$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft File: 526yVsD8sH4pB5eDQ-mtndIf4gY.mft (raw, json) Hash identifier: 0zC6x8kC6ax4ES8DCAlyJVH5/QLF5w992Bt3oIdQ0nU= Subject key identifier: F2:E0:AB:09:AD:1F:7D:6C:E0:85:24:53:5F:16:5E:CF:F1:B5:9B:C8 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 3730 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft Manifest number: 3591 Signing time: Fri 22 Nov 2024 14:30:05 +0000 Manifest this update: Fri 22 Nov 2024 14:30:04 +0000 Manifest next update: Fri 29 Nov 2024 14:30:04 +0000 Files and hashes: 1: 526yVsD8sH4pB5eDQ-mtndIf4gY.crl (hash: YJKhW+GutpfL5PVGp5z6P2bLcqbRKNESp7xliXsl4CQ=) 2: 07589CCAC7E911EAB8670A2EC4F9AE02.roa (hash: CsyiwNQnybdoYElC2ssVXTuKar+TIRapRy4w8ZS/j1k=) 3: 2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa (hash: 8MCpRJoVltVeERBQ0ugdqfN0oewrw0+O6EZ3go6tPiI=) 4: E01731A04A0511EFBE524A77C4F9AE02.roa (hash: My0/UiFjxJ5iFi2dWzSgwC6JgUQ29f8kWPD7qFhwGzE=) 5: F6296404F82F11EEA21E8113C4F9AE02.roa (hash: UG+h1sICZ9vF3OGLGpKSPylE4KzmceigyDrwLTRT10s=) 6: 2C21DAECFBFE11EEAB5B287BC4F9AE02.roa (hash: GHA0hxX3L+HKFJgRF1hNsE8VZizVreTbn5y/sQWalxQ=) 7: 5C696C684ABB11EFB64F1B36C4F9AE02.roa (hash: WFRTP7bzWeDnSHdUjuXa9Fy5r44ua3wCOU6T8RP4HCU=) 8: 6B9538F223DD11EF81EBB933C4F9AE02.roa (hash: FFMixOt8zSya0QiYDD4ISSfr+6GdtUIShA483xXfbt8=) 9: F6B391344A5E11EFACCE904BC4F9AE02.roa (hash: TAEXNpsFgFymZNOWWtR5PiBd2DD7P/RivXugfvoVJ8A=) 10: 7FFC5A98825E11EFBFE61870C4F9AE02.roa (hash: hDyS1X9LacpKryFKXL3RerGeIpbOmnxJxXDscNNrbrQ=) 11: 9EA1CDAAFBF611EEAEFDCB0CC4F9AE02.roa (hash: WbjpGsgTud6h7iZInFe6b7Lmc5DkYF0gWbEHJ1y5tyo=) 12: B8F80AE47A7111EFB66E5A5EC4F9AE02.roa (hash: VDpN4DoUtPnfTef8R2ODQ/G7pXeEBHoqxiWlvGucgwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14128 (0x3730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Nov 22 14:30:04 2024 GMT Not After : Nov 29 14:30:04 2024 GMT Subject: CN=6740956d-4840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:21:8e:63:61:60:26:0d:a9:6d:fb:f7:9f: d1:09:14:ae:96:39:3d:a1:47:ca:fc:a1:d4:19:af: e3:53:6b:eb:66:15:ea:e9:4c:67:8c:6d:89:90:ba: 81:84:3b:75:f1:81:73:7d:80:84:22:a9:52:ce:59: 52:55:30:07:f6:3d:97:09:6a:41:fc:73:01:98:93: b6:07:bb:4b:c3:5d:89:09:a3:d0:71:60:f5:5d:81: 83:91:04:e6:bd:d2:ad:0a:3b:f7:18:9f:ab:ce:0b: 54:f9:08:6f:52:3d:f2:ed:6f:a6:23:f6:a8:81:25: c4:e8:11:ce:0e:bc:4a:8c:d7:61:5e:f8:9a:66:8d: e8:14:2f:94:d5:e0:81:b1:08:73:8d:6f:ec:b0:cc: 63:ed:1e:c0:e2:d2:5e:37:ca:cf:d6:aa:7b:73:04: 92:03:1b:86:d8:7c:14:ba:ae:1b:c8:03:78:db:e4: a3:e1:3e:bb:e1:aa:a4:83:48:dd:1a:1c:b7:cd:66: 67:a3:8b:81:72:31:67:d1:cd:a8:7a:a9:18:e6:2d: dc:3f:ac:d9:b0:5c:09:df:1d:64:3a:77:1f:f4:a5: 03:fb:19:46:92:0a:88:f8:94:31:fb:25:8c:af:fe: 20:46:d2:1a:f2:82:94:af:e2:b5:5a:21:82:13:c7: 08:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E0:AB:09:AD:1F:7D:6C:E0:85:24:53:5F:16:5E:CF:F1:B5:9B:C8 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:20:bc:de:f7:53:e6:d4:21:36:26:a0:10:12:05:a1:d2:34: 08:69:90:1d:6d:1b:e4:4b:55:07:95:cb:cd:86:1f:73:8f:a9: 71:e4:06:b4:12:b0:3f:31:63:cc:d7:8e:85:93:1d:27:4a:25: 30:69:73:32:b9:90:12:ef:7d:6f:34:53:27:39:f2:a8:2f:2b: f8:5e:40:19:59:6e:87:54:71:7c:5f:4e:32:fc:be:19:ea:19: ca:4c:6b:cf:e8:df:c6:52:07:6f:5f:d5:f8:73:bd:2e:c5:9b: 4f:7f:e6:67:e9:d8:00:45:21:6f:93:92:04:05:79:e7:6a:ba: f6:6a:99:f4:9c:49:55:26:4d:34:14:4a:a2:ea:dd:02:d7:f9: 1c:97:35:d9:ca:b3:43:66:c5:ab:33:02:fc:94:12:60:c2:b4: e3:eb:83:c2:fc:ff:c3:3f:e7:a3:47:fe:a9:ef:3b:d4:75:40: 68:e9:15:6d:0a:12:a7:6e:52:e5:18:72:7d:ec:9c:0c:d1:59: ef:82:bf:2b:be:4e:0c:9c:fc:0d:b0:23:39:b8:57:e8:ed:13: 8d:e3:6c:57:13:87:33:4f:65:ca:3b:18:40:f7:54:64:e8:80: 38:30:c2:65:1d:12:6a:47:c8:cd:12:0a:12:ca:90:a7:37:89: 63:23:48:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjQxMTIyMTQzMDA0WhcNMjQxMTI5MTQzMDA0WjAYMRYwFAYD VQQDEw02NzQwOTU2ZC00ODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXwhjmNhYCYNqW3795/RCRSuljk9oUfK/KHUGa/jU2vrZhXq6UxnjG2JkLqB hDt18YFzfYCEIqlSzllSVTAH9j2XCWpB/HMBmJO2B7tLw12JCaPQcWD1XYGDkQTm vdKtCjv3GJ+rzgtU+QhvUj3y7W+mI/aogSXE6BHODrxKjNdhXviaZo3oFC+U1eCB sQhzjW/ssMxj7R7A4tJeN8rP1qp7cwSSAxuG2HwUuq4byAN42+Sj4T674aqkg0jd Ghy3zWZno4uBcjFn0c2oeqkY5i3cP6zZsFwJ3x1kOncf9KUD+xlGkgqI+JQx+yWM r/4gRtIa8oKUr+K1WiGCE8cI7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLgqwmt H31s4IUkU18WXs/xtZvIMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzgzQi9FNEUxMEI0QTFEODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNI NHBCNWVEUS1tdG5kSWY0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARILze91Pm1CE2JqAQEgWh0jQIaZAdbRvkS1UHlcvNhh9zj6lx5Aa0 ErA/MWPM146Fkx0nSiUwaXMyuZAS731vNFMnOfKoLyv4XkAZWW6HVHF8X04y/L4Z 6hnKTGvP6N/GUgdvX9X4c70uxZtPf+Zn6dgARSFvk5IEBXnnarr2apn0nElVJk00 FEqi6t0C1/kclzXZyrNDZsWrMwL8lBJgwrTj64PC/P/DP+ejR/6p7zvUdUBo6RVt ChKnblLlGHJ97JwM0Vnvgr8rvk4MnPwNsCM5uFfo7RON42xXE4czT2XKOxhA91Rk 6IA4MMJlHRJqR8jNEgoSypCnN4ljI0hC -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:21 2024 by rpki-client on console-ams.rpki-client.org