$ rpki-client -vvf rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft File: 0KCTtlEHkzVIStC6HXZhX1w2aIo.mft (raw, json) Hash identifier: uX2djg2+AVBrlxwXojHEN3KHYQw6Dg+tW+kHUphN7x4= Subject key identifier: 7E:2E:37:72:DA:13:DE:5C:55:8B:5F:82:99:A8:7A:00:C3:19:AF:94 Authority key identifier: D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A Certificate issuer: /CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Certificate serial: 32B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft Manifest number: 98FE Signing time: Fri 22 Nov 2024 15:18:30 +0000 Manifest this update: Fri 22 Nov 2024 15:18:29 +0000 Manifest next update: Fri 29 Nov 2024 15:18:29 +0000 Files and hashes: 1: 0KCTtlEHkzVIStC6HXZhX1w2aIo.crl (hash: qVsVdGelVbHgvzaZZQIP3h3xJ989/2Odj/zpgdysnJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12984 (0x32b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E275B/serialNumber=D0A093B651079335484AD0BA1D76615F5C36688A Validity Not Before: Nov 22 15:18:29 2024 GMT Not After : Nov 29 15:18:29 2024 GMT Subject: CN=6740a0c6-7c85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:65:00:90:84:29:25:41:45:2d:4b:49:6e:b0: 9d:d9:a9:ae:a8:44:88:6a:93:7a:13:2b:c4:40:52: 69:c1:fe:38:aa:13:c4:fb:48:9c:22:94:b6:e0:48: 21:f2:3c:e3:e8:71:28:2c:58:4b:f0:8c:76:8a:2a: 60:a6:03:35:a1:d7:c9:56:bd:b7:b0:5e:83:cf:d1: 99:e6:58:1c:d4:94:5a:22:df:d3:e2:77:0a:9e:19: 49:f7:34:87:e4:33:be:9f:39:09:74:31:19:2d:86: 75:02:87:cd:9d:12:7c:08:58:b5:31:fa:b9:5f:c0: 1d:93:8e:49:f6:9a:f9:13:86:cf:0e:8f:aa:e5:8e: 28:0d:20:6d:38:79:5b:41:c6:51:06:e3:8d:25:d7: 10:5a:b5:51:09:73:6c:08:e3:1b:73:5f:c4:82:0d: f8:f3:2c:94:71:72:b6:df:32:04:da:ff:ab:4e:8f: 4e:f3:15:c9:5a:f1:8a:ba:9c:6b:a5:48:d3:cd:f4: 85:4b:13:a0:7d:2d:76:be:ab:9d:e1:cf:f1:db:0a: ef:45:49:43:f0:d8:db:bc:71:be:71:48:2e:96:88: d9:8a:0e:77:6e:87:48:80:a6:4b:7e:cd:ae:a4:3e: c1:42:db:56:bf:cf:08:9f:cc:14:67:bd:c8:8f:27: e8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2E:37:72:DA:13:DE:5C:55:8B:5F:82:99:A8:7A:00:C3:19:AF:94 X509v3 Authority Key Identifier: keyid:D0:A0:93:B6:51:07:93:35:48:4A:D0:BA:1D:76:61:5F:5C:36:68:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0KCTtlEHkzVIStC6HXZhX1w2aIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E275B/AB2022301DA911E2B095C4A408B02CD2/0KCTtlEHkzVIStC6HXZhX1w2aIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:8a:24:6e:cb:94:07:4d:c4:9c:2a:fc:eb:eb:bf:82:a5:1d: 92:0e:4d:9b:6d:21:fe:6d:d1:ba:8e:54:54:86:de:4f:8f:ea: 23:7e:42:8b:05:31:c2:4f:1d:17:75:19:ce:a5:b7:3d:b9:1e: f8:9e:a5:6f:11:0c:cb:e0:0b:6e:63:11:38:5a:76:c9:14:4a: 0d:bd:41:43:13:2e:92:c7:63:85:de:17:c9:d1:04:f2:49:c4: 71:e3:20:a7:5b:f9:13:ba:53:98:e2:4b:70:dd:bc:04:ef:53: 59:42:c5:28:70:a1:80:b3:c0:83:ea:b0:8f:d0:98:36:3e:0c: 09:78:4f:27:6c:80:27:11:12:8f:c2:c9:18:10:0c:b0:3b:8e: 7d:34:ac:c1:35:1f:ad:92:1a:35:34:ff:12:d3:89:67:7f:35: a0:ad:d2:92:dc:58:99:1e:22:6e:6f:ae:e4:8c:90:59:d1:e6: ab:17:1c:76:0e:54:35:b6:38:dd:ce:97:24:94:ca:9a:a4:9a: 27:3e:08:24:da:8f:46:14:b0:c2:88:7c:4e:b2:19:80:4b:19: 6e:42:91:ce:6b:fc:2c:5f:d1:7b:a3:ad:08:1e:f6:80:b1:84: a5:c0:f1:48:c6:ff:ac:1f:f3:e3:09:a3:dd:cb:f9:cb:80:85: e3:e9:19:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3NUIxMTAvBgNVBAUTKEQwQTA5M0I2NTEwNzkzMzU0ODRBRDBCQTFENzY2MTVG NUMzNjY4OEEwHhcNMjQxMTIyMTUxODI5WhcNMjQxMTI5MTUxODI5WjAYMRYwFAYD VQQDEw02NzQwYTBjNi03Yzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGUAkIQpJUFFLUtJbrCd2amuqESIapN6EyvEQFJpwf44qhPE+0icIpS24Egh 8jzj6HEoLFhL8Ix2iipgpgM1odfJVr23sF6Dz9GZ5lgc1JRaIt/T4ncKnhlJ9zSH 5DO+nzkJdDEZLYZ1AofNnRJ8CFi1Mfq5X8Adk45J9pr5E4bPDo+q5Y4oDSBtOHlb QcZRBuONJdcQWrVRCXNsCOMbc1/Egg348yyUcXK23zIE2v+rTo9O8xXJWvGKupxr pUjTzfSFSxOgfS12vqud4c/x2wrvRUlD8NjbvHG+cUgulojZig53bodIgKZLfs2u pD7BQttWv88In8wUZ73IjyfoSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4uN3La E95cVYtfgpmoegDDGa+UMB8GA1UdIwQYMBaAFNCgk7ZRB5M1SErQuh12YV9cNmiK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjc1Qi9BQjIwMjIzMDFE QTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6VklTdEM2SFhaaFgxdzJh SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBLQ1R0bEVIa3pWSVN0QzZIWFpoWDF3MmFJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mjc1Qi9BQjIwMjIzMDFEQTkxMUUyQjA5NUM0QTQwOEIwMkNEMi8wS0NUdGxFSGt6 VklTdEM2SFhaaFgxdzJhSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLiiRuy5QHTcScKvzr67+CpR2SDk2bbSH+bdG6jlRUht5Pj+ojfkKL BTHCTx0XdRnOpbc9uR74nqVvEQzL4AtuYxE4WnbJFEoNvUFDEy6Sx2OF3hfJ0QTy ScRx4yCnW/kTulOY4ktw3bwE71NZQsUocKGAs8CD6rCP0Jg2PgwJeE8nbIAnERKP wskYEAywO459NKzBNR+tkho1NP8S04lnfzWgrdKS3FiZHiJub67kjJBZ0earFxx2 DlQ1tjjdzpcklMqapJonPggk2o9GFLDCiHxOshmASxluQpHOa/wsX9F7o60IHvaA sYSlwPFIxv+sH/PjCaPdy/nLgIXj6RlT -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:05 2024 by rpki-client on console-ams.rpki-client.org