$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: ddMwWGAD9UC+Wv+CNYbiU/fCNW8+lDSrRtydK0Kh2/U= Subject key identifier: 3E:96:BD:E0:BF:CB:4E:1E:A7:89:32:F3:89:DE:84:26:24:29:7E:F1 Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 05F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 05F2 Signing time: Fri 22 Nov 2024 14:49:00 +0000 Manifest this update: Fri 22 Nov 2024 14:49:00 +0000 Manifest next update: Fri 29 Nov 2024 14:49:00 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: njPHub/JlOpqhkOabhn3N4EAKTSNBxBfhKOWPU7DMek=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: dO5nZq15UBNcy6JzPU4ZCXdX9MbHTyXCt1oRP1sN3wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1525 (0x5f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: Nov 22 14:49:00 2024 GMT Not After : Nov 29 14:49:00 2024 GMT Subject: CN=674099dc-b963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:15:ac:95:e0:c0:ad:c2:6b:87:f2:a4:60: 9e:37:55:d0:8a:9c:77:21:67:a4:81:5b:85:b2:fc: c2:2b:e2:f8:22:0f:89:88:fe:77:db:78:22:74:e3: 5d:3e:e0:89:c9:cf:bb:78:19:0e:00:ce:01:77:82: 6a:e2:be:40:ea:f4:08:e9:45:d5:f5:07:e6:1a:7a: be:ef:40:3d:8b:9c:11:63:b2:81:f7:fc:07:34:ea: 17:84:15:7c:71:5e:82:76:25:98:09:0b:04:07:cd: 8c:48:54:a7:e9:6b:13:39:a5:c9:31:ab:f7:d5:0c: c8:eb:74:6b:c7:5f:cf:c3:94:37:6b:1a:a7:d5:01: 9c:16:76:44:6f:c6:7f:ed:dd:3e:8e:52:2b:f4:c8: 2d:f6:1c:7a:2b:36:26:17:c7:cb:57:b2:cd:d2:22: 50:eb:0a:9a:88:34:fa:4b:40:26:ef:e7:f4:61:65: 0d:e1:89:6a:92:35:bd:fa:8a:7d:b8:44:4c:0b:d9: 4f:4e:73:a8:ba:56:b4:ac:91:8c:98:33:3d:c9:94: 54:c6:80:d4:ea:23:b8:78:ff:c5:a1:4a:0a:fa:bd: f1:ee:e5:8c:d4:4e:e8:2e:69:d1:98:25:5e:dd:c6: ff:26:46:58:63:b0:5d:d7:b4:b4:cf:61:a4:20:06: 82:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:96:BD:E0:BF:CB:4E:1E:A7:89:32:F3:89:DE:84:26:24:29:7E:F1 X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:52:65:17:1d:d7:fc:64:17:fd:ac:18:f6:be:35:36:e7:b8: ec:22:06:2d:b9:27:a6:a6:30:ce:39:4d:25:37:e5:87:bf:bb: ec:7f:c2:29:a3:03:a0:ab:78:e5:01:68:bd:41:e2:88:1e:33: 91:de:27:03:41:b5:32:a7:82:0c:5c:44:83:d0:fe:b7:16:77: c3:d6:a2:b0:a0:61:47:9d:de:f9:32:b3:4e:1c:fb:ed:6a:d9: 21:37:4c:0d:8a:f5:1d:bd:e0:a4:5c:9f:7e:2e:aa:6a:d0:38: d1:4b:17:66:bd:e9:9e:84:c7:d9:3b:4c:50:66:17:66:b2:61: f9:a2:7a:25:3d:e6:c6:27:ec:bf:39:17:df:d3:f8:81:2a:10: 7e:2a:d5:d5:0b:4a:69:76:ac:b4:b8:bd:8c:8b:44:22:84:0d: 28:9d:bc:de:36:c9:3d:52:23:b7:17:1e:4a:09:94:f9:1e:61: 38:8c:88:8f:da:ce:c7:e5:bf:cd:74:54:28:bd:e3:b5:df:7f: 39:d7:bb:f8:ad:4a:1c:f2:36:84:73:c3:e9:7f:69:97:17:5d: ad:78:f1:ca:92:85:bd:e9:43:a7:b3:2c:41:c6:ed:0c:b9:bb: bf:b5:f5:db:e7:6f:1a:c0:7b:18:b7:2f:ce:c6:55:e5:4c:2a: be:90:a5:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjQxMTIyMTQ0OTAwWhcNMjQxMTI5MTQ0OTAwWjAYMRYwFAYD VQQDEw02NzQwOTlkYy1iOTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzEVrJXgwK3Ca4fypGCeN1XQipx3IWekgVuFsvzCK+L4Ig+JiP5323gidONd PuCJyc+7eBkOAM4Bd4Jq4r5A6vQI6UXV9QfmGnq+70A9i5wRY7KB9/wHNOoXhBV8 cV6CdiWYCQsEB82MSFSn6WsTOaXJMav31QzI63Rrx1/Pw5Q3axqn1QGcFnZEb8Z/ 7d0+jlIr9Mgt9hx6KzYmF8fLV7LN0iJQ6wqaiDT6S0Am7+f0YWUN4YlqkjW9+op9 uERMC9lPTnOoula0rJGMmDM9yZRUxoDU6iO4eP/FoUoK+r3x7uWM1E7oLmnRmCVe 3cb/JkZYY7Bd17S0z2GkIAaCkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6WveC/ y04ep4ky84nehCYkKX7xMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaUmUXHdf8ZBf9rBj2vjU257jsIgYtuSempjDOOU0lN+WHv7vsf8Ip owOgq3jlAWi9QeKIHjOR3icDQbUyp4IMXESD0P63FnfD1qKwoGFHnd75MrNOHPvt atkhN0wNivUdveCkXJ9+Lqpq0DjRSxdmvemehMfZO0xQZhdmsmH5onolPebGJ+y/ ORff0/iBKhB+KtXVC0ppdqy0uL2Mi0QihA0onbzeNsk9UiO3Fx5KCZT5HmE4jIiP 2s7H5b/NdFQoveO1338517v4rUoc8jaEc8Ppf2mXF12tePHKkoW96UOnsyxBxu0M ubu/tfXb528awHsYty/OxlXlTCq+kKV0 -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org