$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft File: apjAwIy9NBmpCCuGDSm_qXL98qc.mft (raw, json) Hash identifier: o75T5Zo9pdHFgEFy/U6hHG2hUvM946o5r7R59buD4w8= Subject key identifier: A4:87:5D:2F:14:AF:07:13:A1:90:61:9E:58:EC:DB:F6:B1:33:7B:BF Authority key identifier: 6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 Certificate issuer: /CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Certificate serial: 03CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft Manifest number: 03C9 Signing time: Sat 23 Nov 2024 00:13:58 +0000 Manifest this update: Sat 23 Nov 2024 00:13:58 +0000 Manifest next update: Sat 30 Nov 2024 00:13:58 +0000 Files and hashes: 1: apjAwIy9NBmpCCuGDSm_qXL98qc.crl (hash: TRMZ8Z6KC72kNDGvOSGdGSpdjsiTLtS2CLqViDS4VHk=) 2: 61B3CBDC631911ECAE6AA33DC4F9AE02.roa (hash: h+OfjjehRIA/zlWGe9h6a4OIJN0B8XRTcU6gU5D8yHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 972 (0x3cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Validity Not Before: Nov 23 00:13:58 2024 GMT Not After : Nov 30 00:13:58 2024 GMT Subject: CN=67411e46-14b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:9d:e1:b1:45:26:a7:27:aa:37:ed:65:d8: 0f:d3:73:c6:7a:3b:30:68:3a:16:b2:a6:2a:59:79: 6f:d5:ef:5b:a5:b2:9e:af:c1:a7:64:eb:4c:d0:c1: 2f:f5:b8:63:fe:0b:be:02:25:34:0d:29:06:da:20: 40:e6:f7:58:f7:0e:d4:00:b1:5e:f9:2f:5f:b7:df: 52:12:42:34:30:39:19:b5:12:6f:e8:f5:c2:3d:44: 88:71:fa:84:db:9d:7a:a1:2c:29:97:1a:46:2c:06: 68:be:97:17:3f:7d:1c:5b:10:db:79:27:24:4a:6f: d3:f3:8f:09:59:26:d0:3c:12:04:93:55:bc:81:eb: 38:4c:5b:e4:b3:33:a0:67:b3:47:f9:43:6a:2c:ca: 36:9b:bc:35:c5:55:a9:aa:76:23:38:60:36:71:15: 67:50:29:d8:08:9c:eb:3c:87:ea:30:3f:5c:dc:2d: 67:4b:a9:1e:73:f7:10:25:03:74:f2:50:88:c8:a0: 46:2b:cc:f7:e0:e0:1c:de:6e:c6:0d:09:2f:65:96: 6b:9a:be:32:c8:43:dc:a4:6c:c9:9e:2c:25:de:2f: f7:d0:7f:f4:24:02:c9:47:02:51:e2:d6:64:ab:15: 5c:9b:b7:8c:a0:23:66:9e:0f:a4:f6:4e:6c:33:86: 45:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:87:5D:2F:14:AF:07:13:A1:90:61:9E:58:EC:DB:F6:B1:33:7B:BF X509v3 Authority Key Identifier: keyid:6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:5c:50:a7:a3:66:23:0a:3b:05:e6:e9:cc:64:13:ee:06:c9: c2:b1:5e:9d:2e:a3:1f:44:1e:a7:2f:87:3c:91:03:8f:df:5a: 20:79:7d:24:a2:3b:27:0e:8b:1f:59:30:e6:4a:a2:07:d5:80: 44:f5:66:7f:58:af:34:22:71:6a:50:b4:68:43:6d:6a:05:3c: 24:36:50:c8:f8:42:ef:b0:27:55:d9:1c:9e:a8:32:e0:6e:ff: 04:f0:0e:ac:66:40:f2:f4:13:06:d6:aa:d2:79:96:1a:f0:94: 56:a9:f0:a9:8c:4f:f0:60:68:8e:0b:fa:6b:3f:35:88:00:10: d6:90:f0:b2:72:3e:9d:c2:58:30:9b:25:92:e6:91:e3:c3:7c: 21:e2:97:28:3b:57:1f:47:c2:7b:63:72:69:4e:39:13:18:f7: 4a:22:f1:35:af:20:f8:06:13:9c:ee:fc:98:b3:cd:b3:3d:f0: 4d:5b:8c:db:e0:5f:02:d5:6c:5b:24:0d:b5:32:91:ec:8b:f1: 3e:12:10:cf:e9:e9:2e:14:ad:ef:45:09:f7:24:0f:6f:f4:10: c0:2a:18:b5:71:74:10:f6:c0:c2:85:94:49:c8:b9:5e:41:a1: dc:42:68:10:20:96:26:19:0f:b9:c6:09:da:10:81:f8:22:69: d2:32:0f:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJCRDYxMTAvBgNVBAUTKDZBOThDMEMwOENCRDM0MTlBOTA4MkI4NjBEMjlCRkE5 NzJGREYyQTcwHhcNMjQxMTIzMDAxMzU4WhcNMjQxMTMwMDAxMzU4WjAYMRYwFAYD VQQDEw02NzQxMWU0Ni0xNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0umd4bFFJqcnqjftZdgP03PGejswaDoWsqYqWXlv1e9bpbKer8GnZOtM0MEv 9bhj/gu+AiU0DSkG2iBA5vdY9w7UALFe+S9ft99SEkI0MDkZtRJv6PXCPUSIcfqE 2516oSwplxpGLAZovpcXP30cWxDbeSckSm/T848JWSbQPBIEk1W8ges4TFvkszOg Z7NH+UNqLMo2m7w1xVWpqnYjOGA2cRVnUCnYCJzrPIfqMD9c3C1nS6kec/cQJQN0 8lCIyKBGK8z34OAc3m7GDQkvZZZrmr4yyEPcpGzJniwl3i/30H/0JALJRwJR4tZk qxVcm7eMoCNmng+k9k5sM4ZFSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSHXS8U rwcToZBhnljs2/axM3u/MB8GA1UdIwQYMBaAFGqYwMCMvTQZqQgrhg0pv6ly/fKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkJENi85QzU4NURCMDYz MTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5CbXBDQ3VHRFNtX3FYTDk4 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwakF3SXk5TkJtcENDdUdEU21fcVhMOThxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkJENi85QzU4NURCMDYzMTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5C bXBDQ3VHRFNtX3FYTDk4cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUXFCno2YjCjsF5unMZBPuBsnCsV6dLqMfRB6nL4c8kQOP31ogeX0k ojsnDosfWTDmSqIH1YBE9WZ/WK80InFqULRoQ21qBTwkNlDI+ELvsCdV2RyeqDLg bv8E8A6sZkDy9BMG1qrSeZYa8JRWqfCpjE/wYGiOC/prPzWIABDWkPCycj6dwlgw myWS5pHjw3wh4pcoO1cfR8J7Y3JpTjkTGPdKIvE1ryD4BhOc7vyYs82zPfBNW4zb 4F8C1WxbJA21MpHsi/E+EhDP6ekuFK3vRQn3JA9v9BDAKhi1cXQQ9sDChZRJyLle QaHcQmgQIJYmGQ+5xgnaEIH4ImnSMg+5 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org