$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: HyTNVrnCPk7lUQwEZxIR+tiA0Uqqca1eqUmmMEMFXJI= Subject key identifier: 82:9D:04:F6:42:E6:74:26:3B:EA:AB:8B:37:65:4A:A4:00:34:4D:10 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 0150 Signing time: Thu 21 Nov 2024 02:30:35 +0000 Manifest this update: Thu 21 Nov 2024 02:30:35 +0000 Manifest next update: Thu 28 Nov 2024 02:30:35 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: CnPAwCL9UivSFYKYlqvTHIsjjCrUvRL6YQ8DkAuPjr4=) 2: B264EB66A30911ED99A82087C4F9AE02.roa (hash: 0JShJtXPx5anPlJ0U5m0+jdnqUtjwG3u5Wm74IlFu78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Nov 21 02:30:35 2024 GMT Not After : Nov 28 02:30:35 2024 GMT Subject: CN=673e9b4b-0c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:91:74:90:3c:aa:f1:31:10:c8:7f:8f:35:8e: e1:f7:b5:46:a1:d7:35:a5:c4:49:e6:da:66:53:a3: 2a:4d:f6:88:47:ca:f2:bc:de:7a:9f:5d:c9:29:1c: 55:07:3f:07:05:28:1e:dd:9e:b7:95:e2:ca:19:fd: ef:5d:c5:b4:e0:2e:09:b1:2d:01:db:17:79:c4:58: 29:4d:03:c7:c3:88:40:bc:5e:77:6a:13:f7:2b:98: b7:fc:42:73:85:14:95:ba:91:58:5f:5c:ba:b8:67: ed:2f:32:54:72:c1:23:f0:2f:de:ec:92:b5:0e:aa: 42:cc:08:b8:38:87:ea:27:a3:a0:6b:03:a7:f5:56: 72:97:1b:d6:35:8e:ed:54:b1:43:4f:71:22:06:67: 8d:d9:d9:34:6c:e5:ca:fe:28:60:f1:49:12:8c:d7: 2f:b3:a4:35:19:90:4f:5b:b1:00:ea:fd:f0:4d:56: 34:16:60:3b:c7:0a:f3:24:b2:5f:d9:72:57:6e:7e: 27:5d:43:24:74:8e:6b:cf:81:f4:ea:2c:63:0e:ff: 81:1f:6f:f5:d3:d7:c1:51:2f:1d:2b:83:f4:15:b5: e5:a5:4f:48:e8:37:18:c9:c3:38:c7:58:e8:84:de: f1:85:26:98:ff:b1:9f:28:a0:a5:fd:52:09:b4:15: 93:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:9D:04:F6:42:E6:74:26:3B:EA:AB:8B:37:65:4A:A4:00:34:4D:10 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:1b:a1:e6:a6:3c:c8:8d:20:ea:63:da:ec:96:fc:d3:00:e3: b3:24:5f:56:fd:97:b1:4c:9e:e1:04:6d:d6:c2:3b:cc:47:39: 6d:7d:ee:8c:cb:19:b6:f9:0d:d1:81:98:7f:fe:b4:9c:1b:95: e9:a2:e7:17:d7:2f:ff:e0:ed:60:b3:8f:b1:4f:3c:07:a2:2e: c5:e1:d7:25:69:c7:45:06:b5:ac:93:67:52:dc:f7:ce:3a:4d: c8:5a:94:eb:e3:77:25:30:cb:eb:3a:93:d5:38:c0:3a:4f:02: 25:3e:51:2b:ad:2d:2d:8c:bb:f2:c3:77:da:65:00:eb:7b:cf: 9b:c1:78:38:95:11:ac:83:cb:0c:e9:14:16:6e:dd:46:fb:11: 07:e9:f8:76:4c:9c:7c:ae:82:58:43:ba:ce:5f:3f:19:5b:7d: 5a:e2:8b:2e:4c:24:f3:0e:e5:9f:55:cc:f6:8f:c9:00:5e:cf: 29:af:dc:de:50:2e:bf:be:f7:6b:67:ca:26:8b:3d:71:01:01: 1e:2f:1b:7e:72:a0:d9:77:78:09:f0:05:78:8c:7f:54:e3:d8: b3:e3:bd:4b:a4:1b:75:1f:fb:8d:c4:2b:ea:65:a6:7d:03:b0: cc:06:b4:f1:09:85:b8:52:a9:05:82:6b:1a:1f:90:3f:b8:67: 4c:16:b8:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjQxMTIxMDIzMDM1WhcNMjQxMTI4MDIzMDM1WjAYMRYwFAYD VQQDEw02NzNlOWI0Yi0wYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5pF0kDyq8TEQyH+PNY7h97VGodc1pcRJ5tpmU6MqTfaIR8ryvN56n13JKRxV Bz8HBSge3Z63leLKGf3vXcW04C4JsS0B2xd5xFgpTQPHw4hAvF53ahP3K5i3/EJz hRSVupFYX1y6uGftLzJUcsEj8C/e7JK1DqpCzAi4OIfqJ6OgawOn9VZylxvWNY7t VLFDT3EiBmeN2dk0bOXK/ihg8UkSjNcvs6Q1GZBPW7EA6v3wTVY0FmA7xwrzJLJf 2XJXbn4nXUMkdI5rz4H06ixjDv+BH2/109fBUS8dK4P0FbXlpU9I6DcYycM4x1jo hN7xhSaY/7GfKKCl/VIJtBWTPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKdBPZC 5nQmO+qrizdlSqQANE0QMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMG6HmpjzIjSDqY9rslvzTAOOzJF9W/ZexTJ7hBG3WwjvMRzltfe6M yxm2+Q3RgZh//rScG5XpoucX1y//4O1gs4+xTzwHoi7F4dclacdFBrWsk2dS3PfO Ok3IWpTr43clMMvrOpPVOMA6TwIlPlErrS0tjLvyw3faZQDre8+bwXg4lRGsg8sM 6RQWbt1G+xEH6fh2TJx8roJYQ7rOXz8ZW31a4osuTCTzDuWfVcz2j8kAXs8pr9ze UC6/vvdrZ8omiz1xAQEeLxt+cqDZd3gJ8AV4jH9U49iz471LpBt1H/uNxCvqZaZ9 A7DMBrTxCYW4UqkFgmsaH5A/uGdMFriO -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:52 2024 by rpki-client on console-ams.rpki-client.org