$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: es1+Q6PVMh/2NlTHXjGk3rGc8JC0ErPhcfvZ+f0aL68= Subject key identifier: DD:6E:58:2E:E8:93:D5:F3:DC:26:DC:5A:A1:D8:06:5D:CF:7F:08:6B Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: A2 Signing time: Sat 23 Nov 2024 04:21:30 +0000 Manifest this update: Sat 23 Nov 2024 04:21:29 +0000 Manifest next update: Sat 30 Nov 2024 04:21:29 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: CMh6iknfLKw/78mMovHMcYVued4iMbgrXutFDLyQhM8=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: QpULv6uFKq+BY+XNVo382twuIiH4SmOeV3C43PcYja8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: Nov 23 04:21:29 2024 GMT Not After : Nov 30 04:21:29 2024 GMT Subject: CN=6741584a-d844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:80:38:9f:b2:0c:7c:94:8f:5c:64:15:7c:02: 44:89:a9:54:0b:4c:3d:7e:e3:39:5e:18:36:77:ad: a6:ea:19:6c:2e:6a:7d:19:21:ff:76:68:2d:e8:dd: bb:da:5d:a6:2b:61:dd:84:9c:fd:5c:9b:67:f9:fe: 34:9d:1a:e9:76:3d:ad:cd:1f:e6:26:a8:3c:38:9c: b4:ec:02:1e:96:b1:40:e9:49:4d:86:22:e7:58:6d: d1:b8:15:24:e6:45:0b:e7:8b:f8:cf:0a:7a:db:8c: 94:2a:b4:fa:01:a8:b0:9e:f1:57:bc:a8:92:dd:bc: 5d:67:29:ee:e4:60:d5:9c:7e:96:63:ee:3c:5d:cf: 2e:36:0b:97:0d:04:f7:ae:2c:bc:d4:0d:c8:5e:7f: 59:f2:a0:ad:3d:78:e7:3e:06:58:09:7c:71:c1:07: b4:7e:66:a6:7a:f1:3e:2c:20:04:53:31:d1:3f:b1: bc:95:56:e7:57:22:f2:16:f4:d5:f1:d5:6c:4f:ce: 26:f5:65:22:c8:8e:a5:28:ad:98:0c:fd:8d:df:80: 15:4d:13:f9:3e:69:d6:77:34:6a:49:9a:9a:64:69: a6:5b:e7:4b:65:d7:ad:22:c0:67:4b:2b:b6:a9:9e: b2:2b:15:4f:a2:09:57:8d:9f:8a:e8:54:01:e2:55: 0a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6E:58:2E:E8:93:D5:F3:DC:26:DC:5A:A1:D8:06:5D:CF:7F:08:6B X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:a1:2f:8f:e8:96:2b:eb:a7:13:8f:00:a3:b5:a3:f8:dc:fe: 2f:5b:cd:96:c6:e4:1a:9a:ce:0d:d3:88:ba:94:98:ef:0a:8a: 9b:f3:de:91:3a:2e:90:cf:14:1f:3b:15:17:32:79:49:72:d5: e2:a9:02:7f:79:d6:fa:8b:ea:75:38:8f:81:2e:1f:b8:d1:30: 71:38:25:a2:04:97:58:86:76:37:89:7e:80:03:7f:a5:ec:39: 15:51:22:d8:31:bf:72:f8:7f:dc:7f:24:f8:56:3d:80:96:a9: bc:bf:a0:5b:1a:a0:3f:43:e2:e8:48:9c:04:a9:03:ad:de:2b: fb:67:dd:c2:f8:e3:5f:4a:35:f1:75:05:63:1d:ac:d5:ad:9c: 1a:56:d1:ec:46:a4:60:64:64:1b:67:dc:96:7c:55:27:be:0e: c9:05:c3:f2:ff:6d:59:ee:b2:da:96:c6:68:4c:3c:e1:0a:62: 6e:53:98:c2:a6:e4:73:a2:8c:c6:6c:c7:0a:d4:55:c8:13:f5: 8d:be:b4:e2:14:8e:73:5a:09:49:a9:c7:da:f6:10:22:b6:bb: ef:c7:ee:29:c2:45:5c:ed:41:26:20:68:47:4d:ec:48:fa:f4: 76:20:e2:42:a7:71:27:7d:b9:1d:91:dd:cd:9b:ee:9d:ca:be: 67:58:f3:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjQxMTIzMDQyMTI5WhcNMjQxMTMwMDQyMTI5WjAYMRYwFAYD VQQDEw02NzQxNTg0YS1kODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oA4n7IMfJSPXGQVfAJEialUC0w9fuM5Xhg2d62m6hlsLmp9GSH/dmgt6N27 2l2mK2HdhJz9XJtn+f40nRrpdj2tzR/mJqg8OJy07AIelrFA6UlNhiLnWG3RuBUk 5kUL54v4zwp624yUKrT6AaiwnvFXvKiS3bxdZynu5GDVnH6WY+48Xc8uNguXDQT3 riy81A3IXn9Z8qCtPXjnPgZYCXxxwQe0fmamevE+LCAEUzHRP7G8lVbnVyLyFvTV 8dVsT84m9WUiyI6lKK2YDP2N34AVTRP5PmnWdzRqSZqaZGmmW+dLZdetIsBnSyu2 qZ6yKxVPoglXjZ+K6FQB4lUKgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1uWC7o k9Xz3CbcWqHYBl3PfwhrMB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hf R2FybXF3YXY4R2VVU1ZhMFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnoS+P6JYr66cTjwCjtaP43P4vW82WxuQams4N04i6lJjvCoqb896R Oi6QzxQfOxUXMnlJctXiqQJ/edb6i+p1OI+BLh+40TBxOCWiBJdYhnY3iX6AA3+l 7DkVUSLYMb9y+H/cfyT4Vj2Alqm8v6BbGqA/Q+LoSJwEqQOt3iv7Z93C+ONfSjXx dQVjHazVrZwaVtHsRqRgZGQbZ9yWfFUnvg7JBcPy/21Z7rLalsZoTDzhCmJuU5jC puRzoozGbMcK1FXIE/WNvrTiFI5zWglJqcfa9hAitrvvx+4pwkVc7UEmIGhHTexI +vR2IOJCp3Enfbkdkd3Nm+6dyr5nWPNB -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:23 2024 by rpki-client on console-ams.rpki-client.org