$ rpki-client -vvf rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft File: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft (raw, json) Hash identifier: YbSlvQipOy9Fh/8O8L9791TluAfbs+9kIOcLfbkewV8= Subject key identifier: 09:BD:47:20:6A:27:FA:C1:82:33:65:A1:F6:59:16:A6:95:7D:74:09 Authority key identifier: F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE Certificate issuer: /CN=A91243F8/serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft Manifest number: 01FA Signing time: Sat 23 Nov 2024 01:36:57 +0000 Manifest this update: Sat 23 Nov 2024 01:36:56 +0000 Manifest next update: Sat 30 Nov 2024 01:36:56 +0000 Files and hashes: 1: 8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl (hash: An1kAREEgk/CSOOBjoGjulyaScn41ReUmZvJQZho6as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243F8/serialNumber=F2928A4B10DD8474A6DD0AC65CD1394F02155CDE Validity Not Before: Nov 23 01:36:56 2024 GMT Not After : Nov 30 01:36:56 2024 GMT Subject: CN=674131b9-9445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e7:44:27:37:ac:b3:91:96:01:36:dc:01:53: f5:6a:2b:c6:1f:fa:0b:2f:34:44:d6:16:30:9f:73: 0d:a8:3a:bb:d1:83:4e:7c:87:06:25:81:81:ce:3b: 40:df:b9:35:48:b0:85:a0:8f:b1:3c:3c:9c:6f:56: 4c:8e:1f:66:dc:31:8a:3a:a3:67:9d:f3:c3:2e:cb: ce:0e:f0:f7:f8:ac:39:da:a5:ca:7b:3a:b9:51:4f: 50:7f:b6:38:01:5a:6d:d5:80:17:ab:e8:b8:19:4c: 0b:de:ff:71:20:64:77:35:3a:ed:2a:6d:ee:2d:8a: db:92:db:db:f8:87:e8:f5:2f:70:fb:fe:47:ae:3c: d7:93:eb:83:cf:13:72:30:b9:ab:96:05:5e:71:e2: 85:0c:76:c1:5d:71:ae:31:93:cf:a4:d0:a3:e3:31: b9:19:29:bc:95:c6:80:93:a8:86:78:b7:49:62:fd: df:39:43:94:03:a4:24:1f:42:76:1f:20:7a:38:91: 3b:f4:bf:9d:d7:6e:47:62:a6:f5:95:71:b7:aa:b5: 53:ad:19:a7:6b:96:84:67:e0:80:32:08:5b:cd:08: 5d:83:31:11:88:e3:17:c5:80:2e:ae:da:1c:0a:7e: ae:5c:ca:5a:d9:10:1a:a2:70:ac:dc:52:e1:34:d8: 8c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BD:47:20:6A:27:FA:C1:82:33:65:A1:F6:59:16:A6:95:7D:74:09 X509v3 Authority Key Identifier: keyid:F2:92:8A:4B:10:DD:84:74:A6:DD:0A:C6:5C:D1:39:4F:02:15:5C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8pKKSxDdhHSm3QrGXNE5TwIVXN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243F8/BA6481F616D111ED88248428C4F9AE02/8pKKSxDdhHSm3QrGXNE5TwIVXN4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:12:d2:cd:88:a0:47:ec:fd:63:a7:72:bd:19:12:d5:0b:22: ce:7d:b8:fa:6f:8b:50:66:f0:a0:ac:e5:b5:68:94:b9:14:8a: 5e:30:97:ec:ab:74:1e:ed:f4:a6:6e:ca:ca:d3:4d:17:e4:13: 79:dc:b5:1f:ab:18:9e:c5:18:10:70:8b:47:f4:41:18:29:cc: 3f:ce:d3:d3:d5:df:05:f7:c9:b7:c9:1b:2c:6c:ea:0f:b8:a9: ca:d9:16:e2:34:21:d0:e8:a6:e5:d1:09:f3:0c:5c:9d:be:14: 50:17:f1:fa:30:5b:6c:a7:01:9b:9a:9c:70:33:42:84:46:6d: d6:1f:95:f6:98:4f:9d:4e:8d:73:a9:4d:4f:7c:4c:bd:9e:80: 6f:3d:c4:43:80:f0:51:b1:82:3e:b9:97:a0:63:f0:00:05:da: dc:d4:b6:1f:fe:7f:cf:21:ab:7f:fa:f5:d9:80:5e:f2:52:80: 0d:67:f3:1f:b0:60:82:3c:ea:b3:74:82:48:49:ca:26:df:8f: b1:e1:26:27:54:2a:eb:2b:73:b7:fc:e0:87:83:a1:a4:dc:49: 8b:f5:36:93:87:85:ed:4d:ea:13:de:c6:80:dd:5e:43:54:fc: f6:6a:b8:1f:ac:81:9b:47:6b:8c:4e:48:72:81:dc:c7:13:5b: 5b:3a:95:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRjgxMTAvBgNVBAUTKEYyOTI4QTRCMTBERDg0NzRBNkREMEFDNjVDRDEzOTRG MDIxNTVDREUwHhcNMjQxMTIzMDEzNjU2WhcNMjQxMTMwMDEzNjU2WjAYMRYwFAYD VQQDEw02NzQxMzFiOS05NDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3udEJzess5GWATbcAVP1aivGH/oLLzRE1hYwn3MNqDq70YNOfIcGJYGBzjtA 37k1SLCFoI+xPDycb1ZMjh9m3DGKOqNnnfPDLsvODvD3+Kw52qXKezq5UU9Qf7Y4 AVpt1YAXq+i4GUwL3v9xIGR3NTrtKm3uLYrbktvb+Ifo9S9w+/5HrjzXk+uDzxNy MLmrlgVeceKFDHbBXXGuMZPPpNCj4zG5GSm8lcaAk6iGeLdJYv3fOUOUA6QkH0J2 HyB6OJE79L+d125HYqb1lXG3qrVTrRmna5aEZ+CAMghbzQhdgzERiOMXxYAurtoc Cn6uXMpa2RAaonCs3FLhNNiMQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm9RyBq J/rBgjNlofZZFqaVfXQJMB8GA1UdIwQYMBaAFPKSiksQ3YR0pt0KxlzROU8CFVze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGOC9CQTY0ODFGNjE2 RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhIU20zUXJHWE5FNVR3SVZY TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhwS0tTeERkaEhTbTNRckdYTkU1VHdJVlhONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGOC9CQTY0ODFGNjE2RDExMUVEODgyNDg0MjhDNEY5QUUwMi84cEtLU3hEZGhI U20zUXJHWE5FNVR3SVZYTjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyEtLNiKBH7P1jp3K9GRLVCyLOfbj6b4tQZvCgrOW1aJS5FIpeMJfs q3Qe7fSmbsrK000X5BN53LUfqxiexRgQcItH9EEYKcw/ztPT1d8F98m3yRssbOoP uKnK2RbiNCHQ6Kbl0QnzDFydvhRQF/H6MFtspwGbmpxwM0KERm3WH5X2mE+dTo1z qU1PfEy9noBvPcRDgPBRsYI+uZegY/AABdrc1LYf/n/PIat/+vXZgF7yUoANZ/Mf sGCCPOqzdIJIScom34+x4SYnVCrrK3O3/OCHg6Gk3EmL9TaTh4XtTeoT3saA3V5D VPz2argfrIGbR2uMTkhygdzHE1tbOpXl -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org