$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: lMK6vZb0b7MIbu4VT8lMAbLrtW2mXiwAsIFU+sNCcsQ= Subject key identifier: E0:9E:31:20:9B:56:0A:85:52:E2:DD:11:EA:5C:07:F3:F6:E0:7B:96 Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: 20 Signing time: Mon 25 Nov 2024 05:47:25 +0000 Manifest this update: Mon 25 Nov 2024 05:47:24 +0000 Manifest next update: Mon 02 Dec 2024 05:47:24 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: eVgn/pJjyPlLo7aMs9cWXa6crW7tztV2+LG8tccU1N4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Nov 25 05:47:24 2024 GMT Not After : Dec 2 05:47:24 2024 GMT Subject: CN=67440f6d-4e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:66:35:bc:b9:22:02:88:44:b8:da:20:21: c4:61:4f:0a:0a:40:62:d7:9d:10:29:ad:9d:bb:c3: 05:4e:4d:11:1a:b3:47:e4:b4:86:79:47:a2:1d:83: 89:16:04:35:04:99:97:5d:b1:4b:ae:4d:e1:ed:4b: dd:57:df:ae:f3:a3:ae:ce:dc:06:2e:10:1a:ba:63: bb:43:c2:b9:3b:09:93:f3:cd:0c:fe:18:f1:2f:06: d0:8d:72:22:0d:fe:52:5f:c7:14:80:ba:44:92:61: f7:75:11:50:fe:41:97:ee:9a:c4:c2:3e:c4:34:e7: 54:6e:79:f8:49:18:7c:75:44:71:39:cb:5e:28:8f: e0:ee:1b:d2:88:d3:a6:68:15:53:f1:9e:6f:06:69: cd:d1:8e:93:4a:6c:30:e2:fc:c7:be:3a:de:e2:5b: e7:19:0f:33:35:3e:e5:53:ad:c4:25:fc:cf:3b:ad: 0c:ba:58:b0:34:cb:d9:d0:63:48:31:dd:50:72:50: bc:13:b4:b8:49:d7:0f:8e:f4:f8:4b:f1:be:0a:0d: c3:73:70:3a:cc:dd:d6:d3:de:0c:05:a0:bb:bf:4e: f0:9d:19:be:8f:15:6e:5f:68:65:c1:28:3f:e4:3f: e8:cd:04:de:e9:19:ed:88:8c:12:81:bc:8c:9a:40: 60:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9E:31:20:9B:56:0A:85:52:E2:DD:11:EA:5C:07:F3:F6:E0:7B:96 X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:78:7d:61:4e:a4:3b:ec:ea:4f:d8:27:95:46:ad:7d:7e:af: 0f:17:b3:42:5e:f3:1f:6d:62:36:4b:34:22:a0:86:a5:0a:d2: a0:40:42:41:c9:27:f1:be:a2:e5:b9:b6:bf:04:00:39:78:8e: 15:8c:78:0a:e8:52:9c:65:f0:01:b9:18:72:75:22:84:10:d1: 4a:1d:24:ad:5b:f9:62:9c:11:bf:db:11:14:d5:74:28:f5:16: c5:1a:30:19:6a:7d:d5:1c:ce:85:2c:cf:b8:d1:26:7c:c8:b3: 96:2c:40:5b:fd:d8:fc:81:b4:dc:3f:bb:9a:f6:b0:69:3e:8e: dc:d3:a4:b1:9e:a6:73:c0:51:3e:be:37:0e:26:96:66:b1:ca: 36:58:b7:0c:51:6f:bc:40:14:47:68:c3:a8:51:f6:64:7d:e2: ec:2c:05:f5:38:60:30:7d:0d:64:75:c2:65:fc:68:91:00:a2: 26:73:be:9a:89:f0:a2:80:55:13:4e:bc:d4:8e:13:ff:e2:86: a5:f6:d5:b2:84:8f:6d:38:c6:42:54:03:06:18:d9:98:db:81: 6a:91:c7:c1:b1:dd:61:f9:91:e1:59:0c:61:b5:06:c1:0c:e7: 30:58:d8:b5:98:95:c9:59:7d:ff:08:24:32:78:3a:09:ec:c1: 5c:d2:5e:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDdCQjExMC8GA1UEBRMoNDRGOUM0REE0N0U2MzcxRkQxQzlGOUY4RTU2NEQxODAz QTBGMzI4NzAeFw0yNDExMjUwNTQ3MjRaFw0yNDEyMDIwNTQ3MjRaMBgxFjAUBgNV BAMTDTY3NDQwZjZkLTRlOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz82Y1vLkiAohEuNogIcRhTwoKQGLXnRAprZ27wwVOTREas0fktIZ5R6Idg4kW BDUEmZddsUuuTeHtS91X367zo67O3AYuEBq6Y7tDwrk7CZPzzQz+GPEvBtCNciIN /lJfxxSAukSSYfd1EVD+QZfumsTCPsQ051RuefhJGHx1RHE5y14oj+DuG9KI06Zo FVPxnm8Gac3RjpNKbDDi/Me+Ot7iW+cZDzM1PuVTrcQl/M87rQy6WLA0y9nQY0gx 3VByULwTtLhJ1w+O9PhL8b4KDcNzcDrM3dbT3gwFoLu/TvCdGb6PFW5faGXBKD/k P+jNBN7pGe2IjBKBvIyaQGBbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4J4xIJtW CoVS4t0R6lwH8/bge5YwHwYDVR0jBBgwFoAURPnE2kfmNx/Ryfn45WTRgDoPMocw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwN0JCLzBBRTQ4MjkwN0NC MzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1v Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUlBuRTJrZm1OeF9SeWZuNDVXVFJnRG9QTW9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw N0JCLzBBRTQ4MjkwN0NCMzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhf UnlmbjQ1V1RSZ0RvUE1vYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIV4fWFOpDvs6k/YJ5VGrX1+rw8Xs0Je8x9tYjZLNCKghqUK0qBAQkHJ J/G+ouW5tr8EADl4jhWMeAroUpxl8AG5GHJ1IoQQ0UodJK1b+WKcEb/bERTVdCj1 FsUaMBlqfdUczoUsz7jRJnzIs5YsQFv92PyBtNw/u5r2sGk+jtzTpLGepnPAUT6+ Nw4mlmaxyjZYtwxRb7xAFEdow6hR9mR94uwsBfU4YDB9DWR1wmX8aJEAoiZzvpqJ 8KKAVRNOvNSOE//ihqX21bKEj204xkJUAwYY2ZjbgWqRx8Gx3WH5keFZDGG1BsEM 5zBY2LWYlclZff8IJDJ4OgnswVzSXrU= -----END CERTIFICATE-----Generated at Mon Nov 25 07:19:50 2024 by rpki-client on console-ams.rpki-client.org