$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: ZzUAWSu7k2+qhYmBF9JWCLsIfIN34AjNpTmld9r/rrA= Subject key identifier: ED:85:A3:D2:E7:8A:ED:89:83:CF:96:35:C5:49:97:61:D6:71:ED:9F Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 2E Signing time: Thu 21 Nov 2024 05:44:18 +0000 Manifest this update: Thu 21 Nov 2024 05:44:18 +0000 Manifest next update: Thu 28 Nov 2024 05:44:18 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: lP15hyubfm4vSWOEfJraCcOJ6MZAdbBXkOikJBc/Pus=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Nov 21 05:44:18 2024 GMT Not After : Nov 28 05:44:18 2024 GMT Subject: CN=673ec8b2-4d8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4b:c5:9c:a2:fe:ef:3e:b3:1b:02:a8:61:61: 09:1a:f1:fe:cc:0f:e2:37:e6:67:87:5a:00:e1:cd: e4:e6:3b:b4:c9:8f:b1:ec:c8:40:c5:3e:b2:3e:6f: 1f:9a:62:e7:d4:83:ae:fe:45:20:27:b0:6b:ee:77: 15:81:94:bb:31:59:51:0c:ae:3d:45:ed:3c:55:09: b4:a3:12:0c:86:77:bc:80:6b:a4:bb:79:e9:ee:48: eb:5c:50:2b:8d:95:9a:ef:33:94:66:93:c4:ce:83: c4:6d:dc:db:2b:07:99:d4:89:68:93:aa:74:f2:95: bd:85:71:af:ca:d0:aa:3a:82:28:e1:f1:5a:df:09: 79:ff:67:94:32:24:61:66:f1:a2:13:67:8a:c3:80: 5f:75:5d:14:90:3e:2c:71:81:7d:38:8c:15:9a:98: 68:96:2d:a9:d1:27:8f:9d:dd:91:65:a7:da:a9:db: c0:61:38:9a:57:fa:03:80:91:be:a3:c0:2a:6c:90: 4a:84:b3:a3:8b:51:c5:02:44:45:8b:3d:dd:0d:8a: 36:e6:0d:b0:47:59:39:3c:11:93:b3:95:99:44:c8: 1a:d6:af:59:04:0a:31:72:97:0c:df:8e:f4:63:61: e3:ec:54:10:fc:75:30:ef:9e:4e:2c:b8:ff:15:64: 1d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:85:A3:D2:E7:8A:ED:89:83:CF:96:35:C5:49:97:61:D6:71:ED:9F X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:e6:36:12:f7:b2:79:e4:93:3e:da:ce:7d:d6:74:ab:3a:be: 6f:f0:0c:4b:cf:ae:50:a5:a2:74:a0:a9:8c:3a:74:57:6a:b1: e6:b3:f0:90:ba:6f:fe:e3:d9:1b:dd:60:56:f6:e3:d2:a8:b2: 29:49:7c:c3:7a:a5:09:cf:25:61:fa:23:95:5a:9c:2c:7d:18: b2:d2:2c:9f:5d:79:49:76:79:02:d4:72:ba:81:fd:16:d3:a2: ed:9d:18:f6:57:62:c2:56:82:e1:b3:7d:93:cb:65:11:a9:e6: 0f:22:55:b3:5a:8e:ff:4c:f1:f4:85:65:0b:41:77:e9:03:5d: 77:02:1c:b5:b6:99:1f:fd:a9:20:d6:cb:17:8c:ba:11:4f:b0: 34:95:89:62:31:74:4b:a3:35:d8:68:5f:9d:40:a9:1d:2e:bc: 16:6e:18:88:2e:4b:f0:43:75:71:ce:96:4c:87:22:3a:d5:eb: e3:f8:f0:2f:a9:8f:82:ca:67:18:6c:a8:52:1b:87:5f:98:c7: 10:2b:fe:b5:50:40:50:dc:ec:78:6d:f4:a2:1e:f5:0d:49:a4: 9b:42:c6:be:cb:65:19:95:58:92:70:eb:c5:66:36:d4:16:c6: c8:97:f0:24:40:73:ed:ee:79:d0:7b:0a:e8:27:71:86:0d:31: 2d:91:0c:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTBBRDExMC8GA1UEBRMoMEY2QjQ3MjBCMEEzNTcyMkQ4NUYzNDQ2RUZENDc0MEJE MzQxODM0RTAeFw0yNDExMjEwNTQ0MThaFw0yNDExMjgwNTQ0MThaMBgxFjAUBgNV BAMTDTY3M2VjOGIyLTRkOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8S8Wcov7vPrMbAqhhYQka8f7MD+I35meHWgDhzeTmO7TJj7HsyEDFPrI+bx+a YufUg67+RSAnsGvudxWBlLsxWVEMrj1F7TxVCbSjEgyGd7yAa6S7eenuSOtcUCuN lZrvM5Rmk8TOg8Rt3NsrB5nUiWiTqnTylb2Fca/K0Ko6gijh8VrfCXn/Z5QyJGFm 8aITZ4rDgF91XRSQPixxgX04jBWamGiWLanRJ4+d3ZFlp9qp28BhOJpX+gOAkb6j wCpskEqEs6OLUcUCREWLPd0NijbmDbBHWTk8EZOzlZlEyBrWr1kECjFylwzfjvRj YePsVBD8dTDvnk4suP8VZB3BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7YWj0ueK 7YmDz5Y1xUmXYdZx7Z8wHwYDVR0jBBgwFoAUD2tHILCjVyLYXzRG79R0C9NBg04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1MEFELzYwRUJFMUFDNjQz NDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDJ0SElMQ2pWeUxZWHpSRzc5UjBDOU5CZzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1 MEFELzYwRUJFMUFDNjQzNDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlM WVh6Ukc3OVIwQzlOQmcwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKjmNhL3snnkkz7azn3WdKs6vm/wDEvPrlClonSgqYw6dFdqseaz8JC6 b/7j2RvdYFb249KosilJfMN6pQnPJWH6I5VanCx9GLLSLJ9deUl2eQLUcrqB/RbT ou2dGPZXYsJWguGzfZPLZRGp5g8iVbNajv9M8fSFZQtBd+kDXXcCHLW2mR/9qSDW yxeMuhFPsDSViWIxdEujNdhoX51AqR0uvBZuGIguS/BDdXHOlkyHIjrV6+P48C+p j4LKZxhsqFIbh1+YxxAr/rVQQFDc7Hht9KIe9Q1JpJtCxr7LZRmVWJJw68VmNtQW xsiX8CRAc+3uedB7CugncYYNMS2RDLE= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:07 2024 by rpki-client on console-ams.rpki-client.org