$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: hg24U3MvUMn/VQIoo8giKgLL/eaxyZZH48IyU3F4Mf8= Subject key identifier: A2:EA:5A:F5:9F:C0:88:5C:B6:45:F3:41:34:CB:FE:99:5F:27:36:36 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0D20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0D17 Signing time: Fri 22 Nov 2024 17:58:27 +0000 Manifest this update: Fri 22 Nov 2024 17:58:27 +0000 Manifest next update: Fri 29 Nov 2024 17:58:27 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: r/RLnGfOOpNIaUBel2iUrVbfm0Jxy6tf1yBW8cFkVFg=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: pTMoVBZCsEARFbs1aGExyarMu+r7tLUk6ACYjZUvCyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Nov 22 17:58:27 2024 GMT Not After : Nov 29 17:58:27 2024 GMT Subject: CN=6740c643-eb04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6a:ad:2f:02:72:fa:87:89:65:f2:cb:c2:5b: 74:cd:ed:d4:3f:f8:52:60:5f:fd:13:73:78:d6:4d: 1b:36:a0:4f:1a:0b:67:87:f8:43:21:92:1b:a8:64: 9d:c7:8d:6d:28:ac:e0:6f:60:49:4f:06:f4:9a:41: d3:ec:03:54:c4:7f:8b:e4:a8:16:16:e4:4f:2d:28: b3:9a:84:3b:21:25:df:a5:ae:53:98:81:fa:0c:af: 07:a5:d9:a9:4b:36:79:52:82:43:e8:c4:61:71:3b: c8:be:0e:17:19:a1:5d:e4:e5:52:a5:76:5c:90:07: 32:ea:ff:14:b6:45:08:09:e0:95:0c:e9:94:3a:bb: 25:65:b7:84:ef:13:b3:43:e6:24:09:22:17:32:33: d8:9e:d3:92:20:37:26:4b:9c:2c:26:34:03:f5:af: f1:90:9c:ab:47:a7:f6:19:84:9c:a3:d9:c6:cd:0c: e2:a5:11:d2:8b:64:43:3d:19:4f:9f:3e:2e:a1:e1: c8:fe:60:be:00:fa:ff:a1:66:57:c9:31:42:6a:6d: 21:4f:e0:c2:a7:0c:f0:74:8b:5f:68:29:bb:59:90: 51:bd:89:ea:6e:c6:a8:2a:f8:9b:e1:98:54:94:62: 3c:de:f3:2f:e6:15:ae:27:90:ec:59:e9:9c:77:58: 85:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:EA:5A:F5:9F:C0:88:5C:B6:45:F3:41:34:CB:FE:99:5F:27:36:36 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:5a:45:12:26:8d:74:5f:d7:ff:1d:fe:b5:8a:c6:ab:a8:b9: bd:06:7a:54:c3:03:aa:7e:ba:f4:21:7a:e4:a7:ce:9e:a4:87: f9:0d:bc:6f:bf:3a:fb:dd:48:f9:6a:7d:43:51:89:d8:79:19: 8d:15:a0:f4:0d:4b:bd:f3:db:3d:ab:c8:ea:8c:21:d2:32:53: ea:f4:22:41:93:69:cd:17:6b:6c:84:3e:d9:2f:21:1e:c9:4d: da:08:95:3b:a2:ac:ed:a1:62:94:cd:af:dd:0f:d9:e0:7b:d5: 0a:bf:be:a3:f6:d9:03:5e:5b:a9:eb:40:a2:e1:68:cf:77:e8: 6c:27:59:7a:0e:be:b7:eb:aa:ea:26:6e:1b:fd:88:a1:60:1b: 98:1e:27:8d:0d:de:4f:f7:08:f1:04:50:5d:c8:2d:da:7a:6b: 47:8b:7c:de:5d:27:f0:f2:58:cc:5e:93:66:54:eb:50:aa:cd: 1f:77:25:a5:5f:c4:6b:b4:9e:2f:c1:dd:4b:5d:09:4c:d3:19: 8e:ff:1b:e2:3f:c4:c6:d0:72:af:a3:32:3d:1e:02:79:46:4d: f5:c1:69:4e:9f:f4:01:4c:aa:49:38:d7:f7:63:63:01:b9:6f: be:09:56:1c:21:9a:b1:f8:38:1a:71:90:4c:c5:51:0b:fb:42: 79:6f:22:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjQxMTIyMTc1ODI3WhcNMjQxMTI5MTc1ODI3WjAYMRYwFAYD VQQDEw02NzQwYzY0My1lYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl2qtLwJy+oeJZfLLwlt0ze3UP/hSYF/9E3N41k0bNqBPGgtnh/hDIZIbqGSd x41tKKzgb2BJTwb0mkHT7ANUxH+L5KgWFuRPLSizmoQ7ISXfpa5TmIH6DK8Hpdmp SzZ5UoJD6MRhcTvIvg4XGaFd5OVSpXZckAcy6v8UtkUICeCVDOmUOrslZbeE7xOz Q+YkCSIXMjPYntOSIDcmS5wsJjQD9a/xkJyrR6f2GYSco9nGzQzipRHSi2RDPRlP nz4uoeHI/mC+APr/oWZXyTFCam0hT+DCpwzwdItfaCm7WZBRvYnqbsaoKvib4ZhU lGI83vMv5hWuJ5DsWemcd1iFeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLqWvWf wIhctkXzQTTL/plfJzY2MB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbWkUSJo10X9f/Hf61isarqLm9BnpUwwOqfrr0IXrkp86epIf5Dbxv vzr73Uj5an1DUYnYeRmNFaD0DUu989s9q8jqjCHSMlPq9CJBk2nNF2tshD7ZLyEe yU3aCJU7oqztoWKUza/dD9nge9UKv76j9tkDXlup60Ci4WjPd+hsJ1l6Dr6366rq Jm4b/YihYBuYHieNDd5P9wjxBFBdyC3aemtHi3zeXSfw8ljMXpNmVOtQqs0fdyWl X8RrtJ4vwd1LXQlM0xmO/xviP8TG0HKvozI9HgJ5Rk31wWlOn/QBTKpJONf3Y2MB uW++CVYcIZqx+DgacZBMxVEL+0J5byIa -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org