$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft File: ER6YG60wGDD3weWQzBqotIImDtg.mft (raw, json) Hash identifier: rEHf8/Y+XCV3b6acG8D4vdDtQcQ6FlpYpE0LWV5e++k= Subject key identifier: 99:06:CF:64:6E:1F:13:23:FE:A2:E3:64:81:18:A4:F6:A2:A5:AB:1A Authority key identifier: 11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 Certificate issuer: /CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Certificate serial: 1BD7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft Manifest number: 1BC0 Signing time: Fri 22 Nov 2024 16:13:51 +0000 Manifest this update: Fri 22 Nov 2024 16:13:50 +0000 Manifest next update: Fri 29 Nov 2024 16:13:50 +0000 Files and hashes: 1: ER6YG60wGDD3weWQzBqotIImDtg.crl (hash: POIVNC9EbiXnbMUlAnZnrchcQfrBmRBAh203KA8v+tg=) 2: 14564AB0E83311E6A72DC543C4F9AE02.roa (hash: NUz4kB3CyIG2IBuDbo+UA9LBpVU0SpPOT0o+emRtCgw=) 3: 20C4803669A011EA9055BD0EC4F9AE02.roa (hash: FnUaKoThOa5+XgHVHWe2uhUGOR/oiQOVc+Zdq2BOUUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7127 (0x1bd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FE2/serialNumber=111E981BAD301830F7C1E590CC1AA8B482260ED8 Validity Not Before: Nov 22 16:13:50 2024 GMT Not After : Nov 29 16:13:50 2024 GMT Subject: CN=6740adbf-86f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a9:84:b6:6e:35:d9:d4:fb:e4:e9:c9:33:5e: 30:6b:05:b7:9c:8e:ab:c0:e4:af:b3:d2:02:e6:81: 23:10:c0:0d:25:8a:55:6e:88:f4:ac:1f:23:cc:75: d8:2e:58:93:3a:10:8d:80:7d:7b:2e:48:c1:48:fa: 33:18:d3:fa:9a:be:58:f3:1c:b1:4c:e6:72:bb:e3: 75:04:92:8f:a9:d9:eb:09:c2:f4:98:78:da:70:d5: 95:c6:b2:9e:35:dc:7a:36:31:b6:f9:8d:fc:0b:d4: e7:0d:85:e0:da:14:ed:f4:70:36:d6:2d:51:6a:7c: 33:6a:0c:a5:8b:5c:3a:74:91:4b:ff:7a:f2:85:cc: c3:7a:6a:31:8f:90:dd:0c:40:91:8f:dc:cd:51:ff: a1:5a:24:3d:41:cb:5a:5c:15:71:a6:f5:5e:e1:fe: 83:2a:79:a8:b6:3a:67:b6:f4:38:c9:b9:04:96:cf: 06:30:06:f6:ca:83:e2:db:70:4c:f5:fb:ba:9c:d7: 48:fc:bf:00:22:d7:b4:4a:76:68:81:7a:2a:95:bd: 0d:fe:74:b5:1f:01:07:e2:e4:bf:9f:6b:b5:16:17: b4:3a:a0:37:b4:c0:5d:6a:c6:e9:85:74:46:2b:89: 04:b7:c2:44:d5:c7:cd:75:3d:09:7a:1a:87:fc:8a: 18:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:06:CF:64:6E:1F:13:23:FE:A2:E3:64:81:18:A4:F6:A2:A5:AB:1A X509v3 Authority Key Identifier: keyid:11:1E:98:1B:AD:30:18:30:F7:C1:E5:90:CC:1A:A8:B4:82:26:0E:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ER6YG60wGDD3weWQzBqotIImDtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FE2/2FF9BB22E83211E6BF512842C4F9AE02/ER6YG60wGDD3weWQzBqotIImDtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:fa:4b:81:e4:05:6a:01:5d:06:3b:fa:97:84:62:91:cf:80: 40:45:21:71:fa:f0:fc:94:c0:4d:05:e2:54:d7:30:8b:a7:1d: d2:27:1f:59:19:2b:e8:09:83:5f:d1:c5:cc:06:3a:f6:b8:38: 9b:6b:7e:f8:91:cb:88:0e:f1:52:c0:0a:02:2b:0e:c7:18:c3: ac:53:40:a8:46:21:3e:81:05:98:53:77:a6:f7:6c:93:69:66: c8:c5:c6:a0:17:27:53:cf:45:d9:5c:3c:af:b3:3a:0d:2d:93: 6d:d2:2f:76:c2:d0:03:cc:f0:89:1a:69:2f:41:df:f0:77:62: 65:2d:c4:a7:98:02:aa:4a:98:d9:c9:5b:d4:a7:5c:e8:6f:ab: 6e:00:dc:60:c0:ae:5a:f0:2e:61:09:09:b9:14:65:36:77:1f: c4:e4:83:13:54:1b:90:77:eb:26:c7:ef:ee:74:91:92:68:ed: 9d:18:a7:a0:0a:ce:5c:b0:d6:ec:58:c0:c1:c7:e4:c0:c2:1d: b2:23:f0:da:36:26:22:2c:b0:a9:2b:f7:cf:22:7c:ab:e1:37: a6:bb:e0:f6:cd:fa:08:a7:f9:be:74:c6:64:dc:be:17:0f:c9: d8:1a:f6:d6:f9:c8:db:5f:c7:cb:3c:3f:dc:88:31:19:96:18: ff:d7:1d:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGRTIxMTAvBgNVBAUTKDExMUU5ODFCQUQzMDE4MzBGN0MxRTU5MENDMUFBOEI0 ODIyNjBFRDgwHhcNMjQxMTIyMTYxMzUwWhcNMjQxMTI5MTYxMzUwWjAYMRYwFAYD VQQDEw02NzQwYWRiZi04NmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKmEtm412dT75OnJM14wawW3nI6rwOSvs9IC5oEjEMANJYpVboj0rB8jzHXY LliTOhCNgH17LkjBSPozGNP6mr5Y8xyxTOZyu+N1BJKPqdnrCcL0mHjacNWVxrKe Ndx6NjG2+Y38C9TnDYXg2hTt9HA21i1Ranwzagyli1w6dJFL/3ryhczDemoxj5Dd DECRj9zNUf+hWiQ9QctaXBVxpvVe4f6DKnmotjpntvQ4ybkEls8GMAb2yoPi23BM 9fu6nNdI/L8AIte0SnZogXoqlb0N/nS1HwEH4uS/n2u1Fhe0OqA3tMBdasbphXRG K4kEt8JE1cfNdT0JehqH/IoYtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkGz2Ru HxMj/qLjZIEYpPaipasaMB8GA1UdIwQYMBaAFBEemButMBgw98HlkMwaqLSCJg7Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZFMi8yRkY5QkIyMkU4 MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dERDN3ZVdRekJxb3RJSW1E dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VSNllHNjB3R0REM3dlV1F6QnFvdElJbUR0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZFMi8yRkY5QkIyMkU4MzIxMUU2QkY1MTI4NDJDNEY5QUUwMi9FUjZZRzYwd0dE RDN3ZVdRekJxb3RJSW1EdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH+kuB5AVqAV0GO/qXhGKRz4BARSFx+vD8lMBNBeJU1zCLpx3SJx9Z GSvoCYNf0cXMBjr2uDiba374kcuIDvFSwAoCKw7HGMOsU0CoRiE+gQWYU3em92yT aWbIxcagFydTz0XZXDyvszoNLZNt0i92wtADzPCJGmkvQd/wd2JlLcSnmAKqSpjZ yVvUp1zob6tuANxgwK5a8C5hCQm5FGU2dx/E5IMTVBuQd+smx+/udJGSaO2dGKeg Cs5csNbsWMDBx+TAwh2yI/DaNiYiLLCpK/fPInyr4Temu+D2zfoIp/m+dMZk3L4X D8nYGvbW+cjbX8fLPD/ciDEZlhj/1x2N -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org