$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft File: MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft (raw, json) Hash identifier: 21NC/eM1AGtNa8VB/J60/jqqJb8UdFIPdz20JiYuxeQ= Subject key identifier: 6F:71:89:2E:00:BA:DD:01:01:4E:2D:8B:3A:F0:A6:3A:3D:FD:DA:56 Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft Manifest number: FB Signing time: Mon 25 Nov 2024 03:18:58 +0000 Manifest this update: Mon 25 Nov 2024 03:18:57 +0000 Manifest next update: Mon 02 Dec 2024 03:18:57 +0000 Files and hashes: 1: MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl (hash: tgcGugxE2kJzqWs5nECyWAOWhdEfchCIZVv5WCEGagg=) 2: 268DF20A940C11EE9B034255C4F9AE02.roa (hash: kgaZFM6PEa7OxBpQNYQJyC2BXzh6kZmUunDtbxoanho=) 3: 2732E7CE940C11EE9B034255C4F9AE02.roa (hash: vxzRpo3gFHIybngZJMla9i3xRZ+JSBWrRy4xi4ckalM=) 4: D29109C4EC6E11EEAEF9610BC4F9AE02.roa (hash: D8dAG/9CmCMBEAtiY945ZqCN3MyX7EsagCsHQSrxDDU=) 5: 7474F998377111EE8AFEB74DC4F9AE02.roa (hash: uxmO0Zu81b9ijLgJWFAnqvmhDLc0ZfCAbuCH6EbXLi0=) 6: B0562E7AEC6E11EEB7FC060BC4F9AE02.roa (hash: SpJD8GcSBoUz5MPi6PJr9VjMBRC58LFgHcmGttoe0yo=) 7: D2093EF4EC6E11EEAEF9610BC4F9AE02.roa (hash: G4Dla87V8rtQVoFrowa7K0BJ1dHwJVBSq0/2lBCHVpo=) 8: E9874B2A16D011EF90793868C4F9AE02.roa (hash: ViBEiXsjPtwDWgjWAoRfyKQaAhEvEFxJcWrERgHGyz4=) 9: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (hash: sVe/dlsdpYGwjAAFXOmmuTaA1ya2H4hHFG6dxtS3qXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Nov 25 03:18:57 2024 GMT Not After : Dec 2 03:18:57 2024 GMT Subject: CN=6743eca2-2921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4b:02:74:4c:fa:99:ce:b2:cf:15:18:cd:87: 1d:44:0b:9b:f7:b9:ed:c9:d4:ee:4f:98:3a:4a:eb: 86:ba:83:80:2e:a2:3d:f9:d1:da:fd:0c:f2:b8:f2: 08:47:f9:8e:58:dd:1c:e8:05:91:db:ba:81:d7:a6: 3e:1c:07:3a:03:f4:c6:c8:4d:95:07:87:61:f3:24: a6:57:06:ae:37:79:31:a1:33:f7:c8:5d:ad:62:45: 79:41:e1:1e:95:6f:04:9d:02:6c:54:a0:8e:44:b2: 5b:40:4b:ba:b1:64:42:e9:ee:16:e8:07:c2:a0:e2: 94:f7:43:d7:5e:af:f2:61:83:c8:4a:8d:f8:9a:5d: 64:e9:15:67:74:76:dc:f6:6e:79:ac:82:ce:55:f1: c6:7d:70:73:da:49:92:fc:d5:9e:bb:10:4a:5e:5c: 51:1c:6f:c3:5a:b4:c5:f0:2f:f4:92:b1:6e:d8:a5: 35:45:0a:87:b1:24:67:1e:8f:a1:80:63:ce:f3:71: 3d:ef:e9:45:9a:4c:64:5a:70:d0:c1:e1:c5:53:2c: 3b:18:51:bb:dc:04:0e:9f:87:dd:80:c1:cc:ef:7c: 0b:ed:c4:e2:dd:b0:62:47:97:43:19:d7:78:f0:76: bd:8f:9b:2c:36:de:d4:b7:d2:34:a6:63:b8:77:35: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:71:89:2E:00:BA:DD:01:01:4E:2D:8B:3A:F0:A6:3A:3D:FD:DA:56 X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:bd:1b:70:16:c0:f8:06:8a:61:63:ac:50:f8:18:6e:18:a8: 6d:9b:2b:b5:7f:9d:15:05:3b:d4:ac:bf:b9:b4:f2:c5:72:9c: 02:70:3b:9e:7a:97:90:f3:34:5d:c2:c9:97:e8:3f:b9:02:55: 56:7a:69:b4:31:56:9d:b5:18:3b:88:bb:e2:f0:4e:4c:85:0e: 6d:db:ff:51:4a:64:e8:0f:1d:6d:00:c3:1f:a7:30:32:d2:41: 55:4a:0a:49:24:1b:45:bf:6b:67:b5:34:de:5a:7c:8b:da:79: 70:04:ae:24:1a:ce:68:1a:e5:0d:cf:cf:27:8d:50:8f:69:9c: cb:22:b5:9c:ff:2a:e5:91:b9:96:8c:df:d3:aa:de:e0:b8:9e: 3d:19:55:bf:1c:79:ba:4e:45:ea:5d:7c:02:c7:f4:bb:64:14: 45:b2:6a:af:1d:74:60:b8:7f:fd:72:41:3f:88:ab:a6:8b:16: d8:c6:0b:2f:01:ca:ba:00:bc:0b:d1:e2:c4:5a:63:83:b9:ed: d9:6c:37:27:c2:ea:8e:92:95:b8:51:69:80:c8:77:8b:8e:70: 55:bc:4b:c0:83:ed:ee:ae:31:f7:2a:41:ba:c3:0f:ff:7e:68: 83:9d:c4:59:02:d0:7f:4b:75:fd:ed:6d:bf:9e:b1:8a:66:22: 11:29:53:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjQxMTI1MDMxODU3WhcNMjQxMjAyMDMxODU3WjAYMRYwFAYD VQQDEw02NzQzZWNhMi0yOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEsCdEz6mc6yzxUYzYcdRAub97ntydTuT5g6SuuGuoOALqI9+dHa/QzyuPII R/mOWN0c6AWR27qB16Y+HAc6A/TGyE2VB4dh8ySmVwauN3kxoTP3yF2tYkV5QeEe lW8EnQJsVKCORLJbQEu6sWRC6e4W6AfCoOKU90PXXq/yYYPISo34ml1k6RVndHbc 9m55rILOVfHGfXBz2kmS/NWeuxBKXlxRHG/DWrTF8C/0krFu2KU1RQqHsSRnHo+h gGPO83E97+lFmkxkWnDQweHFUyw7GFG73AQOn4fdgMHM73wL7cTi3bBiR5dDGdd4 8Ha9j5ssNt7Ut9I0pmO4dzXvUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9xiS4A ut0BAU4tizrwpjo9/dpWMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0I5NC9DQzc0MUJCNjM3NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJu V2drVVMyWjlPVFI5VGFxSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYvRtwFsD4BophY6xQ+BhuGKhtmyu1f50VBTvUrL+5tPLFcpwCcDue epeQ8zRdwsmX6D+5AlVWemm0MVadtRg7iLvi8E5MhQ5t2/9RSmToDx1tAMMfpzAy 0kFVSgpJJBtFv2tntTTeWnyL2nlwBK4kGs5oGuUNz88njVCPaZzLIrWc/yrlkbmW jN/Tqt7guJ49GVW/HHm6TkXqXXwCx/S7ZBRFsmqvHXRguH/9ckE/iKumixbYxgsv Acq6ALwL0eLEWmODue3ZbDcnwuqOkpW4UWmAyHeLjnBVvEvAg+3urjH3KkG6ww// fmiDncRZAtB/S3X97W2/nrGKZiIRKVPp -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:58 2024 by rpki-client on console-ams.rpki-client.org