$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft File: 4hHNheByVQ4z5MyGpj-8360dNTI.mft (raw, json) Hash identifier: EqFCgta73/0Yr6QbsDvIdmrrLUagOiUW3/ZBAaZj+Jw= Subject key identifier: 80:D2:38:54:FE:A8:7D:7F:8C:0E:3F:22:8E:79:80:4A:FB:AC:E0:3E Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft Manifest number: 07A5 Signing time: Fri 22 Nov 2024 20:47:08 +0000 Manifest this update: Fri 22 Nov 2024 20:47:07 +0000 Manifest next update: Fri 29 Nov 2024 20:47:07 +0000 Files and hashes: 1: 4hHNheByVQ4z5MyGpj-8360dNTI.crl (hash: RPAJDBIKCNSBA38hzXEPQIAD2IZtwxmJ3sFpeJynQs0=) 2: 624086E2E99611EA930A5B74C4F9AE02.roa (hash: OSbXh9zQxt7fc7/E4bJQI3cGElZpZOUkVqVOHwbtAvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Nov 22 20:47:07 2024 GMT Not After : Nov 29 20:47:07 2024 GMT Subject: CN=6740edcc-69b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6d:ad:c4:16:38:74:64:62:29:0f:65:44:d6: a7:70:c8:5b:f5:78:f1:60:42:6f:e2:57:f3:12:35: ff:98:19:ef:34:49:62:7f:df:2d:cc:03:45:8d:2c: 29:88:10:6b:1e:82:28:1a:9d:b5:f2:c8:a9:92:bb: b5:8d:67:5c:66:15:aa:48:91:1b:34:86:41:a7:d8: 5d:2d:c4:c9:d3:6b:af:8c:f0:1e:db:d1:7c:db:41: 50:7a:86:8c:35:00:a9:ef:28:7b:2c:e7:9d:63:ba: 19:0c:18:93:dc:e2:0a:94:98:e8:5a:29:13:64:7f: 87:2b:cb:cc:79:88:c7:c5:0c:f5:54:80:6e:7c:89: 05:7b:a6:f6:52:83:d1:50:09:5c:42:ae:b0:57:f4: 17:0b:29:f5:d5:51:a7:be:b9:cd:f8:6f:8f:88:35: c3:d9:5b:27:e7:40:f6:fa:8d:36:ce:19:91:d9:8e: 92:fc:c7:9e:0e:f2:22:b0:41:1f:13:ca:04:26:57: 61:68:91:1b:37:3a:01:f0:3e:46:a5:27:81:9f:e1: 1a:86:d5:08:d6:dd:c4:39:2f:fc:da:48:0e:53:63: 81:29:ea:9d:4f:cd:11:1f:f2:cb:33:64:96:bc:5f: d6:12:04:52:c8:50:e2:e3:f3:d4:0d:b3:6f:b1:a0: 5f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D2:38:54:FE:A8:7D:7F:8C:0E:3F:22:8E:79:80:4A:FB:AC:E0:3E X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:45:e4:75:f6:06:07:ac:dc:80:66:77:ca:29:4f:0b:dc:91: 20:77:6d:d1:60:f9:9d:de:61:11:24:c3:50:2d:13:77:bd:4f: 73:3d:5c:9b:f2:94:d6:9b:0d:d7:aa:39:ed:c3:83:27:19:93: 47:56:c6:d5:5b:74:46:bc:e0:7d:1f:5d:4f:29:fa:15:81:64: 50:09:01:80:3b:af:69:14:61:4e:d7:ba:53:f4:70:af:b9:00: ac:7c:5f:8a:eb:77:30:82:2a:49:86:a2:a9:d9:0c:ec:d7:7d: 07:d2:3a:3d:a5:0f:16:43:8e:a1:b2:5f:23:d7:23:bd:b5:fc: b2:3e:1e:cb:e4:59:8e:57:fe:ac:09:ad:b3:87:64:e8:d2:07: 70:86:26:cc:02:b9:ec:a6:8e:1d:b6:0d:c0:21:fb:0a:7c:32: c2:00:2d:bd:92:25:2b:d5:e7:67:0f:79:b8:e3:af:9b:73:07: 24:b8:46:e8:28:7c:32:12:8b:32:67:a3:89:6e:da:fb:db:d6: a7:0a:6a:2b:28:19:23:cf:86:e5:77:a4:7d:c5:f7:4a:f9:b5: 68:31:31:0d:fc:71:44:3d:5b:01:eb:61:73:2d:e3:54:bd:bc: 58:2d:40:43:f2:d8:a6:a5:d2:92:e2:15:74:40:3a:89:18:5d: cd:59:6a:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjQxMTIyMjA0NzA3WhcNMjQxMTI5MjA0NzA3WjAYMRYwFAYD VQQDEw02NzQwZWRjYy02OWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W2txBY4dGRiKQ9lRNancMhb9XjxYEJv4lfzEjX/mBnvNElif98tzANFjSwp iBBrHoIoGp218sipkru1jWdcZhWqSJEbNIZBp9hdLcTJ02uvjPAe29F820FQeoaM NQCp7yh7LOedY7oZDBiT3OIKlJjoWikTZH+HK8vMeYjHxQz1VIBufIkFe6b2UoPR UAlcQq6wV/QXCyn11VGnvrnN+G+PiDXD2Vsn50D2+o02zhmR2Y6S/MeeDvIisEEf E8oEJldhaJEbNzoB8D5GpSeBn+EahtUI1t3EOS/82kgOU2OBKeqdT80RH/LLM2SW vF/WEgRSyFDi4/PUDbNvsaBffQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDSOFT+ qH1/jA4/Io55gEr7rOA+MB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODVDRC84QTUwNTU4OEREMTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZR NHo1TXlHcGotODM2MGROVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpReR19gYHrNyAZnfKKU8L3JEgd23RYPmd3mERJMNQLRN3vU9zPVyb 8pTWmw3Xqjntw4MnGZNHVsbVW3RGvOB9H11PKfoVgWRQCQGAO69pFGFO17pT9HCv uQCsfF+K63cwgipJhqKp2Qzs130H0jo9pQ8WQ46hsl8j1yO9tfyyPh7L5FmOV/6s Ca2zh2To0gdwhibMArnspo4dtg3AIfsKfDLCAC29kiUr1ednD3m446+bcwckuEbo KHwyEosyZ6OJbtr729anCmorKBkjz4bld6R9xfdK+bVoMTEN/HFEPVsB62FzLeNU vbxYLUBD8timpdKS4hV0QDqJGF3NWWoy -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org