$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft File: 7Y9dbJv8FI96u3CMUpHThHgcYf0.mft (raw, json) Hash identifier: ccSAN2Jaul1UYNrTtepTOz6ptOpTgS1ki25NsoyGZNI= Subject key identifier: 11:81:5E:31:CD:AA:AA:92:CB:31:D1:16:55:10:27:C2:BE:67:B7:1E Authority key identifier: ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD Certificate issuer: /CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft Manifest number: 0126 Signing time: Sat 23 Nov 2024 03:02:28 +0000 Manifest this update: Sat 23 Nov 2024 03:02:28 +0000 Manifest next update: Sat 30 Nov 2024 03:02:28 +0000 Files and hashes: 1: 7Y9dbJv8FI96u3CMUpHThHgcYf0.crl (hash: HpbehJ6FYYxlDaAXoDfrm6f7FHGWQFea24AYI00AT2g=) 2: E7B6C4DA685E11EFB77BDE0CC4F9AE02.roa (hash: 0tzqO1CmigPSpz/MhhBtA7Y+BKnfbYyMKy+tv5IkgiA=) 3: A26B26A668E911EFB66CA21FC4F9AE02.roa (hash: /Ca5diWjiS6N68tEVsRxTZBjHSeZnU1QOaHlKrf3mI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA0AA/serialNumber=ED8F5D6C9BFC148F7ABB708C5291D384781C61FD Validity Not Before: Nov 23 03:02:28 2024 GMT Not After : Nov 30 03:02:28 2024 GMT Subject: CN=674145c4-415e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2c:2d:84:88:ba:48:4b:b4:6f:19:5a:52:97: f4:32:48:3c:b0:36:6f:b0:55:69:6f:d2:9f:5e:c2: c2:1c:26:7a:02:91:a3:95:ef:b4:e1:f1:7b:c7:da: 8b:b0:93:26:5a:c1:80:f1:0f:1d:35:59:ab:bf:40: c3:ea:bb:0c:e5:16:2d:f9:54:71:50:1c:cd:8f:ea: 53:63:ee:3e:df:2f:c6:f2:1c:de:a5:4c:62:bf:54: 4d:6c:52:92:ea:b5:02:7a:4e:80:e8:63:b0:18:a8: 1a:40:ad:82:88:91:15:77:2d:25:e3:ba:f5:84:0e: 1d:5b:3e:e6:3a:49:85:5b:5e:be:01:67:6d:85:2e: 74:69:91:9f:79:6b:3a:59:cd:82:ad:8a:1e:61:7f: 76:6f:95:37:c9:e7:c5:7f:7a:a8:4f:15:4a:47:a2: fd:9a:70:e5:72:10:f6:2e:3f:53:e2:4e:1d:68:fa: ed:79:85:45:63:ab:4f:da:3b:c3:c8:1f:28:cd:c8: c4:41:29:43:7f:05:5f:55:ba:15:3b:42:d4:6d:7f: 93:9b:da:3e:93:30:c0:0f:9e:c9:90:98:c0:aa:52: 0e:24:34:80:06:7b:8c:84:0a:47:c3:e3:3c:16:da: 84:f9:b6:72:43:6f:79:5e:98:9b:b3:d9:4a:26:61: eb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:81:5E:31:CD:AA:AA:92:CB:31:D1:16:55:10:27:C2:BE:67:B7:1E X509v3 Authority Key Identifier: keyid:ED:8F:5D:6C:9B:FC:14:8F:7A:BB:70:8C:52:91:D3:84:78:1C:61:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Y9dbJv8FI96u3CMUpHThHgcYf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA0AA/82BBB552003D11EE9608F147C4F9AE02/7Y9dbJv8FI96u3CMUpHThHgcYf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:de:9a:9c:24:c3:82:30:95:5d:df:14:85:5e:23:56:16:96: 19:f0:59:17:9b:a7:cf:f2:be:4d:62:d5:9b:d2:de:68:f0:bd: fe:04:e8:3f:e5:3f:9c:ef:7a:e0:3d:23:64:fd:09:66:71:83: a2:bc:c7:dd:b1:f5:a1:87:8f:60:25:a4:f5:6d:24:ce:21:3e: c8:1d:38:29:04:8d:6d:2a:93:db:e5:88:e6:75:16:46:fd:7e: 99:9b:3b:07:de:b0:25:49:3c:c3:c3:f4:21:e9:cd:7c:93:c6: 9a:ee:62:4e:94:a8:af:83:01:5b:89:5f:18:2d:7e:3d:38:46: 87:b6:59:30:c2:d4:b2:19:e5:cb:38:9b:1b:35:38:39:da:06: 0a:31:31:b5:8e:f9:8d:06:b2:66:c3:c8:2e:0a:fc:1d:f0:7d: 32:ad:83:11:4c:c3:62:56:18:e3:12:09:9c:db:9e:12:2e:e3: 69:2f:fe:02:6f:6d:9d:9a:8a:09:46:4f:09:ee:22:bb:74:bf: 1a:01:f6:f3:73:db:f0:ee:0c:23:bf:9d:f7:e0:c7:3c:21:12: 33:01:cf:d7:06:37:c6:78:1a:6b:c4:8d:20:3b:08:4c:05:73: 80:da:dc:86:7c:31:d0:b0:02:55:9e:9f:68:59:d7:73:7d:ae: 28:3d:e7:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwQUExMTAvBgNVBAUTKEVEOEY1RDZDOUJGQzE0OEY3QUJCNzA4QzUyOTFEMzg0 NzgxQzYxRkQwHhcNMjQxMTIzMDMwMjI4WhcNMjQxMTMwMDMwMjI4WjAYMRYwFAYD VQQDEw02NzQxNDVjNC00MTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySwthIi6SEu0bxlaUpf0Mkg8sDZvsFVpb9KfXsLCHCZ6ApGjle+04fF7x9qL sJMmWsGA8Q8dNVmrv0DD6rsM5RYt+VRxUBzNj+pTY+4+3y/G8hzepUxiv1RNbFKS 6rUCek6A6GOwGKgaQK2CiJEVdy0l47r1hA4dWz7mOkmFW16+AWdthS50aZGfeWs6 Wc2CrYoeYX92b5U3yefFf3qoTxVKR6L9mnDlchD2Lj9T4k4daPrteYVFY6tP2jvD yB8ozcjEQSlDfwVfVboVO0LUbX+Tm9o+kzDAD57JkJjAqlIOJDSABnuMhApHw+M8 FtqE+bZyQ295Xpibs9lKJmHrwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGBXjHN qqqSyzHRFlUQJ8K+Z7ceMB8GA1UdIwQYMBaAFO2PXWyb/BSPertwjFKR04R4HGH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTBBQS84MkJCQjU1MjAw M0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJOTZ1M0NNVXBIVGhIZ2NZ ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZOWRiSnY4Rkk5NnUzQ01VcEhUaEhnY1lmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTBBQS84MkJCQjU1MjAwM0QxMUVFOTYwOEYxNDdDNEY5QUUwMi83WTlkYkp2OEZJ OTZ1M0NNVXBIVGhIZ2NZZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq3pqcJMOCMJVd3xSFXiNWFpYZ8FkXm6fP8r5NYtWb0t5o8L3+BOg/ 5T+c73rgPSNk/QlmcYOivMfdsfWhh49gJaT1bSTOIT7IHTgpBI1tKpPb5YjmdRZG /X6ZmzsH3rAlSTzDw/Qh6c18k8aa7mJOlKivgwFbiV8YLX49OEaHtlkwwtSyGeXL OJsbNTg52gYKMTG1jvmNBrJmw8guCvwd8H0yrYMRTMNiVhjjEgmc254SLuNpL/4C b22dmooJRk8J7iK7dL8aAfbzc9vw7gwjv5334Mc8IRIzAc/XBjfGeBprxI0gOwhM BXOA2tyGfDHQsAJVnp9oWddzfa4oPeev -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:53 2024 by rpki-client on console-ams.rpki-client.org