:40:ee:9d:38: 05:66:d9:65:95:53:4e:68:65:dc:33:b6:d5:c2:1b:36:3f:df: 01:f2:8f:b1:f8:a3:b9:60:49:68:3b:79:b1:fc:d0:f8:9e:45: d5:04:40:d9:d9:88:03:8b:40:24:aa:0b:27:b8:bd:83:cc:71: 43:36:81:65:90:dc:c5:69:dc:35:70:32:98:69:75:25:37:d3: eb:f8:18:e8:b9:18:ca:a5:bf:4a:34:ab:17:56:a0:7a:67:4b: 49:b9:85:f1:8e:53:80:46:4d:fa:8c:e0:ab:fc:87:05:0f:61: f0:50:13:9c:86:39:81:c6:69:59:ee:14:e6:85:16:95:0d:cc: c4:f3:78:ac:ed:2d:a1:79:5b:ff:1b:fe:81:98:04:c6:95:92: d0:d6:09:df:27:42:97:55:1d:77:ae:db:c9:94:66:6b:ed:34: 57:94:52:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ExQTYxMTAvBgNVBAUTKDAwMDI0MTQ5MEUzRjIwOThGNzlENUM5MzAzN0VCRkYy Qjk1NkNGRDcwHhcNMjQxMTIyMjE0NDAxWhcNMjQxMTI5MjE0NDAxWjAYMRYwFAYD VQQDEw02NzQwZmIyMi1mYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoO5XueMm+zpBOuMFc3peVeybn+pqQLxZJq9p+OdgJLMAajw33XAhmFNXg4t W7A5QwMRvN/rBqT9UjicFJWaCAFjfedGZxwEBQWtCYxng+mQyJpSR3rfdGOFbpGq 6qAyeMCMTimjlGHo2dF3nN1yQDJUgz86wndRjg+p87o38D3oJgy1HUrWNoNRGLah nQ2G56hfTl3qQBl5CafAgUeIZl7j+UEeKlUxULIZXPjcJpxEMhPt/ALt4oWr2bKv 8qRn1D26uJycrJHnpIfauZCXb9rgXFIo38GokwgWtSN3PYk4mBm3YMMbUXYRNPa4 jmUcAb2wkOOUetv6gqKidXInMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5VykED lUKnBLtv/DPKzf9uj6AcMB8GA1UdIwQYMBaAFAACQUkOPyCY951ckwN+v/K5Vs/X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTFBNi8zOEQ5M0UxRTNE MzAxMUVCQjNCMkQ2NkVDNEY5QUUwMi9BQUpCU1E0X0lKajNuVnlUQTM2XzhybFd6 OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FBSkJTUTRfSUpqM25WeVRBMzZfOHJsV3o5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTFBNi8zOEQ5M0UxRTNEMzAxMUVCQjNCMkQ2NkVDNEY5QUUwMi9BQUpCU1E0X0lK ajNuVnlUQTM2XzhybFd6OWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmaEZVD113TpmY6zw8jW6YzIweQ+N8dcevq/S3i7ejbJu594LGm9Ni 2HsEBdKQOczBJa0wS2XnYPVPGYEgii7AKArmmv9keLbTw7FqBvUTjHeQd3SC6EDu nTgFZtlllVNOaGXcM7bVwhs2P98B8o+x+KO5YEloO3mx/ND4nkXVBEDZ2YgDi0Ak qgsnuL2DzHFDNoFlkNzFadw1cDKYaXUlN9Pr+BjouRjKpb9KNKsXVqB6Z0tJuYXx jlOARk36jOCr/IcFD2HwUBOchjmBxmlZ7hTmhRaVDczE83is7S2heVv/G/6BmATG lZLQ1gnfJ0KXVR13rtvJlGZr7TRXlFJY -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org