$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: uFmH0NpXR9QRY5xflz2AP/t4FD9eyy9dJDWRlr2aBDQ= Subject key identifier: CD:0F:4C:2C:D4:FE:E4:6D:8A:FC:E1:38:86:48:F2:D0:61:13:9D:52 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0637 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 060C Signing time: Wed 20 Nov 2024 22:22:22 +0000 Manifest this update: Wed 20 Nov 2024 22:22:21 +0000 Manifest next update: Wed 27 Nov 2024 22:22:21 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: Dos5CxO4TKLL8c6e0n2SYSnBBRlJEhU7zDD4Jaqkm4s=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1591 (0x637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Nov 20 22:22:21 2024 GMT Not After : Nov 27 22:22:21 2024 GMT Subject: CN=673e611d-e263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:91:6e:3d:49:3a:e6:01:08:61:ad:f3:4a:72: a7:93:e8:67:5a:fe:38:1a:18:bd:44:87:52:13:cd: fb:7a:c3:d4:e0:ff:75:92:04:61:ea:c6:6e:e4:99: 74:d8:7d:70:f6:4a:20:7d:c9:d3:dc:7a:a0:5e:cf: a6:dc:5e:c7:12:eb:63:27:64:5c:0a:c0:f5:98:38: ca:ba:a8:59:0f:c1:c0:9c:98:bc:f6:eb:fb:cc:92: 70:24:59:dd:ea:97:ab:43:f5:76:98:f0:a8:61:5e: 4c:ad:ef:d8:70:53:ce:4b:58:d5:72:64:b4:de:72: cc:6e:93:c9:89:07:2a:da:94:1e:93:e0:a6:95:84: 42:f9:9c:a8:13:61:97:c0:d9:06:12:86:ac:05:04: e3:82:c5:aa:85:6b:71:89:50:ad:f2:b4:90:f2:91: 26:dc:96:05:a2:10:f7:17:f6:9d:cc:a6:80:a4:96: 4a:be:8c:56:94:71:d5:92:7c:13:29:6e:18:71:a9: 9d:e5:f3:86:79:ba:fc:0b:dd:76:08:0f:75:2f:7e: 16:e9:06:03:95:42:25:7e:7d:46:1f:4f:0f:c2:69: 38:83:a4:48:23:ab:d0:0d:de:c7:9a:77:e5:82:ef: 9d:6e:85:e4:0a:e7:5a:c6:19:87:d0:d9:7d:e0:29: 6b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:0F:4C:2C:D4:FE:E4:6D:8A:FC:E1:38:86:48:F2:D0:61:13:9D:52 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:3a:e6:dc:ab:cf:f5:d0:4b:c6:95:16:75:99:ee:16:8d:25: e1:6e:1a:3f:3e:77:f9:0d:b4:b4:81:55:40:16:72:47:3a:45: ea:27:b5:b5:41:93:0c:6d:8c:f8:fc:31:b8:8e:95:32:62:f4: 43:d6:b4:57:02:f0:90:b8:cf:8b:a7:03:09:bd:9b:8b:1f:68: bf:f3:fa:18:c0:b7:d5:78:09:a7:49:3a:b3:03:5b:f2:35:5d: 03:c0:8c:78:ec:11:eb:2e:39:32:cd:c6:ec:1b:22:c6:6e:97: a3:f0:fb:d4:ee:0b:92:c3:c6:c9:c8:8a:fd:28:c4:cf:23:e0: d0:8b:13:fe:95:23:69:63:84:5d:f5:03:0e:81:00:a3:dc:85: 06:bd:b7:64:df:f6:ff:2a:22:33:5c:c5:1e:32:cc:9e:24:3e: ca:70:c8:37:8d:f5:1c:b6:00:9d:8e:23:d3:cd:93:bf:a5:9d: b4:0d:a7:61:fa:33:d8:ec:b6:ca:23:42:00:ce:29:8a:39:7f: fb:29:8e:e0:50:e8:28:f5:ba:09:18:00:6d:82:fb:7d:35:53: 48:b5:2a:44:fb:b2:74:74:31:82:06:86:8c:11:d1:0d:16:ef: 1f:2a:27:03:72:4a:08:dd:fb:21:61:20:85:87:bf:f5:36:22: c2:fc:a4:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQxMTIwMjIyMjIxWhcNMjQxMTI3MjIyMjIxWjAYMRYwFAYD VQQDEw02NzNlNjExZC1lMjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5FuPUk65gEIYa3zSnKnk+hnWv44Ghi9RIdSE837esPU4P91kgRh6sZu5Jl0 2H1w9kogfcnT3HqgXs+m3F7HEutjJ2RcCsD1mDjKuqhZD8HAnJi89uv7zJJwJFnd 6perQ/V2mPCoYV5Mre/YcFPOS1jVcmS03nLMbpPJiQcq2pQek+CmlYRC+ZyoE2GX wNkGEoasBQTjgsWqhWtxiVCt8rSQ8pEm3JYFohD3F/adzKaApJZKvoxWlHHVknwT KW4Ycamd5fOGebr8C912CA91L34W6QYDlUIlfn1GH08Pwmk4g6RII6vQDd7Hmnfl gu+dboXkCudaxhmH0Nl94ClrCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0PTCzU /uRtivzhOIZI8tBhE51SMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYOubcq8/10EvGlRZ1me4WjSXhbho/Pnf5DbS0gVVAFnJHOkXqJ7W1 QZMMbYz4/DG4jpUyYvRD1rRXAvCQuM+LpwMJvZuLH2i/8/oYwLfVeAmnSTqzA1vy NV0DwIx47BHrLjkyzcbsGyLGbpej8PvU7guSw8bJyIr9KMTPI+DQixP+lSNpY4Rd 9QMOgQCj3IUGvbdk3/b/KiIzXMUeMsyeJD7KcMg3jfUctgCdjiPTzZO/pZ20Dadh +jPY7LbKI0IAzimKOX/7KY7gUOgo9boJGABtgvt9NVNItSpE+7J0dDGCBoaMEdEN Fu8fKicDckoI3fshYSCFh7/1NiLC/KQ8 -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:38 2024 by rpki-client on console-ams.rpki-client.org