$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft File: MoQzhPrmr2wxduHfdOkIgdbZdZI.mft (raw, json) Hash identifier: xk+LJ+TSziDBd2iiamA1IfV1gT3S1k6/LfAGCgr1DLU= Subject key identifier: 40:D0:A8:09:9C:24:B7:F0:6F:1A:0B:83:49:A2:EF:70:94:00:25:B8 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 096B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft Manifest number: 0957 Signing time: Wed 20 Nov 2024 19:55:48 +0000 Manifest this update: Wed 20 Nov 2024 19:55:47 +0000 Manifest next update: Wed 27 Nov 2024 19:55:47 +0000 Files and hashes: 1: MoQzhPrmr2wxduHfdOkIgdbZdZI.crl (hash: Wn+eM9WHM4PRH5HQ5YNn+ELoG/82yYN+TNgqXsmxQmA=) 2: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (hash: j8fhU7exqqelZLDvGV+LiToUg9srXBfjEzKSUgs/K/M=) 3: D02785608C0911EAAFF6CD27C4F9AE02.roa (hash: y933EdSERbir5H8pp6t0OPtCTXKlITWSG5EEQGLxz3I=) 4: CE7DA91A8C0911EAAFF6CD27C4F9AE02.roa (hash: KwPAtZLZz35CSLoojxJ4PYLGzFjTReF4Z7d7ulqd9hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2411 (0x96b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Nov 20 19:55:47 2024 GMT Not After : Nov 27 19:55:47 2024 GMT Subject: CN=673e3ec3-1e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f5:8d:b2:5c:95:ef:81:9f:7d:70:df:34:1c: 65:8e:08:e3:48:42:38:85:4e:fb:1f:0a:bd:e1:0e: 40:48:75:b5:61:8e:22:ac:1c:5e:e8:a4:e1:7e:14: 4f:a8:4b:c5:ba:8d:85:8a:8f:cf:0f:d8:bd:77:92: 8a:22:0e:38:f1:e0:20:8b:31:5c:03:1f:87:28:46: 84:43:10:5d:85:ad:46:3b:42:9e:7c:2c:41:8d:ca: 22:cc:3a:9e:7e:b7:a6:94:c1:62:be:54:23:ea:d3: cb:47:2e:d2:d6:d9:50:a6:93:ba:41:5e:24:c5:0c: 9a:26:57:fe:26:20:e9:51:e2:04:b9:49:1b:20:a7: 17:4c:5e:89:b4:26:4e:b6:d8:34:31:11:79:1c:20: 39:3a:3e:9f:2a:dd:24:53:95:5f:db:18:4f:94:18: ae:d6:71:8e:b7:b6:79:9d:ae:fa:dc:b8:30:d3:f1: 59:ff:20:a7:fd:62:02:81:f8:ee:f0:9b:8d:ae:cd: 47:b1:84:15:08:7b:1e:8f:01:31:81:65:87:0f:79: 70:43:ac:46:fc:6e:95:e3:ba:db:b3:59:11:cb:68: 48:79:c6:e5:04:c6:12:29:7b:4c:b6:9d:4b:2a:5a: 17:15:a6:fc:49:b8:84:e2:4d:49:d5:67:69:08:58: 78:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D0:A8:09:9C:24:B7:F0:6F:1A:0B:83:49:A2:EF:70:94:00:25:B8 X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:76:26:ee:b2:c4:a3:ac:3f:1a:0e:9c:f6:05:72:f7:44:61: 41:8f:3f:78:20:dd:b1:62:a6:5c:02:4d:ce:99:ff:c8:dc:35: b6:0e:cd:01:12:49:c8:0c:53:68:51:b9:f8:f0:2f:6c:86:ac: 69:75:fe:ee:e3:9e:d5:ed:8e:e4:2c:a9:b4:44:af:73:7e:9b: 7f:01:b6:ba:1a:3d:12:08:8f:ba:2e:ad:c8:5c:90:d1:5a:8c: 00:1d:00:7b:1d:9f:8c:5c:43:a8:24:c6:d1:12:19:8d:2f:5e: 1b:5d:72:a5:77:6f:b9:22:e3:0d:73:e0:b5:a9:ab:8f:b0:79: 7b:b2:cd:12:26:3c:ec:7f:c0:c9:f4:f0:70:6b:97:e9:8f:d8: ab:5d:e6:31:33:cf:ee:14:e7:46:aa:91:34:04:dc:64:95:a5: 00:80:ab:83:ff:45:45:f8:68:48:50:35:1a:db:39:86:d4:8c: ba:83:f5:a3:b7:58:16:63:af:d5:4f:21:40:4c:bc:5c:c2:99: 3a:0f:e7:02:3b:d8:c5:3c:71:e9:9a:5f:3b:f6:bb:35:00:2a: be:95:36:d1:be:d2:bf:47:71:90:3a:f4:e7:8e:51:7f:5b:db: 5f:59:c6:31:03:e7:a5:98:ed:ff:ea:52:95:03:7a:61:27:1f: 38:a7:09:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjQxMTIwMTk1NTQ3WhcNMjQxMTI3MTk1NTQ3WjAYMRYwFAYD VQQDEw02NzNlM2VjMy0xZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvWNslyV74GffXDfNBxljgjjSEI4hU77Hwq94Q5ASHW1YY4irBxe6KThfhRP qEvFuo2Fio/PD9i9d5KKIg448eAgizFcAx+HKEaEQxBdha1GO0KefCxBjcoizDqe fremlMFivlQj6tPLRy7S1tlQppO6QV4kxQyaJlf+JiDpUeIEuUkbIKcXTF6JtCZO ttg0MRF5HCA5Oj6fKt0kU5Vf2xhPlBiu1nGOt7Z5na763Lgw0/FZ/yCn/WICgfju 8JuNrs1HsYQVCHsejwExgWWHD3lwQ6xG/G6V47rbs1kRy2hIecblBMYSKXtMtp1L KloXFab8SbiE4k1J1WdpCFh4awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDQqAmc JLfwbxoLg0mi73CUACW4MB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODY2Ni82MjNDRDZFNDg0RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIy d3hkdUhmZE9rSWdkYlpkWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIdibussSjrD8aDpz2BXL3RGFBjz94IN2xYqZcAk3Omf/I3DW2Ds0B EknIDFNoUbn48C9shqxpdf7u457V7Y7kLKm0RK9zfpt/Aba6Gj0SCI+6Lq3IXJDR WowAHQB7HZ+MXEOoJMbREhmNL14bXXKld2+5IuMNc+C1qauPsHl7ss0SJjzsf8DJ 9PBwa5fpj9irXeYxM8/uFOdGqpE0BNxklaUAgKuD/0VF+GhIUDUa2zmG1Iy6g/Wj t1gWY6/VTyFATLxcwpk6D+cCO9jFPHHpml879rs1ACq+lTbRvtK/R3GQOvTnjlF/ W9tfWcYxA+elmO3/6lKVA3phJx84pwmb -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:56 2024 by rpki-client on console-ams.rpki-client.org