$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json) Hash identifier: Aef7UgrcFYooFoEThIZZj1fSsSkMzhMeRgXOtn2Jf+k= Subject key identifier: D2:95:99:18:7A:06:43:D9:5A:45:03:9E:4E:54:9B:6C:34:C8:4C:EA Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0AAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft Manifest number: 0AA1 Signing time: Wed 20 Nov 2024 19:15:21 +0000 Manifest this update: Wed 20 Nov 2024 19:15:21 +0000 Manifest next update: Wed 27 Nov 2024 19:15:21 +0000 Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: IOiX5hUUOBSqVrw+qLbwEOJi8nV8XMeJ5KjIYBuAENo=) 2: A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa (hash: wBezilbHgFlLqA1qqUMQVDVzvkJDksyuC7XhtfdBEgk=) 3: 3FC1B85E431811EA84E68121C4F9AE02.roa (hash: kRXthgEAoGC/b23UrIEWTh9+gf3/yFfF1cVAtff2rTg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2734 (0xaae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: Nov 20 19:15:21 2024 GMT Not After : Nov 27 19:15:21 2024 GMT Subject: CN=673e3549-8410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a5:16:e5:24:9d:62:87:6f:4d:7f:a4:29:9b: b3:bc:b6:f1:86:1d:6c:ed:7b:6d:a9:b5:10:a1:34: a8:b6:d6:34:47:91:15:82:17:62:74:c0:25:78:fe: 43:c8:20:1e:d1:bf:88:3d:ae:65:62:dc:01:0b:86: 18:fe:33:2e:7e:40:ed:6b:5b:0b:46:90:af:ed:c6: a3:95:d4:74:62:4d:92:12:9d:c9:c9:05:6d:a9:ef: e0:92:06:13:37:8b:a9:4c:6c:5f:b4:cf:6d:eb:06: 3b:6f:80:78:4b:17:fd:8a:d7:de:f3:3a:99:53:3a: e7:90:cb:b5:0f:c7:cd:4b:45:f7:12:49:a4:83:99: 45:7e:9d:57:63:ef:0e:f4:b0:cf:d9:28:f2:34:71: ec:52:72:00:73:d7:a7:fd:18:ef:2f:91:7c:9b:cd: 4f:75:8b:98:7d:eb:de:fc:97:f2:dc:89:50:11:22: 77:95:7e:c2:e4:bc:37:99:90:4e:ce:29:4c:4c:c5: 49:ac:5a:5f:f5:d5:f2:43:1d:54:b9:4e:5c:5a:37: cb:73:8e:75:ec:89:3a:46:2f:9e:7e:c7:e4:7a:77: 71:ae:3e:fb:1c:38:b5:f2:0f:4c:ac:6b:8b:6a:f6: 63:d0:1e:d6:d0:f0:7f:08:f6:25:21:94:5b:f7:c1: ea:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:95:99:18:7A:06:43:D9:5A:45:03:9E:4E:54:9B:6C:34:C8:4C:EA X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:18:f1:cc:f9:9a:54:27:67:f7:29:f4:35:44:9e:0d:c0:de: b4:4e:ab:7a:02:89:91:06:cc:a8:43:2b:6f:57:17:8f:48:69: d0:78:7b:06:53:56:bf:8e:e1:0b:e1:5b:32:62:ff:3d:dc:ec: 91:f2:90:f8:9b:7f:0a:14:e3:c4:67:71:b7:9d:0b:ca:4f:d5: 8b:e7:6a:df:13:f2:b3:91:32:b5:a5:c8:96:08:a1:71:e1:bc: 12:6a:b2:e2:62:8f:6a:07:20:89:c3:7c:b6:64:d8:42:52:2f: 31:44:df:eb:37:8c:b8:88:d6:21:47:3f:96:e8:55:8e:2d:83: 09:96:f1:82:f8:83:43:b0:e0:98:d9:bd:fb:68:70:63:16:6f: 46:35:cd:fc:7f:3c:25:89:c6:b5:9f:1d:5d:30:d6:31:ae:ca: 31:b6:a2:ab:ea:25:fc:6a:c0:9a:f1:19:05:e7:5a:93:80:96: b7:bb:18:6d:37:70:8f:88:b5:b4:cf:64:02:bd:8c:9c:e2:e6: 22:79:02:95:33:32:b9:79:89:e3:13:e7:00:11:66:87:66:d1: 8e:56:64:b1:1f:52:43:5c:2b:b3:78:50:d4:48:53:fc:dc:c1: 02:86:8f:80:90:d7:92:5e:eb:58:ab:eb:50:cd:0a:15:b7:fd: b1:aa:13:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjQxMTIwMTkxNTIxWhcNMjQxMTI3MTkxNTIxWjAYMRYwFAYD VQQDEw02NzNlMzU0OS04NDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqUW5SSdYodvTX+kKZuzvLbxhh1s7XttqbUQoTSottY0R5EVghdidMAleP5D yCAe0b+IPa5lYtwBC4YY/jMufkDta1sLRpCv7cajldR0Yk2SEp3JyQVtqe/gkgYT N4upTGxftM9t6wY7b4B4Sxf9itfe8zqZUzrnkMu1D8fNS0X3Ekmkg5lFfp1XY+8O 9LDP2SjyNHHsUnIAc9en/RjvL5F8m81PdYuYfeve/Jfy3IlQESJ3lX7C5Lw3mZBO zilMTMVJrFpf9dXyQx1UuU5cWjfLc4517Ik6Ri+efsfkendxrj77HDi18g9MrGuL avZj0B7W0PB/CPYlIZRb98HqmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKVmRh6 BkPZWkUDnk5Um2w0yEzqMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVEQy80NjEyRDUxRTQzMTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4 MjQxX1JNYnh6UlBuUEM4akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJGPHM+ZpUJ2f3KfQ1RJ4NwN60Tqt6AomRBsyoQytvVxePSGnQeHsG U1a/juEL4VsyYv893OyR8pD4m38KFOPEZ3G3nQvKT9WL52rfE/KzkTK1pciWCKFx 4bwSarLiYo9qByCJw3y2ZNhCUi8xRN/rN4y4iNYhRz+W6FWOLYMJlvGC+INDsOCY 2b37aHBjFm9GNc38fzwlica1nx1dMNYxrsoxtqKr6iX8asCa8RkF51qTgJa3uxht N3CPiLW0z2QCvYyc4uYieQKVMzK5eYnjE+cAEWaHZtGOVmSxH1JDXCuzeFDUSFP8 3MECho+AkNeSXutYq+tQzQoVt/2xqhM9 -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:46 2024 by rpki-client on console-ams.rpki-client.org