$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: 8ClDZZAHtE7FT+AIgdivf4kP0ZiUDhZuRjs+ZTI1kQo= Subject key identifier: B9:39:73:5E:66:57:67:C7:9D:EB:7E:15:50:6C:BA:25:12:8A:07:A9 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 0124 Signing time: Sat 23 Nov 2024 02:53:27 +0000 Manifest this update: Sat 23 Nov 2024 02:53:27 +0000 Manifest next update: Sat 30 Nov 2024 02:53:27 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: E0feGIRmV4CP4dmsFV8L6QzOb+Z27L9aSklU786kJGQ=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: NwcAmb3qtzieVF3nFtWxzqVHGCVeqZBrpDbY94p+NYk=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: Fb+sAlO981Q8IszvJ9e3FZrhvTZMZ9fTATHnLpoxBL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Nov 23 02:53:27 2024 GMT Not After : Nov 30 02:53:27 2024 GMT Subject: CN=674143a7-3f66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:e3:bc:ca:5d:bd:7b:93:03:f8:7d:f4:3c: ac:15:d6:a4:95:a4:7d:49:87:87:4d:12:7e:52:50: 48:db:2d:e7:c8:1f:59:07:ce:c0:e6:62:b5:9f:7c: 9e:11:04:43:fa:d8:af:42:46:83:37:e9:a1:57:da: ee:d8:9f:32:5c:df:01:f5:fb:94:73:cd:24:74:3a: 84:1e:67:a7:d9:3d:e9:d8:64:8c:aa:cf:fb:1a:fc: 7c:d4:cb:8d:8f:46:2b:86:58:df:90:a2:e9:83:9e: 1f:39:c6:37:90:4f:d3:99:b2:e9:8a:0c:70:8c:24: 4a:89:c1:76:50:54:43:07:bb:d3:0f:f0:00:a2:8d: 52:fb:77:e3:a3:9d:c4:f4:3b:61:89:44:b4:72:8c: b5:df:79:04:8a:c2:b0:89:04:2d:55:2f:3f:b4:e4: e6:0e:62:e7:bd:80:65:15:5a:f0:5e:13:d0:0d:5b: 3b:b3:6d:28:a4:d8:fc:2b:a2:45:73:85:b3:ee:5d: 98:be:a3:b4:d8:a1:65:7e:ec:85:af:ce:63:fc:62: 0b:51:12:c7:b0:6c:33:4e:35:73:6d:14:f6:82:32: 3b:e0:51:75:d8:06:7c:a6:43:0b:2d:1f:fb:99:28: ec:47:c3:61:a5:9a:25:d6:52:33:36:46:b5:66:5a: 3a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:39:73:5E:66:57:67:C7:9D:EB:7E:15:50:6C:BA:25:12:8A:07:A9 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:47:7a:c6:51:75:b4:13:4d:35:a0:5c:94:b8:c9:0a:d5:2d: d3:0a:a0:55:82:26:7b:00:bf:4a:6d:60:f7:ba:40:b6:82:5c: 41:2b:b1:11:88:5e:41:fe:61:50:b4:64:15:b1:0b:3a:e3:d1: d9:d6:8b:e0:a4:fe:8d:de:d1:9e:c5:a8:a1:34:e2:ca:59:4e: d8:fd:38:c4:96:2b:e8:4a:63:1b:11:28:43:c4:4a:6d:bc:c1: cd:8b:5d:82:3c:ea:09:8b:49:21:77:f9:05:e8:fd:63:f9:fa: 48:92:dd:98:74:0e:15:98:eb:f6:ab:40:ab:09:c7:8f:8c:60: 3c:a9:cd:76:9d:27:26:72:87:85:29:13:3c:15:5f:b4:f4:ed: f1:5a:88:a8:0f:a2:3e:13:ae:ce:fc:63:4a:b7:fd:82:55:36: 31:4c:92:21:f8:3c:f9:78:1a:56:84:46:09:00:f9:6c:29:b9: 51:b6:f4:2a:03:7c:50:16:b6:bc:97:0c:3c:8c:18:81:c4:07: 27:71:8c:cf:57:f5:24:96:93:2a:88:1d:52:52:51:c6:79:17: 67:9d:66:3e:84:51:82:4a:ed:67:d5:93:7d:db:7a:4e:97:52: 3d:4c:1d:b7:d3:bc:45:a1:ec:37:b9:ff:f8:dd:6f:77:cd:9f: f7:d6:f5:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjQxMTIzMDI1MzI3WhcNMjQxMTMwMDI1MzI3WjAYMRYwFAYD VQQDEw02NzQxNDNhNy0zZjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMzjvMpdvXuTA/h99DysFdaklaR9SYeHTRJ+UlBI2y3nyB9ZB87A5mK1n3ye EQRD+tivQkaDN+mhV9ru2J8yXN8B9fuUc80kdDqEHmen2T3p2GSMqs/7Gvx81MuN j0YrhljfkKLpg54fOcY3kE/TmbLpigxwjCRKicF2UFRDB7vTD/AAoo1S+3fjo53E 9DthiUS0coy133kEisKwiQQtVS8/tOTmDmLnvYBlFVrwXhPQDVs7s20opNj8K6JF c4Wz7l2YvqO02KFlfuyFr85j/GILURLHsGwzTjVzbRT2gjI74FF12AZ8pkMLLR/7 mSjsR8NhpZol1lIzNka1Zlo6fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLk5c15m V2fHnet+FVBsuiUSigepMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxR3rGUXW0E001oFyUuMkK1S3TCqBVgiZ7AL9KbWD3ukC2glxBK7ER iF5B/mFQtGQVsQs649HZ1ovgpP6N3tGexaihNOLKWU7Y/TjElivoSmMbEShDxEpt vMHNi12CPOoJi0khd/kF6P1j+fpIkt2YdA4VmOv2q0CrCcePjGA8qc12nScmcoeF KRM8FV+09O3xWoioD6I+E67O/GNKt/2CVTYxTJIh+Dz5eBpWhEYJAPlsKblRtvQq A3xQFra8lww8jBiBxAcncYzPV/UklpMqiB1SUlHGeRdnnWY+hFGCSu1n1ZN923pO l1I9TB2307xFoew3uf/43W93zZ/31vUn -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org