$ rpki-client -vvf rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft File: s5m0raB1Aagp1W8h2o613DIDSlY.mft (raw, json) Hash identifier: iOfByw7AWHmix5J6NwkkeBuVHGbDZP2KcWf5+t9Wj/U= Subject key identifier: 35:E9:12:D3:13:FD:77:00:28:F6:58:EA:9D:D6:AD:39:8C:71:8E:98 Authority key identifier: B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 Certificate issuer: /CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Certificate serial: 0C4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft Manifest number: 0C3D Signing time: Fri 22 Nov 2024 18:37:04 +0000 Manifest this update: Fri 22 Nov 2024 18:37:03 +0000 Manifest next update: Fri 29 Nov 2024 18:37:03 +0000 Files and hashes: 1: s5m0raB1Aagp1W8h2o613DIDSlY.crl (hash: H4mWtZFcIAMn8DYKkmR9hbgIx14htSfL1ma2wpbV+q0=) 2: 1752A952B44711EDB021F350C4F9AE02.roa (hash: gqGRbTS2iSh442924+yMqkcDFGOlblXuMkvDc/ZJRwc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3146 (0xc4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D98FC/serialNumber=B399B4ADA07501A829D56F21DA8EB5DC32034A56 Validity Not Before: Nov 22 18:37:03 2024 GMT Not After : Nov 29 18:37:03 2024 GMT Subject: CN=6740cf50-dadf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:cf:84:04:9a:21:36:84:2a:22:27:ea:9f:bf: 75:15:22:5d:c6:61:65:2f:9a:48:8b:9b:2d:83:cf: af:51:de:ed:44:b4:36:02:03:db:79:25:b4:d1:79: 7a:23:f8:5e:fc:fe:0c:01:73:04:cd:ee:ba:c0:a0: bb:e9:fd:3c:e4:f4:f7:8b:5e:46:b2:ce:27:fe:97: 30:d8:53:a0:fc:2f:c5:98:24:e5:c2:ac:51:2c:48: c0:e3:16:27:10:63:ce:cd:40:d1:d4:e5:81:33:5b: cb:dc:7d:ff:ae:1c:c3:a3:22:c0:32:ca:8a:98:e2: 44:83:f6:1d:b4:d3:00:95:a7:04:91:73:b4:e3:27: 85:0f:0a:91:f7:d6:df:7b:b3:f0:61:3d:0d:2c:3d: eb:3f:ce:35:25:b1:99:b5:fd:45:2b:db:26:53:61: e6:0f:54:86:d7:d4:fd:d8:91:fc:9d:08:dd:31:e7: db:07:be:5b:27:62:d1:bf:1e:a5:a0:ec:82:c0:4a: 31:77:02:a6:4b:1b:7c:ad:b0:fb:0b:b1:b3:d3:92: a3:8f:0a:c2:56:1a:48:42:16:16:86:28:0a:d2:aa: 60:c1:a0:61:51:48:12:ef:93:96:15:38:9e:bc:fa: ba:73:24:80:1a:fa:02:0b:f8:36:67:f1:c2:76:31: f4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:E9:12:D3:13:FD:77:00:28:F6:58:EA:9D:D6:AD:39:8C:71:8E:98 X509v3 Authority Key Identifier: keyid:B3:99:B4:AD:A0:75:01:A8:29:D5:6F:21:DA:8E:B5:DC:32:03:4A:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5m0raB1Aagp1W8h2o613DIDSlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D98FC/1C899E26F4EC11E98FBE9B0FC4F9AE02/s5m0raB1Aagp1W8h2o613DIDSlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:5a:f8:f5:4e:35:60:b3:7d:8a:f7:e1:ad:b5:3b:f8:ad:14: ff:d7:5a:91:05:bf:93:8f:09:84:4f:00:c2:97:22:c9:2d:1e: f7:e1:2c:10:39:7f:f8:0e:56:f9:de:e0:66:cd:65:09:ce:6e: 56:8d:de:c5:7b:49:35:e1:01:cf:81:59:e9:a4:ec:72:aa:36: c0:fd:92:2d:a8:ff:46:1b:8a:84:08:2a:23:68:ed:60:ca:bb: 75:77:12:2f:1a:af:2a:c7:73:74:82:c9:ba:f9:3f:a1:8e:55: 3d:23:85:aa:d3:eb:71:66:8a:a3:44:9a:e1:4a:da:30:4b:b4: db:35:42:84:60:47:e4:43:70:fb:4c:10:e4:69:10:8f:c7:3d: 21:70:00:ae:a3:42:59:e7:0d:f7:2c:50:f1:b4:02:91:17:a8: 9b:82:c5:63:25:4e:08:01:cc:e5:99:9d:bb:b7:db:4c:d7:28: 04:a6:4e:ef:4d:14:00:db:2d:5f:ab:3d:f0:6f:ed:76:6a:16: c1:bd:c9:0a:1b:7e:65:7d:67:07:15:a7:21:f4:98:5d:55:31: cb:51:57:de:ba:3a:99:90:a5:05:f9:ba:36:50:80:ed:d2:81: 4b:4c:97:4f:58:d9:59:00:1e:fd:19:a6:a6:5c:61:03:1d:e5: 18:89:18:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk4RkMxMTAvBgNVBAUTKEIzOTlCNEFEQTA3NTAxQTgyOUQ1NkYyMURBOEVCNURD MzIwMzRBNTYwHhcNMjQxMTIyMTgzNzAzWhcNMjQxMTI5MTgzNzAzWjAYMRYwFAYD VQQDEw02NzQwY2Y1MC1kYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmc+EBJohNoQqIifqn791FSJdxmFlL5pIi5stg8+vUd7tRLQ2AgPbeSW00Xl6 I/he/P4MAXMEze66wKC76f085PT3i15Gss4n/pcw2FOg/C/FmCTlwqxRLEjA4xYn EGPOzUDR1OWBM1vL3H3/rhzDoyLAMsqKmOJEg/YdtNMAlacEkXO04yeFDwqR99bf e7PwYT0NLD3rP841JbGZtf1FK9smU2HmD1SG19T92JH8nQjdMefbB75bJ2LRvx6l oOyCwEoxdwKmSxt8rbD7C7Gz05KjjwrCVhpIQhYWhigK0qpgwaBhUUgS75OWFTie vPq6cySAGvoCC/g2Z/HCdjH0zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXpEtMT /XcAKPZY6p3WrTmMcY6YMB8GA1UdIwQYMBaAFLOZtK2gdQGoKdVvIdqOtdwyA0pW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOThGQy8xQzg5OUUyNkY0 RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFhZ3AxVzhoMm82MTNESURT bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1bTByYUIxQWFncDFXOGgybzYxM0RJRFNsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OThGQy8xQzg5OUUyNkY0RUMxMUU5OEZCRTlCMEZDNEY5QUUwMi9zNW0wcmFCMUFh Z3AxVzhoMm82MTNESURTbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuWvj1TjVgs32K9+GttTv4rRT/11qRBb+TjwmETwDClyLJLR734SwQ OX/4Dlb53uBmzWUJzm5Wjd7Fe0k14QHPgVnppOxyqjbA/ZItqP9GG4qECCojaO1g yrt1dxIvGq8qx3N0gsm6+T+hjlU9I4Wq0+txZoqjRJrhStowS7TbNUKEYEfkQ3D7 TBDkaRCPxz0hcACuo0JZ5w33LFDxtAKRF6ibgsVjJU4IAczlmZ27t9tM1ygEpk7v TRQA2y1fqz3wb+12ahbBvckKG35lfWcHFach9JhdVTHLUVfeujqZkKUF+bo2UIDt 0oFLTJdPWNlZAB79GaamXGEDHeUYiRjW -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org