$ rpki-client -vvf rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft File: vTfx1AdHvmxfXGujMH32Vgq2gaM.mft (raw, json) Hash identifier: ESy17ne1nBsRH/OyvNMYZcw8zI4px8aBSuV243yYv+8= Subject key identifier: 72:41:5F:75:2F:F1:6B:2E:BD:4D:90:EF:92:14:A8:3C:B3:EB:0B:40 Authority key identifier: BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 Certificate issuer: /CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft Manifest number: 0953 Signing time: Thu 26 Dec 2024 20:16:31 +0000 Manifest this update: Thu 26 Dec 2024 20:16:31 +0000 Manifest next update: Thu 02 Jan 2025 20:16:31 +0000 Files and hashes: 1: vTfx1AdHvmxfXGujMH32Vgq2gaM.crl (hash: vs19WMUWdg6ybyrcPKtI6Xe+4wemknth90viMxPmlHY=) 2: 28C454FCB41211EF8D2EC946C4F9AE02.roa (hash: C0N61U0YEOhXRTQRllW2NuUOi6qXdqTI0gAe9H3eVh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Jan 2025 19:09:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91817E6/serialNumber=BD37F1D40747BE6C5F5C6BA3307DF6560AB681A3 Validity Not Before: Dec 26 20:16:31 2024 GMT Not After : Jan 2 20:16:31 2025 GMT Subject: CN=676db99f-1281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:46:a6:b2:af:98:83:cc:5e:79:2e:8c:a5: 55:85:62:67:a6:48:be:76:2a:22:a2:09:18:d7:d0: 00:fc:75:0b:d0:94:3c:58:85:f0:49:bc:a1:6e:e3: e0:a7:ff:ac:bc:85:a5:4e:e5:cc:a2:f1:7b:db:ad: bc:89:3a:d6:20:2f:fb:12:1d:b6:89:ec:74:26:b4: de:68:c7:2e:c3:42:ad:d0:df:d9:44:1a:7f:03:f1: d8:03:64:bf:82:f6:1a:ad:a4:83:48:be:8d:15:d4: c4:5f:73:79:91:0a:c9:22:42:38:b9:e1:72:17:49: a9:8b:2b:1e:1a:fe:03:32:96:f0:5e:b7:f6:cc:c6: 07:fb:d7:ca:67:6b:ae:2e:ba:31:fd:44:8e:3b:e9: 03:33:4e:62:6f:a7:59:72:6e:dd:0c:6b:8e:39:3f: d9:86:32:8a:5d:ca:c0:ae:4a:36:ad:8b:73:cc:31: 47:c8:79:a3:66:be:48:24:26:5e:2e:40:24:f4:78: 3c:9d:44:52:37:05:31:c3:d1:0e:c5:9c:5c:8e:17: 83:5e:3c:f0:31:18:ee:37:b5:68:80:0a:00:9d:9e: 0b:f2:cf:b7:0a:99:e7:9a:23:6a:e2:18:c7:1a:9e: e9:13:86:e4:6d:68:20:8f:a4:51:26:54:f3:7a:b0: 08:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:41:5F:75:2F:F1:6B:2E:BD:4D:90:EF:92:14:A8:3C:B3:EB:0B:40 X509v3 Authority Key Identifier: keyid:BD:37:F1:D4:07:47:BE:6C:5F:5C:6B:A3:30:7D:F6:56:0A:B6:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vTfx1AdHvmxfXGujMH32Vgq2gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91817E6/55740E70B3B311EAB198CE0DC4F9AE02/vTfx1AdHvmxfXGujMH32Vgq2gaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:79:54:0f:2b:c2:7f:69:76:5a:3e:7e:b7:57:15:85:d7:81: 30:22:66:f7:2b:b0:16:1f:4c:15:08:f8:dd:2f:b2:f1:f5:47: 26:ff:d2:22:61:8c:ac:57:8a:ce:75:69:0f:e5:d8:54:3f:3f: bd:54:21:0b:6f:94:89:fa:fd:3d:2b:62:e8:74:93:dd:9d:30: b0:43:27:34:4d:99:aa:32:73:25:fb:78:08:1c:39:9d:48:a0: 3c:7a:04:c5:df:4b:97:04:66:42:66:8e:28:e5:5a:12:40:e4: 6b:7f:70:e1:b4:03:54:2b:d5:1a:31:9f:31:e4:3d:fc:4a:9b: 9e:52:2d:a5:1f:33:20:66:6b:c3:d3:9f:60:34:64:29:b4:d2: c4:d7:c1:fa:cf:54:0b:be:03:1d:2e:a2:8a:0f:10:c2:8e:b7: 70:fd:55:44:7d:cc:2b:c7:1b:cb:50:29:c6:98:19:3d:1a:f4: 37:ca:d7:f0:6a:6f:88:e3:30:08:5c:d0:fd:3f:70:be:27:67: 33:62:bb:96:0d:ff:3f:9e:99:1e:4e:b4:54:dc:f9:2b:36:24: 61:70:ba:c6:c8:81:c3:fd:bd:9e:1e:4f:c9:2d:8b:10:2b:07: c2:be:a7:2c:3c:27:c2:02:36:e8:58:77:9f:08:6a:ae:17:58: 91:cb:66:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTdFNjExMC8GA1UEBRMoQkQzN0YxRDQwNzQ3QkU2QzVGNUM2QkEzMzA3REY2NTYw QUI2ODFBMzAeFw0yNDEyMjYyMDE2MzFaFw0yNTAxMDIyMDE2MzFaMBgxFjAUBgNV BAMTDTY3NmRiOTlmLTEyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpqEamsq+Yg8xeeS6MpVWFYmemSL52KiKiCRjX0AD8dQvQlDxYhfBJvKFu4+Cn /6y8haVO5cyi8XvbrbyJOtYgL/sSHbaJ7HQmtN5oxy7DQq3Q39lEGn8D8dgDZL+C 9hqtpINIvo0V1MRfc3mRCskiQji54XIXSamLKx4a/gMylvBet/bMxgf718pna64u ujH9RI476QMzTmJvp1lybt0Ma445P9mGMopdysCuSjati3PMMUfIeaNmvkgkJl4u QCT0eDydRFI3BTHD0Q7FnFyOF4NePPAxGO43tWiACgCdngvyz7cKmeeaI2riGMca nukThuRtaCCPpFEmVPN6sAi7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUckFfdS/x ay69TZDvkhSoPLPrC0AwHwYDVR0jBBgwFoAUvTfx1AdHvmxfXGujMH32Vgq2gaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxN0U2LzU1NzQwRTcwQjNC MzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14ZlhHdWpNSDMyVmdxMmdh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlRmeDFBZEh2bXhmWEd1ak1IMzJWZ3EyZ2FNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx N0U2LzU1NzQwRTcwQjNCMzExRUFCMTk4Q0UwREM0RjlBRTAyL3ZUZngxQWRIdm14 ZlhHdWpNSDMyVmdxMmdhTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFd5VA8rwn9pdlo+frdXFYXXgTAiZvcrsBYfTBUI+N0vsvH1Ryb/0iJh jKxXis51aQ/l2FQ/P71UIQtvlIn6/T0rYuh0k92dMLBDJzRNmaoycyX7eAgcOZ1I oDx6BMXfS5cEZkJmjijlWhJA5Gt/cOG0A1Qr1RoxnzHkPfxKm55SLaUfMyBma8PT n2A0ZCm00sTXwfrPVAu+Ax0uoooPEMKOt3D9VUR9zCvHG8tQKcaYGT0a9DfK1/Bq b4jjMAhc0P0/cL4nZzNiu5YN/z+emR5OtFTc+Ss2JGFwusbIgcP9vZ4eT8ktixAr B8K+pyw8J8ICNuhYd58Iaq4XWJHLZlk= -----END CERTIFICATE-----Generated at Thu Dec 26 21:35:26 2024 by rpki-client on console-ams.rpki-client.org