$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: vozqlGTj6RfTXbzPC497sxA8hdDhfIpwD5KX1UO4vUQ= Subject key identifier: 0A:8B:86:20:2B:7A:D6:90:07:5B:06:B9:2E:A4:4C:6F:F0:C5:BF:F2 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 0176 Signing time: Sun 24 Nov 2024 16:00:43 +0000 Manifest this update: Sun 24 Nov 2024 16:00:42 +0000 Manifest next update: Sun 01 Dec 2024 16:00:42 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: vtP7l/k7PnXGwZVA1/wkiD1qVMUm6WHuxVHwv8OgX/U=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: 5lFgcyDbE0vFu9KIfC8bZV0EZn0X+DwTY3qN8a6qiYk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: L45BGsw9kntvdvochjJ1xkL7ueXbpNVN3LKrFmog0C0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Nov 24 16:00:42 2024 GMT Not After : Dec 1 16:00:42 2024 GMT Subject: CN=67434daa-16b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ba:86:6f:b7:00:9b:02:20:f5:f8:c6:8b:ba: 95:ec:58:db:6d:89:74:e0:1e:b9:8a:72:4e:7c:45: ed:ff:28:85:6c:67:b0:35:9d:9d:9b:a0:79:26:5c: 84:ff:13:27:7b:4a:b8:b4:c2:e6:4a:4f:08:52:c5: 8d:7d:f3:dd:cf:63:33:de:fc:31:48:40:a5:80:59: cd:e8:e5:d9:7e:6d:34:85:35:b6:0f:3f:a7:cf:24: 23:37:d9:0a:be:dd:69:4b:ab:e9:ee:ce:fb:06:0e: 10:14:d9:98:8b:91:b6:c8:81:e8:87:72:62:be:22: bb:d0:b6:ab:75:e0:69:24:29:35:63:e7:23:92:28: d4:e0:0f:d0:50:98:6f:c1:ad:4a:03:9c:73:e7:75: 6b:ab:99:13:46:71:36:ef:f1:e3:21:62:cc:5e:ff: dc:39:75:71:fd:72:6c:01:36:2e:8f:b5:18:ef:b1: 02:81:f2:0b:0c:b3:9b:30:ec:7a:05:b7:cd:e8:c9: cd:9c:a8:85:1f:a9:25:14:da:22:32:47:27:ef:bf: 26:83:d5:22:c8:73:c3:d3:c1:8c:60:a6:76:d2:61: 7a:0d:da:c2:ed:6a:58:ab:ec:f9:e2:06:c6:a1:0f: 6b:95:4c:15:b6:e4:f3:76:fd:89:3b:0d:df:a0:f9: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8B:86:20:2B:7A:D6:90:07:5B:06:B9:2E:A4:4C:6F:F0:C5:BF:F2 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:d8:31:b2:05:c6:b8:b8:62:f3:06:24:68:aa:49:21:71:90: f2:22:83:02:ab:a4:3a:74:46:1b:e6:91:9e:b6:03:a7:43:3a: fa:6e:24:f6:a7:f1:3a:ad:45:3a:fd:eb:8d:b8:a6:1d:0e:c8: 2c:89:f2:bf:86:88:fa:71:d9:ef:e3:b4:bc:41:40:7f:84:82: 37:5a:00:6d:60:e3:76:88:b2:a3:16:eb:ea:50:8c:32:99:79: 13:f5:d6:b8:46:08:98:ae:6a:67:c3:97:2d:ce:89:1a:c1:d3: c6:ec:c6:6a:f2:70:42:ba:f8:66:f9:d8:d8:25:bf:39:74:19: f0:a5:01:1b:ef:2d:38:58:75:a3:28:9e:bc:a5:6d:6b:b9:da: ed:90:f9:47:94:e5:62:0b:e1:91:4b:3a:05:0d:60:08:c8:39: 28:b5:c5:21:bc:56:45:b9:2f:17:b3:d8:ac:18:d0:2f:a3:23: 74:06:a7:80:64:13:1a:78:1b:4d:ac:71:45:81:3e:48:9f:6c: d8:87:86:89:09:df:b7:92:4c:bc:e5:d8:5d:c9:2f:9f:a7:8b: 74:7a:a2:a1:82:2a:f1:67:84:be:be:7c:69:3b:3d:ea:64:ba: 4d:e1:d2:6d:61:20:6e:10:cb:7a:d4:f2:20:e0:c7:4a:20:b9: b5:54:9c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjQxMTI0MTYwMDQyWhcNMjQxMjAxMTYwMDQyWjAYMRYwFAYD VQQDEw02NzQzNGRhYS0xNmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLqGb7cAmwIg9fjGi7qV7FjbbYl04B65inJOfEXt/yiFbGewNZ2dm6B5JlyE /xMne0q4tMLmSk8IUsWNffPdz2Mz3vwxSEClgFnN6OXZfm00hTW2Dz+nzyQjN9kK vt1pS6vp7s77Bg4QFNmYi5G2yIHoh3JiviK70LardeBpJCk1Y+cjkijU4A/QUJhv wa1KA5xz53Vrq5kTRnE27/HjIWLMXv/cOXVx/XJsATYuj7UY77ECgfILDLObMOx6 BbfN6MnNnKiFH6klFNoiMkcn778mg9UiyHPD08GMYKZ20mF6DdrC7WpYq+z54gbG oQ9rlUwVtuTzdv2JOw3foPlQ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqLhiAr etaQB1sGuS6kTG/wxb/yMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ2DGyBca4uGLzBiRoqkkhcZDyIoMCq6Q6dEYb5pGetgOnQzr6biT2 p/E6rUU6/euNuKYdDsgsifK/hoj6cdnv47S8QUB/hII3WgBtYON2iLKjFuvqUIwy mXkT9da4RgiYrmpnw5ctzokawdPG7MZq8nBCuvhm+djYJb85dBnwpQEb7y04WHWj KJ68pW1rudrtkPlHlOViC+GRSzoFDWAIyDkotcUhvFZFuS8Xs9isGNAvoyN0BqeA ZBMaeBtNrHFFgT5In2zYh4aJCd+3kky85dhdyS+fp4t0eqKhgirxZ4S+vnxpOz3q ZLpN4dJtYSBuEMt61PIg4MdKILm1VJzB -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:53 2024 by rpki-client on console-ams.rpki-client.org