$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: iknql6KoZxEoDLSoqiLYbT1Um+/t4cQd2VrKIm7MJAw= Subject key identifier: BB:5E:0D:F3:8C:1C:16:0A:5A:16:56:98:1E:CB:34:AB:88:E3:BE:89 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 0A58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 0A54 Signing time: Sun 24 Nov 2024 19:17:28 +0000 Manifest this update: Sun 24 Nov 2024 19:17:27 +0000 Manifest next update: Sun 01 Dec 2024 19:17:27 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: LUvgzbZK98B5H/Rlz0n6rZBH7gm2oYCIEV0OaFjJNAY=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: WvS4HSGnpo6fnRnI8xEz6Pg+dqflFwbhWNvLJvMQfCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2648 (0xa58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: Nov 24 19:17:27 2024 GMT Not After : Dec 1 19:17:27 2024 GMT Subject: CN=67437bc7-9fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:c3:20:b1:5d:fd:3f:0a:8c:37:44:ee:0a: a4:b1:bd:77:87:80:d9:fc:28:c6:d6:80:a1:24:84: 87:ce:46:3c:19:13:8b:dc:8d:9f:da:cd:46:9e:04: 6e:42:4d:02:99:3f:0a:af:ad:c2:17:5b:e2:91:1b: 56:75:10:f5:bc:3f:1e:93:60:ca:6b:e2:17:3d:59: 0e:02:13:f0:5c:48:27:2c:10:0f:de:85:87:02:0f: a3:b8:47:fc:2c:1e:5d:c0:08:8c:5d:4a:9b:8d:04: 91:14:42:60:b0:ab:f1:12:38:cb:11:b9:6f:a2:89: ef:b2:8c:42:fb:c3:94:6c:5a:a8:63:b9:59:9b:fa: 56:9b:07:43:1a:4b:ad:7c:90:6d:e0:ce:2f:de:89: 80:d8:16:9a:79:eb:d5:52:e9:7a:db:5a:4d:91:40: c3:7c:1b:65:72:30:d1:4b:c3:14:d7:e4:e1:eb:fa: 78:10:b1:28:95:6a:28:a6:51:50:e6:86:23:17:bd: 25:f7:4f:d3:56:01:89:33:82:cc:fa:74:ef:1c:df: b8:e3:d2:0f:78:17:bf:bf:e7:20:f7:32:80:1f:55: 88:d8:94:6f:fc:dc:a2:96:2b:13:c1:5d:df:61:6c: 9e:2c:fc:4d:44:78:53:23:be:3f:c9:14:f8:2e:54: 9d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5E:0D:F3:8C:1C:16:0A:5A:16:56:98:1E:CB:34:AB:88:E3:BE:89 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:96:ac:03:52:8c:ac:aa:a9:40:0c:4c:a3:3f:49:50:1b:d1: 52:9d:da:89:42:29:54:74:65:fb:d9:c9:7b:d2:3d:3a:b7:ad: d1:56:ec:cd:a4:46:e8:de:0e:50:be:e2:25:01:29:41:bf:eb: 10:5d:51:c6:85:7d:6a:30:92:1c:89:a2:45:99:80:cc:cb:c7: f1:03:3e:c3:47:9e:87:0d:7a:45:77:90:bb:0a:2a:ef:c8:2f: fa:43:a2:6d:eb:b2:2e:4a:20:92:7e:3b:53:fe:fc:56:4b:01: 9d:ab:2d:6a:44:85:34:a5:b8:32:29:62:53:b6:b2:09:af:b6: 6a:7b:f8:97:02:e4:21:c1:be:c4:58:c9:fa:5c:5c:b8:eb:ea: 44:51:9d:a9:83:84:a6:50:62:67:65:2e:0f:9f:43:ef:43:19: ae:0c:b7:f8:05:f7:6b:17:11:13:0c:76:fb:0e:55:82:9b:6c: c0:bb:05:a3:9e:24:c1:31:e7:76:c2:76:1a:2a:e9:ee:2a:9e: 89:b0:3e:85:30:62:cd:ee:64:74:6c:06:54:88:95:bc:d7:66: 2b:2c:8d:c0:2e:9a:31:6b:63:db:3e:7b:c2:16:d9:bd:0a:35: 87:dc:36:ee:29:1f:e2:11:9b:5b:a2:95:8a:84:b5:db:5d:ba: 81:03:75:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjQxMTI0MTkxNzI3WhcNMjQxMjAxMTkxNzI3WjAYMRYwFAYD VQQDEw02NzQzN2JjNy05ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjzDILFd/T8KjDdE7gqksb13h4DZ/CjG1oChJISHzkY8GROL3I2f2s1GngRu Qk0CmT8Kr63CF1vikRtWdRD1vD8ek2DKa+IXPVkOAhPwXEgnLBAP3oWHAg+juEf8 LB5dwAiMXUqbjQSRFEJgsKvxEjjLEblvoonvsoxC+8OUbFqoY7lZm/pWmwdDGkut fJBt4M4v3omA2BaaeevVUul621pNkUDDfBtlcjDRS8MU1+Th6/p4ELEolWooplFQ 5oYjF70l90/TVgGJM4LM+nTvHN+449IPeBe/v+cg9zKAH1WI2JRv/NyilisTwV3f YWyeLPxNRHhTI74/yRT4LlSduwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLteDfOM HBYKWhZWmB7LNKuI476JMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8lqwDUoysqqlADEyjP0lQG9FSndqJQilUdGX72cl70j06t63RVuzN pEbo3g5QvuIlASlBv+sQXVHGhX1qMJIciaJFmYDMy8fxAz7DR56HDXpFd5C7Cirv yC/6Q6Jt67IuSiCSfjtT/vxWSwGdqy1qRIU0pbgyKWJTtrIJr7Zqe/iXAuQhwb7E WMn6XFy46+pEUZ2pg4SmUGJnZS4Pn0PvQxmuDLf4BfdrFxETDHb7DlWCm2zAuwWj niTBMed2wnYaKunuKp6JsD6FMGLN7mR0bAZUiJW812YrLI3ALpoxa2PbPnvCFtm9 CjWH3DbuKR/iEZtbopWKhLXbXbqBA3XJ -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:52 2024 by rpki-client on console-ams.rpki-client.org