$ rpki-client -vvf rpki.apnic.net/member_repository/A918801E/EDBCB56676D011EB8A26713BC4F9AE02/32858r33bgaklIQq2L-kHdk2Uw8.mft File: 32858r33bgaklIQq2L-kHdk2Uw8.mft (raw, json) Hash identifier: AeJzJ6Pb5CWLkxNJ/h/fhR4b+HmLXT4X2RIqzhpOTfA= Subject key identifier: 22:D8:C0:37:3B:98:19:10:B9:5B:31:7A:2A:34:E0:9B:B8:11:85:45 Authority key identifier: DF:6F:39:F2:BD:F7:6E:06:A4:94:84:2A:D8:BF:A4:1D:D9:36:53:0F Certificate issuer: /CN=A918801E/serialNumber=DF6F39F2BDF76E06A494842AD8BFA41DD936530F Certificate serial: 062D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32858r33bgaklIQq2L-kHdk2Uw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918801E/EDBCB56676D011EB8A26713BC4F9AE02/32858r33bgaklIQq2L-kHdk2Uw8.mft Manifest number: 0620 Signing time: Sun 24 Nov 2024 21:57:57 +0000 Manifest this update: Sun 24 Nov 2024 21:57:57 +0000 Manifest next update: Sun 01 Dec 2024 21:57:56 +0000 Files and hashes: 1: 32858r33bgaklIQq2L-kHdk2Uw8.crl (hash: GVJNd1c1G6gADR4gXkGK1WHCFlqftcFlAHdcIISfdMU=) 2: 1B3BC12C7B6211EB868F2852C4F9AE02.roa (hash: Y6WVJjMA9nF1j0+dogSaK6PUoOPLdUKnak1Os86YZB8=) 3: C995901E3F4611ED8371FB5DC4F9AE02.roa (hash: UyWItnTMgVhpzuDsZbe9xUg+2mA9nvO56T1Sxu8c6Wc=) 4: 872F917EA12D11EB967F285EC4F9AE02.roa (hash: n4tE7RUdO0Vp1mzQgXwPTDyfXHKbO16arwKC9WSMtpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918801E/EDBCB56676D011EB8A26713BC4F9AE02/32858r33bgaklIQq2L-kHdk2Uw8.crl rsync://rpki.apnic.net/member_repository/A918801E/EDBCB56676D011EB8A26713BC4F9AE02/32858r33bgaklIQq2L-kHdk2Uw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32858r33bgaklIQq2L-kHdk2Uw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918801E/serialNumber=DF6F39F2BDF76E06A494842AD8BFA41DD936530F Validity Not Before: Nov 24 21:57:57 2024 GMT Not After : Dec 1 21:57:56 2024 GMT Subject: CN=6743a165-21db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:98:7b:70:84:80:af:e6:fb:d3:a8:1a:91:e8: 02:1e:71:f3:1e:7a:37:5e:11:80:7d:79:c6:66:39: 64:f8:89:e6:13:25:e6:40:d5:d1:92:56:0d:f6:a0: 7d:f0:b8:d2:32:22:a5:b3:05:43:db:33:88:5b:e6: 5a:f3:9f:a0:a9:99:15:51:b4:53:e9:a7:12:4b:cb: ce:51:ac:6c:9f:6a:d4:e9:61:5e:ff:23:8a:c0:6e: 3b:1b:2d:ba:e5:c8:b1:71:9e:c7:b1:d0:71:ca:45: b4:a1:a7:ba:1c:d5:38:f9:9d:60:ec:17:f0:94:e1: 37:2b:98:49:9c:e0:5f:77:5d:d6:a4:69:e0:cb:dc: 15:cf:96:34:63:6a:c2:2c:23:61:05:ce:50:a0:dd: e1:14:8e:28:f1:dd:de:e2:37:80:8d:31:7b:b5:eb: b0:83:10:87:f0:cd:b4:6f:84:06:de:fc:5b:a5:e6: 87:f5:d5:cc:f4:11:04:97:71:3f:4e:7f:b8:88:38: ed:45:a6:70:f9:92:6a:c4:16:98:64:91:32:88:e7: 41:2a:77:48:22:9a:92:e6:82:3c:3f:7e:d6:25:e8: b4:97:9f:16:e0:6c:f5:14:a8:25:03:ab:f1:a2:ea: 81:ea:b0:f2:6a:96:66:ae:6f:55:81:84:9b:ed:eb: 9f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D8:C0:37:3B:98:19:10:B9:5B:31:7A:2A:34:E0:9B:B8:11:85:45 X509v3 Authority Key Identifier: keyid:DF:6F:39:F2:BD:F7:6E:06:A4:94:84:2A:D8:BF:A4:1D:D9:36:53:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918801E/EDBCB56676D011EB8A26713BC4F9AE02/32858r33bgaklIQq2L-kHdk2Uw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32858r33bgaklIQq2L-kHdk2Uw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918801E/EDBCB56676D011EB8A26713BC4F9AE02/32858r33bgaklIQq2L-kHdk2Uw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:b4:06:a1:cf:ee:f4:9b:c0:c3:e2:fd:56:08:15:4f:98:e0: 1b:53:43:a6:5e:6d:3b:0e:68:27:f6:87:38:fd:4a:41:83:0b: f1:3f:36:3e:48:c6:cd:8d:a1:a1:5c:2e:c2:6b:20:73:e2:37: 91:0d:e2:09:71:df:b0:00:e2:2c:d0:2d:61:8a:a9:74:cd:fc: 7a:09:05:92:af:a7:8a:99:b9:df:ae:95:b0:44:0f:2a:66:df: 56:b1:28:1c:3d:b5:9d:5c:67:71:df:ab:a6:3b:fc:c4:14:7f: 30:37:2a:f4:ec:f9:a2:0f:c3:20:a7:2a:68:48:25:97:27:fb: 47:02:8f:2f:6c:a0:65:75:26:f0:9b:16:e8:a8:d5:9a:6f:34: 83:80:7c:15:0a:0d:03:e1:7f:63:39:d5:c1:20:7c:b6:ae:ae: 97:0c:e7:c0:16:17:b4:97:d9:fa:e4:72:80:49:fb:20:5a:d2: 1b:54:0a:74:3e:62:b5:c5:ad:a9:2b:bb:48:67:c0:8c:5c:89: 92:ad:41:1e:e6:23:5e:67:73:de:be:9d:1c:c3:03:14:2b:04: 88:8e:09:9c:dd:43:f2:19:46:63:c7:78:ca:51:36:b5:95:7d: b4:77:d1:4b:23:d4:b2:81:17:cc:d9:70:5f:68:ca:cb:1a:21: 2f:aa:6e:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgwMUUxMTAvBgNVBAUTKERGNkYzOUYyQkRGNzZFMDZBNDk0ODQyQUQ4QkZBNDFE RDkzNjUzMEYwHhcNMjQxMTI0MjE1NzU3WhcNMjQxMjAxMjE1NzU2WjAYMRYwFAYD VQQDEw02NzQzYTE2NS0yMWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Jh7cISAr+b706gakegCHnHzHno3XhGAfXnGZjlk+InmEyXmQNXRklYN9qB9 8LjSMiKlswVD2zOIW+Za85+gqZkVUbRT6acSS8vOUaxsn2rU6WFe/yOKwG47Gy26 5cixcZ7HsdBxykW0oae6HNU4+Z1g7BfwlOE3K5hJnOBfd13WpGngy9wVz5Y0Y2rC LCNhBc5QoN3hFI4o8d3e4jeAjTF7teuwgxCH8M20b4QG3vxbpeaH9dXM9BEEl3E/ Tn+4iDjtRaZw+ZJqxBaYZJEyiOdBKndIIpqS5oI8P37WJei0l58W4Gz1FKglA6vx ouqB6rDyapZmrm9VgYSb7eufzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLYwDc7 mBkQuVsxeio04Ju4EYVFMB8GA1UdIwQYMBaAFN9vOfK9924GpJSEKti/pB3ZNlMP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODAxRS9FREJDQjU2Njc2 RDAxMUVCOEEyNjcxM0JDNEY5QUUwMi8zMjg1OHIzM2JnYWtsSVFxMkwta0hkazJV dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyODU4cjMzYmdha2xJUXEyTC1rSGRrMlV3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODAxRS9FREJDQjU2Njc2RDAxMUVCOEEyNjcxM0JDNEY5QUUwMi8zMjg1OHIzM2Jn YWtsSVFxMkwta0hkazJVdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0tAahz+70m8DD4v1WCBVPmOAbU0OmXm07Dmgn9oc4/UpBgwvxPzY+ SMbNjaGhXC7CayBz4jeRDeIJcd+wAOIs0C1hiql0zfx6CQWSr6eKmbnfrpWwRA8q Zt9WsSgcPbWdXGdx36umO/zEFH8wNyr07PmiD8MgpypoSCWXJ/tHAo8vbKBldSbw mxboqNWabzSDgHwVCg0D4X9jOdXBIHy2rq6XDOfAFhe0l9n65HKASfsgWtIbVAp0 PmK1xa2pK7tIZ8CMXImSrUEe5iNeZ3Pevp0cwwMUKwSIjgmc3UPyGUZjx3jKUTa1 lX20d9FLI9SygRfM2XBfaMrLGiEvqm4n -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:54 2024 by rpki-client on console-ams.rpki-client.org