$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft File: _0Md-OE71_7FHntTUHtFOan5ZWY.mft (raw, json) Hash identifier: P0T8SHKGKlb8UMYoE+O0xGUqh/fIZyrgaWUfBcmujHc= Subject key identifier: DF:51:5A:06:9C:A4:AB:E2:9B:12:7E:F5:71:33:D2:E8:A2:DE:D2:E9 Authority key identifier: FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 Certificate issuer: /CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Certificate serial: 20A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft Manifest number: 2099 Signing time: Fri 22 Nov 2024 15:57:19 +0000 Manifest this update: Fri 22 Nov 2024 15:57:18 +0000 Manifest next update: Fri 29 Nov 2024 15:57:18 +0000 Files and hashes: 1: _0Md-OE71_7FHntTUHtFOan5ZWY.crl (hash: oMRSAkTQBOb+uslPQBgE+TbIwo0K58ufXxp/mUO+JOw=) 2: 5F0B20081CBF11EAA5FCAC86C4F9AE02.roa (hash: A0Wle0bhJAdQOvif+bzDwubbrA+KDjTDCFRXLiqYDos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8356 (0x20a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C4E/serialNumber=FF431DF8E13BD7FEC51E7B53507B4539A9F96566 Validity Not Before: Nov 22 15:57:18 2024 GMT Not After : Nov 29 15:57:18 2024 GMT Subject: CN=6740a9de-8329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c1:43:3a:97:81:c1:93:8d:40:3c:12:4b:b4: 06:a2:f7:1f:1d:bd:a0:df:39:e1:5b:14:02:cc:58: 99:e0:a9:fb:22:d2:a1:85:34:01:ea:e9:3b:77:1e: 73:da:8f:77:57:08:37:a2:d3:c5:fc:73:27:15:57: 66:76:02:54:6f:b2:38:c9:08:ac:e8:3e:ca:d1:0e: 4d:f2:51:26:4d:fb:75:c3:41:f6:b3:61:d4:d5:a7: 83:da:6c:d6:d0:0e:01:55:29:b5:c7:be:82:70:49: 49:c9:f9:17:4a:a3:c3:b1:f2:1f:3b:de:2c:a2:cd: 86:f4:bb:ec:f5:f0:b8:2e:b2:63:7d:17:28:57:5e: 46:77:cb:c2:3a:e8:2a:60:a2:92:25:87:24:53:87: 08:00:b2:f9:a0:6e:0b:51:4f:ec:4d:a1:63:46:0b: 01:85:d0:1e:ba:19:3a:e5:ef:47:ea:51:25:f1:5b: e3:61:3c:88:73:6f:78:5c:21:c2:1f:ac:62:3e:5c: c1:71:e6:95:0b:68:89:90:25:a8:9e:d8:bf:9b:6c: 40:ca:1f:91:90:0b:bf:0e:ab:7f:6a:22:17:a2:df: 60:04:ee:13:67:28:89:02:9c:d2:c5:22:ff:90:85: 93:a3:01:12:4a:2e:c0:e5:f6:95:af:cb:e1:06:88: 18:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:51:5A:06:9C:A4:AB:E2:9B:12:7E:F5:71:33:D2:E8:A2:DE:D2:E9 X509v3 Authority Key Identifier: keyid:FF:43:1D:F8:E1:3B:D7:FE:C5:1E:7B:53:50:7B:45:39:A9:F9:65:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0Md-OE71_7FHntTUHtFOan5ZWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C4E/3448652CF3CB11E5AE366062C4F9AE02/_0Md-OE71_7FHntTUHtFOan5ZWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:de:f9:46:56:e6:da:da:5a:51:0f:d4:82:e2:11:9b:2e:e3: 9d:38:99:31:76:ca:ae:23:6a:10:ba:1e:ea:dd:fc:43:a6:aa: 9f:19:d4:f6:58:f6:7f:1a:43:a4:58:15:ec:4b:6a:7a:82:30: f2:a7:b8:3b:32:03:ad:df:65:9b:b7:f5:58:bb:f0:84:f6:64: 93:dd:51:17:8e:3d:ac:f5:5a:85:2f:0d:59:ff:ab:71:91:b2: 92:55:36:3c:24:5a:a1:93:83:48:c1:ed:29:94:3b:58:ad:96: 74:fc:ec:07:2b:7f:a5:9b:a8:f1:11:0a:4e:17:34:1e:a4:1b: 47:de:33:c5:1d:24:b9:64:ec:60:0f:aa:ec:9e:65:2a:37:ae: 1b:a5:15:aa:41:5b:84:6a:57:a1:43:7b:2a:1c:62:24:8d:dd: 73:d7:c1:c3:b1:c7:23:62:88:53:9c:8a:55:9b:d9:fb:3e:b1: 90:1c:06:7b:f4:ac:52:be:7c:90:b4:4b:c5:0a:23:40:0c:65: 17:40:80:46:6f:cb:74:ca:6f:6c:c5:a6:12:e2:c9:19:d4:ca: 14:bc:64:41:57:67:22:25:c1:b5:5a:91:7d:58:e7:1c:df:a5: 5a:b7:b6:17:2c:34:51:1d:68:e7:d8:aa:b7:f2:da:27:69:17: 8f:b8:0b:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDNEUxMTAvBgNVBAUTKEZGNDMxREY4RTEzQkQ3RkVDNTFFN0I1MzUwN0I0NTM5 QTlGOTY1NjYwHhcNMjQxMTIyMTU1NzE4WhcNMjQxMTI5MTU1NzE4WjAYMRYwFAYD VQQDEw02NzQwYTlkZS04MzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosFDOpeBwZONQDwSS7QGovcfHb2g3znhWxQCzFiZ4Kn7ItKhhTQB6uk7dx5z 2o93Vwg3otPF/HMnFVdmdgJUb7I4yQis6D7K0Q5N8lEmTft1w0H2s2HU1aeD2mzW 0A4BVSm1x76CcElJyfkXSqPDsfIfO94sos2G9Lvs9fC4LrJjfRcoV15Gd8vCOugq YKKSJYckU4cIALL5oG4LUU/sTaFjRgsBhdAeuhk65e9H6lEl8VvjYTyIc294XCHC H6xiPlzBceaVC2iJkCWonti/m2xAyh+RkAu/Dqt/aiIXot9gBO4TZyiJApzSxSL/ kIWTowESSi7A5faVr8vhBogYHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9RWgac pKvimxJ+9XEz0uii3tLpMB8GA1UdIwQYMBaAFP9DHfjhO9f+xR57U1B7RTmp+WVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkM0RS8zNDQ4NjUyQ0Yz Q0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFfN0ZIbnRUVUh0Rk9hbjVa V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wTWQtT0U3MV83RkhudFRVSHRGT2FuNVpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkM0RS8zNDQ4NjUyQ0YzQ0IxMUU1QUUzNjYwNjJDNEY5QUUwMi9fME1kLU9FNzFf N0ZIbnRUVUh0Rk9hbjVaV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy3vlGVuba2lpRD9SC4hGbLuOdOJkxdsquI2oQuh7q3fxDpqqfGdT2 WPZ/GkOkWBXsS2p6gjDyp7g7MgOt32Wbt/VYu/CE9mST3VEXjj2s9VqFLw1Z/6tx kbKSVTY8JFqhk4NIwe0plDtYrZZ0/OwHK3+lm6jxEQpOFzQepBtH3jPFHSS5ZOxg D6rsnmUqN64bpRWqQVuEalehQ3sqHGIkjd1z18HDsccjYohTnIpVm9n7PrGQHAZ7 9KxSvnyQtEvFCiNADGUXQIBGb8t0ym9sxaYS4skZ1MoUvGRBV2ciJcG1WpF9WOcc 36Vat7YXLDRRHWjn2Kq38tonaRePuAtY -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:21 2024 by rpki-client on console-ams.rpki-client.org