$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft File: 70llBmvaJCursGhbwuat2fdWM_0.mft (raw, json) Hash identifier: dv8OwR8wPOsDLheM9jXnXQHABHdctcEfRXVKSkt5zog= Subject key identifier: 6E:27:08:76:B1:78:33:11:02:48:D2:1F:90:D1:C0:82:43:1B:38:0D Authority key identifier: EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD Certificate issuer: /CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Certificate serial: 0579 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft Manifest number: 0575 Signing time: Fri 22 Nov 2024 22:51:34 +0000 Manifest this update: Fri 22 Nov 2024 22:51:34 +0000 Manifest next update: Fri 29 Nov 2024 22:51:34 +0000 Files and hashes: 1: 70llBmvaJCursGhbwuat2fdWM_0.crl (hash: BfvMZY6vdl3qOmAEqQshJ5QP2qZTG6Wuf28hxGe51rA=) 2: 02157718B9DF11EBA8BE9876C4F9AE02.roa (hash: qJ0j3BEtvoKonhv9iV5ZjKTQCrlGnl70ygABsp5AhIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9B1/serialNumber=EF4965066BDA242BABB0685BC2E6ADD9F75633FD Validity Not Before: Nov 22 22:51:34 2024 GMT Not After : Nov 29 22:51:34 2024 GMT Subject: CN=67410af6-3c3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:85:ba:10:d7:5a:3b:63:37:7f:2b:6b:bc:d6: 72:0d:f2:de:b0:20:a0:2a:0a:18:3d:86:d1:ad:db: b0:c9:dd:04:54:2e:96:21:e8:a1:03:ea:f9:1a:a1: 40:dc:4b:19:c7:6d:49:97:48:58:e7:89:d0:b9:87: e2:19:3c:1f:6e:18:d9:93:46:67:fc:4b:ef:a7:0d: 4c:e4:56:3e:9e:88:29:ee:40:69:4b:df:a5:7a:2a: 9e:20:42:7e:a2:63:4a:22:12:87:5c:32:32:a2:22: a2:e0:26:49:67:6a:e6:77:8c:66:55:dc:94:1c:dd: e5:01:9f:aa:9f:cd:6f:ba:c0:90:70:af:24:9b:7b: 7e:0e:d0:5a:e1:3e:a9:57:a1:fb:fa:27:70:f6:61: 45:1b:f2:cf:4f:4e:c8:5c:7b:f1:bc:9c:42:b0:49: ca:36:17:67:ea:2b:a5:4c:0b:82:f2:f3:46:b0:8c: 99:d0:a0:62:b0:92:c0:2f:0d:11:2c:36:b1:cd:65: fd:29:c5:06:81:f7:74:5c:9a:30:14:63:0e:b0:21: 22:65:79:34:11:fb:32:74:13:c5:3f:92:c6:8d:eb: 52:16:8b:ed:3e:33:c8:ad:9c:aa:25:d2:9a:8e:81: be:1f:81:1c:b1:62:10:62:dd:17:9b:d7:3e:4a:d9: 0f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:27:08:76:B1:78:33:11:02:48:D2:1F:90:D1:C0:82:43:1B:38:0D X509v3 Authority Key Identifier: keyid:EF:49:65:06:6B:DA:24:2B:AB:B0:68:5B:C2:E6:AD:D9:F7:56:33:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70llBmvaJCursGhbwuat2fdWM_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9B1/5BB9E00AB9DB11EB9CF3B86EC4F9AE02/70llBmvaJCursGhbwuat2fdWM_0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:b1:ea:16:28:5f:1c:a0:e3:99:47:ee:5f:6b:6c:8f:5b:e0: 96:e6:e8:ed:2b:c8:0c:60:ea:86:12:f8:f4:37:a7:49:3a:d7: 4b:15:5c:fb:16:c9:9a:9d:b8:6f:80:89:90:a8:28:4e:c3:87: 4f:2d:19:3b:13:a3:03:f1:64:b3:c4:37:56:b8:cb:3a:50:16: e4:22:49:18:45:92:d4:2c:43:3b:b7:a6:d2:d5:32:45:9e:e7: ec:86:cf:7f:e9:7f:7d:36:d3:9a:07:55:80:18:43:36:a9:c3: da:aa:80:e9:1d:95:87:8e:fc:0f:7a:8a:6a:bf:17:65:ce:05: 0d:82:86:11:65:e9:54:a7:d2:3a:07:7e:69:5e:58:13:c9:80: 9c:1a:22:35:5f:d4:5e:0b:c3:c3:11:93:05:1b:ae:e9:0b:67: 16:6d:9f:24:7c:80:0f:ba:57:b7:6f:f6:3e:5b:07:37:4f:e1: c4:be:12:31:29:03:b6:48:f0:29:d5:d1:38:14:b8:6c:40:aa: 8e:8d:da:fc:70:a8:91:6b:68:46:b0:a6:76:5a:be:aa:6c:7c: 72:09:b8:42:0d:dd:ec:00:ad:6a:2f:ff:82:9b:2d:92:e4:ad: b5:6c:93:82:26:e7:6c:2c:25:92:17:26:3a:cd:6a:8f:af:b3: 7b:d0:b4:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU5QjExMTAvBgNVBAUTKEVGNDk2NTA2NkJEQTI0MkJBQkIwNjg1QkMyRTZBREQ5 Rjc1NjMzRkQwHhcNMjQxMTIyMjI1MTM0WhcNMjQxMTI5MjI1MTM0WjAYMRYwFAYD VQQDEw02NzQxMGFmNi0zYzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIW6ENdaO2M3fytrvNZyDfLesCCgKgoYPYbRrduwyd0EVC6WIeihA+r5GqFA 3EsZx21Jl0hY54nQuYfiGTwfbhjZk0Zn/Evvpw1M5FY+nogp7kBpS9+leiqeIEJ+ omNKIhKHXDIyoiKi4CZJZ2rmd4xmVdyUHN3lAZ+qn81vusCQcK8km3t+DtBa4T6p V6H7+idw9mFFG/LPT07IXHvxvJxCsEnKNhdn6iulTAuC8vNGsIyZ0KBisJLALw0R LDaxzWX9KcUGgfd0XJowFGMOsCEiZXk0EfsydBPFP5LGjetSFovtPjPIrZyqJdKa joG+H4EcsWIQYt0Xm9c+StkPWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4nCHax eDMRAkjSH5DRwIJDGzgNMB8GA1UdIwQYMBaAFO9JZQZr2iQrq7BoW8Lmrdn3VjP9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTlCMS81QkI5RTAwQUI5 REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpDdXJzR2hid3VhdDJmZFdN XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwbGxCbXZhSkN1cnNHaGJ3dWF0MmZkV01fMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlCMS81QkI5RTAwQUI5REIxMUVCOUNGM0I4NkVDNEY5QUUwMi83MGxsQm12YUpD dXJzR2hid3VhdDJmZFdNXzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCseoWKF8coOOZR+5fa2yPW+CW5ujtK8gMYOqGEvj0N6dJOtdLFVz7 FsmanbhvgImQqChOw4dPLRk7E6MD8WSzxDdWuMs6UBbkIkkYRZLULEM7t6bS1TJF nufshs9/6X99NtOaB1WAGEM2qcPaqoDpHZWHjvwPeopqvxdlzgUNgoYRZelUp9I6 B35pXlgTyYCcGiI1X9ReC8PDEZMFG67pC2cWbZ8kfIAPule3b/Y+Wwc3T+HEvhIx KQO2SPAp1dE4FLhsQKqOjdr8cKiRa2hGsKZ2Wr6qbHxyCbhCDd3sAK1qL/+Cmy2S 5K21bJOCJudsLCWSFyY6zWqPr7N70LTA -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:54 2024 by rpki-client on console-ams.rpki-client.org