$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: 6Hc6L6ooeir7u8tJn6Sr0m2vKtYiBaXq7+vGo28Mv0Q= Subject key identifier: D8:D1:DD:84:66:58:B3:76:DD:D8:6B:88:C2:A2:06:0B:63:37:02:92 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 16AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 1F88 Signing time: Fri 22 Nov 2024 16:40:11 +0000 Manifest this update: Fri 22 Nov 2024 16:40:10 +0000 Manifest next update: Fri 29 Nov 2024 16:40:10 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: bLqdZqf7l8VPXbuRjthQ7+3xBKY6f2FdbPRMcpiID+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5807 (0x16af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Nov 22 16:40:10 2024 GMT Not After : Nov 29 16:40:10 2024 GMT Subject: CN=6740b3eb-c75a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:55:a0:1c:2b:f1:c4:f2:5c:ca:71:5f:8d:4e: c3:1a:7e:9d:f1:76:d0:cc:bb:ec:42:be:17:c8:1d: 42:27:37:c4:a0:41:3c:33:df:66:94:ae:38:50:b8: c6:27:ec:f6:8e:26:22:35:61:d3:43:b2:eb:3d:90: 23:db:6e:df:4b:bd:de:33:1c:3c:d5:38:79:f8:42: 3e:87:2e:fb:67:8c:f0:17:44:fa:dc:f5:44:13:5f: 22:0c:37:e5:ee:b9:c0:ab:d2:bd:82:11:6f:5c:53: b5:e1:8b:1c:6d:a3:4a:37:5c:4a:dd:9d:3f:da:76: 10:4a:df:08:1b:58:4a:c7:42:39:78:c3:cb:db:ed: da:4b:f3:84:0e:a5:b9:a8:f8:db:61:a7:56:a3:e5: b8:b9:8a:dc:dd:dd:d0:e5:85:c7:c5:72:eb:f3:4c: 30:ba:c4:36:2a:d5:0d:50:5a:17:bb:d6:33:5a:23: 90:39:1e:52:6a:d5:f2:c8:87:cb:88:60:2d:5f:ac: d2:cb:1b:b4:f2:41:10:17:e8:7f:79:d2:a7:61:f7: 93:cc:cc:6c:bf:4b:af:54:1b:e3:4a:f5:b1:c4:35: 71:10:df:41:94:de:64:4c:6e:04:83:b9:0e:b3:0a: a4:c3:cf:34:60:8a:e4:38:37:82:a1:ab:23:11:c2: 4e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:D1:DD:84:66:58:B3:76:DD:D8:6B:88:C2:A2:06:0B:63:37:02:92 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:fe:5c:cc:87:9b:33:e1:5e:dd:45:35:95:f4:0e:4b:01:49: d5:ef:2a:f8:1b:5d:2b:c0:af:ca:45:1b:01:a1:0a:b4:99:38: 7d:21:24:d8:2d:40:09:7d:d3:60:ca:88:70:ac:cc:b5:81:91: 41:62:4d:2d:f7:76:f4:39:e2:2c:a8:66:03:92:60:25:50:ac: 5d:56:62:04:dd:fe:8b:cc:bb:9f:50:b0:ad:8c:82:b5:47:61: 09:c9:30:62:b6:dc:11:9b:91:67:0d:a0:1c:f8:ab:17:7c:4c: 33:cf:a5:f9:ee:3a:d5:b2:60:02:26:97:d6:08:e8:96:be:c6: 42:cf:e4:3b:4a:8d:6c:20:ac:f6:b3:35:23:91:e8:0d:34:c2: 98:d1:e8:37:fd:9e:49:59:42:de:91:94:bb:37:be:60:0f:87: eb:92:ab:cf:d1:ac:3d:c9:3d:41:a9:05:61:db:83:c9:48:a9: 2b:31:de:13:25:dc:7d:00:e7:25:3a:37:fe:1f:d3:43:34:42: 84:25:92:99:3d:d1:2d:44:b1:e0:3c:f1:26:da:fc:9f:c0:c5: a8:60:df:ba:a8:75:33:ac:12:0a:6d:7b:7f:e5:d2:1a:2a:f7: 95:ed:63:c8:59:0d:93:b9:f0:ec:09:70:77:9b:c0:5c:35:30: 6e:a2:42:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjQxMTIyMTY0MDEwWhcNMjQxMTI5MTY0MDEwWjAYMRYwFAYD VQQDEw02NzQwYjNlYi1jNzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1WgHCvxxPJcynFfjU7DGn6d8XbQzLvsQr4XyB1CJzfEoEE8M99mlK44ULjG J+z2jiYiNWHTQ7LrPZAj227fS73eMxw81Th5+EI+hy77Z4zwF0T63PVEE18iDDfl 7rnAq9K9ghFvXFO14YscbaNKN1xK3Z0/2nYQSt8IG1hKx0I5eMPL2+3aS/OEDqW5 qPjbYadWo+W4uYrc3d3Q5YXHxXLr80wwusQ2KtUNUFoXu9YzWiOQOR5SatXyyIfL iGAtX6zSyxu08kEQF+h/edKnYfeTzMxsv0uvVBvjSvWxxDVxEN9BlN5kTG4Eg7kO swqkw880YIrkODeCoasjEcJOtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjR3YRm WLN23dhriMKiBgtjNwKSMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK/lzMh5sz4V7dRTWV9A5LAUnV7yr4G10rwK/KRRsBoQq0mTh9ISTY LUAJfdNgyohwrMy1gZFBYk0t93b0OeIsqGYDkmAlUKxdVmIE3f6LzLufULCtjIK1 R2EJyTBittwRm5FnDaAc+KsXfEwzz6X57jrVsmACJpfWCOiWvsZCz+Q7So1sIKz2 szUjkegNNMKY0eg3/Z5JWULekZS7N75gD4frkqvP0aw9yT1BqQVh24PJSKkrMd4T Jdx9AOclOjf+H9NDNEKEJZKZPdEtRLHgPPEm2vyfwMWoYN+6qHUzrBIKbXt/5dIa KveV7WPIWQ2TufDsCXB3m8BcNTBuokIl -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org