$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: oDU2RRjWn6/Q0s1JrcD0+qBSIXdRRH/tXPoAU2qCVWM= Subject key identifier: 23:A1:3A:30:0E:02:99:0A:50:D7:F0:4E:81:F6:40:3C:8C:B2:F8:8E Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 05EB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 05E0 Signing time: Wed 20 Nov 2024 19:34:34 +0000 Manifest this update: Wed 20 Nov 2024 19:34:34 +0000 Manifest next update: Wed 27 Nov 2024 19:34:34 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: QPVQjrc9GREG1Zf45sAgdHDxS6ilhwupFF9jq3XVyZE=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: W590cMYjFz6FF4sW9oqplqFnjP+zPSYVDh+Je0kzPIE=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: eFxwV6TYZjxk4/Ekn5nyzAgAfEQn65e+4zP6/WFsXnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1515 (0x5eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Nov 20 19:34:34 2024 GMT Not After : Nov 27 19:34:34 2024 GMT Subject: CN=673e39ca-8c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:a7:21:56:3a:78:a6:7b:aa:c6:b4:9e:30: ae:c6:1d:b1:50:cf:25:77:1b:b6:d7:5a:55:45:19: ec:e7:0a:5b:63:dd:c5:73:55:b2:bc:19:0e:7c:0c: 94:aa:ed:73:67:d8:84:1c:fa:70:d4:ff:44:80:ef: ff:9e:26:81:2a:e1:42:13:74:3c:14:08:6d:0b:05: 92:43:54:62:d0:c8:e1:4a:e6:e0:bb:87:fa:9a:0b: 5c:e9:b0:29:31:f9:db:37:ea:eb:53:de:ac:a5:0e: 29:2b:80:30:77:0c:82:ff:93:1d:da:7f:3c:ba:45: d3:c0:0e:91:3c:0a:a1:2e:e4:89:ca:5a:cc:f4:47: 00:d7:e1:f9:4e:44:a2:d2:d2:a0:cf:77:b1:42:7f: b4:7e:c7:9a:e9:50:07:08:18:52:3a:3a:59:ab:7a: 58:73:c9:0e:73:56:2b:27:3e:80:8c:37:1b:95:3f: 76:fe:2f:c3:30:5b:48:6c:d0:e1:c6:41:22:b4:77: 3a:70:29:0f:a8:00:35:28:6c:b5:6c:58:3a:f1:55: ae:fe:3f:2b:d0:f0:6f:f9:1a:f0:79:c8:01:51:34: 8f:5d:9f:8d:31:71:35:fd:86:52:1d:22:16:8f:c2: 45:68:22:53:a7:b3:4b:74:73:0d:2f:e5:4c:9d:2d: b3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A1:3A:30:0E:02:99:0A:50:D7:F0:4E:81:F6:40:3C:8C:B2:F8:8E X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:7d:2b:59:88:f5:4a:10:42:52:6a:a9:d6:ed:5a:63:98:d7: 8d:15:29:4b:76:8c:ce:80:d5:29:44:fb:d9:7f:40:d5:16:ca: 10:b6:b5:3e:da:30:a9:4d:74:0d:cd:66:d1:cd:1b:f2:f0:84: 91:41:cc:0e:17:2d:e8:dd:4f:f3:cc:c1:ee:aa:ad:8b:9c:82: b5:c5:b2:73:1e:91:de:0a:7c:67:3f:f0:c6:6b:f7:d2:59:5c: e5:7e:b7:dd:18:e9:a3:b2:79:5b:89:b4:e3:bf:84:b1:47:2f: de:df:4c:ab:5e:62:4e:5b:4c:63:bc:4b:b3:5a:55:0e:f1:ba: b8:8a:dd:e7:05:8b:25:b3:63:d7:47:b9:3d:81:ee:50:b5:48: 1a:d7:0d:ba:a4:ea:e2:c4:96:6a:31:4b:ca:ac:e7:0d:ee:27: d2:e9:38:6f:33:59:54:9d:4f:6c:95:7e:59:a1:da:53:cf:49: 29:ff:13:23:0d:29:e0:ae:69:d7:c2:45:0b:65:af:9a:18:bc: 62:e2:39:02:60:a2:c2:20:f1:ad:27:0f:0c:59:1b:bc:49:1d: 12:d7:56:a9:df:1d:13:66:b1:25:04:a8:b1:14:54:b1:ef:da: 73:6d:8a:d8:e3:ea:b2:b8:47:05:0f:bd:b0:c8:9f:16:8c:5c: aa:b4:8b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjQxMTIwMTkzNDM0WhcNMjQxMTI3MTkzNDM0WjAYMRYwFAYD VQQDEw02NzNlMzljYS04YzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqinIVY6eKZ7qsa0njCuxh2xUM8ldxu211pVRRns5wpbY93Fc1WyvBkOfAyU qu1zZ9iEHPpw1P9EgO//niaBKuFCE3Q8FAhtCwWSQ1Ri0MjhSubgu4f6mgtc6bAp MfnbN+rrU96spQ4pK4AwdwyC/5Md2n88ukXTwA6RPAqhLuSJylrM9EcA1+H5TkSi 0tKgz3exQn+0fsea6VAHCBhSOjpZq3pYc8kOc1YrJz6AjDcblT92/i/DMFtIbNDh xkEitHc6cCkPqAA1KGy1bFg68VWu/j8r0PBv+RrwecgBUTSPXZ+NMXE1/YZSHSIW j8JFaCJTp7NLdHMNL+VMnS2zdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOhOjAO ApkKUNfwToH2QDyMsviOMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjfStZiPVKEEJSaqnW7VpjmNeNFSlLdozOgNUpRPvZf0DVFsoQtrU+ 2jCpTXQNzWbRzRvy8ISRQcwOFy3o3U/zzMHuqq2LnIK1xbJzHpHeCnxnP/DGa/fS WVzlfrfdGOmjsnlbibTjv4SxRy/e30yrXmJOW0xjvEuzWlUO8bq4it3nBYsls2PX R7k9ge5QtUga1w26pOrixJZqMUvKrOcN7ifS6ThvM1lUnU9slX5ZodpTz0kp/xMj DSngrmnXwkULZa+aGLxi4jkCYKLCIPGtJw8MWRu8SR0S11ap3x0TZrElBKixFFSx 79pzbYrY4+qyuEcFD72wyJ8WjFyqtIuS -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org