$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft File: 52j8yLln1vHIgeDUmgxCCN8H-zc.mft (raw, json) Hash identifier: zLK3oy34sSuD/w5R8F7txzSPRvAi13thoM/kzVStEn0= Subject key identifier: 75:3F:05:D7:8A:9A:9E:3E:91:4B:7D:8B:35:BB:21:08:CC:3D:39:65 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 02F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft Manifest number: 02F5 Signing time: Sat 23 Nov 2024 00:49:51 +0000 Manifest this update: Sat 23 Nov 2024 00:49:50 +0000 Manifest next update: Sat 30 Nov 2024 00:49:50 +0000 Files and hashes: 1: 52j8yLln1vHIgeDUmgxCCN8H-zc.crl (hash: 4g4VJpUdYuvBe7XsrnbxK7O/xA2tUGC72TlBkjLBf34=) 2: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (hash: 5BdvtyqqCFdaLTfK1ujZ27yguBshaWXCsOYoIJ+LAOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Nov 23 00:49:50 2024 GMT Not After : Nov 30 00:49:50 2024 GMT Subject: CN=674126ae-16ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:5d:59:9e:5c:4d:37:99:5e:3e:f0:f1:38: 18:b1:91:0e:98:47:89:ca:4b:54:14:ac:59:32:01: 8f:06:3d:24:87:8d:cd:cd:3b:01:2e:80:17:2d:34: f9:f3:a1:d1:24:f2:ef:b2:af:55:5e:3a:3a:af:2c: 2b:e1:6a:9d:23:e8:13:b0:ea:b1:2b:7a:96:ca:f4: a5:14:47:b9:aa:52:f0:d5:fd:15:30:04:14:1d:eb: 32:a4:97:ad:90:79:72:a8:32:f8:88:a9:f3:c2:91: 2d:45:c9:b4:91:bf:cd:08:ee:11:43:a5:51:7c:a7: 3f:f7:ba:fd:50:3a:cb:7d:42:b0:54:6c:52:70:12: b5:c6:65:2a:ae:a5:9e:12:26:39:25:bd:3d:df:89: 1e:17:55:c8:84:64:a6:d8:00:ff:ae:c7:c2:12:6f: 31:59:a6:44:3b:42:25:1b:77:8d:9c:53:ae:2d:76: b2:0f:c8:a6:86:77:d7:04:36:ce:eb:61:ad:7a:f6: e2:88:30:40:a5:20:cb:d7:a9:5f:a5:a2:68:4e:0d: 22:aa:5d:fb:aa:d7:32:8f:91:e8:7d:b4:8a:29:e0: e1:07:35:26:9d:40:1c:c4:9d:ba:70:8b:0c:8f:7c: 3e:e3:b6:81:bf:5d:e7:7c:df:f5:e3:47:50:3a:74: 8c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:3F:05:D7:8A:9A:9E:3E:91:4B:7D:8B:35:BB:21:08:CC:3D:39:65 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:c5:e3:01:cb:8f:92:4b:0f:e3:fa:22:35:f8:b8:7b:35:c1: 62:37:a0:78:6c:46:af:36:f8:b6:01:ad:5c:a8:14:b4:23:3d: 25:cd:8d:12:02:c2:83:f7:ae:bf:fc:be:68:b9:6d:b8:dc:33: 52:28:7b:32:67:f6:d2:49:df:f9:20:df:be:36:40:fd:b1:5e: eb:5b:bc:db:ce:e5:ee:da:1e:b3:81:e8:d6:8e:5b:ef:02:ef: 04:75:8f:22:6d:aa:49:40:de:ae:7f:e7:15:b2:c3:0a:ad:eb: 6d:ac:46:15:f9:7e:70:db:b5:33:f0:1a:da:c4:c1:99:4f:99: 37:1b:1f:17:3d:4c:b0:a4:b8:2f:b1:b5:6e:35:8a:f1:da:ec: 93:f3:61:6f:ff:fe:62:61:61:69:b4:57:c6:8c:f2:15:a5:a5: d6:38:03:ed:9c:5b:bd:ae:66:99:31:d2:44:5e:75:09:b1:e4: c7:15:d7:21:a0:ee:d3:2d:d1:7d:86:84:87:76:e2:b7:6f:9c: 24:d6:4d:db:47:92:40:4f:bb:0b:22:cd:4a:33:6c:9d:a7:d9: 00:07:47:73:ee:94:7d:ff:1b:71:da:8b:74:8c:98:b9:59:99: ac:41:c2:8e:6a:cf:2e:ee:e2:0d:5e:1b:3d:f9:5f:13:6d:d2: 32:2f:6e:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjQxMTIzMDA0OTUwWhcNMjQxMTMwMDA0OTUwWjAYMRYwFAYD VQQDEw02NzQxMjZhZS0xNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL1dWZ5cTTeZXj7w8TgYsZEOmEeJyktUFKxZMgGPBj0kh43NzTsBLoAXLTT5 86HRJPLvsq9VXjo6rywr4WqdI+gTsOqxK3qWyvSlFEe5qlLw1f0VMAQUHesypJet kHlyqDL4iKnzwpEtRcm0kb/NCO4RQ6VRfKc/97r9UDrLfUKwVGxScBK1xmUqrqWe EiY5Jb0934keF1XIhGSm2AD/rsfCEm8xWaZEO0IlG3eNnFOuLXayD8imhnfXBDbO 62GtevbiiDBApSDL16lfpaJoTg0iql37qtcyj5HofbSKKeDhBzUmnUAcxJ26cIsM j3w+47aBv13nfN/140dQOnSM/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHU/BdeK mp4+kUt9izW7IQjMPTllMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzFBRS81OEQ5OTJERUI2NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2 SElnZURVbWd4Q0NOOEgtemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsxeMBy4+SSw/j+iI1+Lh7NcFiN6B4bEavNvi2Aa1cqBS0Iz0lzY0S AsKD966//L5ouW243DNSKHsyZ/bSSd/5IN++NkD9sV7rW7zbzuXu2h6zgejWjlvv Au8EdY8ibapJQN6uf+cVssMKrettrEYV+X5w27Uz8BraxMGZT5k3Gx8XPUywpLgv sbVuNYrx2uyT82Fv//5iYWFptFfGjPIVpaXWOAPtnFu9rmaZMdJEXnUJseTHFdch oO7TLdF9hoSHduK3b5wk1k3bR5JAT7sLIs1KM2ydp9kAB0dz7pR9/xtx2ot0jJi5 WZmsQcKOas8u7uINXhs9+V8TbdIyL27Y -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org