$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: N0lKy2Sc50Yv/GyN1H0kBsQBrLHiqFJI68ZuIIZC9FA= Subject key identifier: 28:D6:C1:CA:11:DB:53:3B:33:F8:84:EF:CB:E9:42:44:F4:23:F4:1F Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 060D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0605 Signing time: Fri 22 Nov 2024 22:14:55 +0000 Manifest this update: Fri 22 Nov 2024 22:14:54 +0000 Manifest next update: Fri 29 Nov 2024 22:14:54 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: U5Zfb8/ywBg7/v+sb/GZ8d2tTigLS0ORIe3+NWG4Ul0=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: lf2fZu+kzi68qsiVImQ67iSYP92BmTFnTbXCqKHalTc=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: aKEU87qAcncu/BJ6gK9tToyu/o+XFeqBoVn46I9z2OQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1549 (0x60d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Nov 22 22:14:54 2024 GMT Not After : Nov 29 22:14:54 2024 GMT Subject: CN=6741025e-c0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3e:ea:81:5d:bc:b9:d0:ed:40:f0:ea:89:80: 53:ed:81:2b:89:52:3c:72:fa:7d:cd:02:3b:a7:5d: ee:87:c8:6b:ec:1a:70:38:36:cc:93:57:9c:a2:96: 9a:39:fb:99:e9:1c:60:bf:e7:16:9f:cb:f1:d3:79: 89:8d:5e:3e:93:66:9e:0f:57:7b:ee:1a:7f:8f:1c: d9:a4:70:d2:49:b5:c7:b5:83:1a:5e:74:39:57:7a: 7e:ec:f7:ae:d8:9d:e6:41:e7:c6:e7:76:72:dd:f3: b1:30:9e:75:72:6b:cd:7b:2e:2d:d9:bf:26:88:e4: b7:96:cc:b0:57:e3:62:3c:2e:a1:18:54:67:f0:5a: 6e:48:1e:85:62:8a:b0:35:5b:8a:0f:86:11:55:f3: e2:c8:6a:b4:c2:87:ed:60:78:e8:04:c9:b1:11:4f: 6d:b0:bd:08:50:70:54:68:f4:03:ab:a9:4d:4d:6f: c5:9d:5d:8d:94:3a:4b:c4:6d:93:a9:2f:bb:41:89: 29:d2:10:b5:d0:ea:7a:b3:cd:91:78:c4:7c:18:37: 57:bf:e9:5f:ec:45:4a:c8:a0:c2:80:f2:ab:57:c6: 68:4d:7f:7d:58:80:17:e4:c2:d7:44:2d:ad:53:d6: ca:d3:be:c2:c7:ce:21:44:af:1a:9b:68:20:73:12: b9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D6:C1:CA:11:DB:53:3B:33:F8:84:EF:CB:E9:42:44:F4:23:F4:1F X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:58:8c:bb:ff:4c:9c:0a:c5:63:17:d3:e9:e0:93:69:14:c2: 7a:63:5c:fe:ba:8e:79:3e:50:f0:6f:2c:90:32:70:c3:92:a0: 80:6c:15:33:0d:c2:a5:bc:c5:8a:37:7d:90:ea:df:b2:17:74: 6b:e3:f3:b1:43:85:d4:5b:71:5e:3c:0b:01:cf:7b:df:7f:e5: 73:e7:ff:b5:64:91:3d:ee:98:0c:6e:d8:4e:ef:ae:3a:1d:6f: ca:e6:3a:22:6f:93:09:1d:83:27:d9:f6:6b:65:87:9d:38:2c: 59:7b:e8:14:8c:22:87:7a:32:58:fe:1a:6d:60:d9:4e:e0:17: 4b:1a:51:e6:d8:a0:a9:61:89:41:af:39:55:6d:15:49:8b:84: c4:af:41:21:14:c3:f1:99:01:22:10:58:1c:65:6e:8b:89:ec: ee:32:f1:dd:8c:6e:9b:ae:90:48:64:27:53:42:5e:9b:f4:af: 59:8c:87:50:01:75:3d:a0:bc:48:0a:2b:7a:ba:be:24:c5:07: a7:22:d8:f1:f2:7e:99:b3:35:20:f7:2b:54:c6:10:af:e5:5a: 5d:ca:78:a4:4f:09:f5:e1:ba:9b:d4:8e:48:bb:15:f8:2b:b0: b0:b0:93:e5:de:29:7f:72:7b:fb:6a:7a:5e:f2:96:5a:15:d2: 1c:ac:c0:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjQxMTIyMjIxNDU0WhcNMjQxMTI5MjIxNDU0WjAYMRYwFAYD VQQDEw02NzQxMDI1ZS1jMGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwT7qgV28udDtQPDqiYBT7YEriVI8cvp9zQI7p13uh8hr7BpwODbMk1ecopaa OfuZ6Rxgv+cWn8vx03mJjV4+k2aeD1d77hp/jxzZpHDSSbXHtYMaXnQ5V3p+7Peu 2J3mQefG53Zy3fOxMJ51cmvNey4t2b8miOS3lsywV+NiPC6hGFRn8FpuSB6FYoqw NVuKD4YRVfPiyGq0woftYHjoBMmxEU9tsL0IUHBUaPQDq6lNTW/FnV2NlDpLxG2T qS+7QYkp0hC10Op6s82ReMR8GDdXv+lf7EVKyKDCgPKrV8ZoTX99WIAX5MLXRC2t U9bK077Cx84hRK8am2ggcxK57wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjWwcoR 21M7M/iE78vpQkT0I/QfMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdWIy7/0ycCsVjF9Pp4JNpFMJ6Y1z+uo55PlDwbyyQMnDDkqCAbBUz DcKlvMWKN32Q6t+yF3Rr4/OxQ4XUW3FePAsBz3vff+Vz5/+1ZJE97pgMbthO7646 HW/K5joib5MJHYMn2fZrZYedOCxZe+gUjCKHejJY/hptYNlO4BdLGlHm2KCpYYlB rzlVbRVJi4TEr0EhFMPxmQEiEFgcZW6LiezuMvHdjG6brpBIZCdTQl6b9K9ZjIdQ AXU9oLxICit6ur4kxQenItjx8n6ZszUg9ytUxhCv5VpdynikTwn14bqb1I5IuxX4 K7CwsJPl3il/cnv7anpe8pZaFdIcrMDY -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org