$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft File: 2iwTK47FBxr425BJG63bwPCntEU.mft (raw, json) Hash identifier: rptYi6xe0slTP8rHpl7r+BziQh/K+m3s8KMdz9WkD5E= Subject key identifier: 60:4C:F7:5F:D3:08:31:1F:8D:DB:06:FB:A3:20:E3:7D:7B:C4:3E:E1 Authority key identifier: DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 Certificate issuer: /CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft Manifest number: 0229 Signing time: Thu 21 Nov 2024 01:28:38 +0000 Manifest this update: Thu 21 Nov 2024 01:28:38 +0000 Manifest next update: Thu 28 Nov 2024 01:28:38 +0000 Files and hashes: 1: 2iwTK47FBxr425BJG63bwPCntEU.crl (hash: Yd2oJtIXWxJk5yOe/6aKRFxGuqLCuKa+OZFpZaPRlK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8/serialNumber=DA2C132B8EC5071AF8DB90491BADDBC0F0A7B445 Validity Not Before: Nov 21 01:28:38 2024 GMT Not After : Nov 28 01:28:38 2024 GMT Subject: CN=673e8cc6-222a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:eb:5c:4b:98:10:c6:13:21:97:2e:af:6f:74: e7:8d:f0:e0:69:4d:e6:22:40:a6:4f:7d:e8:3a:4f: 5b:f2:6f:44:b0:1d:d0:e8:d7:00:d6:01:dd:ec:dc: 3b:e9:04:32:da:07:62:43:25:c3:bd:c1:60:7e:29: 72:9f:35:5d:89:7b:b6:47:de:ca:c8:e6:63:0b:6b: c7:af:e1:e8:d8:85:b1:a2:e9:69:e8:9a:3a:76:82: 62:25:f9:2a:9a:a2:fd:b6:a2:ff:69:90:3a:92:c6: 66:9e:00:63:42:3a:b0:0a:19:d0:9d:c3:fb:18:08: f2:5e:aa:50:ca:8c:c6:a5:56:8f:f5:b6:09:39:0c: a1:07:1d:73:15:84:51:a7:1d:1c:fb:7a:25:0e:21: e0:58:0d:b2:f7:f7:66:6e:c4:3e:3d:fe:db:b0:94: b8:d3:b8:26:aa:84:62:4e:a9:27:1f:27:0c:95:51: e9:55:fd:3c:dc:ad:96:38:62:17:f2:3c:20:71:79: dd:32:b1:e3:5f:3b:ec:6f:71:ca:55:f7:d9:10:8d: 4c:15:e5:74:df:0d:65:13:de:cc:5b:bf:d5:3b:51: 69:fd:8e:86:ca:af:2e:d6:d7:63:67:0f:c9:bd:df: d7:14:af:48:46:52:9e:ea:6e:17:ae:d2:c9:b3:e1: 7b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:4C:F7:5F:D3:08:31:1F:8D:DB:06:FB:A3:20:E3:7D:7B:C4:3E:E1 X509v3 Authority Key Identifier: keyid:DA:2C:13:2B:8E:C5:07:1A:F8:DB:90:49:1B:AD:DB:C0:F0:A7:B4:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/2iwTK47FBxr425BJG63bwPCntEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9665997E094411ED8DD10971C4F9AE02/2iwTK47FBxr425BJG63bwPCntEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:0b:32:cd:77:cd:7c:7c:e1:62:d0:01:8d:d8:e0:d5:d9:fa: 2a:4b:13:b3:d0:e2:4c:50:f8:b3:11:ea:d8:d3:99:65:70:07: f4:a8:79:fd:56:74:33:65:99:bf:e6:f3:38:0d:43:d5:32:c5: b3:2e:fc:d5:e7:24:35:92:01:73:05:d5:ef:8c:4e:76:a7:e0: c8:e3:83:ac:bd:7f:87:b7:3f:24:a3:5a:c6:2e:9e:98:1a:fb: e4:a5:0a:2d:2c:1b:6b:49:be:87:49:00:f8:68:e2:76:31:d1: 30:f2:77:cc:09:31:2f:9d:f0:c8:bd:52:47:8d:e9:38:1c:1d: 6e:e9:28:df:19:7f:a2:45:e8:cd:88:82:0a:d1:32:87:c8:2b: 6f:9c:53:ec:c1:59:60:47:12:00:a4:ab:a3:b7:9e:8a:d9:c0: 41:10:3b:44:61:ce:7b:97:1c:b5:07:e9:cb:0d:8f:fb:ba:ea: f6:ba:40:04:86:78:e9:e9:d9:54:79:e8:4a:07:9c:21:97:c3: fb:d2:d5:89:c5:2d:bc:de:73:8f:b5:37:95:7c:11:61:7d:ae: 0d:ce:21:ca:27:85:6c:6c:9a:7b:60:af:0e:18:55:3b:d2:04: 82:bb:1f:ec:3e:16:83:3c:cd:dd:18:c8:fb:0d:6e:c9:32:2e: 57:3d:d4:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERBMkMxMzJCOEVDNTA3MUFGOERCOTA0OTFCQUREQkMw RjBBN0I0NDUwHhcNMjQxMTIxMDEyODM4WhcNMjQxMTI4MDEyODM4WjAYMRYwFAYD VQQDEw02NzNlOGNjNi0yMjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsetcS5gQxhMhly6vb3TnjfDgaU3mIkCmT33oOk9b8m9EsB3Q6NcA1gHd7Nw7 6QQy2gdiQyXDvcFgfilynzVdiXu2R97KyOZjC2vHr+Ho2IWxoulp6Jo6doJiJfkq mqL9tqL/aZA6ksZmngBjQjqwChnQncP7GAjyXqpQyozGpVaP9bYJOQyhBx1zFYRR px0c+3olDiHgWA2y9/dmbsQ+Pf7bsJS407gmqoRiTqknHycMlVHpVf083K2WOGIX 8jwgcXndMrHjXzvsb3HKVffZEI1MFeV03w1lE97MW7/VO1Fp/Y6Gyq8u1tdjZw/J vd/XFK9IRlKe6m4XrtLJs+F7DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBM91/T CDEfjdsG+6Mg4317xD7hMB8GA1UdIwQYMBaAFNosEyuOxQca+NuQSRut28Dwp7RF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85NjY1OTk3RTA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4cjQyNUJKRzYzYndQQ250 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzJpd1RLNDdGQnhyNDI1QkpHNjNid1BDbnRFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85NjY1OTk3RTA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8yaXdUSzQ3RkJ4 cjQyNUJKRzYzYndQQ250RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfCzLNd818fOFi0AGN2ODV2foqSxOz0OJMUPizEerY05llcAf0qHn9 VnQzZZm/5vM4DUPVMsWzLvzV5yQ1kgFzBdXvjE52p+DI44OsvX+Htz8ko1rGLp6Y GvvkpQotLBtrSb6HSQD4aOJ2MdEw8nfMCTEvnfDIvVJHjek4HB1u6SjfGX+iRejN iIIK0TKHyCtvnFPswVlgRxIApKujt56K2cBBEDtEYc57lxy1B+nLDY/7uur2ukAE hnjp6dlUeehKB5whl8P70tWJxS283nOPtTeVfBFhfa4NziHKJ4VsbJp7YK8OGFU7 0gSCux/sPhaDPM3dGMj7DW7JMi5XPdQM -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org