$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: APPEt1D9nGfThtCVBK2a3jidQ7TI7wYApiCNbsMl/II= Subject key identifier: EF:A7:27:DA:29:35:D5:71:17:8E:92:56:70:F1:6B:26:70:E9:48:02 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 0219 Signing time: Thu 21 Nov 2024 01:30:34 +0000 Manifest this update: Thu 21 Nov 2024 01:30:33 +0000 Manifest next update: Thu 28 Nov 2024 01:30:33 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: X0kNXuaQHKgH5DncaVSRHCxYl1K/WwAnR0J6JcYHmHs=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: 9zqxhpOangW9769mdxLoJSN4Rv/Y8CMGWvMe+D0Ah7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Nov 21 01:30:33 2024 GMT Not After : Nov 28 01:30:33 2024 GMT Subject: CN=673e8d3a-fdcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:12:b9:90:af:0c:27:41:38:33:a8:f8:0a:09: 4c:ae:d5:60:41:72:d5:b3:c8:62:6e:3a:88:cc:c1: 86:52:56:78:b9:e4:77:f4:c1:05:df:28:74:d5:8b: 40:d4:be:07:9c:33:10:56:76:28:60:15:33:a0:61: d3:3d:ce:b4:25:9a:44:ff:db:50:46:fa:ec:64:fa: 2d:01:ac:6b:cc:31:1d:76:37:3d:bd:ec:7f:6e:cd: b1:82:45:ca:ee:06:04:3b:7b:58:eb:f6:05:8b:14: 20:df:c1:3b:b1:4c:20:a2:7d:42:d5:7d:60:d0:67: ed:49:67:8b:60:2f:80:1e:a6:6f:73:06:70:cc:16: 8f:cb:d4:6e:16:7b:71:e1:41:dc:c4:1e:29:84:8e: f0:e0:19:2e:bd:2a:6b:fd:04:45:c5:90:f8:c5:68: 23:32:dc:ad:ed:87:31:62:e3:14:5d:2b:6e:b2:d1: 61:37:f8:c2:e3:93:16:39:f6:d4:5a:f4:2c:22:89: 2a:9c:26:05:5d:2b:73:72:82:9e:61:2a:21:8b:23: 16:18:c6:71:5e:44:78:79:9e:1e:ba:f0:39:11:84: 6c:f5:94:9a:a9:d1:a1:89:8e:e6:ba:b9:93:29:94: 6c:2a:02:c7:7b:68:02:6d:a8:94:95:00:dc:87:61: ca:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A7:27:DA:29:35:D5:71:17:8E:92:56:70:F1:6B:26:70:E9:48:02 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:86:e1:cb:17:e8:5c:d3:5d:b4:a5:0f:ec:00:51:c4:13:8b: 09:9e:c9:c3:5c:84:ea:2b:9f:1b:5c:b6:f3:a6:e5:14:07:69: aa:a6:2b:c9:20:87:c3:ff:80:15:15:1d:79:cb:f5:0d:2d:de: 28:1e:2a:30:05:44:7a:8b:65:11:34:30:7a:af:23:15:4e:b0: 24:65:55:67:05:6c:d7:7a:d0:43:10:17:b9:c5:b6:dc:6a:23: b6:a0:a9:7f:e4:dd:03:82:d3:35:90:fc:76:fb:73:fe:f4:10: ce:6b:2a:b5:f0:08:fe:71:1b:f3:64:63:74:90:2d:ca:cb:37: 20:18:54:76:8a:46:bf:00:8f:45:00:4f:1f:93:38:b6:c2:3c: 5a:ae:1c:98:f2:87:43:ae:02:fb:24:46:f5:d8:84:55:06:f0: be:08:c1:f9:a0:6a:a0:ef:91:a3:a3:bf:8e:39:60:35:80:bc: 51:fe:13:8d:12:22:60:b2:f5:8f:22:26:d3:44:01:1d:4a:a6: 02:cb:4e:0e:97:47:d2:ed:fe:be:f1:74:77:5c:e0:88:6b:7f: 0c:3c:ff:4d:20:b6:c2:38:77:36:d0:8d:ed:aa:11:06:32:55: 5c:c1:7c:29:66:ff:6f:35:f1:42:78:06:37:be:39:08:d7:76: 10:7d:90:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjQxMTIxMDEzMDMzWhcNMjQxMTI4MDEzMDMzWjAYMRYwFAYD VQQDEw02NzNlOGQzYS1mZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhK5kK8MJ0E4M6j4CglMrtVgQXLVs8hibjqIzMGGUlZ4ueR39MEF3yh01YtA 1L4HnDMQVnYoYBUzoGHTPc60JZpE/9tQRvrsZPotAaxrzDEddjc9vex/bs2xgkXK 7gYEO3tY6/YFixQg38E7sUwgon1C1X1g0GftSWeLYC+AHqZvcwZwzBaPy9RuFntx 4UHcxB4phI7w4BkuvSpr/QRFxZD4xWgjMtyt7YcxYuMUXStustFhN/jC45MWOfbU WvQsIokqnCYFXStzcoKeYSohiyMWGMZxXkR4eZ4euvA5EYRs9ZSaqdGhiY7murmT KZRsKgLHe2gCbaiUlQDch2HKdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+nJ9op NdVxF46SVnDxayZw6UgCMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6huHLF+hc0120pQ/sAFHEE4sJnsnDXITqK58bXLbzpuUUB2mqpivJ IIfD/4AVFR15y/UNLd4oHiowBUR6i2URNDB6ryMVTrAkZVVnBWzXetBDEBe5xbbc aiO2oKl/5N0DgtM1kPx2+3P+9BDOayq18Aj+cRvzZGN0kC3KyzcgGFR2ika/AI9F AE8fkzi2wjxarhyY8odDrgL7JEb12IRVBvC+CMH5oGqg75Gjo7+OOWA1gLxR/hON EiJgsvWPIibTRAEdSqYCy04Ol0fS7f6+8XR3XOCIa38MPP9NILbCOHc20I3tqhEG MlVcwXwpZv9vNfFCeAY3vjkI13YQfZDc -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org