$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft File: RIvZcaMGqwNjmecW3CIcozj1i1k.mft (raw, json) Hash identifier: 00d3TreDLRb0r5HQ5i8IPeRae3C+POUX8DbpYpqFBDU= Subject key identifier: B9:BB:FB:9F:9A:93:F9:EE:B7:6F:4C:CF:0F:D5:15:76:B0:B2:45:43 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 14AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft Manifest number: 1467 Signing time: Fri 22 Nov 2024 16:55:14 +0000 Manifest this update: Fri 22 Nov 2024 16:55:14 +0000 Manifest next update: Fri 29 Nov 2024 16:55:14 +0000 Files and hashes: 1: RIvZcaMGqwNjmecW3CIcozj1i1k.crl (hash: /LMoizR26+NOE/xqQJpovmGUq3aj8/UUp24wvHKPz5Y=) 2: 7338235CC06011EE882BC34AC4F9AE02.roa (hash: TWXvucCGMfhPPvjqC193EzTyiJ5yNyDGkBN+BrgCKlo=) 3: 743770A0C06011EE882BC34AC4F9AE02.roa (hash: cYHOYxZ4Xyw5AnaJHRbn54gHLD72iVyuW1Ed3Fy2gN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5291 (0x14ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Nov 22 16:55:14 2024 GMT Not After : Nov 29 16:55:14 2024 GMT Subject: CN=6740b772-27cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5d:3a:42:17:81:51:9f:f6:76:a2:18:f8:4c: a4:76:48:b9:a9:66:a6:93:5e:12:d2:d8:67:ad:a3: a2:0d:6b:c5:cb:d1:05:13:78:8f:9a:c2:47:66:c1: af:52:6b:7e:e7:10:f9:78:fe:2e:ee:ff:4c:5a:48: 33:5c:c0:c5:08:1e:c3:05:53:59:50:6b:b3:8a:09: c8:5b:69:c9:da:a2:72:2c:91:5f:df:50:de:8c:71: 89:cd:1f:74:30:27:43:2b:ff:5e:07:57:b0:f3:87: 77:9d:76:4e:c8:da:61:d9:a4:93:5b:64:5a:c8:24: 83:04:38:d6:d6:3a:b9:db:7f:7b:99:4e:06:1f:6f: b1:b1:d2:97:09:18:e3:f2:5a:09:b4:30:a9:34:f8: 34:c6:cc:31:0d:38:11:16:d3:8d:06:97:40:4d:83: 50:dd:46:5f:32:2e:b7:27:fc:c5:fa:18:db:7f:21: f7:f6:82:c6:ee:88:45:ec:1e:37:4b:44:27:29:28: 01:af:32:c3:44:ba:24:cd:80:59:d4:d4:32:4e:f1: d3:26:2d:40:ff:c9:9c:e9:1c:23:7f:d7:5b:5b:df: 7e:8c:a8:88:bc:6c:18:6d:9c:f4:67:73:a1:1a:ed: b7:bc:91:86:3d:a5:ea:ca:ef:05:14:8e:a5:f2:4a: 6e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:BB:FB:9F:9A:93:F9:EE:B7:6F:4C:CF:0F:D5:15:76:B0:B2:45:43 X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:68:fb:dd:d0:76:0a:8f:3e:c9:ee:fd:ad:f6:2d:09:55:0e: 0c:16:79:fe:4d:1a:b5:a1:53:0c:f5:87:8e:09:8a:8e:66:65: 2d:74:ba:94:23:41:3a:49:48:16:91:a5:1d:05:3c:44:f4:00: c0:98:a0:71:af:e1:01:bc:53:03:0b:9b:a2:49:27:03:17:84: 55:cd:63:00:d6:73:cc:3d:8b:13:09:c2:cd:da:cf:00:a6:ad: 54:bc:f6:c7:40:c1:b6:11:21:66:3d:7d:22:c4:e9:4c:45:0b: 54:bf:30:49:a0:b7:d5:7f:fe:02:5e:b6:fe:33:4a:a7:d6:13: 73:31:14:8c:3a:d5:db:e5:ec:e9:60:de:75:c8:2b:95:70:14: db:c0:ad:94:a7:53:9c:c8:dd:43:b9:37:68:0c:d3:83:6f:eb: 72:87:92:f2:93:ec:39:bf:ab:2d:8f:2a:83:0f:7d:3a:31:92: cb:9b:45:76:d2:67:42:3b:92:a2:99:c2:4d:ee:16:09:1c:d1: b3:d1:fc:2f:bc:02:3d:0d:64:0e:20:be:6e:e0:4f:89:a8:73: 2c:d3:06:c9:e4:23:18:3c:14:a7:0f:54:fc:d0:72:9a:04:53: 06:63:20:93:20:8c:94:bb:18:36:0e:0f:22:49:b6:7a:d4:93: 38:6d:ee:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjQxMTIyMTY1NTE0WhcNMjQxMTI5MTY1NTE0WjAYMRYwFAYD VQQDEw02NzQwYjc3Mi0yN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV06QheBUZ/2dqIY+Eykdki5qWamk14S0thnraOiDWvFy9EFE3iPmsJHZsGv Umt+5xD5eP4u7v9MWkgzXMDFCB7DBVNZUGuzignIW2nJ2qJyLJFf31DejHGJzR90 MCdDK/9eB1ew84d3nXZOyNph2aSTW2RayCSDBDjW1jq52397mU4GH2+xsdKXCRjj 8loJtDCpNPg0xswxDTgRFtONBpdATYNQ3UZfMi63J/zF+hjbfyH39oLG7ohF7B43 S0QnKSgBrzLDRLokzYBZ1NQyTvHTJi1A/8mc6Rwjf9dbW99+jKiIvGwYbZz0Z3Oh Gu23vJGGPaXqyu8FFI6l8kpu0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLm7+5+a k/nut29Mzw/VFXawskVDMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDFENS9ENEJFMDBENDYzRTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3 TmptZWNXM0NJY296ajFpMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4aPvd0HYKjz7J7v2t9i0JVQ4MFnn+TRq1oVMM9YeOCYqOZmUtdLqU I0E6SUgWkaUdBTxE9ADAmKBxr+EBvFMDC5uiSScDF4RVzWMA1nPMPYsTCcLN2s8A pq1UvPbHQMG2ESFmPX0ixOlMRQtUvzBJoLfVf/4CXrb+M0qn1hNzMRSMOtXb5ezp YN51yCuVcBTbwK2Up1OcyN1DuTdoDNODb+tyh5Lyk+w5v6stjyqDD306MZLLm0V2 0mdCO5KimcJN7hYJHNGz0fwvvAI9DWQOIL5u4E+JqHMs0wbJ5CMYPBSnD1T80HKa BFMGYyCTIIyUuxg2Dg8iSbZ61JM4be5w -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:58 2024 by rpki-client on console-ams.rpki-client.org