$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft File: 66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json) Hash identifier: ZL6hiJKiH6sAaiPn9VrAH3siwdg7XupruWXO/pqysGM= Subject key identifier: B6:0D:69:C0:F7:65:6A:3C:50:23:C8:4D:E5:0D:1B:3A:A3:4D:2E:F2 Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 Certificate issuer: /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft Manifest number: 51 Signing time: Thu 21 Nov 2024 05:18:11 +0000 Manifest this update: Thu 21 Nov 2024 05:18:11 +0000 Manifest next update: Thu 28 Nov 2024 05:18:10 +0000 Files and hashes: 1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: 3S88jMkAX9dFZk4+GiSJ/J3lVV1jTYIM3jcpfyyg9Jo=) 2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: 6SVIugHlnaJdlkKtpec/q8AF54HgJPVuchm8bN57MAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Validity Not Before: Nov 21 05:18:11 2024 GMT Not After : Nov 28 05:18:10 2024 GMT Subject: CN=673ec293-11ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:61:db:14:02:aa:4b:51:33:41:5a:e4:65:68: 65:be:ee:76:e1:5c:5d:4c:31:49:01:e5:77:a7:91: f5:13:b8:05:d1:32:fb:e7:e7:1d:b4:8b:02:7e:ab: 83:87:3a:d6:16:b2:34:b3:89:cd:7a:fa:ac:54:ae: c9:5b:02:88:11:ea:3d:94:30:a3:44:cf:1c:45:83: cb:24:a1:c2:92:cd:64:aa:dc:35:14:cc:6c:2b:d7: 43:34:01:1b:85:8c:ec:f7:d0:e4:cf:5a:04:f7:46: 2c:38:74:f8:c7:e5:5f:0e:1f:3e:7a:aa:e4:87:1d: 6a:9b:c8:14:b2:fe:c4:7f:eb:45:84:02:f7:da:b2: 26:73:45:a6:da:d8:88:be:04:a0:2c:88:a4:3a:38: 48:c4:42:05:59:fd:32:08:87:ae:36:da:be:c2:f1: 55:3e:99:12:d1:0b:62:8f:90:89:dc:6f:44:f6:62: a0:e6:2b:a6:26:87:87:a3:4d:cb:06:56:aa:95:76: 5d:d7:f4:99:53:89:e9:48:84:06:d4:59:fe:2b:eb: 2f:2d:72:66:a6:9f:1e:30:7e:2c:26:f1:99:87:c6: a8:b3:6c:f1:85:fd:85:62:75:da:06:1d:14:fb:ec: 6f:f8:fb:08:f1:ad:65:e5:f7:d4:3a:2c:68:5a:d5: 10:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0D:69:C0:F7:65:6A:3C:50:23:C8:4D:E5:0D:1B:3A:A3:4D:2E:F2 X509v3 Authority Key Identifier: keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:63:04:99:06:8c:ab:78:d6:a8:8e:de:cc:a1:b7:e6:ec:21: dd:77:a5:52:b7:69:47:6c:c0:f5:90:f0:62:ec:b2:09:c7:f0: 49:14:8a:15:b1:79:8c:2b:66:62:61:41:b0:ec:8b:c1:61:f9: b9:26:e1:4e:cc:b3:9e:8d:98:8a:5b:7f:94:57:3c:10:13:8c: a7:83:e2:ab:99:e9:9e:38:6b:f1:92:9a:ef:76:6a:1e:fb:ed: bc:d7:19:cf:88:5d:6f:98:a6:91:00:20:6b:51:cb:28:82:bc: 46:df:d0:59:56:99:f6:f1:6a:a2:be:8e:57:7b:58:9a:fd:11: 85:d7:a7:47:b9:5b:dc:36:8c:df:7b:82:f0:d2:4f:48:50:59: ee:fc:42:bf:05:8d:4e:c0:d6:a3:fb:22:fc:cb:06:57:3d:45: 29:34:a9:b8:b8:fc:8e:cc:ff:78:c6:e8:c2:b5:51:16:9c:e7: cf:c9:78:75:b6:9b:56:90:be:bb:f7:33:67:c2:e6:c4:25:35: 1d:eb:ed:72:55:32:1a:58:1d:3f:39:5c:4a:55:23:84:89:92: 45:d4:63:aa:e2:3c:12:f9:17:86:34:ec:51:78:17:d0:f9:cc: 9b:d7:a2:02:3b:a3:46:a0:ef:a2:39:a4:6c:19:be:b0:3b:a5: 2a:33:cf:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MDRENjExMC8GA1UEBRMoRUJBQTRDNDRGMjQ4OTM3MTRBMUQ1QjM2MEEyRDdCMkQ4 NjA1QjE2MzAeFw0yNDExMjEwNTE4MTFaFw0yNDExMjgwNTE4MTBaMBgxFjAUBgNV BAMTDTY3M2VjMjkzLTExYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrYdsUAqpLUTNBWuRlaGW+7nbhXF1MMUkB5XenkfUTuAXRMvvn5x20iwJ+q4OH OtYWsjSzic16+qxUrslbAogR6j2UMKNEzxxFg8skocKSzWSq3DUUzGwr10M0ARuF jOz30OTPWgT3Riw4dPjH5V8OHz56quSHHWqbyBSy/sR/60WEAvfasiZzRaba2Ii+ BKAsiKQ6OEjEQgVZ/TIIh6422r7C8VU+mRLRC2KPkIncb0T2YqDmK6Ymh4ejTcsG VqqVdl3X9JlTielIhAbUWf4r6y8tcmamnx4wfiwm8ZmHxqizbPGF/YViddoGHRT7 7G/4+wjxrWXl99Q6LGha1RBxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtg1pwPdl ajxQI8hN5Q0bOqNNLvIwHwYDVR0jBBgwFoAU66pMRPJIk3FKHVs2Ci17LYYFsWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUwNEQ2L0FEMENBQzFFMzFB OTExRUZCNkZCMUQ2MEM0RjlBRTAyLzY2cE1SUEpJazNGS0hWczJDaTE3TFlZRnNX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjZwTVJQSklrM0ZLSFZzMkNpMTdMWVlGc1dNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUw NEQ2L0FEMENBQzFFMzFBOTExRUZCNkZCMUQ2MEM0RjlBRTAyLzY2cE1SUEpJazNG S0hWczJDaTE3TFlZRnNXTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANBjBJkGjKt41qiO3syht+bsId13pVK3aUdswPWQ8GLssgnH8EkUihWx eYwrZmJhQbDsi8Fh+bkm4U7Ms56NmIpbf5RXPBATjKeD4quZ6Z44a/GSmu92ah77 7bzXGc+IXW+YppEAIGtRyyiCvEbf0FlWmfbxaqK+jld7WJr9EYXXp0e5W9w2jN97 gvDST0hQWe78Qr8FjU7A1qP7IvzLBlc9RSk0qbi4/I7M/3jG6MK1URac58/JeHW2 m1aQvrv3M2fC5sQlNR3r7XJVMhpYHT85XEpVI4SJkkXUY6riPBL5F4Y07FF4F9D5 zJvXogI7o0ag76I5pGwZvrA7pSozzzc= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org