$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: 2+s47y0km/5jrIZB8RsHHr92gE3e1TTvGLyqRSJml9g= Subject key identifier: 41:39:BE:68:94:1E:C3:C6:B9:7A:E1:FA:46:C3:38:50:94:7C:80:16 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 0877 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 0872 Signing time: Fri 22 Nov 2024 20:22:07 +0000 Manifest this update: Fri 22 Nov 2024 20:22:06 +0000 Manifest next update: Fri 29 Nov 2024 20:22:06 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: PVFWA4mtcqON1TKhq4qQOsoWIjaOer4FcCYOJbdHf+M=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: 956ajCquzYApHK+QBCIF5rt+mjn+xmrWfi6TNjOt4mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2167 (0x877) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Nov 22 20:22:06 2024 GMT Not After : Nov 29 20:22:06 2024 GMT Subject: CN=6740e7ef-384a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8f:10:f6:0d:b2:d0:c0:c4:93:ba:66:0a:22: b8:13:9a:f1:7f:74:d1:c3:9d:32:9a:ff:f9:1a:b1: 79:a5:31:77:77:2e:c1:13:70:da:24:3e:52:be:c8: e2:b2:f8:7d:cc:99:a5:2c:52:74:79:ee:a9:da:fb: 84:c5:81:18:c3:1e:80:c5:50:2e:72:61:30:0a:fd: 2c:2c:f6:ce:75:e3:30:a9:54:d0:9b:95:2e:62:91: 7a:74:77:23:db:04:1b:d6:b9:20:30:64:af:40:20: 19:f6:c8:8b:88:91:8b:fe:4d:0c:e4:f1:ec:bc:ca: 1f:cc:be:b6:34:aa:7f:ff:8d:7d:a9:a5:c1:38:a8: 1c:8a:39:3f:64:dd:b6:c1:21:ac:ba:8c:dc:42:96: 77:61:68:b7:07:cb:1c:8a:70:19:a6:a5:39:f4:19: 16:f5:75:44:54:7b:f2:42:4a:90:17:90:66:7e:bc: fd:c4:ec:5a:3a:46:b4:11:40:cf:50:fc:ef:5d:c9: e7:11:87:21:c6:38:e8:f8:89:67:df:34:62:a1:ab: 57:32:c2:0d:e4:ce:e2:92:02:ff:b7:d3:51:31:b9: 30:fd:24:d4:ed:20:43:ae:0e:e6:99:cf:5c:ab:54: 2f:0f:09:48:f4:38:0b:27:ea:f5:3a:cb:0c:ae:68: e5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:39:BE:68:94:1E:C3:C6:B9:7A:E1:FA:46:C3:38:50:94:7C:80:16 X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a4:7a:a4:54:67:6f:3e:fc:1f:98:75:05:2f:eb:b7:52:70: 4a:7a:50:fe:55:91:99:a5:9d:b4:60:00:04:33:f7:07:db:c4: 9e:0f:66:c1:06:04:b3:c3:d6:54:e2:77:ca:a5:61:70:12:7c: 26:de:ab:40:ab:5c:9b:94:15:52:84:5e:8a:5b:2b:e2:49:7d: 64:d7:a3:52:c7:fe:b2:40:97:7c:79:7e:71:f5:31:e0:59:f4: 9c:0b:24:cd:24:58:ef:82:73:fc:d6:70:ad:1f:4c:98:ab:ab: a8:ab:41:f2:a6:7e:80:88:b4:64:78:f9:30:f9:9a:09:5b:f1: ca:8e:98:c8:52:12:a8:e6:88:a3:42:40:b3:bb:ad:8f:64:c3: 0f:fe:67:d3:c1:a6:2c:71:18:51:e2:e4:50:84:b3:a1:75:74: ce:a2:76:63:16:96:3d:08:50:4f:2c:01:1f:16:f2:65:7d:cd: 4d:3c:90:fc:cd:c9:f6:73:93:f5:fa:75:3a:f3:ac:51:1f:c4: 8a:bd:d0:d5:07:e1:a1:e2:3f:75:6c:19:3b:b0:90:b8:60:47: 1f:ef:da:8f:9f:80:19:87:47:5f:05:c3:08:87:06:47:6e:dc: aa:f2:fc:d6:90:fe:58:17:c1:47:31:0b:5b:ae:7e:3e:65:81: 23:e0:57:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjQxMTIyMjAyMjA2WhcNMjQxMTI5MjAyMjA2WjAYMRYwFAYD VQQDEw02NzQwZTdlZi0zODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2I8Q9g2y0MDEk7pmCiK4E5rxf3TRw50ymv/5GrF5pTF3dy7BE3DaJD5Svsji svh9zJmlLFJ0ee6p2vuExYEYwx6AxVAucmEwCv0sLPbOdeMwqVTQm5UuYpF6dHcj 2wQb1rkgMGSvQCAZ9siLiJGL/k0M5PHsvMofzL62NKp//419qaXBOKgcijk/ZN22 wSGsuozcQpZ3YWi3B8scinAZpqU59BkW9XVEVHvyQkqQF5Bmfrz9xOxaOka0EUDP UPzvXcnnEYchxjjo+Iln3zRioatXMsIN5M7ikgL/t9NRMbkw/STU7SBDrg7mmc9c q1QvDwlI9DgLJ+r1OssMrmjl2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEE5vmiU HsPGuXrh+kbDOFCUfIAWMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtpHqkVGdvPvwfmHUFL+u3UnBKelD+VZGZpZ20YAAEM/cH28SeD2bB BgSzw9ZU4nfKpWFwEnwm3qtAq1yblBVShF6KWyviSX1k16NSx/6yQJd8eX5x9THg WfScCyTNJFjvgnP81nCtH0yYq6uoq0Hypn6AiLRkePkw+ZoJW/HKjpjIUhKo5oij QkCzu62PZMMP/mfTwaYscRhR4uRQhLOhdXTOonZjFpY9CFBPLAEfFvJlfc1NPJD8 zcn2c5P1+nU686xRH8SKvdDVB+Gh4j91bBk7sJC4YEcf79qPn4AZh0dfBcMIhwZH btyq8vzWkP5YF8FHMQtbrn4+ZYEj4Fd7 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org