$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: UAF62hSlhp8+dozTCPVyKlqBOOFgkSLJiGqSrFzQP4w= Subject key identifier: C7:30:B1:DD:3E:FF:83:52:3B:5C:1D:97:3F:1A:88:DA:2D:61:32:FE Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: 0107 Signing time: Sat 23 Nov 2024 03:16:37 +0000 Manifest this update: Sat 23 Nov 2024 03:16:37 +0000 Manifest next update: Sat 30 Nov 2024 03:16:37 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: mXUJkJFVHFAfRd2ogKG5tzdQY7Qe/fWz3q9P/dyn5p0=) 2: B507E28636AE11EE9BDDAA12C4F9AE02.roa (hash: LQnT0n54JtR5WUGs5n+Hhel2WSNhxHkIPTdvb8vps5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: Nov 23 03:16:37 2024 GMT Not After : Nov 30 03:16:37 2024 GMT Subject: CN=67414915-d2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ff:6a:c9:af:93:24:36:eb:1d:c6:04:14:22: 63:56:5a:33:51:6a:ae:66:94:1e:1f:e0:30:52:84: 72:e6:8d:25:b1:19:fc:91:d0:ee:8a:95:86:fe:3e: 1d:1a:e5:4d:3a:5e:3e:e8:24:07:7f:1c:1b:d0:3a: 82:32:c3:ca:b5:9e:ef:2e:05:00:4f:05:be:3c:6c: 82:e9:8c:03:ec:c7:b2:e5:1a:09:00:8d:8a:a1:84: bd:95:c5:cd:e2:11:f2:54:32:53:8c:a8:51:f9:b8: 4b:f9:13:0c:3f:1b:c1:d2:0a:ce:4c:d5:39:d2:3c: 23:ce:fb:4c:73:d9:00:24:50:07:67:a9:9c:a0:86: 9e:90:eb:f3:cf:ea:fa:10:39:09:c5:0d:f6:a5:25: 03:c2:0a:e1:f2:ae:fd:3d:8f:f5:69:e0:8e:cf:c9: 56:96:55:42:61:0a:7d:c3:15:32:97:eb:37:6f:81: 7b:62:b2:bf:c7:e8:5a:80:38:5f:f2:46:2f:aa:23: 5c:b7:e1:a7:d9:66:5a:e3:4f:a0:d4:06:9c:51:f6: a8:90:92:21:34:7c:49:e1:2e:c5:54:8f:62:20:11: 98:54:a4:09:a1:4f:3e:65:e5:17:71:34:fb:77:b4: 1a:bd:af:e4:aa:c6:ee:49:a0:66:76:5a:bd:37:ca: c2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:30:B1:DD:3E:FF:83:52:3B:5C:1D:97:3F:1A:88:DA:2D:61:32:FE X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d0:62:06:6a:6b:a8:80:b3:d5:c6:a0:73:34:62:a5:06:63: b4:40:8f:c6:07:12:22:49:5d:1d:af:6b:ba:be:27:9a:8d:0e: 0b:55:c8:35:fe:4d:7b:35:30:c6:98:f9:09:e6:16:06:85:02: 68:cc:2e:5d:b8:22:1a:ed:98:59:84:8c:15:c8:00:56:70:26: 8d:33:f4:76:06:54:7c:21:97:e8:e8:08:e8:d9:10:0d:71:8c: 8c:c5:cf:9d:65:b4:ca:92:7f:40:9a:c7:e7:b9:ee:8a:84:5d: fb:44:a6:46:61:55:48:33:f7:a5:f6:c6:47:08:ac:31:65:c0: 8a:06:f9:b8:fb:47:cc:83:70:a7:f9:69:a0:b6:93:45:32:fa: b6:40:96:f2:22:da:c6:c9:57:f5:65:50:18:5e:fd:bd:53:9f: a1:92:db:ae:e8:4d:11:60:0a:ad:74:5c:4c:4f:6a:1c:b0:1f: d6:95:dc:b8:59:27:95:d5:82:33:19:2f:42:6e:51:c0:4c:f5: 96:03:d8:53:6f:c7:40:32:02:c0:38:cd:70:dc:d7:d6:80:e0: fd:94:3d:00:40:ff:c6:37:31:34:73:ad:8a:bc:42:4f:1f:73: f9:40:16:ea:05:aa:08:26:dc:b4:9a:e7:10:4b:a3:37:02:6f: 49:a3:19:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjQxMTIzMDMxNjM3WhcNMjQxMTMwMDMxNjM3WjAYMRYwFAYD VQQDEw02NzQxNDkxNS1kMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqP9qya+TJDbrHcYEFCJjVlozUWquZpQeH+AwUoRy5o0lsRn8kdDuipWG/j4d GuVNOl4+6CQHfxwb0DqCMsPKtZ7vLgUATwW+PGyC6YwD7Mey5RoJAI2KoYS9lcXN 4hHyVDJTjKhR+bhL+RMMPxvB0grOTNU50jwjzvtMc9kAJFAHZ6mcoIaekOvzz+r6 EDkJxQ32pSUDwgrh8q79PY/1aeCOz8lWllVCYQp9wxUyl+s3b4F7YrK/x+hagDhf 8kYvqiNct+Gn2WZa40+g1AacUfaokJIhNHxJ4S7FVI9iIBGYVKQJoU8+ZeUXcTT7 d7Qava/kqsbuSaBmdlq9N8rCVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcwsd0+ /4NSO1wdlz8aiNotYTL+MB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD0GIGamuogLPVxqBzNGKlBmO0QI/GBxIiSV0dr2u6vieajQ4LVcg1 /k17NTDGmPkJ5hYGhQJozC5duCIa7ZhZhIwVyABWcCaNM/R2BlR8IZfo6Ajo2RAN cYyMxc+dZbTKkn9Amsfnue6KhF37RKZGYVVIM/el9sZHCKwxZcCKBvm4+0fMg3Cn +WmgtpNFMvq2QJbyItrGyVf1ZVAYXv29U5+hktuu6E0RYAqtdFxMT2ocsB/Wldy4 WSeV1YIzGS9CblHATPWWA9hTb8dAMgLAOM1w3NfWgOD9lD0AQP/GNzE0c62KvEJP H3P5QBbqBaoIJty0mucQS6M3Am9JoxnQ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org