$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: WaaitHhqO+r2oFxFp6cI20LftkIkktEWz2km0E7z5EU= Subject key identifier: 0D:FC:54:FA:24:52:FD:1D:D6:AE:75:A5:97:A9:97:91:D3:41:9B:15 Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 0145 Signing time: Sat 23 Nov 2024 02:42:00 +0000 Manifest this update: Sat 23 Nov 2024 02:41:59 +0000 Manifest next update: Sat 30 Nov 2024 02:41:59 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: dgZcFkJ8hMx9GSKu36ybSElYKFrUMGIO5FstxANwXuA=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Nov 23 02:41:59 2024 GMT Not After : Nov 30 02:41:59 2024 GMT Subject: CN=674140f7-b9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9d:7f:09:31:f0:1a:41:38:16:a3:05:6a:f0: 37:65:ac:25:d0:89:52:62:56:75:41:dd:ac:37:29: 5f:28:61:31:b0:61:c5:7f:65:a0:40:94:ea:20:8e: 94:88:21:e9:f6:c0:46:66:90:e3:0b:a1:2f:69:8d: 6b:ce:00:ef:a2:14:fa:dc:39:dc:86:4e:ce:c3:e0: 12:04:fd:fb:3e:b7:67:26:ac:c5:ae:ff:de:e4:a0: ae:71:75:bc:35:a7:80:e1:34:0c:45:4a:d5:1d:c4: b7:57:56:ad:db:62:3f:0f:a8:74:77:0a:b2:01:c2: 31:60:1a:5c:22:cc:f7:18:6e:c8:83:9c:1d:74:96: 0d:34:5a:b4:32:58:be:5d:0e:55:87:ab:c2:a4:14: 3c:e1:8f:da:9f:01:98:23:22:16:3f:7e:e0:ff:f3: 52:1a:af:70:bf:20:63:09:96:39:af:77:f3:3f:aa: a5:d9:14:f3:b3:9c:36:e9:5a:6f:b0:52:9a:cc:65: 2c:f8:89:5e:6c:f2:11:47:5e:20:32:8c:99:b4:e6: e8:83:60:e8:5d:7d:e9:fd:c1:e3:80:a2:b8:b3:10: 30:78:89:19:05:31:c9:35:27:c9:f6:cd:a2:f0:e7: 95:cb:6f:bd:f9:48:91:82:48:a3:7d:e7:89:87:d9: f4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:FC:54:FA:24:52:FD:1D:D6:AE:75:A5:97:A9:97:91:D3:41:9B:15 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:17:db:0f:2b:db:f6:26:13:3a:20:46:3c:fa:15:c7:85:cc: 7c:74:c2:1e:5b:5b:68:fb:a8:a8:76:eb:a7:e8:f7:55:0c:a5: fc:7f:2f:99:78:61:3e:15:34:a9:2d:04:6b:a1:a8:7e:28:52: 92:a9:ac:99:b3:91:b4:8c:a1:3a:17:95:a6:b6:f7:c8:06:dc: 9d:47:d4:39:ed:7e:57:a6:72:9c:88:4e:27:c4:dc:4d:b9:7c: fe:54:40:8b:cb:1e:be:ff:f1:a5:38:67:8a:d6:01:09:62:91: a6:2f:d5:68:e8:e5:cc:e0:6f:dd:e2:2e:de:59:be:bb:f6:8a: 2d:8f:c4:49:34:b1:f1:0a:dc:50:b6:bd:ed:a4:33:c7:1d:1e: 0f:1c:97:9a:6c:71:86:d2:1d:b0:f1:fb:1f:d0:b3:cd:a4:36: 38:76:de:7f:bd:84:0f:97:c2:58:df:c7:97:b6:cb:f5:76:94: b3:ca:62:93:3a:28:50:6c:45:87:01:53:ad:4a:fc:2d:f0:dd: 56:9c:a5:88:f8:e2:82:f5:7a:e7:5e:6e:64:8f:68:de:58:a1: 7f:8a:97:75:7a:ae:46:8b:7a:22:9d:67:6f:0f:11:d0:84:79: 98:30:5b:60:78:ff:b9:c4:0f:d6:b8:db:bd:f6:4b:95:ea:fc: 41:af:92:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjQxMTIzMDI0MTU5WhcNMjQxMTMwMDI0MTU5WjAYMRYwFAYD VQQDEw02NzQxNDBmNy1iOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArp1/CTHwGkE4FqMFavA3Zawl0IlSYlZ1Qd2sNylfKGExsGHFf2WgQJTqII6U iCHp9sBGZpDjC6EvaY1rzgDvohT63Dnchk7Ow+ASBP37PrdnJqzFrv/e5KCucXW8 NaeA4TQMRUrVHcS3V1at22I/D6h0dwqyAcIxYBpcIsz3GG7Ig5wddJYNNFq0Mli+ XQ5Vh6vCpBQ84Y/anwGYIyIWP37g//NSGq9wvyBjCZY5r3fzP6ql2RTzs5w26Vpv sFKazGUs+IlebPIRR14gMoyZtObog2DoXX3p/cHjgKK4sxAweIkZBTHJNSfJ9s2i 8OeVy2+9+UiRgkijfeeJh9n0PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA38VPok Uv0d1q51pZepl5HTQZsVMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbF9sPK9v2JhM6IEY8+hXHhcx8dMIeW1to+6ioduun6PdVDKX8fy+Z eGE+FTSpLQRroah+KFKSqayZs5G0jKE6F5WmtvfIBtydR9Q57X5XpnKciE4nxNxN uXz+VECLyx6+//GlOGeK1gEJYpGmL9Vo6OXM4G/d4i7eWb679ootj8RJNLHxCtxQ tr3tpDPHHR4PHJeabHGG0h2w8fsf0LPNpDY4dt5/vYQPl8JY38eXtsv1dpSzymKT OihQbEWHAVOtSvwt8N1WnKWI+OKC9XrnXm5kj2jeWKF/ipd1eq5Gi3oinWdvDxHQ hHmYMFtgeP+5xA/WuNu99kuV6vxBr5IB -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org