$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft File: 2fpCBt8OmUfNUB39UlsuRmlv1EI.mft (raw, json) Hash identifier: +CFMg/x8qcR+v+sWbjZ2OJ12BIvMWE80u8+7pHBM3O8= Subject key identifier: 6A:31:11:BC:7A:70:51:65:24:2D:E8:51:82:10:F3:69:64:7A:4B:AA Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft Manifest number: BB Signing time: Sat 23 Nov 2024 04:01:26 +0000 Manifest this update: Sat 23 Nov 2024 04:01:25 +0000 Manifest next update: Sat 30 Nov 2024 04:01:25 +0000 Files and hashes: 1: 2fpCBt8OmUfNUB39UlsuRmlv1EI.crl (hash: k4c4Vy0anbQubWpM7aJR+VRT7cNtHHqqysemHEFlkes=) 2: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (hash: NUwS5dYsHWOgsvHLsaWVzkOfeZ5Qgl9e7GqBuWLbj7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: Nov 23 04:01:25 2024 GMT Not After : Nov 30 04:01:25 2024 GMT Subject: CN=67415395-1be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:6f:71:f2:41:23:31:7d:14:85:dd:82:49:2d: fc:59:b1:cb:96:06:35:e0:6d:c1:1c:56:9f:ee:9c: b0:dd:47:0a:97:9e:da:3a:58:e1:fa:6f:a3:21:f7: e5:a1:ef:73:07:f2:ae:e7:79:77:ba:b1:19:fd:b6: 88:23:3f:0a:cd:8c:7e:45:fe:ed:e6:b3:3b:fb:bb: 50:f6:6e:4a:0a:0c:77:df:66:d6:4f:df:6e:ca:0e: cc:5d:d8:b3:48:23:2a:1d:8c:d4:86:b7:66:0d:26: 34:00:bb:74:d2:a6:75:0f:db:30:80:07:74:d8:51: 12:d4:c6:03:98:ed:71:7d:7f:32:de:3e:48:de:be: c1:38:3e:7a:6e:5d:08:aa:9f:4f:42:bf:8d:8c:72: ce:39:eb:51:b8:c2:93:e3:77:6c:bf:76:90:25:e4: b9:5e:ee:8a:88:3d:df:da:f2:06:75:30:ae:5a:84: 1c:61:0b:c7:de:e3:2d:ba:a3:0d:f2:ea:ae:8e:73: 1c:05:7c:17:9a:8a:95:de:b6:65:a8:e3:da:2f:c3: 48:36:dc:eb:ad:25:69:f9:4c:c9:8d:2f:63:80:02: ed:08:33:f0:2c:18:41:4e:57:48:cc:58:77:61:83: b2:30:8c:5a:8f:ef:41:43:85:87:17:6b:08:d5:55: ca:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:31:11:BC:7A:70:51:65:24:2D:E8:51:82:10:F3:69:64:7A:4B:AA X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:28:cc:44:92:5d:5c:c8:e9:dd:6c:bc:d8:aa:9a:5c:52:50: b4:b3:c6:17:0b:ac:cc:06:c9:05:55:3a:5f:6a:be:97:ec:b5: bd:05:64:81:2a:3f:fb:26:aa:a3:7f:d3:a0:80:49:94:1b:2d: 22:4f:fe:d4:83:34:01:f0:ea:c2:cd:37:87:e6:c0:57:6e:e6: 9f:63:06:5e:4e:8f:a0:41:b1:51:3f:c1:ce:3f:a1:cf:6d:5c: 25:23:4d:89:18:ed:52:9d:a5:55:c3:e6:93:be:76:81:f8:b9: 97:07:e5:4c:f1:ce:02:6d:02:21:45:a9:7a:3f:03:50:90:4e: 16:6b:80:cc:04:36:9e:69:54:92:73:6f:1d:44:8f:d0:c5:71: fe:d8:d8:5c:29:36:3d:cd:ca:41:d4:21:44:76:29:06:22:62: 0d:2a:ff:16:30:03:c5:80:47:6c:ef:61:f8:65:45:1b:da:54: bd:62:42:10:ba:a4:30:fd:c3:29:97:28:8f:97:92:cf:e6:6d: 71:1f:b6:78:c5:28:b4:21:1c:03:e5:f5:3f:28:5f:7b:fe:b6: b3:a8:4f:a4:c1:15:5b:60:44:e0:98:3d:13:36:b3:55:4d:f5: 0a:2d:57:96:5b:11:9d:61:f3:35:a5:9b:70:94:ae:1e:1c:79: 8a:9c:c5:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MEIxMTAvBgNVBAUTKEQ5RkE0MjA2REYwRTk5NDdDRDUwMURGRDUyNUIyRTQ2 Njk2RkQ0NDIwHhcNMjQxMTIzMDQwMTI1WhcNMjQxMTMwMDQwMTI1WjAYMRYwFAYD VQQDEw02NzQxNTM5NS0xYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkm9x8kEjMX0Uhd2CSS38WbHLlgY14G3BHFaf7pyw3UcKl57aOljh+m+jIffl oe9zB/Ku53l3urEZ/baIIz8KzYx+Rf7t5rM7+7tQ9m5KCgx332bWT99uyg7MXdiz SCMqHYzUhrdmDSY0ALt00qZ1D9swgAd02FES1MYDmO1xfX8y3j5I3r7BOD56bl0I qp9PQr+NjHLOOetRuMKT43dsv3aQJeS5Xu6KiD3f2vIGdTCuWoQcYQvH3uMtuqMN 8uqujnMcBXwXmoqV3rZlqOPaL8NINtzrrSVp+UzJjS9jgALtCDPwLBhBTldIzFh3 YYOyMIxaj+9BQ4WHF2sI1VXKFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoxEbx6 cFFlJC3oUYIQ82lkekuqMB8GA1UdIwQYMBaAFNn6QgbfDplHzVAd/VJbLkZpb9RC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQwQi80NjI2QkIxQThF MDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21VZk5VQjM5VWxzdVJtbHYx RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21V Zk5VQjM5VWxzdVJtbHYxRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMKMxEkl1cyOndbLzYqppcUlC0s8YXC6zMBskFVTpfar6X7LW9BWSB Kj/7Jqqjf9OggEmUGy0iT/7UgzQB8OrCzTeH5sBXbuafYwZeTo+gQbFRP8HOP6HP bVwlI02JGO1SnaVVw+aTvnaB+LmXB+VM8c4CbQIhRal6PwNQkE4Wa4DMBDaeaVSS c28dRI/QxXH+2NhcKTY9zcpB1CFEdikGImINKv8WMAPFgEds72H4ZUUb2lS9YkIQ uqQw/cMplyiPl5LP5m1xH7Z4xSi0IRwD5fU/KF97/razqE+kwRVbYETgmD0TNrNV TfUKLVeWWxGdYfM1pZtwlK4eHHmKnMUJ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org