$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: faEJKlaYvOWfhXR0VdZd3dKnVoU9gj1PhyaCYJKryCM= Subject key identifier: 38:EA:CD:E7:09:9B:1F:D1:D4:FF:30:75:99:F9:07:C1:48:14:12:03 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 021D Signing time: Sat 23 Nov 2024 01:29:20 +0000 Manifest this update: Sat 23 Nov 2024 01:29:19 +0000 Manifest next update: Sat 30 Nov 2024 01:29:19 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: qhs1zdKdD81gEoFXORvzlaQPWUHNnwLLqVlujbqAp+M=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: ItHODf/LTjer4aEMy+uXKhQTAYqJmb+1V4ZxxdvfZf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Nov 23 01:29:19 2024 GMT Not After : Nov 30 01:29:19 2024 GMT Subject: CN=67412fef-2272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:44:74:82:be:45:26:a8:87:86:df:5a:da:6f: 70:3e:c0:a0:e0:06:f2:20:6e:d6:78:53:7d:09:4a: 40:4e:b7:10:87:40:c4:a7:15:eb:e5:ab:78:34:01: 1e:e7:92:1f:a6:83:9c:ae:c0:bf:45:68:56:d2:ec: 60:3b:4b:65:df:08:2f:fd:9b:ad:b7:c5:59:70:7c: 07:7b:bb:e7:86:cb:26:36:d0:a4:71:3e:c5:3a:89: 8f:d9:17:37:2f:d7:69:94:b1:3f:8c:0e:be:b8:d5: c7:f3:b9:7f:41:35:91:a0:54:9f:3d:98:53:e4:e8: 0d:10:aa:20:a4:b8:4d:89:79:9f:38:89:22:4e:aa: 1f:0f:8c:fa:59:c7:f2:a0:7f:37:c3:be:d4:e3:9f: c5:22:fd:3a:7f:19:44:13:11:be:c5:2d:04:e5:18: 81:68:13:69:7c:e1:5e:da:a5:59:66:71:7b:59:8f: 0f:85:96:6e:f0:1d:b2:83:bc:1b:53:fd:e0:23:15: 8a:4f:41:ed:a9:a5:9a:e3:80:ae:30:78:d8:50:3b: cd:d1:16:77:f2:84:9c:e5:de:5a:28:ff:8e:2d:d6: f7:49:7c:6f:8e:9a:67:12:9a:39:7b:f5:9a:d8:8e: 89:48:43:28:1f:c3:d4:5a:30:35:26:4c:04:25:e2: fc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:EA:CD:E7:09:9B:1F:D1:D4:FF:30:75:99:F9:07:C1:48:14:12:03 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:37:2b:bc:a2:0e:aa:de:1c:39:e6:c4:4b:a9:af:b2:92:2d: 27:0e:53:b7:aa:59:e5:26:3b:c0:0e:09:fe:bc:53:46:1f:28: b6:e5:21:04:4b:c1:79:25:86:21:4b:ca:7a:a4:3f:0d:57:1e: e5:47:93:13:c3:b4:01:40:1e:6a:35:ae:01:06:99:83:6f:ea: d9:e7:3a:27:fe:61:66:16:7e:bd:af:d9:ba:6a:33:28:0a:62: ab:dc:44:16:93:f8:b4:75:63:21:c8:de:65:4c:a9:69:a9:27: 1e:2b:89:4b:1a:fb:94:f8:ed:1c:2a:8d:84:9c:56:58:29:56: 2a:59:59:b1:ff:ba:c6:4a:d8:9a:2f:8b:95:c4:93:85:be:48: 5e:8f:a6:c4:4c:ff:27:42:e1:18:6b:f7:fc:28:61:11:32:75: a2:a3:81:c5:69:13:85:7e:3d:34:35:16:6b:4f:3c:00:5a:64: 33:25:5c:17:0f:b9:37:5e:68:83:1c:33:3e:1d:a6:51:45:e0: ec:8f:b2:f7:12:c5:a5:b9:30:98:c7:60:34:f0:65:a1:21:ef: 63:35:9f:df:d2:88:04:10:98:81:e4:78:86:1f:24:1e:76:0d: c9:39:f9:1d:91:b6:bd:89:46:d5:a5:f2:f1:07:6a:fb:1f:fd: d1:c0:77:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjQxMTIzMDEyOTE5WhcNMjQxMTMwMDEyOTE5WjAYMRYwFAYD VQQDEw02NzQxMmZlZi0yMjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUR0gr5FJqiHht9a2m9wPsCg4AbyIG7WeFN9CUpATrcQh0DEpxXr5at4NAEe 55IfpoOcrsC/RWhW0uxgO0tl3wgv/Zutt8VZcHwHe7vnhssmNtCkcT7FOomP2Rc3 L9dplLE/jA6+uNXH87l/QTWRoFSfPZhT5OgNEKogpLhNiXmfOIkiTqofD4z6Wcfy oH83w77U45/FIv06fxlEExG+xS0E5RiBaBNpfOFe2qVZZnF7WY8PhZZu8B2yg7wb U/3gIxWKT0HtqaWa44CuMHjYUDvN0RZ38oSc5d5aKP+OLdb3SXxvjppnEpo5e/Wa 2I6JSEMoH8PUWjA1JkwEJeL85wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjqzecJ mx/R1P8wdZn5B8FIFBIDMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiNyu8og6q3hw55sRLqa+yki0nDlO3qlnlJjvADgn+vFNGHyi25SEE S8F5JYYhS8p6pD8NVx7lR5MTw7QBQB5qNa4BBpmDb+rZ5zon/mFmFn69r9m6ajMo CmKr3EQWk/i0dWMhyN5lTKlpqSceK4lLGvuU+O0cKo2EnFZYKVYqWVmx/7rGStia L4uVxJOFvkhej6bETP8nQuEYa/f8KGERMnWio4HFaROFfj00NRZrTzwAWmQzJVwX D7k3XmiDHDM+HaZRReDsj7L3EsWluTCYx2A08GWhIe9jNZ/f0ogEEJiB5HiGHyQe dg3JOfkdkba9iUbVpfLxB2r7H/3RwHd1 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org