$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: 02NAutyJfKg1I7l28z5zqRCzTdzjFWd1N5gBuOGLTHw= Subject key identifier: 52:E0:A8:23:C1:39:CC:56:80:95:48:88:20:21:20:88:87:3D:AD:1A Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 25AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 2599 Signing time: Fri 22 Nov 2024 15:43:38 +0000 Manifest this update: Fri 22 Nov 2024 15:43:38 +0000 Manifest next update: Fri 29 Nov 2024 15:43:38 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: hlLW0FXffM47Am/6sXOkH61uu0hFoKyYVeljE6CspZI=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: wlnyKHrlK/WWGM/sWHlA6+OjLcmqJ1sU/DSuQx9lYJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9644 (0x25ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Nov 22 15:43:38 2024 GMT Not After : Nov 29 15:43:38 2024 GMT Subject: CN=6740a6aa-7a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:98:01:1c:2b:22:79:a2:11:16:88:25:d1:af: d4:3f:44:b3:30:70:9b:5a:cd:75:6e:25:06:ca:c5: 95:38:7d:6f:58:80:aa:04:25:5e:cc:9c:8f:0e:d5: b5:9c:88:e4:70:cb:60:f0:bd:d9:81:0e:dc:ae:04: 92:8a:45:2d:61:5c:09:ae:58:13:57:a8:72:8b:48: a2:51:ad:ff:71:68:0f:30:6b:b8:c8:da:57:95:d4: 26:20:bc:d6:99:90:88:16:c5:b9:9e:88:ad:b4:6d: 54:e2:fc:44:a9:d4:72:62:24:26:b3:23:75:aa:20: bf:52:03:1f:6c:ec:31:cd:97:c7:8e:31:1e:d0:d5: 71:c2:d0:d5:15:10:ac:4f:66:9d:db:4b:e5:2b:47: 74:82:05:4b:c3:03:21:86:70:44:b6:e4:5d:9d:63: 79:cb:19:c2:25:fd:16:74:92:bf:a3:14:e8:4b:40: 9e:83:3c:0f:fd:c5:76:9e:20:e2:fd:b9:b9:c9:ae: ec:b7:5b:49:d7:4f:28:1a:47:15:c7:5c:40:f9:58: 19:ec:cd:06:ce:d9:56:28:3a:6f:c8:ff:6a:65:b7: dc:ca:4d:74:69:2a:83:e0:6c:03:62:f6:4b:99:9c: ce:96:b2:83:aa:ff:2c:3d:dc:45:72:5c:02:d5:a9: 50:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E0:A8:23:C1:39:CC:56:80:95:48:88:20:21:20:88:87:3D:AD:1A X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:b6:6a:53:bf:df:33:f2:d0:04:cd:ad:fc:76:fd:43:7c:76: 25:44:5a:c3:e3:04:72:fa:d7:f0:9e:05:e0:63:66:28:4d:f1: 1f:bb:9b:60:3f:96:a8:d1:d8:f3:98:e4:63:dc:d0:40:24:a8: 6f:e5:e1:54:6b:f1:73:9c:89:b4:19:c6:fc:ef:89:e5:80:a0: bb:38:97:65:b6:74:47:14:8f:87:c9:bb:1c:08:24:5a:ae:9d: 30:b9:22:32:de:af:79:76:72:e2:9a:05:19:47:ae:9a:00:ca: e9:bf:2c:92:1e:08:b3:ec:74:b9:dd:5f:bc:e7:98:44:d4:81: 96:47:60:28:c8:58:63:14:0f:d3:56:64:79:38:82:09:fd:39: 92:0c:b5:97:db:4b:4d:03:1a:41:1e:d5:a9:94:af:74:07:6f: 13:8f:37:1d:27:c6:f5:38:74:d6:73:6a:12:5c:9d:ba:b8:df: 94:e4:2b:1f:70:33:8d:e6:b7:7b:51:8d:40:f2:7e:d2:c2:ab: 8e:d8:ac:aa:23:d0:87:ab:80:1a:c0:17:8f:76:07:1a:ca:55: b3:66:88:24:4d:80:e8:44:d6:de:9f:6b:56:4b:cb:c9:62:20: 4a:09:63:0d:59:51:a2:d4:dc:c2:67:08:1f:66:77:c9:64:2f: 42:72:56:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjQxMTIyMTU0MzM4WhcNMjQxMTI5MTU0MzM4WjAYMRYwFAYD VQQDEw02NzQwYTZhYS03YTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZgBHCsieaIRFogl0a/UP0SzMHCbWs11biUGysWVOH1vWICqBCVezJyPDtW1 nIjkcMtg8L3ZgQ7crgSSikUtYVwJrlgTV6hyi0iiUa3/cWgPMGu4yNpXldQmILzW mZCIFsW5noittG1U4vxEqdRyYiQmsyN1qiC/UgMfbOwxzZfHjjEe0NVxwtDVFRCs T2ad20vlK0d0ggVLwwMhhnBEtuRdnWN5yxnCJf0WdJK/oxToS0CegzwP/cV2niDi /bm5ya7st1tJ108oGkcVx1xA+VgZ7M0GztlWKDpvyP9qZbfcyk10aSqD4GwDYvZL mZzOlrKDqv8sPdxFclwC1alQgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLgqCPB OcxWgJVIiCAhIIiHPa0aMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTtmpTv98z8tAEza38dv1DfHYlRFrD4wRy+tfwngXgY2YoTfEfu5tg P5ao0djzmORj3NBAJKhv5eFUa/FznIm0Gcb874nlgKC7OJdltnRHFI+HybscCCRa rp0wuSIy3q95dnLimgUZR66aAMrpvyySHgiz7HS53V+855hE1IGWR2AoyFhjFA/T VmR5OIIJ/TmSDLWX20tNAxpBHtWplK90B28TjzcdJ8b1OHTWc2oSXJ26uN+U5Csf cDON5rd7UY1A8n7SwquO2KyqI9CHq4AawBePdgcaylWzZogkTYDoRNben2tWS8vJ YiBKCWMNWVGi1NzCZwgfZnfJZC9CclbZ -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:59 2024 by rpki-client on console-ams.rpki-client.org