$ rpki-client -vvf rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft File: RMCz5V6PTVgxhgXnITScArKJwv0.mft (raw, json) Hash identifier: xQuchP7YtyGqRQgt7O+n+usF+4tU/OpTMApLmcmfWzk= Subject key identifier: 37:BA:FA:FE:2C:F6:F4:9A:51:92:57:78:F8:2C:7B:93:4F:06:AB:EE Authority key identifier: 44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD Certificate issuer: /CN=A91167F7/serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD Certificate serial: 067B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft Manifest number: 0676 Signing time: Fri 22 Nov 2024 21:51:55 +0000 Manifest this update: Fri 22 Nov 2024 21:51:55 +0000 Manifest next update: Fri 29 Nov 2024 21:51:55 +0000 Files and hashes: 1: RMCz5V6PTVgxhgXnITScArKJwv0.crl (hash: tZDnBe3lQlUf0lwlHGIFHlE9Gnw9MJ3qSF6MHQkUrvA=) 2: 980A0D7254B511EBAC30E864C4F9AE02.roa (hash: PrgqmGPVCZutr73KuPF9z7k4L5rKkcCQ9HWUA608bqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1659 (0x67b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91167F7/serialNumber=44C0B3E55E8F4D58318605E721349C02B289C2FD Validity Not Before: Nov 22 21:51:55 2024 GMT Not After : Nov 29 21:51:55 2024 GMT Subject: CN=6740fcfb-388c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:99:9d:d9:60:ed:ce:b8:2a:cc:e1:bb:68:55: 76:e9:13:ad:22:ea:8f:a8:06:16:89:23:14:29:2b: 4f:9e:19:7f:ff:49:b0:1b:ce:6d:b3:9b:d3:e2:fc: 5c:3c:7e:43:8b:23:92:45:39:4d:a9:3a:20:3e:7b: c8:e2:4b:7a:8e:d2:d4:d3:1d:10:07:c3:73:8f:47: 0e:68:01:af:7e:d9:da:06:78:7d:1e:a2:6b:74:05: dd:1d:d5:01:cb:bf:03:d4:33:51:4d:e9:50:ed:a7: 86:df:be:36:ba:17:1d:a5:9a:e0:b7:06:ac:68:ed: 9c:4e:aa:f7:3b:cc:14:9e:36:6b:57:45:77:5f:00: 0b:40:79:7b:00:a6:1d:fc:87:00:5e:ff:26:f6:92: 4a:49:df:43:d0:cd:8f:c8:ad:fa:5f:f9:55:fa:91: 23:c9:84:34:f2:9a:e4:89:3b:ab:4c:4c:3d:31:1b: f5:c1:fc:ec:a3:b0:2c:3b:bc:98:5f:08:35:77:eb: a0:fd:72:d5:87:f8:4f:3a:ce:d5:9f:66:b8:b1:f9: 23:46:9d:10:14:3e:95:d6:3d:1f:a5:88:f7:f3:ae: 9c:de:d7:90:05:f6:6f:d7:f0:e9:ee:62:91:e1:91: 9b:32:7e:16:61:a5:fc:a9:ab:87:90:25:a6:88:a9: 66:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BA:FA:FE:2C:F6:F4:9A:51:92:57:78:F8:2C:7B:93:4F:06:AB:EE X509v3 Authority Key Identifier: keyid:44:C0:B3:E5:5E:8F:4D:58:31:86:05:E7:21:34:9C:02:B2:89:C2:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RMCz5V6PTVgxhgXnITScArKJwv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91167F7/BFD3EB1A541611EBA4D56863C4F9AE02/RMCz5V6PTVgxhgXnITScArKJwv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:84:59:c2:92:6d:31:fb:06:74:6f:c6:14:35:2f:ab:7f:fa: 77:a2:3e:88:88:53:cd:78:ce:af:21:ef:3b:07:1f:c3:d7:44: f8:78:cf:90:52:93:46:f6:2e:13:4d:98:dd:c8:30:60:ed:f2: ff:80:a5:37:15:e5:8e:96:8e:9d:bc:6b:b5:af:6b:90:82:a8: f2:cf:a6:9d:8c:65:c1:a7:03:fb:ed:b0:d5:26:f3:93:43:55: 45:78:d2:7d:6b:ff:bc:2a:cf:27:f2:be:af:42:b6:89:cc:1a: d2:d5:6b:a5:34:fc:69:df:86:b5:c6:d5:9c:e1:8f:2f:0e:39: ad:12:8b:43:d4:21:f4:43:00:c0:48:66:5f:ff:8f:8c:f7:25: 0c:24:26:c3:a3:37:e2:c7:20:9a:22:07:d9:68:04:fb:33:72: a6:4d:4e:0c:a7:7a:cb:88:de:f9:f0:96:4b:07:79:62:be:61: 82:7a:77:01:f6:06:16:8a:a6:50:3e:3f:d0:37:82:b9:e6:8e: cc:2f:50:1f:84:20:ac:7f:d9:f3:df:f7:a3:3c:4f:75:7a:b6: 09:19:6d:6a:7b:2a:5b:95:5f:75:2c:cd:06:ca:9c:ae:ab:dc: f6:65:e1:ca:d6:cd:f4:d8:5c:76:ce:56:33:84:ee:d3:cd:59: 6f:ba:e3:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY3RjcxMTAvBgNVBAUTKDQ0QzBCM0U1NUU4RjRENTgzMTg2MDVFNzIxMzQ5QzAy QjI4OUMyRkQwHhcNMjQxMTIyMjE1MTU1WhcNMjQxMTI5MjE1MTU1WjAYMRYwFAYD VQQDEw02NzQwZmNmYi0zODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpmd2WDtzrgqzOG7aFV26ROtIuqPqAYWiSMUKStPnhl//0mwG85ts5vT4vxc PH5DiyOSRTlNqTogPnvI4kt6jtLU0x0QB8Nzj0cOaAGvftnaBnh9HqJrdAXdHdUB y78D1DNRTelQ7aeG3742uhcdpZrgtwasaO2cTqr3O8wUnjZrV0V3XwALQHl7AKYd /IcAXv8m9pJKSd9D0M2PyK36X/lV+pEjyYQ08prkiTurTEw9MRv1wfzso7AsO7yY Xwg1d+ug/XLVh/hPOs7Vn2a4sfkjRp0QFD6V1j0fpYj3866c3teQBfZv1/Dp7mKR 4ZGbMn4WYaX8qauHkCWmiKlmKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDe6+v4s 9vSaUZJXePgse5NPBqvuMB8GA1UdIwQYMBaAFETAs+Vej01YMYYF5yE0nAKyicL9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjdGNy9CRkQzRUIxQTU0 MTYxMUVCQTRENTY4NjNDNEY5QUUwMi9STUN6NVY2UFRWZ3hoZ1huSVRTY0FyS0p3 djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JNQ3o1VjZQVFZneGhnWG5JVFNjQXJLSnd2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjdGNy9CRkQzRUIxQTU0MTYxMUVCQTRENTY4NjNDNEY5QUUwMi9STUN6NVY2UFRW Z3hoZ1huSVRTY0FyS0p3djAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzhFnCkm0x+wZ0b8YUNS+rf/p3oj6IiFPNeM6vIe87Bx/D10T4eM+Q UpNG9i4TTZjdyDBg7fL/gKU3FeWOlo6dvGu1r2uQgqjyz6adjGXBpwP77bDVJvOT Q1VFeNJ9a/+8Ks8n8r6vQraJzBrS1WulNPxp34a1xtWc4Y8vDjmtEotD1CH0QwDA SGZf/4+M9yUMJCbDozfixyCaIgfZaAT7M3KmTU4Mp3rLiN758JZLB3livmGCencB 9gYWiqZQPj/QN4K55o7ML1AfhCCsf9nz3/ejPE91erYJGW1qeypblV91LM0Gypyu q9z2ZeHK1s302Fx2zlYzhO7TzVlvuuNx -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org