$ rpki-client -vvf rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft File: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft (raw, json) Hash identifier: ++FM+yOjXlPYGofTJvlezXjVk3ck5KH4xgPzw8P7g2Q= Subject key identifier: 05:A0:DA:39:8A:77:10:C5:49:3F:37:1C:6B:87:04:43:B5:BC:D7:34 Authority key identifier: D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 Certificate issuer: /CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Certificate serial: 105D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft Manifest number: 1048 Signing time: Fri 22 Nov 2024 17:22:23 +0000 Manifest this update: Fri 22 Nov 2024 17:22:23 +0000 Manifest next update: Fri 29 Nov 2024 17:22:23 +0000 Files and hashes: 1: 0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl (hash: elwblwBTkqLRTzt4ZWUMbV3WWVCLbEScpKAkCPWVoUw=) 2: 0E17B1AE78F511EC83E56014C4F9AE02.roa (hash: 6mPv2FPkPdVn8mEbOR89pKQkkNqTmbALuQL8Sady2qs=) 3: 0D0B79E478F511EC83E56014C4F9AE02.roa (hash: ygNC39ZsxtAGAtuQH3emuo307vQgk7jb+zvcr9M4ndI=) 4: 1ED5B13E30C111ECBB5A4116C4F9AE02.roa (hash: VECQZxdYNeax7w8PdOp72wQ1jo/3BdHCyClKAC1SUgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4189 (0x105d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919608D/serialNumber=D2D808049A46ED797C21F9F6025234564631B3F9 Validity Not Before: Nov 22 17:22:23 2024 GMT Not After : Nov 29 17:22:23 2024 GMT Subject: CN=6740bdcf-1ec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:08:62:e8:99:58:8f:67:00:89:4c:27:98:90: 21:16:90:33:0a:26:c8:9a:2c:c8:77:93:bb:7b:0b: 85:5b:0d:6b:78:c7:05:8d:df:b5:1b:3f:32:c3:1d: c4:b5:f7:7f:30:8b:66:4b:fb:a5:7f:19:ad:f6:24: 04:c8:dc:cf:4d:e6:8a:d2:ef:29:b2:b1:b3:b9:1d: 4f:e7:e2:3a:16:8a:9f:a7:5b:8e:92:9c:fb:fc:1d: 3a:e9:45:f3:13:93:77:a4:f0:68:8d:89:bb:da:19: dc:09:05:29:4d:6d:d6:94:15:2b:81:3e:76:b7:c4: 62:3b:6b:31:bb:db:b6:f0:cb:bc:a2:2c:5d:d7:7b: 45:05:f9:75:db:b7:33:53:e0:9f:37:4c:de:55:57: 98:91:84:0d:c1:f4:92:72:95:4a:5b:8b:e3:fe:f9: e4:21:2b:08:cf:e9:67:b1:a0:09:dd:ee:74:03:6e: db:43:4a:e2:8b:9e:f7:e2:21:39:ce:cc:25:ca:30: 8b:30:63:20:65:db:eb:d8:fc:67:a6:ec:f9:d6:0a: c9:fe:ae:d9:b5:ba:1d:3f:d5:96:fe:c2:a0:22:10: a3:4a:a7:84:0d:83:e2:91:c5:7a:b4:42:a8:ca:a0: 97:d2:26:b2:dd:57:c6:c3:35:0e:d9:1e:3a:2c:2d: d0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A0:DA:39:8A:77:10:C5:49:3F:37:1C:6B:87:04:43:B5:BC:D7:34 X509v3 Authority Key Identifier: keyid:D2:D8:08:04:9A:46:ED:79:7C:21:F9:F6:02:52:34:56:46:31:B3:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919608D/81073A30287711E99421C84CC4F9AE02/0tgIBJpG7Xl8Ifn2AlI0VkYxs_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:23:e2:04:62:cb:a3:af:65:c5:31:35:94:a5:0a:0f:fb:04: c3:55:9e:00:1e:74:ac:a9:5f:bf:f5:47:df:a9:45:aa:91:f5: 0c:58:80:c9:35:86:f1:1c:6a:87:2a:ac:2e:4e:3b:64:f1:08: fb:30:b8:2c:42:55:60:c1:16:20:00:60:55:d4:8d:ed:3c:09: f3:31:71:b6:51:19:71:5c:c8:ce:39:96:60:49:fb:7c:a3:bb: c1:44:5e:c5:c8:01:7e:ba:fe:2c:65:49:9d:8b:57:13:f0:d9: 2c:4d:95:25:b0:2b:84:e2:f2:ea:65:82:ee:60:65:a6:30:a0: a2:4e:07:51:5a:39:cb:80:55:ba:3e:a2:d4:ee:da:cc:b9:41: 71:93:77:26:8f:8e:5f:25:60:81:21:0d:47:a8:8c:b9:78:30: e0:18:3a:b2:8f:cf:d6:2d:59:da:6e:14:5d:5e:04:ca:ab:f6: 97:b5:01:0c:8f:15:0e:32:e1:de:2c:78:29:f1:d7:a6:8b:30: ef:bd:3b:f5:73:cd:3d:94:ab:01:73:ee:df:e5:e4:3a:e0:b4: 53:b0:13:48:e9:53:95:c7:2c:8d:c9:eb:e7:a6:d0:36:19:81: be:77:64:25:1c:aa:ef:1a:d5:7f:67:70:e5:43:2c:ec:3a:85: 2a:fd:83:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYwOEQxMTAvBgNVBAUTKEQyRDgwODA0OUE0NkVENzk3QzIxRjlGNjAyNTIzNDU2 NDYzMUIzRjkwHhcNMjQxMTIyMTcyMjIzWhcNMjQxMTI5MTcyMjIzWjAYMRYwFAYD VQQDEw02NzQwYmRjZi0xZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAhi6JlYj2cAiUwnmJAhFpAzCibImizId5O7ewuFWw1reMcFjd+1Gz8ywx3E tfd/MItmS/ulfxmt9iQEyNzPTeaK0u8psrGzuR1P5+I6Foqfp1uOkpz7/B066UXz E5N3pPBojYm72hncCQUpTW3WlBUrgT52t8RiO2sxu9u28Mu8oixd13tFBfl127cz U+CfN0zeVVeYkYQNwfSScpVKW4vj/vnkISsIz+lnsaAJ3e50A27bQ0rii5734iE5 zswlyjCLMGMgZdvr2Pxnpuz51grJ/q7ZtbodP9WW/sKgIhCjSqeEDYPikcV6tEKo yqCX0iay3VfGwzUO2R46LC3QlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWg2jmK dxDFST83HGuHBEO1vNc0MB8GA1UdIwQYMBaAFNLYCASaRu15fCH59gJSNFZGMbP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjA4RC84MTA3M0EzMDI4 NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdYbDhJZm4yQWxJMFZrWXhz X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB0Z0lCSnBHN1hsOElmbjJBbEkwVmtZeHNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjA4RC84MTA3M0EzMDI4NzcxMUU5OTQyMUM4NENDNEY5QUUwMi8wdGdJQkpwRzdY bDhJZm4yQWxJMFZrWXhzX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDI+IEYsujr2XFMTWUpQoP+wTDVZ4AHnSsqV+/9UffqUWqkfUMWIDJ NYbxHGqHKqwuTjtk8Qj7MLgsQlVgwRYgAGBV1I3tPAnzMXG2URlxXMjOOZZgSft8 o7vBRF7FyAF+uv4sZUmdi1cT8NksTZUlsCuE4vLqZYLuYGWmMKCiTgdRWjnLgFW6 PqLU7trMuUFxk3cmj45fJWCBIQ1HqIy5eDDgGDqyj8/WLVnabhRdXgTKq/aXtQEM jxUOMuHeLHgp8demizDvvTv1c809lKsBc+7f5eQ64LRTsBNI6VOVxyyNyevnptA2 GYG+d2QlHKrvGtV/Z3DlQyzsOoUq/YPi -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org