$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft File: httX5pD30wkpOii6fFX7ivN9Xb0.mft (raw, json) Hash identifier: 3Tuo++cmPV6TCHCYFr5L5fHjO7xL1H1k0PKh3juEMb0= Subject key identifier: A6:43:A5:60:1D:62:48:81:46:A9:86:1A:3B:E7:9A:72:31:B7:1B:84 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 3608 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft Manifest number: 3608 Signing time: Fri 22 Nov 2024 14:34:23 +0000 Manifest this update: Fri 22 Nov 2024 14:34:23 +0000 Manifest next update: Fri 29 Nov 2024 14:34:23 +0000 Files and hashes: 1: httX5pD30wkpOii6fFX7ivN9Xb0.crl (hash: rRFO0F3PT7T6jahD+Kx9RZml8g0o5Dx/vxlqBwaNU7k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:34:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13832 (0x3608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Nov 22 14:34:23 2024 GMT Not After : Nov 29 14:34:23 2024 GMT Subject: CN=6740966f-1645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:3e:1c:41:bb:8e:a8:d7:18:ee:da:41:55: 1b:d6:90:89:47:89:3c:f1:b9:34:4d:89:07:24:bf: a9:52:98:20:fa:02:fa:34:0d:19:5f:99:3b:d8:c0: b0:1a:ad:6b:5b:1f:d3:1a:51:bb:42:e7:b7:55:f0: f8:0d:c1:71:8c:27:ad:79:36:56:12:1a:62:92:89: 27:e9:9e:b2:fa:9b:61:dc:9a:64:8c:9d:65:13:fc: 25:d9:22:92:4a:66:e1:60:34:67:73:70:20:d6:00: f6:ce:8c:ba:47:f7:9c:8a:8e:61:5b:fb:4b:62:99: 39:ca:8c:1c:1d:00:5e:29:69:a0:7d:53:1f:7c:db: d1:88:b7:ec:20:d9:b7:55:24:7d:d4:c7:dc:f2:a2: dd:d2:0c:71:3e:50:06:0f:3b:88:76:52:63:49:cf: 0c:73:87:98:b3:77:a1:d4:4b:61:a5:86:15:d1:cc: ae:9f:84:f7:a0:bf:9b:0b:15:08:70:fd:30:66:09: 11:54:10:f2:f9:0d:39:e0:59:7e:42:d9:ef:32:a4: cb:99:94:8d:29:a4:7f:59:38:7b:4b:66:75:ac:77: 45:d0:5e:59:15:fc:0e:96:3b:85:77:45:19:50:88: 6e:61:7f:89:bc:a7:0d:ff:d9:b0:81:00:d7:dc:14: 75:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:43:A5:60:1D:62:48:81:46:A9:86:1A:3B:E7:9A:72:31:B7:1B:84 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fb:f5:35:90:c0:3c:8b:c1:ab:7c:29:11:93:0f:5a:58:4a: b8:e0:87:be:5a:49:fa:75:7e:80:49:52:cb:80:f4:5f:a6:59: cd:e8:1c:66:da:eb:a0:ab:fc:c2:9e:88:1a:ea:47:fc:4c:04: d3:f8:29:3f:26:99:1a:a4:17:e9:73:de:ed:29:b8:00:97:c9: 2c:49:2f:62:ee:42:62:cf:a7:45:a6:ca:ee:cb:e8:40:59:0e: 55:f5:8a:14:1c:4f:12:f4:a3:c9:4b:4b:79:5e:eb:1c:dc:be: b1:f1:14:6c:b3:c2:97:98:92:fc:8c:5a:6e:6d:7f:98:7c:89: 77:c0:a3:26:a2:bb:49:bc:dd:b1:c9:bd:83:54:93:dc:8c:1c: db:61:a2:22:90:da:3c:34:b5:25:36:c5:4e:16:7b:27:f1:00: 11:f1:32:ca:ab:a7:05:7a:a7:f2:00:17:c3:1f:94:6c:32:19: dc:ac:50:df:b5:2d:6a:51:15:0c:46:78:1a:fa:66:14:99:2f: ce:ae:22:4a:20:0d:93:2c:c1:09:43:68:23:ef:39:08:fa:18: fa:72:31:5c:87:e8:f5:11:48:ce:14:56:6c:2b:2b:f7:16:80: f7:f1:58:f0:55:65:98:17:4c:57:73:d7:f2:bf:5b:74:0b:49: bf:53:b3:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjQxMTIyMTQzNDIzWhcNMjQxMTI5MTQzNDIzWjAYMRYwFAYD VQQDEw02NzQwOTY2Zi0xNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8s+HEG7jqjXGO7aQVUb1pCJR4k88bk0TYkHJL+pUpgg+gL6NA0ZX5k72MCw Gq1rWx/TGlG7Que3VfD4DcFxjCeteTZWEhpikokn6Z6y+pth3JpkjJ1lE/wl2SKS SmbhYDRnc3Ag1gD2zoy6R/ecio5hW/tLYpk5yowcHQBeKWmgfVMffNvRiLfsINm3 VSR91Mfc8qLd0gxxPlAGDzuIdlJjSc8Mc4eYs3eh1EthpYYV0cyun4T3oL+bCxUI cP0wZgkRVBDy+Q054Fl+QtnvMqTLmZSNKaR/WTh7S2Z1rHdF0F5ZFfwOljuFd0UZ UIhuYX+JvKcN/9mwgQDX3BR1rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZDpWAd YkiBRqmGGjvnmnIxtxuEMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTYwQS9COTk1M0RCQTFEOEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3 a3BPaWk2ZkZYN2l2TjlYYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN+/U1kMA8i8GrfCkRkw9aWEq44Ie+Wkn6dX6ASVLLgPRfplnN6Bxm 2uugq/zCnoga6kf8TATT+Ck/JpkapBfpc97tKbgAl8ksSS9i7kJiz6dFpsruy+hA WQ5V9YoUHE8S9KPJS0t5Xusc3L6x8RRss8KXmJL8jFpubX+YfIl3wKMmortJvN2x yb2DVJPcjBzbYaIikNo8NLUlNsVOFnsn8QAR8TLKq6cFeqfyABfDH5RsMhncrFDf tS1qURUMRnga+mYUmS/OriJKIA2TLMEJQ2gj7zkI+hj6cjFch+j1EUjOFFZsKyv3 FoD38VjwVWWYF0xXc9fyv1t0C0m/U7MX -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:02 2024 by rpki-client on console-ams.rpki-client.org