$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: RS+gXE1sx2Orht4dB7q7PliJASm3uDOUKWKXKFQNfoM= Subject key identifier: F9:52:34:C7:B5:A2:1D:5C:F7:DD:32:54:4D:97:C1:7A:2D:16:A5:A9 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0824 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 07F5 Signing time: Wed 20 Nov 2024 20:40:08 +0000 Manifest this update: Wed 20 Nov 2024 20:40:08 +0000 Manifest next update: Wed 27 Nov 2024 20:40:08 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: 0gO2K8y28nl/3DU58zx+Hk980T5Z57n42N94cfi1Mss=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: rj1Y2oKQRykUrgTjFIBgGOC0IpBQnYNCHuR++XSYwQ8=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: k7KXYbChOHqpdItmNemI/9G9HWNYz5Sv2bSwF8YpeuU=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: +TpENWCM4D4iEWxVllxyYGo56wvvtiB2oIE1r+GqSjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2084 (0x824) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Nov 20 20:40:08 2024 GMT Not After : Nov 27 20:40:08 2024 GMT Subject: CN=673e4928-0d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:3b:7a:9c:12:a8:6b:bf:9e:55:0b:f4:39: b4:66:2c:3a:e8:cb:96:3e:8c:c8:03:e4:86:6f:68: 20:c9:26:ab:6a:eb:6a:c2:38:97:81:00:86:99:33: 72:b3:1e:f7:71:54:3a:be:bb:c6:98:be:7e:38:cc: 57:d9:77:0e:8c:66:3b:e8:15:0d:26:f2:40:b1:a5: 59:62:f3:aa:a8:71:7d:7b:85:c8:17:72:5e:a6:74: f3:96:55:3a:a9:88:67:cd:21:8a:cd:bf:e7:57:6b: 80:46:d0:a6:ec:a8:e3:6e:08:9c:01:f9:5a:f9:1e: 65:07:65:8c:27:3f:70:81:f8:63:a8:ca:cb:14:ce: f7:06:0b:89:0e:f3:40:44:cd:5c:13:dc:c7:bc:44: 90:40:37:1c:ec:88:e1:61:2e:bc:f7:51:b4:5b:94: cf:ed:49:c6:ea:79:ac:46:0f:6d:f5:ce:b7:f3:6a: a3:7d:49:9f:68:7e:8c:c8:c3:11:e7:18:17:5a:5e: ec:6c:a4:2a:da:22:f2:88:2d:bd:3e:37:c5:7a:07: 8a:4e:82:4f:f2:8d:31:04:d0:f8:62:33:e8:67:89: 5d:4d:66:ec:1f:c0:9f:2c:b0:7e:87:02:00:e4:18: 47:0d:ed:8e:52:1e:84:62:b3:90:f2:9a:0d:a6:3d: aa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:52:34:C7:B5:A2:1D:5C:F7:DD:32:54:4D:97:C1:7A:2D:16:A5:A9 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:8f:24:3a:1d:58:b3:83:e7:84:a6:77:2c:80:35:c0:cd:24: 5f:07:21:2e:c6:3b:45:a9:81:8d:9a:79:58:31:78:56:1d:18: cc:74:46:ee:5c:bb:61:0e:0c:c6:fd:e7:69:86:1a:5d:4f:e2: 0a:7e:e9:6a:50:de:0b:db:8c:9b:d3:c0:49:37:14:bf:0c:d0: 0d:e5:12:04:50:f1:61:fc:30:5c:43:d1:17:a8:eb:93:9d:90: c9:4b:31:7e:98:0f:7f:f5:07:d0:2d:34:fe:f0:a3:96:f1:60: b5:23:05:89:0a:1f:99:99:f2:c2:2b:9f:a7:12:bc:ce:d8:4a: 18:c0:43:ec:2d:3e:3e:d7:3a:3e:96:12:c5:a4:85:88:f0:03: 6e:ec:76:85:66:8b:dc:7d:7d:39:ef:2f:db:eb:d8:1d:08:6d: 99:f3:1c:5c:17:c1:ef:3b:bd:cb:02:51:64:bf:49:61:97:56: 73:6c:00:49:16:6e:92:71:8e:f8:7c:c3:e0:7b:a9:50:8b:6f: e4:ac:a0:5a:d4:d5:69:5b:57:7e:58:b5:8c:3f:2c:b1:3c:e0: 6a:ec:a7:19:bf:c8:e8:9c:36:b3:88:be:e6:46:ad:42:89:a1: 6d:02:c6:71:87:fe:22:48:c4:a7:b4:c7:81:7d:81:3a:54:42: 88:43:15:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjQxMTIwMjA0MDA4WhcNMjQxMTI3MjA0MDA4WjAYMRYwFAYD VQQDEw02NzNlNDkyOC0wZDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFM7epwSqGu/nlUL9Dm0Ziw66MuWPozIA+SGb2ggySarautqwjiXgQCGmTNy sx73cVQ6vrvGmL5+OMxX2XcOjGY76BUNJvJAsaVZYvOqqHF9e4XIF3JepnTzllU6 qYhnzSGKzb/nV2uARtCm7KjjbgicAfla+R5lB2WMJz9wgfhjqMrLFM73BguJDvNA RM1cE9zHvESQQDcc7IjhYS6891G0W5TP7UnG6nmsRg9t9c6382qjfUmfaH6MyMMR 5xgXWl7sbKQq2iLyiC29PjfFegeKToJP8o0xBND4YjPoZ4ldTWbsH8CfLLB+hwIA 5BhHDe2OUh6EYrOQ8poNpj2qKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlSNMe1 oh1c990yVE2XwXotFqWpMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPjyQ6HVizg+eEpncsgDXAzSRfByEuxjtFqYGNmnlYMXhWHRjMdEbu XLthDgzG/edphhpdT+IKfulqUN4L24yb08BJNxS/DNAN5RIEUPFh/DBcQ9EXqOuT nZDJSzF+mA9/9QfQLTT+8KOW8WC1IwWJCh+ZmfLCK5+nErzO2EoYwEPsLT4+1zo+ lhLFpIWI8ANu7HaFZovcfX057y/b69gdCG2Z8xxcF8HvO73LAlFkv0lhl1ZzbABJ Fm6ScY74fMPge6lQi2/krKBa1NVpW1d+WLWMPyyxPOBq7KcZv8jonDaziL7mRq1C iaFtAsZxh/4iSMSntMeBfYE6VEKIQxWw -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:47 2024 by rpki-client on console-ams.rpki-client.org