$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: 1L1jtmB1NzSmCcY38teG7QlV9a2LVpZ0hawDUX1aO88= Subject key identifier: 9B:75:95:5D:54:42:63:FA:D8:D6:5A:0A:30:EE:6B:0C:5D:90:30:14 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 03E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 03D9 Signing time: Thu 21 Nov 2024 00:11:38 +0000 Manifest this update: Thu 21 Nov 2024 00:11:37 +0000 Manifest next update: Thu 28 Nov 2024 00:11:37 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: vYVqPfje9ZhC+QAdHPYItRqTVWSrc9XAh1afSZTODTU=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: ymHEjZOmPNaZts/l9PmvTxzpZ65sqlxazk8ZELgre0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Nov 21 00:11:37 2024 GMT Not After : Nov 28 00:11:37 2024 GMT Subject: CN=673e7aba-c698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:51:7f:3e:3a:a8:4d:8f:6d:5c:83:0c:e6: bf:5b:73:a4:d7:a1:17:18:ad:e1:58:f4:f7:a7:1e: 7c:84:60:19:cf:15:24:73:a9:10:dc:63:dc:56:7b: 75:aa:af:ac:c7:e3:8b:9b:20:6f:a3:7d:5f:ee:76: b9:e6:8a:b6:a3:cc:51:7c:f3:21:51:fc:cf:6b:29: 7e:e7:d5:32:39:5c:bd:aa:68:4e:06:a2:bb:b0:b2: af:b0:54:be:65:84:f2:a5:69:86:8d:24:93:24:9f: e3:e3:1e:d7:59:ef:59:24:0f:62:09:96:f0:1f:1b: 56:66:3c:62:d9:4a:4b:b6:ec:2c:53:a2:ee:fc:3c: 2b:89:f5:d3:e2:c7:d2:2a:5f:85:3a:1c:16:1d:fc: 4a:a5:5f:1a:69:af:42:c9:55:da:c2:d8:3d:e3:03: 70:60:fd:99:d7:b8:a4:d0:09:5a:e0:13:e6:c5:d9: 53:4d:c4:05:35:e2:76:8e:2a:fd:9a:77:dd:c1:8c: 6d:e6:58:3c:ae:7c:56:cb:a8:6b:5f:d9:21:68:e9: 6e:c8:5c:6c:84:63:5b:35:4f:ec:79:fa:aa:55:fd: 2f:03:a6:c0:b2:b9:82:78:0f:01:95:06:77:dd:2e: d1:91:e4:52:c5:e8:ef:63:2a:10:eb:33:02:c7:d9: eb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:75:95:5D:54:42:63:FA:D8:D6:5A:0A:30:EE:6B:0C:5D:90:30:14 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:d7:f3:53:59:8e:d5:f1:05:f9:cd:cb:e1:93:9e:c2:6d:40: b9:d1:9c:3b:bd:fa:cd:de:e1:be:d8:96:00:5a:2c:92:42:1c: 36:0b:30:e1:91:4e:3e:cf:c9:06:58:83:d9:99:57:8b:65:f3: 42:f6:c9:ef:0a:6d:20:46:fc:09:c2:a6:5d:42:af:c1:7c:7f: 3d:04:85:ea:6a:eb:21:cf:7c:a4:75:3e:78:6f:c2:5f:c6:7a: b2:08:21:93:3b:b7:10:39:95:c1:66:7d:98:1b:9c:02:e5:16: b8:14:8b:84:f7:5e:be:58:3d:ff:e4:a7:6a:d4:79:81:dd:63: 5a:55:f7:10:aa:e6:56:ff:63:db:25:25:5f:ad:9d:31:3d:44: c1:5d:12:f1:a7:e4:2e:d5:98:f9:ba:d0:3e:4b:a0:9a:0d:c7: 2f:5e:2b:dc:85:fe:1b:20:c5:9c:dd:5e:72:f0:5c:6a:5c:13: a8:63:ea:e6:0d:e5:1e:02:8a:a3:08:c1:37:ba:f1:d2:46:90: 02:cb:27:91:89:bb:fa:28:56:f5:74:db:6a:2d:f8:3b:bb:c9: 5e:3a:be:29:a0:e0:f5:15:75:51:b0:9a:c9:db:68:02:fb:06: 17:21:58:d8:24:9f:24:ee:0a:a8:38:9d:ed:ca:2f:90:35:91: 30:60:50:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjQxMTIxMDAxMTM3WhcNMjQxMTI4MDAxMTM3WjAYMRYwFAYD VQQDEw02NzNlN2FiYS1jNjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqutRfz46qE2PbVyDDOa/W3Ok16EXGK3hWPT3px58hGAZzxUkc6kQ3GPcVnt1 qq+sx+OLmyBvo31f7na55oq2o8xRfPMhUfzPayl+59UyOVy9qmhOBqK7sLKvsFS+ ZYTypWmGjSSTJJ/j4x7XWe9ZJA9iCZbwHxtWZjxi2UpLtuwsU6Lu/DwrifXT4sfS Kl+FOhwWHfxKpV8aaa9CyVXawtg94wNwYP2Z17ik0Ala4BPmxdlTTcQFNeJ2jir9 mnfdwYxt5lg8rnxWy6hrX9khaOluyFxshGNbNU/sefqqVf0vA6bAsrmCeA8BlQZ3 3S7RkeRSxejvYyoQ6zMCx9nrGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJt1lV1U QmP62NZaCjDuawxdkDAUMB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ1/NTWY7V8QX5zcvhk57CbUC50Zw7vfrN3uG+2JYAWiySQhw2CzDh kU4+z8kGWIPZmVeLZfNC9snvCm0gRvwJwqZdQq/BfH89BIXqaushz3ykdT54b8Jf xnqyCCGTO7cQOZXBZn2YG5wC5Ra4FIuE916+WD3/5Kdq1HmB3WNaVfcQquZW/2Pb JSVfrZ0xPUTBXRLxp+Qu1Zj5utA+S6CaDccvXivchf4bIMWc3V5y8FxqXBOoY+rm DeUeAoqjCME3uvHSRpACyyeRibv6KFb1dNtqLfg7u8leOr4poOD1FXVRsJrJ22gC +wYXIVjYJJ8k7gqoOJ3tyi+QNZEwYFBq -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:01 2024 by rpki-client on console-ams.rpki-client.org