$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft File: 4JI7Cl99XGi66s5BQV9CpSDXSyo.mft (raw, json) Hash identifier: zIFyr8ffHP7YA9laEjl5KN7PiJuZbj+opYMyTC2tiIo= Subject key identifier: 01:DA:CE:2F:1F:AD:DF:EC:69:02:D2:B8:A4:6C:9B:3F:43:78:66:D0 Authority key identifier: E0:92:3B:0A:5F:7D:5C:68:BA:EA:CE:41:41:5F:42:A5:20:D7:4B:2A Certificate issuer: /CN=A91D9E49/serialNumber=E0923B0A5F7D5C68BAEACE41415F42A520D74B2A Certificate serial: 0AB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JI7Cl99XGi66s5BQV9CpSDXSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft Manifest number: 0AA9 Signing time: Fri 22 Nov 2024 19:15:05 +0000 Manifest this update: Fri 22 Nov 2024 19:15:04 +0000 Manifest next update: Fri 29 Nov 2024 19:15:04 +0000 Files and hashes: 1: 4JI7Cl99XGi66s5BQV9CpSDXSyo.crl (hash: 1aeReqj3SKCxN48+hQ5jW3oI/HUKheDvbf5mkXdxPSA=) 2: 4CC0341641A311EABAADCE0AC4F9AE02.roa (hash: 4gX6ptBwddfrFYLEAkZCoulGBfjSY3z6D4r2Ab8w1lI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.crl rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JI7Cl99XGi66s5BQV9CpSDXSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2736 (0xab0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E49/serialNumber=E0923B0A5F7D5C68BAEACE41415F42A520D74B2A Validity Not Before: Nov 22 19:15:04 2024 GMT Not After : Nov 29 19:15:04 2024 GMT Subject: CN=6740d838-1e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:33:60:46:83:99:ef:3d:7d:26:2a:14:fe:16: e1:5f:a3:79:66:f6:5e:6d:55:e7:7c:87:eb:e9:20: 3d:95:11:ef:97:c0:d0:e5:e0:16:1e:4c:65:3b:50: 8d:fc:47:17:24:e7:bc:af:25:e2:d5:53:6f:3d:82: 0e:b8:0b:30:b0:a6:b8:18:19:9f:d5:f5:1e:d4:2b: 0f:79:29:75:d5:3e:b2:87:a3:17:f0:94:df:2b:e5: c0:26:c3:19:9f:12:1b:ce:cb:39:43:4a:81:97:c9: 6d:24:90:5b:18:fa:eb:8c:67:8d:b8:a8:07:92:1f: 05:13:75:b4:da:17:93:44:fc:5a:5f:2e:a0:4a:1b: fc:40:21:84:a0:67:47:9a:c9:c8:f8:11:9f:92:1f: a7:ec:ad:05:12:c3:75:7c:da:c2:03:ec:82:45:84: ed:fd:29:a6:36:57:3b:43:75:79:41:2c:ff:62:28: 9f:c4:f6:a8:f7:9e:e5:21:d3:76:0d:fa:6a:d0:a7: 12:88:9d:08:7c:57:05:96:3f:28:e3:e7:88:d1:b6: 29:25:0b:e7:ac:de:b0:37:d5:c7:1e:f8:27:b8:5f: f7:b0:ba:a7:21:3c:84:60:50:d1:a0:7c:98:f2:89: 2a:f5:ca:34:28:3b:94:a5:0e:e1:14:0d:b7:bd:aa: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:DA:CE:2F:1F:AD:DF:EC:69:02:D2:B8:A4:6C:9B:3F:43:78:66:D0 X509v3 Authority Key Identifier: keyid:E0:92:3B:0A:5F:7D:5C:68:BA:EA:CE:41:41:5F:42:A5:20:D7:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JI7Cl99XGi66s5BQV9CpSDXSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E49/04049D0841A211EA9F269587C4F9AE02/4JI7Cl99XGi66s5BQV9CpSDXSyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d3:6e:04:61:ab:40:dc:8c:cb:e4:87:56:13:db:65:30:a6: ce:93:d1:a9:b3:12:49:77:95:0e:3c:b0:53:c8:6d:c3:82:cf: b7:af:bb:b2:e7:d3:00:b5:77:1d:83:25:3b:b7:52:a5:41:2d: 14:da:27:2c:3b:0c:72:a8:f1:92:b2:49:40:08:9b:38:8c:b1: 69:70:63:df:87:d6:47:15:81:03:ef:ef:ae:66:08:16:b5:97: c9:16:16:9c:c1:3e:d3:f1:39:c1:b8:c5:bb:a9:aa:67:db:fb: be:de:36:32:6c:31:85:c9:b4:d4:52:5c:4b:90:86:4d:de:a6: 4c:f7:a0:79:c2:de:50:f5:d4:7a:37:cb:15:6c:24:a3:57:19: 87:a7:83:b0:05:84:a1:51:84:86:78:b4:55:66:6e:7d:7c:3c: 30:ca:18:81:3c:2a:85:42:19:22:68:da:7e:38:97:b9:d2:59: 8d:fc:4e:df:7d:ee:3a:a9:91:af:03:5c:fc:8c:94:27:3e:d3: b7:79:f9:45:13:4e:24:49:f2:8e:6f:b1:e6:0a:a7:55:31:a5: 23:b0:7b:8d:cd:36:ac:7e:1d:ca:1b:30:e0:89:cc:02:a4:c8: d8:c4:8b:ec:56:1a:3a:11:e9:f9:74:26:2e:f9:9f:52:ba:61: 6a:f7:95:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFNDkxMTAvBgNVBAUTKEUwOTIzQjBBNUY3RDVDNjhCQUVBQ0U0MTQxNUY0MkE1 MjBENzRCMkEwHhcNMjQxMTIyMTkxNTA0WhcNMjQxMTI5MTkxNTA0WjAYMRYwFAYD VQQDEw02NzQwZDgzOC0xZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zNgRoOZ7z19JioU/hbhX6N5ZvZebVXnfIfr6SA9lRHvl8DQ5eAWHkxlO1CN /EcXJOe8ryXi1VNvPYIOuAswsKa4GBmf1fUe1CsPeSl11T6yh6MX8JTfK+XAJsMZ nxIbzss5Q0qBl8ltJJBbGPrrjGeNuKgHkh8FE3W02heTRPxaXy6gShv8QCGEoGdH msnI+BGfkh+n7K0FEsN1fNrCA+yCRYTt/SmmNlc7Q3V5QSz/YiifxPao957lIdN2 Dfpq0KcSiJ0IfFcFlj8o4+eI0bYpJQvnrN6wN9XHHvgnuF/3sLqnITyEYFDRoHyY 8okq9co0KDuUpQ7hFA23vary6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHazi8f rd/saQLSuKRsmz9DeGbQMB8GA1UdIwQYMBaAFOCSOwpffVxouurOQUFfQqUg10sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUU0OS8wNDA0OUQwODQx QTIxMUVBOUYyNjk1ODdDNEY5QUUwMi80Skk3Q2w5OVhHaTY2czVCUVY5Q3BTRFhT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKSTdDbDk5WEdpNjZzNUJRVjlDcFNEWFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUU0OS8wNDA0OUQwODQxQTIxMUVBOUYyNjk1ODdDNEY5QUUwMi80Skk3Q2w5OVhH aTY2czVCUVY5Q3BTRFhTeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2024EYatA3IzL5IdWE9tlMKbOk9GpsxJJd5UOPLBTyG3Dgs+3r7uy 59MAtXcdgyU7t1KlQS0U2icsOwxyqPGSsklACJs4jLFpcGPfh9ZHFYED7++uZggW tZfJFhacwT7T8TnBuMW7qapn2/u+3jYybDGFybTUUlxLkIZN3qZM96B5wt5Q9dR6 N8sVbCSjVxmHp4OwBYShUYSGeLRVZm59fDwwyhiBPCqFQhkiaNp+OJe50lmN/E7f fe46qZGvA1z8jJQnPtO3eflFE04kSfKOb7HmCqdVMaUjsHuNzTasfh3KGzDgicwC pMjYxIvsVho6Een5dCYu+Z9SumFq95V7 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org