$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: FNnnwvUEAp12UtSAXdjwWLSEwT9oGUZobfFU22CHklk= Subject key identifier: 2D:2D:89:C2:2E:64:4C:67:ED:AA:09:AA:C5:C3:8F:9E:DF:28:CD:F5 Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 0230 Signing time: Thu 21 Nov 2024 01:28:41 +0000 Manifest this update: Thu 21 Nov 2024 01:28:40 +0000 Manifest next update: Thu 28 Nov 2024 01:28:40 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: nlF1Mf6yGrShLAUnrBkkx8tT4pWobyKB1kXptRlQCj4=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: u+f2WuZi/RfejSsKb+UJ5iop6uONOfiC5gYEcHsbs6w=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: YDAiAdPjFYhBL5YjXoGqzzo8vheOfOc5VPFiiANGCJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Nov 21 01:28:40 2024 GMT Not After : Nov 28 01:28:40 2024 GMT Subject: CN=673e8cc8-b588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:69:b8:7d:54:03:dc:c8:75:4a:f1:4b:17:25: 78:5a:5d:be:ba:ce:31:9c:d0:2d:43:61:97:9f:57: 46:23:d1:d9:d7:4c:df:87:97:bf:e2:c5:cb:b9:eb: fd:14:3b:6a:1c:fd:93:6d:95:86:dd:2f:92:a7:86: 48:e8:3f:dc:00:27:09:df:e2:dd:26:94:24:0d:59: b9:69:99:7e:bc:68:1e:0c:3b:88:dd:84:e3:5c:b8: c0:0c:ce:c9:4e:1c:a3:68:36:1f:f7:e1:2e:2a:7e: 2d:e5:0f:c6:9e:f9:a5:74:fd:c4:50:23:39:ed:2c: 64:d1:10:d2:58:ee:6c:19:7c:42:27:76:2f:f4:b4: 53:05:e3:d9:5a:7b:2c:9b:ef:79:7a:9d:56:25:0e: 51:f9:15:3e:16:62:23:2b:a7:df:b5:76:08:8c:40: fd:29:d0:7f:40:e6:0e:50:d1:b7:92:49:ff:56:02: 7d:d6:b9:08:e3:2a:13:8a:15:33:ec:ef:36:b4:fa: ab:8f:36:e3:7a:8c:d9:1f:ce:46:3d:5b:b5:3a:64: e7:09:ea:e0:19:bc:cc:53:a9:42:84:67:43:e7:e4: 40:8e:39:d7:05:e6:18:9a:cd:2e:df:c8:c0:2c:76: e5:7b:72:46:8b:02:c9:5d:c7:03:fa:c8:df:10:91: 73:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2D:89:C2:2E:64:4C:67:ED:AA:09:AA:C5:C3:8F:9E:DF:28:CD:F5 X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:16:cb:55:4d:0e:02:23:f5:2d:22:8c:b3:af:05:0e:eb:25: 5b:61:cc:44:e9:ab:87:c5:19:22:f8:a5:fa:56:1f:94:7d:3f: eb:62:8e:e4:07:b1:cb:41:20:1a:e4:e4:9f:d7:f5:8d:07:68: 83:f3:00:b6:26:10:e6:f1:ad:92:36:65:b1:0d:bb:c8:6b:e5: e7:dc:ff:53:0c:6f:13:a5:10:b4:41:b3:b2:ce:98:47:64:46: 26:44:df:65:e2:91:f5:a8:97:2d:0f:1d:eb:2b:da:c8:df:87: 55:c0:4d:4f:a6:12:66:48:8e:7f:57:8d:38:e6:c9:07:f8:93: 88:e5:c8:84:0b:73:1d:90:c3:73:2c:4d:16:5e:4f:ef:26:73: 1d:53:de:7b:90:3e:5a:36:46:63:f7:fd:16:cc:3d:2c:fd:ec: 7c:07:41:e9:97:90:ca:0a:98:39:8d:40:06:d2:ab:a9:8c:dc: 09:67:12:e2:de:d5:10:07:c1:10:5c:3a:85:e8:f7:f4:60:54: 24:ce:8c:ac:3c:b8:20:2c:19:0b:01:10:29:d3:b2:e3:5e:fa: 19:c4:c2:a0:54:3e:c4:5a:f0:ec:bb:52:14:ec:ca:04:a5:c3: ce:01:ab:e1:f4:99:88:54:0e:11:7e:eb:b2:9d:ed:db:f1:98: aa:8b:16:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjQxMTIxMDEyODQwWhcNMjQxMTI4MDEyODQwWjAYMRYwFAYD VQQDEw02NzNlOGNjOC1iNTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Gm4fVQD3Mh1SvFLFyV4Wl2+us4xnNAtQ2GXn1dGI9HZ10zfh5e/4sXLuev9 FDtqHP2TbZWG3S+Sp4ZI6D/cACcJ3+LdJpQkDVm5aZl+vGgeDDuI3YTjXLjADM7J ThyjaDYf9+EuKn4t5Q/GnvmldP3EUCM57Sxk0RDSWO5sGXxCJ3Yv9LRTBePZWnss m+95ep1WJQ5R+RU+FmIjK6fftXYIjED9KdB/QOYOUNG3kkn/VgJ91rkI4yoTihUz 7O82tPqrjzbjeozZH85GPVu1OmTnCergGbzMU6lChGdD5+RAjjnXBeYYms0u38jA LHble3JGiwLJXccD+sjfEJFzYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0ticIu ZExn7aoJqsXDj57fKM31MB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyFstVTQ4CI/UtIoyzrwUO6yVbYcxE6auHxRki+KX6Vh+UfT/rYo7k B7HLQSAa5OSf1/WNB2iD8wC2JhDm8a2SNmWxDbvIa+Xn3P9TDG8TpRC0QbOyzphH ZEYmRN9l4pH1qJctDx3rK9rI34dVwE1PphJmSI5/V4045skH+JOI5ciEC3MdkMNz LE0WXk/vJnMdU957kD5aNkZj9/0WzD0s/ex8B0Hpl5DKCpg5jUAG0qupjNwJZxLi 3tUQB8EQXDqF6Pf0YFQkzoysPLggLBkLARAp07LjXvoZxMKgVD7EWvDsu1IU7MoE pcPOAavh9JmIVA4Rfuuyne3b8ZiqixYJ -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:37 2024 by rpki-client on console-ams.rpki-client.org